Skip to main content
Help improve PyPI by participating in a 5-minute user interface survey!


Project Description

A project that uses overrides the Django authentication function to track
failed login attempts on a per-user basis. Code is based on BruteBuster
( but is simplified because of
the dropped requirement of tracking IP addresses. Django-Axes is another
source of inspiration (

1. Add failedloginblocker to your INSTALLED_APPS list in
2. Add failedloginblocker.middleware.FailedLoginBlockerMiddleware to
3. Run 'python syncdb'
4. Restart your web server, if necessary.

Settings (set in if you want to override the defaults)
FLB_MAX_FAILURES - Number of failures to allow before blocking logins.
Default is set to 5.
FLB_BLOCK_INTERVAL - The interval from the last failed attempt to determine
whether the current login attempt is to count as a failure.
By default, clears the failed logins if this interval
has expired.
Default is set to 1440 minutes (or 1 day).

Release history Release notifications

This version
History Node


Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Filename, size & hash SHA256 hash help File type Python version Upload date
django-failedloginblocker-1.0.1.tar.gz (3.8 kB) Copy SHA256 hash SHA256 Source None Aug 16, 2013

Supported by

Elastic Elastic Search Pingdom Pingdom Monitoring Google Google BigQuery Sentry Sentry Error logging CloudAMQP CloudAMQP RabbitMQ AWS AWS Cloud computing Fastly Fastly CDN DigiCert DigiCert EV certificate StatusPage StatusPage Status page