Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Login brute force prevention #73

Closed
virtualzone opened this issue Dec 10, 2022 · 2 comments
Closed

Login brute force prevention #73

virtualzone opened this issue Dec 10, 2022 · 2 comments
Labels
enhancement New feature or request
Milestone
1.12.0

Comments

@virtualzone
Copy link
Collaborator

No description provided.

@virtualzone virtualzone added the enhancement New feature or request label Dec 10, 2022
virtualzone added a commit that referenced this issue Dec 18, 2022
@virtualzone
Login brute force prevention #73
2ee191f
virtualzone added a commit that referenced this issue Dec 18, 2022
@virtualzone
Merge pull request #74 from seatsurfing/auth-attempt-protection
f985aa0 
Login brute force prevention #73
@virtualzone
Copy link
Collaborator Author

Will be included in version 1.12.

@virtualzone virtualzone added this to the 1.12.0 milestone Dec 18, 2022
@virtualzone
Copy link
Collaborator Author

Environment variables to control brute force prevention:

  • LOGIN_PROTECTION_MAX_FAILS: Number of failed login attempts before user gets banned (default: 10)
  • LOGIN_PROTECTION_SLIDING_WINDOW_SECONDS: Sliding window size in seconds for checking failed login attempts (default: 600 seconds)
  • LOGIN_PROTECTION_BAN_MINUTES: Ban time in minutes (default: 5 minutes)

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
enhancement New feature or request
Projects
None yet
Milestone
1.12.0
Development

No branches or pull requests
1 participant
@virtualzone