yumoqing/rbac
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
150 Commits 1 Branch 0 Tags
Go to file
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
yumoqing 622b0558b9 fix(rbac): fix high-concurrency race conditions in login and cache 
1. Login lockout race condition:
   - Replace SELECT-then-UPDATE with atomic database operations
   - Lockout check now in SQL WHERE clause (DATE_SUB comparison)
   - Fail count increment: UPDATE ... SET count = count + 1 (atomic)
   - Applied to checkUserPassword, basic_auth, up_login.dspy, phone_login.dspy

2. Cache threading.Lock -> asyncio.Lock:
   - LRUCache now uses lazy-init asyncio.Lock
   - Prevents blocking the event loop in async environment
   - UserPermissions._rp_lock also uses asyncio.Lock
   - Double-check pattern in load_roleperms prevents duplicate DB loads

3. Use database NOW() instead of Python curDateString for concurrent updates
2026-04-26 10:58:13 +08:00
json
bugfix
2026-03-25 14:14:47 +08:00
migration
feat(rbac): add login tracking, lockout, secure cache
2026-04-26 10:49:01 +08:00
models
feat(rbac): add login tracking, lockout, secure cache
2026-04-26 10:49:01 +08:00
rbac
fix(rbac): fix high-concurrency race conditions in login and cache
2026-04-26 10:58:13 +08:00
script
first commit
2025-07-16 14:19:12 +08:00
wwwroot
fix(rbac): fix high-concurrency race conditions in login and cache
2026-04-26 10:58:13 +08:00
.gitignore
chore: 添加.gitignore排除构建产物
2026-04-16 14:35:39 +08:00
pyproject.toml
first commit
2025-07-16 14:19:12 +08:00
README.md
first commit
2025-07-16 14:19:12 +08:00
requirements.txt
first commit
2025-07-16 14:19:12 +08:00
setup.cfg
first commit
2025-07-16 14:19:12 +08:00
setup.py
chore: 添加setup.py配置文件
2026-04-16 14:36:29 +08:00

README.md

rbac

Description
No description provided
Readme 703 KiB
Languages
Python 98.3%
Shell 1.7%