Lock account after multiple login failure

2011-01-10T02:00:02
ID ATLASSIAN:JRA-23412
Type atlassian
Reporter rhartono
Modified 2017-02-17T06:19:43

Description

For security purposes, it is desirable to have a mechanism to lock an account if the user attempted multiple login unsuccessfully.

Perhaps something like what they are doing here: http://jira.codehaus.org/browse/CONTINUUM-796

See also: http://confluence.atlassian.com/display/DEV/shipit+14+Delivery+-+Brute+Force+Login+Prevention