LinkedIn  

Brute-force-protector

The service is designed to protect from brute force attack during authorization in any system.

Program use cases:

• Authorization check
• Bucket reset
• Add/Remove IPNet to white/black lists
• Predefined white and black subnets in assets folder

How launch project:

Command make run will automatically download all nessesarry dependencies and launch the project in docker container.
Command make stop will remove all project containers from docker environment.
Command make test will launch unit tests
Command make integration-test will launch the project, run integration tests and clear all docker containers after tests is done.

How to use CLI:

CLI have 3 main commands: authorize — to make authorize request reset — to reset some bucket by key reserve — to maintain white and black subnetworks lists

• cmd authorize take 3 params which represents login, password and ip
  
• cmd reset take 2 params which represent login and ip (to skip some param pass empty string «» insted)
  
• cmd reserve have 2 flags: --action (value: add or remove) and --list (value: white or black). (Without any flags by default command reserve (your subenet) will automatically try to add subnet to white list)

Example of commands:

bf-cli authorize SomeLogin pass123 123.123.123.111
bf-cli reset SomeLogin «»
bf-cli reserve -a=add -l=black 100.100.0.0/16

Local unit test coverage: