nick12
/
hmn
forked from hmn/hmn
1
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

miscellaneous characters from my keyboard

This commit is contained in:
Ben Visness 2023-08-21 21:19:35 -04:00
parent ad62793262
commit 74f438afad
1 changed files with 11 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

14
src/website/auth.go
View File

@ -202,9 +202,7 @@ func RegisterNewUserSubmit(c *RequestContext) ResponseData {
} }
c.Perf.StartBlock("SQL", "Check blacklist") c.Perf.StartBlock("SQL", "Check blacklist")
// TODO(asaf): Check email against blacklist if emailIsBlacklisted(emailAddress) {
blacklisted := false
if blacklisted {
// NOTE(asaf): Silent rejection so we don't allow attackers to harvest emails. // NOTE(asaf): Silent rejection so we don't allow attackers to harvest emails.
return c.Redirect(hmnurl.BuildRegistrationSuccess(), http.StatusSeeOther) return c.Redirect(hmnurl.BuildRegistrationSuccess(), http.StatusSeeOther)
} }
@ -882,3 +880,13 @@ func validateUsernameAndToken(c *RequestContext, username string, token string,
func urlIsLocal(url string) bool { func urlIsLocal(url string) bool {
return strings.HasPrefix(url, config.Config.BaseUrl) return strings.HasPrefix(url, config.Config.BaseUrl)
} }
func emailIsBlacklisted(email string) bool {
if strings.Count(email, ".") > 5 {
return true
}
// TODO(asaf): Actually check email against blacklist
return false
}