ari/arimelody.me
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity

lock accounts after enough failed login attempts

Browse source
This commit is contained in:
ari melody 2025-04-29 11:32:48 +01:00
parent 5cc9a1ca76
commit 1c0e541c89
Signed by: ari
GPG key ID: 60B5F0386E3DDB7E
7 changed files with 153 additions and 13 deletions
Download patch file Download diff file Expand all files Collapse all files

2
schema-migration/000-init.sql
View file

@ -19,6 +19,8 @@ CREATE TABLE arimelody.account (
email TEXT,
avatar_url TEXT,
created_at TIMESTAMP NOT NULL DEFAULT current_timestamp
fail_attempts INT NOT NULL DEFAULT 0,
locked BOOLEAN DEFAULT false,
);
ALTER TABLE arimelody.account ADD CONSTRAINT account_pk PRIMARY KEY (id);

3
schema-migration/003-fail-lock.sql Normal file
View file

@ -0,0 +1,3 @@
-- it would be nice to prevent brute-forcing
ALTER TABLE arimelody.account ADD COLUMN fail_attempts INT NOT NULL DEFAULT 0;
ALTER TABLE arimelody.account ADD COLUMN locked BOOLEAN DEFAULT false;