jannfis 76bacfdea4 fix: Add initial implementation for rate limiting failed logins (#3404) ...

* fix: Add initial implementation  for rate limiting failed logins

* Trigger test build

* Remove deprecated code and fix new project tests

* move cache related code from sessionmanager to cache access wrapper

* avoid using sleep in sessionmanager tests

* mention SECONDS in session manager environment variables to make it easier to understand meaning of each variable

* Login button should be disabled while user is waiting for login result

* prevent timing-based user enumeration attack

* reject too many failed attempts; always compute hash and introduce random delay

* remove unused constants

* fix linter errors

Co-authored-by: Alexander Matyushentsev <amatyushentsev@gmail.com>

2020-04-21 11:10:25 -07:00

..

project_test.go

fix: Add initial implementation for rate limiting failed logins (#3404)

2020-04-21 11:10:25 -07:00

project.go

chore: Fix a bunch of lint issues (#3412)

2020-04-14 08:01:43 -07:00

project.proto

feat: Let user to define meaningful unique JWT token name (#3388)

2020-04-13 14:13:05 -07:00

util_test.go

Introduces new RBAC permissions that are required for changing cluste… (#1440)

2019-04-19 08:54:30 -07:00

util.go

Introduces new RBAC permissions that are required for changing cluste… (#1440)

2019-04-19 08:54:30 -07:00