[英]lock user after many logging attempts in nodejs
I am using jwt tokens in nodejs to support authentication. 我在nodejs中使用jwt令牌来支持身份验证。 Now I want to lock the user from the page when they give three wrong passwords.
现在,当用户输入三个错误的密码时,我想将其锁定在页面之外。 Does anybody know anything about this or resources that help with it?
是否有人对此有所了解或有帮助的资源?
Thank you in advance. 先感谢您。
You could try blacklisting the user after the 3rd attempt and the only way a user can log in again is when their token has been reset. 您可以在第三次尝试后尝试将用户列入黑名单,而用户再次登录的唯一方法是重置其令牌。 Here is a good resource for blacklisting: https://auth0.com/blog/blacklist-json-web-token-api-keys/
这是列入黑名单的好资源: https : //auth0.com/blog/blacklist-json-web-token-api-keys/
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.