Buy Now

Excessive Attempt Lock for Magento 2

Excessive Attempt Lock for Magento 2 enables an additional security layer to prevent the hackers to abuse your admin and customer logins by attempting many easy-to-guess passwords consecutively.

This method is called as Brute forcing. This technique characterized by the attitude, “try and try till you succeed”. It is one of the oldest methods of breaking into something.

This technique can be used to attack the website from admin login or from customer login. Here the Excessive Attempt Lock for Magento 2 came into the force. It can disable an admin user or the customer for a defined number of minutes.

Features

  • Admin can enable or disable the module.
  • Work for both admin and customer login.
  • Admin can set no. of attempts and disable time for both admin and the customer.
  • Display unlock timer for both admin and customer over the login page.

Installation

Customers will get a zip folder and they have to extract the contents of this zip folder on their system. The extracted folder has an src folder, inside the src folder you have the app folder. You need to transfer this app folder into the Magento2 root directory on the server as shown below.

After the successful installation, you have to run these commands in the Magento2 root directory.

First Command – 

php bin/magento setup:upgrade

Second Command – 

php bin/magento setup:di:compile

Third Command – 

php bin/magento setup:static-content:deploy

After running the commands, you have to flush the cache from the Magento admin panel by navigating through “System->Cache Management” as shown below.

Multi-Lingual Configuration

For Multilingual support, please navigate to “Store>Configuration>General >Locale Options”. And select your desired language from the Locale option.

Language Translation

For module translation, navigate to the following path in your system  app/code/Webkul/ExcessiveAttemptLock/i18n/en_US.csv. Open the file named en_US.CSV for editing as shown in the below screenshot.

Then replace the words after the comma(,) on the right in the file with your translated words.

After editing and translating the CSV file, you need to save the translated file name according to your region language and country code such as – de_DE.CSV. Followed by uploading the translated file to the same folder from where you have obtained it. Now your module translation is complete.

Configuration

After successful installation of the module, the admin can configure this module under “Store > Configuration > Webkul > Excessive Attempt Lock”.

Excessive Attempt Lock Settings : 

Active –  Here the admin can choose between “Yes” to enable the module or “No” to disable the module. 

Admin Login Settings :

Login Attempts – The admin can define after how many login attempts the login will be disabled. 

Disable Login Time in Minutes – The admin can define the disable time in minutes of the user to log in.  

Customer Login Settings :

Login Attempts –  The admin can define after how many login attempts the login will be disabled.

Disable Login Time in Minutes – The admin can define the disable time in minutes of the user to log in.

Note: The admin or the customer needs to enter the correct login id to disable that particular user. 

Admin View

If the admin user enters the wrong password more then allowed a number of attempts, the user will be disabled.  The user not able to log in for the number of minutes configured in the admin panel.

Customer View

The customer will be disabled to log in over the site for the configured time. If the customer enters the wrong password more then allowed number of attempts.

That’s all for Excessive Attempt Lock for Magento 2  module. Still, have any issue please feel free to add a ticket at  https://webkul.uvdesk.com/

Current Product Version - 2.1.0

Supported Framework Version - Magento 2.0.x, 2.1.x, 2.2.x

. . .

Comment

Add Your Comment

Be the first to comment.

css.php

Index