Skip to content

Clear bruteforce protection from user upon successful login #3156

Description

@brantje

Steps to reproduce

  1. Get throttled via via request (keep logging in with wrong pw)
  2. Login with correct pw

Expected behaviour

  1. Requests should not be throttled anymore

Actual behaviour

  1. Requests to endpoints are still throttled

Extra points for the following:
When a user is already in the blacklist, and auth.bruteforce.protection.enabled is set to false, the requests are still throttled.

Metadata

Metadata

Assignees

No one assigned

    Labels

    Type

    No type

    Fields

    No fields configured for issues without a type.

    Projects

    No projects

    Milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions