Failed login attempts

Failed logins are recorded when the provided password for a registered user account does not match the password stored in the ACL.

Account verification will be removed if the number of failed logins reaches the maximum number of allowed failed login attempts (default 3).

The maximum number for failed login attempts can be set in the FAILED_ATTEMPTS environment setting.

A new verification request can be generated with the registration / password reset endpoint.