LoginAttempts plugin for CakePHP

, _(*1)

Requirements

CakePHP >= 3.5
(Optional) CakePHP Authentication plugin 1.x

Installation

You can install this plugin into your CakePHP application using composer., _(*2)

The recommended way to install composer packages is:, _(*3)

composer require nojimage/cakephp-login-attempts

Load plugin

(CakePHP >= 3.6.0) Load the plugin by adding the following statement in your project's src/Application.php:, _(*4)

$this->addPlugin('LoginAttempts');

(CakePHP <= 3.5.x) Load the plugin by adding the following statement in your project's config/bootstrap.php file:, _(*5)

Plugin::load('LoginAttempts');

Create table

run migration command:, _(*6)

bin/cake migrations migrate -p LoginAttempts

Usage

Use LoginAttempts.Form authenticator instead of Form., _(*7)

        $this->loadComponent('Auth', [
            'authenticate' => [
                'LoginAttempts.Form' => [
                    'fields' => ['username' => 'email'],
                    'attemptLimit' => 5,
                    'attemptDuration' => '+5 minutes',
                ],
            ],
        ]);

If use are using Authentication plugin:, _(*8)

        $service->loadAuthenticator('LoginAttempts.Form', [
            'fields' => ['username' => 'email'],
            'attemptLimit' => 5,
            'attemptDuration' => '+5 minutes',
        ]);

LoginAttempts.Form Options

`attemptLimit`

If the num of login failures of the user exceeds attemptLimit during attemptDuration, the user's login is not permitted., _(*9)

default: 5, _(*10)

`attemptDuration`

If the num of login failures of the user exceeds attemptLimit during attemptDuration, the user's login is not permitted., _(*11)

default: '+5 minutes', _(*12)

`attemptAction`

The number of attempts is stored separately for this key. Use when there are multiple login forms and you want to set restrictions separately., _(*13)

default: 'login', _(*14)