This repository has been archived by the owner on Sep 20, 2024. It is now read-only.
Rate limit the login endpoint #28
Comments
|
We should take the proxying done by almost any deployment technique into account. In practice we will need to trust headers. |
Sign up for free
to subscribe to this conversation on GitHub.
Already have an account?
Sign in.
Currently there is no limit to the number of login requests.
A solution to this issue limits login attempts within a certain time window by both user and IP.
The text was updated successfully, but these errors were encountered: