As one of my apps is internet facing I'm wanting to disable logins to accounts if they get the password wrong for more than 3 times between successful logins.
I've written app logic, but that relies on local storage to get around someone reloading the site. The problem with local storage is that this can be cleared or reset.....
I don't want to write something to the user's DB table as this means I have to embed the master API key in the app, and that's a bad idea for public facing apps.
Is there a way around this that is secure?
If not, is there a way you can implement this into Appery DB?