search

CuriousLearner / django-phone-verify

A Django app to support phone number verification using security code / One-Time-Password (OTP) sent via SMS.
https://www.sanyamkhurana.com/django-phone-verify/
GNU General Public License v3.0
258 stars 61 forks source link

Discard session token after n failed attempts #100

Open ejain opened 2 months ago

ejain commented 2 months ago

Should have some protection against brute-forcing security codes, especially since TOKEN_LENGTH can be set to a low value like 4...