[CDB] Failed logins

A place for Extension Authors to post and receive feedback on Extensions still in development. No Extensions within this forum should be used within a live environment!
Get Involved
Forum rules
READ: phpBB.com Board-Wide Rules and Regulations

IMPORTANT: Extensions Development rules

IMPORTANT FOR NEEDED EVENTS!!!
If you need an event for your extension please read this for the steps to follow to request the event(s)
User avatar
tas2580
Registered User
Posts: 295
Joined: Wed May 30, 2007 1:56 am
Location: Stuttgart, Germany

[CDB] Failed logins

Post by tas2580 »

Image

Extension Name: Failed logins
Author: tas2580

Extension Description:
If a user try to login and the login fails, this extension creates an entry in the user log. Also on the next login the user will see how much logins failed since his last login.

Extension Version: 1.1.0 RC1

Extension Download: https://tas2580.net/downloads/phpbb-failed-logins/

Github Repository: https://github.com/failedlogins

Image
Last edited by tas2580 on Sat Oct 03, 2015 12:44 pm, edited 13 times in total.
User avatar
Wolfsblvt
Registered User
Posts: 634
Joined: Sun Oct 26, 2014 9:12 pm
Location: Solingen, Germany

Re: [DEV] Failed logins

Post by Wolfsblvt »

A suggestion that would be cool:
If you successfully login, you will get displayed how much failed logins there were between your last successfull login and now.
That's what I get from several other sites, and that would be cool, cause you can see if someone other is trying to get access to your account.
If you have a specific extension request and you are willing to pay for, you can write me a PM.
My extensions (Trending: @Mention SystemAdvanced PollsUser Online Time)

»Du kamst zu uns. Deine Stimme kam. Du zeigtest uns die Sterne. Sie funkelten. Wir konnten sehen.«
User avatar
draky
Registered User
Posts: 250
Joined: Tue Dec 10, 2002 2:04 pm
Location: France
Name: Gilles W.

Re: [DEV] Failed logins

Post by draky »

And what about sending an e-mail to an user if someone tried to login with his account ident ?
Can be enabled in UCP, and boardwide in ACP :)
User avatar
Walther
Registered User
Posts: 301
Joined: Fri Jul 09, 2004 5:21 pm
Location: The Netherlands

Re: [DEV] Failed logins

Post by Walther »

Make it optional to create an entry on succesfull login's too, and you have the much requested yet to be made Log Connections mod/extension. :P
User avatar
Webwatcher_eu
Registered User
Posts: 102
Joined: Tue Nov 25, 2014 10:59 am

Re: [DEV] Failed logins

Post by Webwatcher_eu »

draky wrote:And what about sending an e-mail to an user if someone tried to login with his account ident ?
Can be enabled in UCP, and boardwide in ACP :)
not a good idea -if i like to spam i can try it 1000 times and always the user gets mail....
User avatar
draky
Registered User
Posts: 250
Joined: Tue Dec 10, 2002 2:04 pm
Location: France
Name: Gilles W.

Re: [DEV] Failed logins

Post by draky »

Maybe a daily mail only.
User avatar
Webwatcher_eu
Registered User
Posts: 102
Joined: Tue Nov 25, 2014 10:59 am

Re: [DEV] Failed logins

Post by Webwatcher_eu »

hmm mailing is alwasy not the best way (spam) a list in ACP can help - so the suer can check self

also there is no control/check about logins with correct usernames and names where are not stored in database
User avatar
Webwatcher_eu
Registered User
Posts: 102
Joined: Tue Nov 25, 2014 10:59 am

Re: [DEV] Failed logins

Post by Webwatcher_eu »

better german translation:

'TRY_TO_LOGIN_FAIL' => 'Die Anmeldung des Benutzers: <b>%s</b> ist fehlgeschlagen.',
User avatar
Raul [ThE KuKa]
Style Customisations
Style Customisations
Posts: 11137
Joined: Mon Dec 08, 2003 9:24 pm
Location: Spain
Name: Raul Arroyo

Re: [DEV] Failed logins

Post by Raul [ThE KuKa] »

Hi tas2580, nice work but I see a small error.

You use: "tas2580/failed_logins"

You can't use underscore, dot, comma, etc. in extension name. ;)

Use this please: "tas2580/failedlogins"

Best regards.
All unsolicited PMs will be ignored.
:warning: Knowledge Base | Documentation | Board rules | phpBB Styles Rules & Policies | Styles Queue Stats :warning:


If you like my styles, translations, etc. and want to show some appreciation, then feel free to Donate.
:flag_es: phpBB Spain - Online Since 2003 :heart:


User avatar
Webwatcher_eu
Registered User
Posts: 102
Joined: Tue Nov 25, 2014 10:59 am

Re: [DEV] Failed logins

Post by Webwatcher_eu »

can you also log the used password?

so it looks like

'TRY_TO_LOGIN_FAIL' => 'Die Anmeldung des Benutzers: <b>%s</b> ist fehlgeschlagen - Passwort: <b>%s</b>',
User avatar
John P
Registered User
Posts: 1237
Joined: Mon Jan 21, 2008 3:55 pm
Location: Netherlands
Name: John

Re: [DEV] Failed logins

Post by John P »

It would be much easier if the event was before the LOGIN_SUCCESS switch as asked at area 51 some time ago. Put also the result in the event and we can really do something with this event.
Image
Webhosting, Custom MODs, Technical management, MOD installation and Webdesign
User avatar
tas2580
Registered User
Posts: 295
Joined: Wed May 30, 2007 1:56 am
Location: Stuttgart, Germany

Re: [DEV] Failed logins

Post by tas2580 »

I have made a small update.
Like the suggestion from Wolfsblvt now the number of failed logins will be displayed to the user. Also I have renamed the extension folder thanks Raul [ThE KuKa].

I dont think that password loging is a good idea because if a user type in the wrong username you can see his password. and so or so never safe passwords without hashing.

With the events its a little weird at now because there is no event for failed logins in 3.1.2, but in 3.1.3 there will be one and when 3.1.3 is out i will change this.
User avatar
Webwatcher_eu
Registered User
Posts: 102
Joined: Tue Nov 25, 2014 10:59 am

Re: [DEV] Failed logins

Post by Webwatcher_eu »

tas2580 wrote:
I dont think that password loging is a good idea because if a user type in the wrong username you can see his password. and so or so never safe passwords without hashing.
admin can allways login as user... but ok if you think that is a security issue
User avatar
tas2580
Registered User
Posts: 295
Joined: Wed May 30, 2007 1:56 am
Location: Stuttgart, Germany

Re: [DEV] Failed logins

Post by tas2580 »

Yes as admin you can login as a user, but you can't see his password. Maybe some users use the same password on different websites and then it would be not good if you see there password in the log.
User avatar
david63
Registered User
Posts: 20646
Joined: Thu Dec 19, 2002 8:08 am

Re: [DEV] Failed logins

Post by david63 »

How can an admin log in as a user?
David
Remember: You only know what you know and - you don't know what you don't know!

I now no longer support any of my extensions but they will start to become available here

Return to “Extensions in Development”