[CDB] Failed logins

A place for Extension Authors to post and receive feedback on Extensions still in development. No Extensions within this forum should be used within a live environment!
Suggested Hosts
Forum rules
READ: phpBB.com Board-Wide Rules and Regulations

IMPORTANT: Extensions Development rules

IMPORTANT FOR NEEDED EVENTS!!!
If you need an event for your extension please read this for the steps to follow to request the event(s)
User avatar
tas2580
Registered User
Posts: 295
Joined: Wed May 30, 2007 1:56 am
Location: Stuttgart, Germany
Contact:

[CDB] Failed logins

Post by tas2580 » Sun Jan 04, 2015 1:53 am

Image

Extension Name: Failed logins
Author: tas2580

Extension Description:
If a user try to login and the login fails, this extension creates an entry in the user log. Also on the next login the user will see how much logins failed since his last login.

Extension Version: 1.1.0 RC1

Extension Download: https://tas2580.net/downloads/phpbb-failed-logins/

Github Repository: https://github.com/failedlogins

Image
Last edited by tas2580 on Sat Oct 03, 2015 12:44 pm, edited 13 times in total.

User avatar
Wolfsblvt
Registered User
Posts: 632
Joined: Sun Oct 26, 2014 9:12 pm
Location: Solingen, Germany
Name: Clemens H.
Contact:

Re: [DEV] Failed logins

Post by Wolfsblvt » Sun Jan 04, 2015 2:12 am

A suggestion that would be cool:
If you successfully login, you will get displayed how much failed logins there were between your last successfull login and now.
That's what I get from several other sites, and that would be cool, cause you can see if someone other is trying to get access to your account.
If you have a specific extension request and you are willing to pay for, you can write me a PM.
My extensions (Trending: @Mention SystemAdvanced PollsUser Online Time)

»Du kamst zu uns. Deine Stimme kam. Du zeigtest uns die Sterne. Sie funkelten. Wir konnten sehen.«

User avatar
draky
Registered User
Posts: 245
Joined: Tue Dec 10, 2002 2:04 pm
Location: France
Name: Gilles W.
Contact:

Re: [DEV] Failed logins

Post by draky » Sun Jan 04, 2015 8:18 am

And what about sending an e-mail to an user if someone tried to login with his account ident ?
Can be enabled in UCP, and boardwide in ACP :)

User avatar
Walther
Registered User
Posts: 265
Joined: Fri Jul 09, 2004 5:21 pm
Location: The Netherlands

Re: [DEV] Failed logins

Post by Walther » Sun Jan 04, 2015 10:13 am

Make it optional to create an entry on succesfull login's too, and you have the much requested yet to be made Log Connections mod/extension. :P

User avatar
Webwatcher_eu
Registered User
Posts: 102
Joined: Tue Nov 25, 2014 10:59 am
Contact:

Re: [DEV] Failed logins

Post by Webwatcher_eu » Sun Jan 04, 2015 10:16 am

draky wrote:And what about sending an e-mail to an user if someone tried to login with his account ident ?
Can be enabled in UCP, and boardwide in ACP :)
not a good idea -if i like to spam i can try it 1000 times and always the user gets mail....

User avatar
draky
Registered User
Posts: 245
Joined: Tue Dec 10, 2002 2:04 pm
Location: France
Name: Gilles W.
Contact:

Re: [DEV] Failed logins

Post by draky » Sun Jan 04, 2015 10:26 am

Maybe a daily mail only.

User avatar
Webwatcher_eu
Registered User
Posts: 102
Joined: Tue Nov 25, 2014 10:59 am
Contact:

Re: [DEV] Failed logins

Post by Webwatcher_eu » Sun Jan 04, 2015 10:53 am

hmm mailing is alwasy not the best way (spam) a list in ACP can help - so the suer can check self

also there is no control/check about logins with correct usernames and names where are not stored in database

User avatar
Webwatcher_eu
Registered User
Posts: 102
Joined: Tue Nov 25, 2014 10:59 am
Contact:

Re: [DEV] Failed logins

Post by Webwatcher_eu » Sun Jan 04, 2015 10:56 am

better german translation:

'TRY_TO_LOGIN_FAIL' => 'Die Anmeldung des Benutzers: <b>%s</b> ist fehlgeschlagen.',

User avatar
Raul [ThE KuKa]
Jr. Extension Validator
Posts: 3760
Joined: Mon Dec 08, 2003 9:24 pm
Location: Spain
Name: Raul Arroyo
Contact:

Re: [DEV] Failed logins

Post by Raul [ThE KuKa] » Sun Jan 04, 2015 11:05 am

Hi tas2580, nice work but I see a small error.

You use: "tas2580/failed_logins"

You can't use underscore, dot, comma, etc. in extension name. ;)

Use this please: "tas2580/failedlogins"

Best regards.
If you like my styles, translations, etc. and want to show some appreciation, then feel free to Donate with Image
phpBB International Support Team (Spanish - Español) :flag_es: Online Since 2003
🎨phpBB Professional Premium Themes🔥
Author Translations (Spanish - Spain) :two_hearts:

:warning: I don't support those without the copyright Spanish translation. :warning:

User avatar
Webwatcher_eu
Registered User
Posts: 102
Joined: Tue Nov 25, 2014 10:59 am
Contact:

Re: [DEV] Failed logins

Post by Webwatcher_eu » Sun Jan 04, 2015 7:53 pm

can you also log the used password?

so it looks like

'TRY_TO_LOGIN_FAIL' => 'Die Anmeldung des Benutzers: <b>%s</b> ist fehlgeschlagen - Passwort: <b>%s</b>',

User avatar
John P
Registered User
Posts: 1232
Joined: Mon Jan 21, 2008 3:55 pm
Location: Netherlands
Name: John
Contact:

Re: [DEV] Failed logins

Post by John P » Sun Jan 04, 2015 8:32 pm

It would be much easier if the event was before the LOGIN_SUCCESS switch as asked at area 51 some time ago. Put also the result in the event and we can really do something with this event.
Image
Webhosting, Custom MODs, Technical management, MOD installation and Webdesign

User avatar
tas2580
Registered User
Posts: 295
Joined: Wed May 30, 2007 1:56 am
Location: Stuttgart, Germany
Contact:

Re: [DEV] Failed logins

Post by tas2580 » Sun Jan 04, 2015 9:47 pm

I have made a small update.
Like the suggestion from Wolfsblvt now the number of failed logins will be displayed to the user. Also I have renamed the extension folder thanks Raul [ThE KuKa].

I dont think that password loging is a good idea because if a user type in the wrong username you can see his password. and so or so never safe passwords without hashing.

With the events its a little weird at now because there is no event for failed logins in 3.1.2, but in 3.1.3 there will be one and when 3.1.3 is out i will change this.

User avatar
Webwatcher_eu
Registered User
Posts: 102
Joined: Tue Nov 25, 2014 10:59 am
Contact:

Re: [DEV] Failed logins

Post by Webwatcher_eu » Sun Jan 04, 2015 9:51 pm

tas2580 wrote:
I dont think that password loging is a good idea because if a user type in the wrong username you can see his password. and so or so never safe passwords without hashing.
admin can allways login as user... but ok if you think that is a security issue

User avatar
tas2580
Registered User
Posts: 295
Joined: Wed May 30, 2007 1:56 am
Location: Stuttgart, Germany
Contact:

Re: [DEV] Failed logins

Post by tas2580 » Sun Jan 04, 2015 9:58 pm

Yes as admin you can login as a user, but you can't see his password. Maybe some users use the same password on different websites and then it would be not good if you see there password in the log.

User avatar
david63
Jr. Extension Validator
Posts: 13154
Joined: Thu Dec 19, 2002 8:08 am
Location: Lancashire, UK
Name: David Wood
Contact:

Re: [DEV] Failed logins

Post by david63 » Sun Jan 04, 2015 10:01 pm

How can an admin log in as a user?
David
Remember: You only know what you know and - you don't know what you don't know!
My CDB Contributions | How to install an extension
I will not be accepting translations for any of my extensions in Github - please post any translations in the appropriate topic.
No support requests via PM or email as they will be ignored

Locked

Return to “Extensions in Development”

Who is online

Users browsing this forum: accs-p, gio73 and 9 guests