CC-2789: Prevent brue-force password guessing attacks

- add recaptcha on login page
2011-09-13 14:16:16 -04:00 · 2011-09-13 14:16:16 -04:00 · f25304bcb7
commit f25304bcb7
parent e6f7640c90
20 changed files with 2083 additions and 58 deletions
--- a/airtime_mvc/build/schema.xml
+++ b/airtime_mvc/build/schema.xml
@ -304,6 +304,7 @@
    <column name="skype_contact" phpName="DbSkypeContact" type="VARCHAR" required="false"/>
    <column name="jabber_contact" phpName="DbJabberContact" type="VARCHAR" required="false"/>
    <column name="email" phpName="DbEmail" type="VARCHAR" required="false"/>
+    <column name="login_attempts" phpName="DbLoginAttempts" type="INTEGER" required="false" defaultValue="0"/>
    <unique name="cc_subjs_id_idx">
      <unique-column name="id"/>
    </unique>
@ -320,4 +321,8 @@
    <column name="value" phpName="DbValue" type="VARCHAR" size="255" required="false"/>
    <column name="type" phpName="DbType" type="VARCHAR" size="16" required="true"/>
  </table>
+  <table name="cc_login_attempts" phpName="CcLoginAttempts">
+    <column name="ip" phpName="DbIP" primaryKey="true" type="VARCHAR" size="32" required="true"/>
+    <column name="attempts" phpName="DbAttempts" type="INTEGER" required="false" defaultValue="0"/>
+  </table>
 </database>