tea/browsertrix
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
5c5ef68a8a
browsertrix/backend
History
Tessa Walsh 5c5ef68a8a
Prevent user from logging in after 5 consecutive failed login attempts until pw is reset (#1281) 
Fixes #1270 

After 5 consecutive failed logins from the same user, we now prevent the
user from logging in even with the correct password until they reset it
via their email, or wait an hour.
- After failure threshold is reached, all further login attempts are rejected
- Attempts for invalid email addresses are also tracked
- On 6th try, a reset password email is automatically sent, only once
- Failed login counter resets after an hour of no further logins after last attempted login.

---------
Co-authored-by: Ilya Kreymer <ikreymer@gmail.com>
2023-10-20 14:10:56 -07:00
..
btrixcloud Prevent user from logging in after 5 consecutive failed login attempts until pw is reset (#1281) 2023-10-20 14:10:56 -07:00
test Prevent user from logging in after 5 consecutive failed login attempts until pw is reset (#1281) 2023-10-20 14:10:56 -07:00
test_nightly Expect that crawl deleted response is bool, not int (#1170) 2023-09-12 15:03:17 -07:00
.pylintrc
Dockerfile
mypy.ini Improved type checking for backend with mypy (#1174) 2023-09-13 19:40:26 -07:00
requirements.txt User refactor + remove fastapi_users dependency + update fastapi (#1290) 2023-10-18 10:49:23 -07:00
test-requirements.txt Add slugs to org backend (#1250) 2023-10-10 18:30:09 -07:00