[TYPO3-dev] Hook request for t3lib_userauth
Nicole Cordes
cordes at cps-it.de
Mon Feb 13 22:48:01 CET 2012
Hi Loek,
Did you have a look at t3lib/class.t3lib_userauth.php (line 293)
// Hook for alternative ways of filling the $this->user array (is used by
the "timtaw" extension)
if
(is_array($TYPO3_CONF_VARS['SC_OPTIONS']['t3lib/class.t3lib_userauth.php']['
postUserLookUp'])) {
foreach
($TYPO3_CONF_VARS['SC_OPTIONS']['t3lib/class.t3lib_userauth.php']['postUserL
ookUp'] as $funcName) {
$_params = array(
'pObj' => &$this,
);
t3lib_div::callUserFunction($funcName, $_params, $this);
}
}
Hopes this can help you a bit.
Nicole
-----Ursprüngliche Nachricht-----
Von: typo3-dev-bounces at lists.typo3.org
[mailto:typo3-dev-bounces at lists.typo3.org] Im Auftrag von Loek Hilgersom
Gesendet: Montag, 13. Februar 2012 00:17
An: typo3-dev at lists.typo3.org
Betreff: [TYPO3-dev] Hook request for t3lib_userauth
Hi,
I'm making an extension that should block or mitigate brute force password
attacks. I tried to achieve that by setting up an auth-service, but there is
no place where I can hook into the authentication process:
1. which is called at every login attempt 2. where I can see whether a login
attempt has been successful or not 3. that has the login and user data at
hand.
The authentication process is quite a jungle, maybe I overlooked something?
Otherwise, a hook near the end of the checkAuthentication method seems the
right place.
What do you think?
Loek
_______________________________________________
TYPO3-dev mailing list
TYPO3-dev at lists.typo3.org
http://lists.typo3.org/cgi-bin/mailman/listinfo/typo3-dev
More information about the TYPO3-dev
mailing list