Project

General

Profile

Actions

Feature #19

closed

following logout requests should not be counted as failed login

Added by The 2nd over 9 years ago. Updated over 9 years ago.

Status:
Erledigt
Priority:
Normal
Assignee:
Target version:
Start date:
18 January 2015
Due date:
% Done:

0%

Estimated time:

Description

logout requests should not count up failcount!
but we cannot detect them for requests if there exists no session (because logout was already done) from which we can get the pass_hash from.
adding a list of already used logout passwords can fix this. but they should expire after some time. (after an unused time of the lo
gout password)

Actions #1

Updated by The 2nd over 9 years ago

  • Status changed from Neu to Erledigt
Actions

Also available in: Atom PDF