Permalink
2 comments
on commit
sign in to comment.
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Browse files
add brute-force protection for change password and email actions
- Loading branch information
This comment has been minimized.
Does this actually lock the client's session or can they just send a bunch of requests simultaneously and wait for one to return a success response?
This comment has been minimized.
Integration into some sort of lockout based on IP would be ideal👍