Locking Admin users after consecutive failed attempts is a good practice to prevent Brute Force password detection.
This adds the necessary backbone (controller, routes and email template) so that using the lockable strategy with the extension requires minimal work over it.
I added the unlockable controllers only on the Admin side as I believe it's the most useful / pressing.
Thankfully the migrations and translations were already included which made this change pretty slim!
Locking Admin users after consecutive failed attempts is a good practice to prevent Brute Force password detection.
This adds the necessary backbone (controller, routes and email template) so that using the lockable strategy with the extension requires minimal work over it.
I added the
unlockablecontrollers only on the Admin side as I believe it's the most useful / pressing. Thankfully the migrations and translations were already included which made this change pretty slim!