How to lock a user account for 30 minutes after 5 failed login attempts in Django?

Asked May 15 '20 at 05:41

Active May 15 '20 at 06:24

Viewed 1,952 times

I want to be able to lock user accounts (prevent login) after a defined number of failed logins in a specified period of time. Both the number of login attempts permitted and the time period should be set in the Admin panel.

Example: Lock a user account after 5 failed login attempts in 60 minutes.

edited May 15 '20 at 06:24

Talvalin

7,789
2
30
40

asked May 15 '20 at 05:41

abhi

Does this answer your question? [Lock out users after too many failed login attempts](https://stackoverflow.com/questions/9033287/lock-out-users-after-too-many-failed-login-attempts) – Igor Belkov May 15 '20 at 05:45
You can try [django-brutebuster](https://github.com/mtrdesign/django-brutebuster) – Dat Ho May 15 '20 at 05:59
1

Do realize that this also gives attackers a tool to DDoS specific accounts and prevent the legitimate owners from logging in… – deceze May 15 '20 at 06:28

How to lock a user account for 30 minutes after 5 failed login attempts in Django?

0 Answers0