aertmann/brute-force

Last activity 26 Apr 2023 6 1072
composer require aertmann/brute-force

Simple brute-force prevention (account locking) for Flow

3.0.0

Version
3.0.0
Type
neos-package
Release Date
Apr 26, 2023 15:26
Source
git
Distribution
zip
Requires
MIT
  • #flow
  • #security
  • #neos
  • #brute-force
743ff772df705ddeb316c13ca678077e6a554681

AE.BruteForce

Scrutinizer Code Quality Latest Stable Version Total Downloads License

Introduction

This package provides simple brute-force prevention (account locking) for Neos/Flow.

A notification email can be send to an administrator when an account has been locked.

Compatible with Neos 3.x + 4.x / Flow 4.x + 5.x

Be aware that there are ways to circumvent this protection and it can be misused, see Blocking Brute Force Attacks for more information.

Note that the threshold is disabled in development context by default. To override it, create a Settings.yaml configuration file inside a Development folder inside a Configuration folder.

Installation

composer require "aertmann/brute-force:~2.0"

Configuration

Failed attempts threshold and notification mail can be configured in Settings.yaml.

The content of the readme is provided by Github
The same vendor provides 2 package(s).