Skip to content

E1: Add rate limiting to auth endpoints #89

Open
Open
E1: Add rate limiting to auth endpoints#89
Labels
identity-authASP.NET Core Identity migrationsize:MMedium task (3-5 days)
@davidortinau

Description

@davidortinau
davidortinau
opened on Mar 15, 2026

Summary

Protect auth endpoints from brute force attacks.

Tasks

  • Limit login attempts (5/min per IP)
  • Limit registration (10/hr per IP)
  • Use ASP.NET Core rate limiting middleware
  • Return 429 Too Many Requests

Depends on: D4

Metadata

Metadata

Assignees

No one assigned

    Labels

    identity-authASP.NET Core Identity migrationsize:MMedium task (3-5 days)

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions