Merge pull request #8649 from appwrite/fix-create-mfa-challenge-rate-limit
Update abuse-key for mfa challenge endpoints
This commit is contained in:
commit
16bed9de22
1 changed files with 2 additions and 2 deletions
|
@ -4018,7 +4018,7 @@ App::post('/v1/account/mfa/challenge')
|
||||||
->label('sdk.response.type', Response::CONTENT_TYPE_JSON)
|
->label('sdk.response.type', Response::CONTENT_TYPE_JSON)
|
||||||
->label('sdk.response.model', Response::MODEL_MFA_CHALLENGE)
|
->label('sdk.response.model', Response::MODEL_MFA_CHALLENGE)
|
||||||
->label('abuse-limit', 10)
|
->label('abuse-limit', 10)
|
||||||
->label('abuse-key', 'url:{url},token:{param-token}')
|
->label('abuse-key', 'url:{url},userId:{userId}')
|
||||||
->param('factor', '', new WhiteList([Type::EMAIL, Type::PHONE, Type::TOTP, Type::RECOVERY_CODE]), 'Factor used for verification. Must be one of following: `' . Type::EMAIL . '`, `' . Type::PHONE . '`, `' . Type::TOTP . '`, `' . Type::RECOVERY_CODE . '`.')
|
->param('factor', '', new WhiteList([Type::EMAIL, Type::PHONE, Type::TOTP, Type::RECOVERY_CODE]), 'Factor used for verification. Must be one of following: `' . Type::EMAIL . '`, `' . Type::PHONE . '`, `' . Type::TOTP . '`, `' . Type::RECOVERY_CODE . '`.')
|
||||||
->inject('response')
|
->inject('response')
|
||||||
->inject('dbForProject')
|
->inject('dbForProject')
|
||||||
|
@ -4205,7 +4205,7 @@ App::put('/v1/account/mfa/challenge')
|
||||||
->label('sdk.response.code', Response::STATUS_CODE_NOCONTENT)
|
->label('sdk.response.code', Response::STATUS_CODE_NOCONTENT)
|
||||||
->label('sdk.response.model', Response::MODEL_SESSION)
|
->label('sdk.response.model', Response::MODEL_SESSION)
|
||||||
->label('abuse-limit', 10)
|
->label('abuse-limit', 10)
|
||||||
->label('abuse-key', 'userId:{param-userId}')
|
->label('abuse-key', 'url:{url},challengeId:{param-challengeId}')
|
||||||
->param('challengeId', '', new Text(256), 'ID of the challenge.')
|
->param('challengeId', '', new Text(256), 'ID of the challenge.')
|
||||||
->param('otp', '', new Text(256), 'Valid verification token.')
|
->param('otp', '', new Text(256), 'Valid verification token.')
|
||||||
->inject('project')
|
->inject('project')
|
||||||
|
|
Loading…
Reference in a new issue