Uploaded image for project: 'OpenMRS Core'
  1. OpenMRS Core
  2. TRUNK-1334

Need an option to disable IP-based lockout for failed logins

    XMLWordPrintable

    Details

    • Type: New Feature
    • Status: Closed
    • Priority: Must
    • Resolution: Fixed
    • Affects Version/s: None
    • Fix Version/s: OpenMRS 1.5.0
    • Component/s: None
    • Labels:
      None

      Description

      In our setup at Rwinkwavu Hospital in Rwanda, our OpenMRS server is in the DMZ on the other side of a router. As a result all client machines appear to be on the same IP address. So if someone messes up their password, then everyone at the hospital is locked out.

      We need a setting to control whether the lock out is by username or by IP address.

      I think this should be a global property. Any disagreements?

      Rwanda requests that we do this in the sync branch ASAP, because they cannot do any big new user trainings until we have this fixed.

        Attachments

          Activity

            People

            Assignee:
            bwolfe Ben Wolfe
            Reporter:
            darius Darius Jazayeri
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

              Dates

              Created:
              Updated:
              Resolved: