A Django app to support phone number verification using security code / One-Time-Password (OTP) sent via SMS.
GNU General Public License v3.0
258
stars
61
forks
source link
Discard session token after n failed attempts #100
Open
ejain opened 2 months ago
Should have some protection against brute-forcing security codes, especially since
TOKEN_LENGTH
can be set to a low value like 4...