Hi,
With this portion added to config.yml:
auth_failure_listeners:
ip_rate_limiting:
type: ip
allowed_tries: 3
time_window_seconds: 3600
block_expiry_seconds: 600
max_blocked_clients: 100000
max_tracked_clients: 100000
internal_authentication_backend_limiting:
type: username
authentication_backend: intern
allowed_tries: 3
time_window_seconds: 3600
block_expiry_seconds: 600
max_blocked_clients: 100000
max_tracked_clients: 100000
ldap_authentication_backend_limiting:
type: username
authentication_backend: ldap
allowed_tries: 3
time_window_seconds: 3600
block_expiry_seconds: 600
max_blocked_clients: 100000
max_tracked_clients: 100000
I can get username type authentication to work (though I must say, the implementation is a bit barebones, because the UI does not even notify that the account is already blocked), but ip_rate_limiting does not seem to be kicking in at all.
Would anyone know how this is supposed to work?
Even after many many failed attempts from the same remote address, I can still login afterwards with a valid user.
[2022-04-21T05:19:36,170][WARN ][o.o.s.a.BackendRegistry ] [host] Authentication finally failed for null from 10.56.112.13:50266
[2022-04-21T05:19:36,733][WARN ][o.o.s.a.BackendRegistry ] [host] Authentication finally failed for null from 10.56.112.13:50266
[2022-04-21T05:19:37,249][WARN ][o.o.s.a.BackendRegistry ] [host] Authentication finally failed for null from 10.56.112.13:50266
[2022-04-21T05:19:55,179][WARN ][o.o.s.a.BackendRegistry ] [host] Authentication finally failed for null from 10.56.112.13:50266
[2022-04-21T05:19:55,940][WARN ][o.o.s.a.BackendRegistry ] [host] Authentication finally failed for null from 10.56.112.13:50266
[2022-04-21T06:03:55,031][WARN ][o.o.s.a.BackendRegistry ] [host] Authentication finally failed for indexuser from 10.56.112.13:53738
[2022-04-21T06:04:40,152][WARN ][o.o.s.a.BackendRegistry ] [host] Authentication finally failed for indexuser from 10.56.112.13:53738
[2022-04-21T06:04:41,690][WARN ][o.o.s.a.BackendRegistry ] [host] Authentication finally failed for indexuser from 10.56.112.13:53738
[2022-04-21T06:05:43,729][WARN ][o.o.s.a.BackendRegistry ] [host] Authentication finally failed for null from 10.56.112.13:53768
[2022-04-21T06:05:44,614][WARN ][o.o.s.a.BackendRegistry ] [host] Authentication finally failed for null from 10.56.112.13:53768
[2022-04-21T06:05:45,333][WARN ][o.o.s.a.BackendRegistry ] [host] Authentication finally failed for null from 10.56.112.13:53768
[2022-04-21T06:05:46,018][WARN ][o.o.s.a.BackendRegistry ] [host] Authentication finally failed for null from 10.56.112.13:53768
[2022-04-21T06:05:46,692][WARN ][o.o.s.a.BackendRegistry ] [host] Authentication finally failed for null from 10.56.112.13:53768
[2022-04-21T06:05:47,259][WARN ][o.o.s.a.BackendRegistry ] [host] Authentication finally failed for null from 10.56.112.13:53768
[2022-04-21T06:06:54,278][WARN ][o.o.s.a.BackendRegistry ] [host] Authentication finally failed for indexusersadfas from 10.56.112.13:53798
[2022-04-21T06:06:56,251][WARN ][o.o.s.a.BackendRegistry ] [host] Authentication finally failed for sdfas from 10.56.112.13:53798
[2022-04-21T06:06:58,352][WARN ][o.o.s.a.BackendRegistry ] [host] Authentication finally failed for asdfas from 10.56.112.13:53798
[2022-04-21T06:07:00,895][WARN ][o.o.s.a.BackendRegistry ] [host] Authentication finally failed for dddd from 10.56.112.13:53798
[2022-04-21T06:07:04,398][WARN ][o.o.s.a.BackendRegistry ] [host] Authentication finally failed for asdaa from 10.56.112.13:53798
[2022-04-21T06:07:49,291][WARN ][o.o.s.a.BackendRegistry ] [host] Authentication finally failed for asdaaasdfasdsa from 10.56.112.13:53798
[2022-04-21T06:07:51,024][WARN ][o.o.s.a.BackendRegistry ] [host] Authentication finally failed for 333 from 10.56.112.13:53798