fix: waf condition

2026-02-04 12:40:07 +00:00 · 2024-11-23 10:21:01 +08:00
parent 867f840265
commit cd42b1b9d5
8 changed files with 154 additions and 131 deletions
--- a/cmd/dashboard/controller/jwt.go
+++ b/cmd/dashboard/controller/jwt.go
@@ -166,11 +166,13 @@ func optionalAuthMiddleware(mw *jwt.GinJWTMiddleware) func(c *gin.Context) {
 		identity := mw.IdentityHandler(c)

 		if identity != nil {
+			model.ClearIP(singleton.DB, c.GetString(model.CtxKeyRealIPStr))
+			c.Set(mw.IdentityKey, identity)
+		} else {
 			if err := model.BlockIP(singleton.DB, c.GetString(model.CtxKeyRealIPStr), model.WAFBlockReasonTypeBruteForceToken); err != nil {
 				waf.ShowBlockPage(c, err)
 				return
 			}
-			c.Set(mw.IdentityKey, identity)
 		}

 		c.Next()