security: implement user lockout (#1552)

* add data-types required for login security * implement user lockout checking at login * cleanup legacy patterns * expose passwords in test_user * test user lockout after bad attempts * test user service * bump alembic version * save increment to database * add locked_at to datetime transformer on import * do proper test cleanup * implement scheduled task * spelling * document env variables * implement context manager for session * use context manager * implement reset script * cleanup generator * run generator * implement API endpoint for resetting locked users * add button to reset all locked users * add info when account is locked * use ignore instead of expect-error
2026-02-03 06:23:10 -05:00 · 2022-08-13 13:18:12 -08:00
parent ca64584fd1
commit b3c41a4bd0
35 changed files with 450 additions and 46 deletions
--- a/mealie/app.py
+++ b/mealie/app.py
@@ -10,7 +10,6 @@ from mealie.routes.handlers import register_debug_handler
 from mealie.routes.media import media_router
 from mealie.services.scheduler import SchedulerRegistry, SchedulerService, tasks

-logger = get_logger()
 settings = get_app_settings()

 description = f"""
@@ -61,6 +60,10 @@ async def start_scheduler():
        tasks.post_group_webhooks,
    )

+    SchedulerRegistry.register_hourly(
+        tasks.locked_user_reset,
+    )
+
    SchedulerRegistry.print_jobs()

    await SchedulerService.start()
@@ -77,6 +80,8 @@ api_routers()

@app.on_event("startup")
 async def system_startup():
+    logger = get_logger()
+
    await start_scheduler()

    logger.info("-----SYSTEM STARTUP----- \n")