Allow admin to opt-out from the Brute-force attack protection
|Triaged:||Fixed in Releases:|
|Bugzilla link:||Found in Releases:||Nightly|
Implementation of http://projects.theforeman.org/issues/4238 introduced a BFA protection, however this is not configurable at all (enable/disable, number of retries, blacklist timeout, etc.).
It would be beneficial, if I as an admin had a way of configure or completely disable the feature.
- e.g. our automation, running on a single foreman instance executes multiple tests, one of them being a negative tests trying an invalid authentication - this test typically lock the automation out from Foreman access, causing all further tests to fail.
#2 Updated by Marek Hulán 5 months ago
Interesting problem. I see we count to 30 if the login attempt fails. Does that mean that automation tried 30 times wrong password? Is that a single test that does that? Or what does the automation try to achieve? A workaround might be cleaning Rails cache, which is normally located at /usr/share/foreman/tmp/. Or you can try running foreman-rake tmp:clear