We are still getting ready to go live. One of our devs couldn’t log on this morning - ‘too many failed logon attempts’ - none of the rest of us were able to find where to unlock him, resetting the password made no difference, and we couldn’t find where the time out period was set, i.e., how long he would have to wait before trying again, or how we might change this. Would anybody know?
From what I know this is standard symfony, so you should be able to override LOGIN_THROTTLING_INTERVAL on .env.local in case you want to reduce the time. Or change LOGIN_THROTTLING_MAX_ATTEMPTS if you want to increase the max attempts number.