Skip to content

[CloudSaas] - Send reactivate account link for locked accounts

Warren Gifford requested to merge piros/resetaccount into main

Created by: pietrorosa77

This is second part of the story for improving security of password based authentication.

To improve the user experience of users that are locked out of their account because of too many failed password logins, we should allow the user to request a reactivate account link sent to their email if their account gets locked.

This will be a mechanism to help mitigate the damage a potential attacker could do by attempting to lockout multiple accounts in a malicious manner.

image

image

image

Test plan

unit tests added as well as manual testing

Merge request reports

Loading