Home > Enterprise >  Is there a penalty for too many failed Firebase Auth login attempts?
Is there a penalty for too many failed Firebase Auth login attempts?

Time:02-19

Is there a penalty by Firebase for too many failed email/password Auth login attempts? I have a mechanism in place to disable logins if the end user makes too many failed attempts at logging in but if they reinstall the app then the counter resets (since there is no way to identify physical devices in iOS, only app instances). Also, if users can merely reinstall apps to circumvent these forced timeouts (for too many failed login attempts) then what are we, as developers, really able to do about these brute force attacks?

CodePudding user response:

firebaser here

Firebase has built-in protection against abuse scenarios on many layers, though most of these are not documented. Since you're already taking basic measures against abuse, I'd recommend leaving the rest to Firebase.

Page link:https//www.codepudding.com/Enterprise/306824.html

Prev:Firestore, should we avoid using value type null?
Next:Firebase Realtime Database wait until the data is retrieved
  • Related

About Us:  Contact Us      Terms of Service       Privacy Policy

Copyright © 2010-2023,Powered By CodePudding