passwordattemptwindow is not being used in webconfig - Using Umbraco 7 - our.umbraco.com

Press Ctrl / CMD + C to copy this to your clipboard.

Copied to clipboard

Flag this post as spam?

This post will be reported to the moderators as potential spam to be looked at

Alejandro 23 posts 45 karma points

Jan 14, 2016 @ 18:10

0

passwordAttemptWindow is not being used in web.config.

Hi everyone,

I am using lock out functionality in my site and everything is working great. Umbraco is taking maxInvalidPasswordAttempts into consideration, however the field umbracoMemberFailedPasswordAttempts is not being reset in accordance to passwordAttemptWindow.

Is this a bug? Should I implement my own process to reset the field? (Seems ugly).

Thanks!

Copy Link
Neil Tootell 73 posts 118 karma points

Mar 24, 2016 @ 15:06

0

Hey - did you get an answer or solution to this?

I'm having exactly the same problem on 7.4

maxInvalidPasswordAttempts works as expected, invoking a noConsole change in the DB for the user concerned

But

passwordAttemptWindow seems to only control the attempt window without any reset after the time period elapses.

I'm stuck.

Neil

Copy Link
is working on a reply...

Please Sign in or register to post replies

Write your reply to:

Editor

Preview

Draft