odwide
February 4, 2024, 8:15pm
1
How come the HTTP integration doesn’t support specifying a period to reset the login_attempts_threshold counter or the ban timeout?
Digging in the code, it appears that the implementation is a simple failed login counter, which means that it would reset only by restarting HA.
tom_l
February 5, 2024, 2:58am
2
Does not look like there is any interest in changing the integration. There are a couple of old feature requests that have different proposed solutions that never got actioned:
I have been having some trouble lately where my phone’s IP address gets banned (not sure why) and it requires manually editing the ip_bans.yaml and removing it’s IP and of course doing a complete reboot which is a pain because the ZWave network takes forever to finish it’s setup.
Currently in the HTTP integration , you are able to set ip_ban_enabled, this is great… except the iOS Companion app seems to occasionaly fail to authenicate for some reason, and this causes my devices (phones / tablets) to stop working until I realise, after which I need to login via a device which has hopefully not been banned and clear the IP’s listed in the ip_ban.yaml.
Ideally, I’d like to whitelist my local subnet to ensure that my local devices are never locked out, even if they for some r…
stevemann
February 5, 2024, 3:02am
3
So, post it in “Feature Requests”.I suspect that it isn’t a high-priority need since the vast majority of us have 0nly one user.
odwide
February 5, 2024, 3:35am
4
In fact it looks like this is cold in the back burner.