Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Feature]: count and handle failed logins #48

Open
kitsudaiki opened this issue Feb 5, 2023 · 0 comments
Open

[Feature]: count and handle failed logins #48

kitsudaiki opened this issue Feb 5, 2023 · 0 comments
Assignees
@kitsudaiki
Labels
Breaking: Config Changes in config-files Env: Documentation requires an update of the documentation L: ★★☆ Expect mid difficulty New feature / Improvement new features and improvements of existing features Security security-bugs
Milestone
0.6.0

Comments

@kitsudaiki
Copy link
Owner

kitsudaiki commented Feb 5, 2023
edited

Feature

Description

To avoid brute-force-attacks against a user-account, there should be a counter for failed login-tries. After 3 failed login-tries there should be a forced wait time, which can be configured via config-file. Only after this timespan there should be login-try possible again. This should prevent brute-force attacks against a user-account.

Acceptance Criteria

  1. a counter was added for failed logins
  2. a new config-entry was added to define the allowed number of failed logins

Additional Information

Blocked by

How to test
@kitsudaiki kitsudaiki added Env: Documentation requires an update of the documentation New feature / Improvement new features and improvements of existing features Security security-bugs Component: Misaki labels Feb 5, 2023
@kitsudaiki kitsudaiki added this to the 0.3.0 milestone Feb 5, 2023
@kitsudaiki kitsudaiki mentioned this issue Feb 5, 2023
Closed
@kitsudaiki kitsudaiki removed the Misaki label Jul 29, 2023
@kitsudaiki kitsudaiki modified the milestones: 0.3.0, 0.4.0 Aug 20, 2023
@kitsudaiki kitsudaiki self-assigned this Nov 23, 2023
@kitsudaiki kitsudaiki changed the title count and handle failed logins [Feature]: count and handle failed logins Nov 23, 2023
@kitsudaiki kitsudaiki added the Breaking: Config Changes in config-files label Nov 23, 2023
@kitsudaiki kitsudaiki modified the milestones: 0.4.0, 0.5.0 Jan 13, 2024
@kitsudaiki kitsudaiki added the L: ★★☆ Expect mid difficulty label Jan 15, 2024
@kitsudaiki kitsudaiki modified the milestones: 0.5.0, 0.6.0 May 21, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@kitsudaiki kitsudaiki

Labels
Breaking: Config Changes in config-files Env: Documentation requires an update of the documentation L: ★★☆ Expect mid difficulty New feature / Improvement new features and improvements of existing features Security security-bugs
Projects
Hanami
Status: No status
Milestone
0.6.0
Development

No branches or pull requests
1 participant
@kitsudaiki