-
# Ability to limit rate on login API
A malicious user tries to brute-force the login form and login API using thousands of requests.
## Implementation suggestion
Study the optional Capcha on …
-
Devise generates two tokens. One for database, one for email only.
Barong sends event with database token that is not available for emails.
We need to handle devise reset password token generator an…
-
For some reason the call to `phones#create` failed after the phone number had already been created, which redirected back to `phones#new`. Any subsequent attempt to re-input the same number and try ag…
-
```
[barong-barong-7d9574db95-72nvk] F, [2018-04-16T14:47:58.198982 #1] FATAL -- : [32f65425-1b8a-4bcb-9786-8b09787930f7]
[barong-barong-7d9574db95-72nvk] F, [2018-04-16T14:47:58.199147 #1] FATAL -…
-
-
From version 1.8 Barong supports dynamic levels feature, which means what levels are defined in the process of installation. So now we can change order of levels, requirements needed for getting each …
-
-
how can I understand that the user has already uploaded a passport and he is waiting for verification or he did not download anything?
for example there is a form of verification in which I passed th…
-
At the moment, when I pass verification after each step, I need to make an additional request to update the user state.
for example,I registered and my initial level is 1. then I passed the phone num…
-
I am tired to see all over the code ENV.fetch('SILLY_NAME', 'strange default')
We need to centralize them all into a shared simple class.
We can call it Configuration or AppConfig
Similar to fi…