How to disable account if user login fails continuously in Asp.Net Core identity

Question

How to disable account if user login fails continuously in Asp.Net Core identity

1.2k views Asked by Hung Quach At 30 August 2017 at 08:02

Currently, I'm using Asp.net core 1.1, EF core & Asp.net core Identity in my system. I have a configure below in startup.cs class for the password policy.

Is there a configure to disable account when a user continuously login fails?

services.Configure<IdentityOptions>(options =>
{
    // Password settings
    options.Password.RequireDigit = true;
    options.Password.RequiredLength = 6;
    options.Password.RequireNonAlphanumeric = true;
    options.Password.RequireUppercase = true;
    options.Password.RequireLowercase = true;
}

Original Q&A

There are 2 answers

Afnan Makhdoom On 30 August 2017 at 08:09

In your account controller, scroll down to public async Task<ActionResult> Login(LoginViewModel model, string returnUrl)

Once there, set shouldLockout to true

var result = await SignInManager.PasswordSignInAsync(model.Email, model.Password, model.RememberMe, shouldLockout: true);

**Ghulam Mohayudin** · Accepted Answer · 2017-08-30 08:12:38

Ghulam Mohayudin On 30 August 2017 at 08:12 BEST ANSWER

You can simply do it like this

options.Lockout.DefaultLockoutTimeSpan = TimeSpan.FromMinutes(30);
options.Lockout.MaxFailedAccessAttempts = 5;
options.Lockout.AllowedForNewUsers = true;

For more details see this link

TechQA.

How to disable account if user login fails continuously in Asp.Net Core identity

There are 2 answers

Related Questions in C#

Related Questions in ASP.NET-CORE

Related Questions in ASP.NET-IDENTITY

Related Questions in ENTITY-FRAMEWORK-CORE

Related Questions in ASP.NET-CORE-IDENTITY

Popular Questions

Popular Tags

Trending Questions