[FEATURE] Make it possible to skip updating the lastSuccessfulAuthentication date via configuration of providerOptions

bweinzierl · bweinzierl · commit 6741352a422d · 2021-11-15T17:18:28.000+01:00
diff --git a/Classes/Authentication/UsernameHmacTimestampProvider.php b/Classes/Authentication/UsernameHmacTimestampProvider.php
@@ -149,9 +149,13 @@ public function authenticate(TokenInterface $authenticationToken)
         }
 
         if ($isHmacTokenValid) {
-            $account->authenticationAttempted(TokenInterface::AUTHENTICATION_SUCCESSFUL);
+            if (!isset($this->options['trackAuthenticationAttempts']) || $this->options['trackAuthenticationAttempts'] === true || $this->options['trackAuthenticationAttempts'] === 'successful') {
+                $account->authenticationAttempted(TokenInterface::AUTHENTICATION_SUCCESSFUL);
+            }
             $authenticationToken->setAuthenticationStatus(TokenInterface::AUTHENTICATION_SUCCESSFUL);
             $authenticationToken->setAccount($account);
+        } else if (!isset($this->options['trackAuthenticationAttempts']) || $this->options['trackAuthenticationAttempts'] === true || $this->options['trackAuthenticationAttempts'] === 'failed') {
+            $account->authenticationAttempted(TokenInterface::WRONG_CREDENTIALS);
         }
 
         $this->accountRepository->update($account);
diff --git a/README.md b/README.md
@@ -40,6 +40,8 @@ Neos:
             providerOptions:
               # For an account with this authentication provider name will be searched:
               mainAuthenticationProviderName: 'My.Website:FrontendLoginProvider'
+              # optionally only track failed authentication attempts (possible values: 'failed', 'successful', true)
+              #trackAuthenticationAttempts: 'failed'
             entryPoint: 'WebRedirect'
             entryPointOptions:
               routeValues:

Original file line number	Diff line number	Diff line change
`@@ -149,9 +149,13 @@ public function authenticate(TokenInterface $authenticationToken)`
`149`	`149`	`}`
`150`	`150`
`151`	`151`	`if ($isHmacTokenValid) {`
`152`		`- $account->authenticationAttempted(TokenInterface::AUTHENTICATION_SUCCESSFUL);`
	`152`	`+ if (!isset($this->options['trackAuthenticationAttempts']) \|\| $this->options['trackAuthenticationAttempts'] === true \|\| $this->options['trackAuthenticationAttempts'] === 'successful') {`
	`153`	`+ $account->authenticationAttempted(TokenInterface::AUTHENTICATION_SUCCESSFUL);`
	`154`	`+ }`
`153`	`155`	`$authenticationToken->setAuthenticationStatus(TokenInterface::AUTHENTICATION_SUCCESSFUL);`
`154`	`156`	`$authenticationToken->setAccount($account);`
	`157`	`+ } else if (!isset($this->options['trackAuthenticationAttempts']) \|\| $this->options['trackAuthenticationAttempts'] === true \|\| $this->options['trackAuthenticationAttempts'] === 'failed') {`
	`158`	`+ $account->authenticationAttempted(TokenInterface::WRONG_CREDENTIALS);`
`155`	`159`	`}`
`156`	`160`
`157`	`161`	`$this->accountRepository->update($account);`