Rate limit login attempts to Firebase email and password auth
461 views
Skip to first unread message
Rusty Miller
Mar 26, 2024, 10:09:59 AM3/26/24
to Firebase Google Group
Hello,
Is there a way to prevent the number of attempts to log with Firebase email and password auth? I want to prevent brute force login attempts.
Is there a way to prevent the number of attempts to log with Firebase email and password auth? I want to prevent brute force login attempts.
For example, I want the system to add a delay of 5 or 10 min after 5 failed login attempts and either reset with the same timeout or an exponential increase of the timeout for the next 5 attempts.
Best Regards,
Best Regards,
Rusty
Ralph Roper
Apr 3, 2024, 11:47:09 PM4/3/24
to Firebase Google Group
Would also be interested in answer to this as no specific details available in docs.
Ralph
I found below issue from 2020 but was hoping to get confirmation on allowed number of requests per second to signInWithEmailAndPassword endpoint from same IP
For email/password authentication and reCaptcha Enterprise enabled does it show the reCaptcha after so many failed login attempts or is the reCaptcha always shown?
Thanks.
Ralph
Reply all
Reply to author
Forward
0 new messages