You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
@Kukks Can you clarify how it will work?
A. Lock the account for x minutes after y attempts?
B. Lock the account entirely and require e-mail verification?
It's not that elaborate @bitcoinshirt
The mechanism allows us to configure how many times a user can attempt to login with credentials before a locking cooldown period is enabled.
The default settings are:
It's a good idea to have a way to limit brute-force login attempts on the front-end of BTCPay.
I'm sure many users or even admins won't set 2FA or if we implement U2F (as I suggested earlier in #53).
My suggestions :
The text was updated successfully, but these errors were encountered: