admin/MaxKey
1
0
Fork 0
mirror of https://gitee.com/dromara/MaxKey.git synced 2025-12-07 01:18:27 +08:00
Code Issues Packages Projects Releases Wiki Activity

去掉密码策略校验

Browse Source 
当密码错误次数超过6次被暂定锁定后,社交登录时也会报错被锁定,密码错误过多被锁定是为了防止暴力破解密码  不应该影响其他登录方式

Signed-off-by: zwj <6513209+imagine0820@user.noreply.gitee.com>
This commit is contained in:
zwj 2025-08-28 03:07:00 +00:00 committed by Gitee
parent 8953bc6ab7
commit 1e8ceb38a9
No known key found for this signature in database
GPG Key ID: 173E9B9CA92EEF8F
1 changed files with 1 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
maxkey-authentications/maxkey-authentication-provider/src/main/java/org/dromara/maxkey/authn/provider/impl/TrustedAuthenticationProvider.java
View File

@ -60,10 +60,7 @@ public class TrustedAuthenticationProvider extends AbstractAuthenticationProvide
UserInfo loadeduserInfo = loadUserInfo(loginCredential.getUsername(), "");
statusValid(loginCredential , loadeduserInfo);
if (loadeduserInfo != null) {
//Validate PasswordPolicy
authenticationRealm.getLoginService().passwordPolicyValid(loadeduserInfo);
//apply PasswordSetType and resetBadPasswordCount
authenticationRealm.getLoginService().applyPasswordPolicy(loadeduserInfo);
Authentication authentication = createOnlineTicket(loginCredential,loadeduserInfo);
authenticationRealm.insertLoginHistory( loadeduserInfo,