https://supertokens.com/ logo
Title
w

WonderPandaDev

12/16/2022, 4:32 PM
I've been trying to find information in the docs but haven't come across the answer yet. For the username + password recipe is there support for being able to lock an account out after N number of failed login attempts? Also, are login attempts logged anywhere so that we can integrate that information in audits and dashboards?
r

rp

12/16/2022, 4:49 PM
hey @WonderPandaDev
w

WonderPandaDev

12/16/2022, 4:51 PM
Hi!
r

rp

12/16/2022, 4:51 PM
this can be implemented by overriding the sign in recipe function
w

WonderPandaDev

12/16/2022, 4:53 PM
Okay cool, thank you for this info
r

rp

12/16/2022, 4:57 PM
in which you call the original implementation first and if that fails, then you increment some counter if that fails. If the counter has reached a limit, then you can check that before calling the original impl, and reject the sign in attempt.
w

WonderPandaDev

12/16/2022, 4:57 PM
Beautiful! I love the extensibility