Move authentication failed logging to checkPassword

Fixes https://github.com/owncloud/core/issues/10366
11 years ago · 5bb4772858
parent 93f5e90c9f
commit 5bb4772858
3 changed files with 2 additions and 10 deletions
--- a/config/config.sample.php
+++ b/config/config.sample.php
@ -185,9 +185,6 @@ $CONFIG = array(
 (watch out, this option can increase the size of your log file)*/
 "log_query" => false,

-/* Enable or disable the logging of IP addresses in case of webform auth failures */
-"log_authfailip" => false,
-
 /* Whether ownCloud should log the last successfull cron exec */
 "cron_log" => true,

--- a/lib/base.php
+++ b/lib/base.php
@ -856,13 +856,6 @@ class OC {
 		} // logon via web form
 		elseif (OC::tryFormLogin()) {
 			$error[] = 'invalidpassword';
-			if ( OC_Config::getValue('log_authfailip', false) ) {
-				OC_Log::write('core', 'Login failed: user \''.$_POST["user"].'\' , wrong password, IP:'.$_SERVER['REMOTE_ADDR'],
-				OC_Log::WARN);
-			} else {
-				OC_Log::write('core', 'Login failed: user \''.$_POST["user"].'\' , wrong password, IP:set log_authfailip=true in conf',
-                                OC_Log::WARN);
-			}
 		}

 		OC_Util::displayLoginPage(array_unique($error));
--- a/lib/private/user/manager.php
+++ b/lib/private/user/manager.php
@ -164,6 +164,8 @@ class Manager extends PublicEmitter implements IUserManager {
 				}
 			}
 		}
+
+		\OC::$server->getLogger()->warning('Login failed: \''. $loginname .'\' (Remote IP: \''. $_SERVER['REMOTE_ADDR'] .'\', X-Forwarded-For: \''. $_SERVER['HTTP_X_FORWARDED_FOR'] .'\')', array('app' => 'core'));
 		return false;
 	}