[Bug 20717] New: Add captcha on OPAC user login screen.
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=20717 Bug ID: 20717 Summary: Add captcha on OPAC user login screen. Change sponsored?: --- Product: Koha Version: master Hardware: All OS: All Status: NEW Severity: enhancement Priority: P5 - low Component: OPAC Assignee: oleonard@myacpl.org Reporter: amitddng135@gmail.com QA Contact: testopia@bugs.koha-community.org Add captcha on OPAC user login screen. -- You are receiving this mail because: You are watching all bug changes.
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=20717 Amit Gupta <amitddng135@gmail.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |ASSIGNED -- You are receiving this mail because: You are watching all bug changes.
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=20717 Amit Gupta <amitddng135@gmail.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Assignee|oleonard@myacpl.org |amitddng135@gmail.com CC| |amit.gupta@informaticsgloba | |l.com -- You are receiving this mail because: You are watching all bug changes.
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=20717 Katrin Fischer <katrin.fischer@bsz-bw.de> changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |katrin.fischer@bsz-bw.de --- Comment #1 from Katrin Fischer <katrin.fischer@bsz-bw.de> --- Hi Amit, can you please make this optional and maybe off by default? Maybe it would also be worth looking into other options? Captchas don't have a good reputation for causing problems with accessibility. What's the problem you experience? -- You are receiving this mail because: You are watching all bug changes.
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=20717 --- Comment #2 from Amit Gupta <amitddng135@gmail.com> --- (In reply to Katrin Fischer from comment #1)
Hi Amit, can you please make this optional and maybe off by default? We are planning to do via System preference.
Maybe it would also be worth looking into other options? Captchas don't have a good reputation for causing problems with accessibility.
What's the problem you experience? Due to some security related concern.
-- You are receiving this mail because: You are watching all bug changes.
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=20717 --- Comment #3 from Katrin Fischer <katrin.fischer@bsz-bw.de> --- Maybe it could be an option to implement a timeout instead. Block login for x minutes after z unsuccessful attempts? -- You are receiving this mail because: You are watching all bug changes.
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=20717 --- Comment #4 from Owen Leonard <oleonard@myacpl.org> --- (In reply to Amit Gupta from comment #2)
(In reply to Katrin Fischer from comment #1)
What's the problem you experience? Due to some security related concern.
A concern is different than a problem. If there is an existing problem with specific symptoms please describe them. Otherwise I think it's important to talk about what kind of potential problem a captcha is intended to solve. -- You are receiving this mail because: You are watching all bug changes.
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=20717 Katrin Fischer <katrin.fischer@bsz-bw.de> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|ASSIGNED |RESOLVED Resolution|--- |WONTFIX --- Comment #5 from Katrin Fischer <katrin.fischer@bsz-bw.de> --- I think a captcha on login would be quite unusual, but we have other options now to stop people trying to get in, like blocking the account after several wrong attempts. And another solution would be to implement 2FA for the OPAC. Closing as WONTFIX. -- You are receiving this mail because: You are watching all bug changes.
participants (1)
-
bugzilla-daemon@bugs.koha-community.org