Skip to content
Go to file

Latest commit


Git stats


Failed to load latest commit information.
Latest commit message
Commit time

All Contributors


This extension extends the core functionality of the customer module of Magento. It is possible to temporarily lock the user account after an number of failed login attempts during specified period of time. Additionally it is possible to check the complexity and length of the customer password when an account is created.


  • master => stable version of the extension
  • develop => contains new features



This extension extends the core functionality of the customer module of Magento. The features of this extension are:

  • Customers are temporarily deactivated if wrong password is entered too often.
  • Password can be validated and rejected (password strength, password length, ..)

The extension can now be configured: System -> Configuration -> Customer -> Customer Configuration -> Password

The following extra options are available:

  • Lock after x attempts: The number of allowed failed login attempts before the customer account is locked
  • Lock attempt span: The time period within which the above attempts are allowed to be made
  • Lock time: The number of seconds for which the account will be locked
  • Check minimum Password length: Should the password length be checked (When the customer creates an account)
  • Minimum Password length: The minimum allowed password length. If this value is set below or equal to zero the default value (8) will be used.
  • Check Password complexity: Check password against the default complexity definition, where it should contain at least one uppercase character, one lowercase character and one digit.

Customer Password Configuration


  • PHP >= 5.3.0


  • Magento >= 1.6

Installation Instructions

Install the files using one of the following methods:

Via modman

  • Install modman
  • Use the command from your Magento installation folder: modman clone

Via composer

  • Install composer
  • Create a composer.json into your project like the following sample:
    "require": {
    "repositories": [
            "type": "composer",
            "url": ""
        "magento-root-dir": "./"
  • Then from your composer.json folder: php composer.phar install or composer install


You can copy the files from the 'src' folder of this repository to the same folders of your installation

Once the files are installed:

  • Clear the cache, logout from the admin panel and then login again.

You can now configure the extension via System -> Configuration -> Customer -> Customer Configuration -> Password


  1. Remove all extension files from your Magento installation
  2. Run the following sql script in your database:
DELETE FROM eav_attribute WHERE attribute_code = 'customer_active';
DELETE FROM eav_attribute WHERE attribute_code = 'customer_logins_failed';
DELETE FROM eav_attribute WHERE attribute_code = 'customer_last_login_failed';


If you have any issues with this extension, open an issue on GitHub.


Any contribution is highly appreciated. The best way to contribute code is to open a pull request on GitHub.


Thanks goes to these wonderful people (emoji key):

Rouven Alexander Rieker


Mathis Klooß


Latenzio Gonzales


Vinai Kopp


Andre Flitsch


Matthias Zeis


Christian Münch


Kevin Krieger


This project follows the all-contributors specification. Contributions of any kind welcome!


FireGento Team


GNU General Public License, version 3 (GPLv3)


(c) 2013 - 2020 FireGento Team


Extends the customer functionality of Magento.




No packages published
You can’t perform that action at this time.