I have a form based field that I want to protect with a maximum of 5 attempts.
the user must enter his email address, and I want to limit that number of attempts.
the Brute force feature seems to be dedicated to user/password forms or JSON forms, but not for regular web based form.
any idea ?
What is in a post request the difference between a user/password form and a regular web based form?
Format is the same... if you want to check if the email address is right, configure this field as a password in login page configuration...