diff options
| author | Lukas Fleischer <lfleischer@archlinux.org> | 2017-01-25 08:22:54 +0100 |
|---|---|---|
| committer | Lukas Fleischer <lfleischer@archlinux.org> | 2017-01-25 18:42:34 +0100 |
| commit | f8916d7e9bda129a57143d769f7eb1f596614c80 (patch) | |
| tree | 1eda89a37f44d91397c3ee382ff1fd5bf3b8c2b1 /aurweb | |
| parent | b8df10e22732fd678a6d30e2bf4ac5eb14cf898e (diff) | |
| download | aur-f8916d7e9bda129a57143d769f7eb1f596614c80.tar.gz aur-f8916d7e9bda129a57143d769f7eb1f596614c80.tar.xz | |
git-serve: Save last SSH login date and IP address
In addition to logging the last login date and IP address on the web
interface, store the time stamp and IP address of the last SSH login in
the database.
This simplifies user banning if one of the new SSH interface features,
such as the voting mechanism implemented in 7ee2fdd (git-serve: Add
support for (un-)voting, 2017-01-23), is abused.
Signed-off-by: Lukas Fleischer <lfleischer@archlinux.org>
Diffstat (limited to 'aurweb')
| -rwxr-xr-x | aurweb/git/serve.py | 13 |
1 files changed, 13 insertions, 0 deletions
diff --git a/aurweb/git/serve.py b/aurweb/git/serve.py index 4c03e3b6..cfd4910d 100755 --- a/aurweb/git/serve.py +++ b/aurweb/git/serve.py @@ -410,6 +410,18 @@ def pkgbase_has_full_access(pkgbase, user): return cur.fetchone()[0] > 0 +def log_ssh_login(user, remote_addr): + conn = aurweb.db.Connection() + + now = int(time.time()) + conn.execute("UPDATE Users SET LastSSHLogin = ?, " + + "LastSSHLoginIPAddress = ? WHERE Username = ?", + [now, remote_addr, user]) + + conn.commit() + conn.close() + + def die(msg): sys.stderr.write("{:s}\n".format(msg)) exit(1) @@ -451,6 +463,7 @@ def serve(action, cmdargv, user, privileged, remote_addr): if enable_maintenance: if remote_addr not in maintenance_exc: raise aurweb.exceptions.MaintenanceException + log_ssh_login(user, remote_addr) if action == 'git' and cmdargv[1] in ('upload-pack', 'receive-pack'): action = action + '-' + cmdargv[1] |