I come from a security testing background and am building a webapp based on Laravel 4. I'm looking into implementing account lockout (if the auth fails too many times in a row), preferably with cooldown and protection from multiple concurrent logins, ie destroy any current sessions associated with a user upon successful auth. Is there an easy way to do this in stock Laravel or would have I to use something like Sentry?
I use Sentry; to my knowledge such things aren't built into Laravel and in my opinion shouldn't be as they are bloat to a framework, and there are additional packages such as Sentry that provide the facility.
You can build this manually. I used to use Sentry but it broke the rest of my code. Because I prefer using the basic Auth class.
Sign in to participate in this thread!
The Laravel portal for problem solving, knowledge sharing and community building.
The community