GithubHelp home page GithubHelp logo

nicolaskern / ccdnusersecuritybundle Goto Github PK

View Code? Open in Web Editor NEW

This project forked from codeconsortium/ccdnusersecuritybundle

0.0 2.0 0.0 290 KB

Security for Symfony2 Authentication/Authorisation - Reduce potential for Brute Force Dictionary attacks by limiting login attempts.

PHP 96.41% HTML 0.50% Gherkin 1.62% Shell 1.47%

ccdnusersecuritybundle's Introduction

[NO LONGER SUPPORTED] CCDNUser SecurityBundle README.

SensioLabsInsight Build Status Scrutinizer Quality Score Code Coverage Latest Stable Version Total Downloads Stories in Ready

Notes:

This is no longer supported or worked on. If you wish to continue using this and wish to take over let me know.

This bundle is for the symfony framework and requires Symfony ~2.4 and PHP >=5.3.2

This project uses Doctrine >=2.1 and so does not require any specific database.

This file is part of the CCDNUser bundles(s)

© CCDN © CodeConsortium

Available on:

For the full copyright and license information, please view the LICENSE file that was distributed with this source code.

SensioLabsInsight knpbundles.com

Description:

Use this bundle to mitigate brute force dictionary attacks on your sites. Excessive failed logins will force users to recover their account, additional attempts to circumvent that will block the user from specified webpages by returning an HTTP 500 response on all specified routes.

You can use this bundle with any User Bundle you like.

This bundle does NOT provide user registration/login/logout etc features. This bundle is for brute force dictionary attack mitigation only. Use this bundle in conjunction with your preferred user bundle.

Features.

SecurityBundle Provides the following features:

  1. Prevent brute force attacks being carried out by limiting number of login attempts:
    1. When first limit is reached, redirect to an account recovery page.
    2. When secondary limit is reached, return an HTTP 500 status to block login pages etc.
  2. All limits are configurable.
  3. Routes to block are configurable.
  4. Route for account recovery page is configurable.
  5. Decoupled from UserBundle specifics. You can use this with any user bundle you like.
  6. Redirect user to last page they were on upon successful login.
  7. Redirect user to last page they were on upon successful logout.

Documentation.

Documentation can be found in the Resources/doc/index.md file in this bundle:

Read the Documentation.

Installation.

All the installation instructions are located in documentation.

License.

This software is licensed under the MIT license. See the complete license file in the bundle:

Resources/meta/LICENSE

Read the License.

About.

CCDNUser SecurityBundle is free software from Code Consortium. See also the list of contributors.

Reporting an issue or feature request.

Issues and feature requests are tracked in the Github issue tracker.

Discussions and debates on the project can be further discussed at Code Consortium.

ccdnusersecuritybundle's People

Contributors

arthurpetit avatar christianbaer avatar craue avatar jhkchan avatar krizon avatar mo25 avatar nicolaskern avatar potherca avatar reecefowell avatar ricbra avatar rstrash avatar waffle-with-pears avatar

Watchers

avatar avatar

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. 📊📈🎉

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google ❤️ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.