Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Bug - Customer User won't be locked after multiple failed logins #8

Closed
rkaldung opened this issue Aug 9, 2021 · 1 comment
Closed

Bug - Customer User won't be locked after multiple failed logins #8

rkaldung opened this issue Aug 9, 2021 · 1 comment
Assignees
@rkaldung
Labels
enhancement

Comments

@rkaldung
Copy link
Contributor

rkaldung commented Aug 9, 2021

Expected behavior

Set setting PasswordMaxLoginFailed affectes CustomerUser login.

Actual behavior

Despite the setting PasswordMaxLoginFailed and way more login attempts the CustomerUser does not become invalid-temporary like agents.

How to reproduce

Steps to reproduce the behavior:

  1. Configure a value PasswordMaxLoginFailed
  2. Login in multiple times (>PasswordMaxLoginFailed) as a CustomerUser with a wrong password.
  3. Check that the CustomerUser is still valid.

Environment

  • OS: n.a.
  • Browser: n.a.
  • OTRS version 6.0.35

Additional information

PasswordMaxLoginFailed is a setting form the Framework and not found in any file related to CustomerUser. It's expected to work with datasources not read-only and type DB (or wherever the valid flag can be changed)
@rkaldung rkaldung assigned rkaldung and unassigned hanneshal Sep 24, 2021
@rkaldung
Copy link
Contributor Author

Will be implemented into with the next release, 6.0.37

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@rkaldung rkaldung

Labels
enhancement
Milestone
No milestone
Development

No branches or pull requests
2 participants
@rkaldung @hanneshal