chore: TwoFa restriction after multiple failed attempts after logging in

[Riddhiagrawal001]

Type of Change

• [ ] Bugfix
• [ ] New feature
• [ ] Enhancement
• [ ] Refactoring
• [ ] Dependency updates
• [ ] Documentation
• [ ] CI/CD

Description

The maximum number of incorrect attempts allowed after logging in has been introduced. Previously, there was no limit, but now after exceeding the limit, there will be a cool-down period of 5 minutes for TOTP and 10 minutes for recovery codes. This will come when user tries to change its totp or regenerate-recovery code

Max attempts reached for totp :

Max attempts reached for recovery code :

If both recovery code and totp is reached :

Motivation and Context

• Setup totp for a user

• Go to profile section and change totp

• In the verify modal , try wrong totp for 4 times after 5th time the above max attempts reached for totp modal should appear

• Max attempts reached for recovery-code should give the above max attempts reached for recovery code modal should appear

• Same should happen for regenerate recovery code

How did you test it?

Where to test it?

• [X] INTEG
• [X] SANDBOX
• [ ] PROD

Checklist

• [X] I ran npm run re:build
• [X] I reviewed submitted code
• [ ] I added unit tests for my changes where possible

[semanticdiff-com[bot]]

Review changes with