django django-rest-framework django-authentication

Django axes resets cool off the moment another failed login occurs

Currently, Django axes will reset the cool-off timer to the latest time a failed login attempt happened.

For example: After 3 failed logins, axes will lock out the user account at 10 am for 15 minutes. If I attempt a 4th time at 10:10 am, it will extend the lockout to 10:25 am.

Is there any way to modify axes so that it will not reset the cool off time on any subsequent wrong login?

Solution

This was fixed in the 5.32 release of django-axes yesterday:

https://github.com/jazzband/django-axes/pull/865

To get the behavior you're looking for, set AXES_RESET_COOL_OFF_ON_FAILURE_DURING_LOCKOUT to False in your django settings file.

Python mock to create a fake object return a dictionary when any of its attributes are used
django managers vs proxy models
Generating a non-sequential ID/PK for a Django Model
Celery infinite retry pattern issue
django select_related - when to use it
How should I set my DATABASE_URL?
How can I use composite primary keys in django?
How do I get the object if it exists, or None if it does not exist in Django?
Can I define an Alias to a foreign field in Django?
Django ManytoManyField and widgets
How to handle redirect for login_required in htmx partial view?
How to Paginate within an action in Django Rest Framework
Django imported database -- am I doing it wrong? Is Django not fit to purpose here?
Cannot open include file: 'mysql.h': No such file or directory
How do you change a model name when it shows up in Django admin?
How to translate a model label in Django Admin?
Dynamic File Path in Django
Generate PDF with WeasyPrint having common header/footer and pagination
DeleteView marking inactive instead deleting?
GeoDjango, difference between dwithin and distance_lt?
When we should use "db_index=True" in Django?
Why the get request won't get data from connected models?
Permission denied /media files Django Nginx setup
Django 5.1 - UserCreationForm won't allow empty passwords
Django migration from 3.1 to 3.2 error while copying models instances
Install mod_wsgi on Ubuntu with Python 3.6, Apache 2.4, and Django 1.11
Apache2 mod_wsgi, 500 Internal Server Error
"MultipleObjectsReturned or ObjectDoesNotExist error when accessing 'google' provider in Django-allauth"
How can I allow django admin to set a field to NULL?
Importing model classes from other apps in Django with cicular import Problem