return authentication header, if the login attempt limit is disabled

2025-11-13 00:45:44 +01:00 · 2014-04-20 13:11:41 +02:00
parent 5505f683d7
commit 1388052ace
2 changed files with 18 additions and 4 deletions
--- a/scm-core/src/main/java/sonia/scm/config/ScmConfiguration.java
+++ b/scm-core/src/main/java/sonia/scm/config/ScmConfiguration.java
@@ -484,6 +484,19 @@ public class ScmConfiguration
    return forceBaseUrl;
  }

+  /**
+   * Returns true if the login attempt limit is enabled.
+   *
+   *
+   * @return true if login attempt limit is enabled
+   *
+   * @since 1.37
+   */
+  public boolean isLoginAttemptLimitEnabled()
+  {
+    return loginAttemptLimit > 0;
+  }
+
  /**
   * Returns true if failed authenticators are skipped.
   *
--- a/scm-plugins/scm-hg-plugin/src/main/java/sonia/scm/web/HgBasicAuthenticationFilter.java
+++ b/scm-plugins/scm-hg-plugin/src/main/java/sonia/scm/web/HgBasicAuthenticationFilter.java
@@ -87,7 +87,8 @@ public class HgBasicAuthenticationFilter extends BasicAuthenticationFilter
    HttpServletResponse response)
    throws IOException
  {
-    if (HgUtil.isHgClient(request))
+    if (HgUtil.isHgClient(request)
+      && (configuration.isLoginAttemptLimitEnabled()))
    {
      response.sendError(HttpServletResponse.SC_UNAUTHORIZED);
    }