Download & Extend
Flood control » Issues

Add user_failed_login_identifier_uid_only to form

Posted by claudiu.cristea on October 28, 2012 at 9:01pm
Project:Flood control
Version:7.x-1.x-dev
Component:User interface
Category:feature request
Priority:normal
Assigned:Unassigned
Status:reviewed & tested by the community

Issue Summary

Looking in http://api.drupal.org/api/drupal/modules%21user%21user.module/function/u... we can see that there a 2 kind of validations on user:

  1. Pure UID: Drupal validate only against user. This is the most strict.
  2. UID+IP: Drupal checks by this pair. This is used as it is safe enough but more practical because avoids locking out public users.

Drupal defaults to the second one. The purpose of this module is to unlock flood variables and let admins configure them.

Add also user_failed_login_identifier_uid_only to form.

Login or register to post comments

Comments

#1

Posted by abautu on December 2, 2012 at 4:09pm
Status:active» needs review

Attaching a patch for this feature.

AttachmentSize
flood_control.patch 1020 bytes

#2

Posted by claudiu.cristea on December 2, 2012 at 6:35pm
Status:needs review» reviewed & tested by the community

rtbc