22540946991

Committed 01 Mar 2026 09:55AM UTC coverage: 63.267%. Remained the same

Build # 22540946991

Build Type

push

github

Committed by

web-flow

Commit Message

Merge pull request #37 from daycry/development

Refactor Auth configuration and update CHANGELOG for v4.0.0

Coverage Stats

32 of 42 new or added lines in 18 files covered. (76.19%)

1 existing line in 1 file now uncovered.

3064 of 4843 relevant lines covered (63.27%)

41.53 hits per line

Source File
Press 'n' to go to next uncovered line, 'b' for previous

41.94

/src/Services/AttemptHandler.php

<?php

declare(strict_types=1);

/**
 * This file is part of Daycry Auth.
 *
 * (c) Daycry <daycry9@proton.me>
 *
 * For the full copyright and license information, please view
 * the LICENSE file that was distributed with this source code.
 */

namespace Daycry\Auth\Services;

use CodeIgniter\HTTP\RequestInterface;
use CodeIgniter\HTTP\ResponseInterface;
use Daycry\Auth\Models\AttemptModel;
use Daycry\Auth\Validators\AttemptValidator;

/**
 * Service for handling invalid login attempts
 *
 * Extracts attempt handling logic from BaseControllerTrait
 */
class AttemptHandler
{
    protected AttemptModel $attemptModel;
    protected bool $isEnabled;

    public function __construct()
    {
        $this->attemptModel = new AttemptModel();
        $this->isEnabled    = service('settings')->get('AuthSecurity.enableInvalidAttempts') === true;
    }

    /**
     * Check if attempts validation is enabled and validate if needed
     */
    public function validateAttempts(ResponseInterface $response): void
    {
        if (! $this->isEnabled) {
            return;
        }

        AttemptValidator::check($response);
    }

    /**
     * Handle invalid attempts by updating the attempts counter
     */
    public function handleInvalidAttempt(RequestInterface $request): void
    {
        if (! $this->isEnabled) {
            return;
        }

        $ipAddress = $request->getIPAddress();
        $attempt   = $this->attemptModel->where('ip_address', $ipAddress)->first();

        if ($attempt === null) {
            $this->createNewAttempt($ipAddress);
        } elseif ($attempt->attempts < service('settings')->get('AuthSecurity.maxAttempts')) {
            $this->incrementAttempt($attempt);
        }
    }

    /**
     * Create a new attempt record
     */
    private function createNewAttempt(string $ipAddress): void
    {
        $attempt = [
            'user_id'      => auth()->user()?->id,
            'ip_address'   => $ipAddress,
            'attempts'     => 1,
            'hour_started' => time(),
        ];

        $this->attemptModel->save($attempt);
    }

    /**
     * Increment existing attempt counter
     */
    private function incrementAttempt(object $attempt): void
    {
        $attempt->attempts++;
        $this->attemptModel->save($attempt);
    }

    /**
     * Check if attempts handling is enabled
     */
    public function isEnabled(): bool
    {
        return $this->isEnabled;
    }

    /**
     * Static method to get a new instance
     */
    public static function getInstance(): self
    {
        return new self();
    }
}

1	<?php
2
3	declare(strict_types=1);
4
5	/**
6	* This file is part of Daycry Auth.
7	*
8	* (c) Daycry <daycry9@proton.me>
9	*
10	* For the full copyright and license information, please view
11	* the LICENSE file that was distributed with this source code.
12	*/
13
14	namespace Daycry\Auth\Services;
15
16	use CodeIgniter\HTTP\RequestInterface;
17	use CodeIgniter\HTTP\ResponseInterface;
18	use Daycry\Auth\Models\AttemptModel;
19	use Daycry\Auth\Validators\AttemptValidator;
20
21	/**
22	* Service for handling invalid login attempts
23	*
24	* Extracts attempt handling logic from BaseControllerTrait
25	*/
26	class AttemptHandler
27	{
28	protected AttemptModel $attemptModel;
29	protected bool $isEnabled;
30
31	public function __construct()	37✔
32	{
33	$this->attemptModel = new AttemptModel();	37✔
34	$this->isEnabled = service('settings')->get('AuthSecurity.enableInvalidAttempts') === true;	37✔
35	}
36
37	/**
38	* Check if attempts validation is enabled and validate if needed
39	*/
40	public function validateAttempts(ResponseInterface $response): void	2✔
41	{
42	if (! $this->isEnabled) {	2✔
43	return;	2✔
44	}
45
46	AttemptValidator::check($response);	×
47	}
48
49	/**
50	* Handle invalid attempts by updating the attempts counter
51	*/
52	public function handleInvalidAttempt(RequestInterface $request): void	5✔
53	{
54	if (! $this->isEnabled) {	5✔
55	return;	5✔
56	}
57
58	$ipAddress = $request->getIPAddress();	×
59	$attempt = $this->attemptModel->where('ip_address', $ipAddress)->first();	×
60
61	if ($attempt === null) {	×
62	$this->createNewAttempt($ipAddress);	×
NEW 63	} elseif ($attempt->attempts < service('settings')->get('AuthSecurity.maxAttempts')) {	×
64	$this->incrementAttempt($attempt);	×
65	}
66	}
67
68	/**
69	* Create a new attempt record
70	*/
71	private function createNewAttempt(string $ipAddress): void	×
72	{
73	$attempt = [	×
74	'user_id' => auth()->user()?->id,	×
75	'ip_address' => $ipAddress,	×
76	'attempts' => 1,	×
77	'hour_started' => time(),	×
78	];	×
79
80	$this->attemptModel->save($attempt);	×
81	}
82
83	/**
84	* Increment existing attempt counter
85	*/
86	private function incrementAttempt(object $attempt): void	×
87	{
88	$attempt->attempts++;	×
89	$this->attemptModel->save($attempt);	×
90	}
91
92	/**
93	* Check if attempts handling is enabled
94	*/
95	public function isEnabled(): bool	3✔
96	{
97	return $this->isEnabled;	3✔
98	}
99
100	/**
101	* Static method to get a new instance
102	*/
103	public static function getInstance(): self	2✔
104	{
105	return new self();	2✔
106	}
107	}

daycry / auth / 22540946991

Source File Press 'n' to go to next uncovered line, 'b' for previous

Source File
Press 'n' to go to next uncovered line, 'b' for previous