Rate limit on caddy.community preventing login with 2FA

This is a meta issue, so I haven’t followed the template, but I am not sure where else to report it.

I have 2FA enabled on my account. After I submit my password, submitting the 2FA code is rejected with a 429 error, “You’ve performed this action too many times. Please wait 58 seconds before trying again.”

If I wait that long (and make sure the code is still valid), it’s accepted. But it looks like the rate limiting has been set a bit too aggressively.

Sorry. We’ve been battling aggressive spammers, and the rate-limit is one of the enacted defenses. I’ll try to tweak the value.

Understood, unfortunate that Discourse is using the same endpoint for both the login and the 2FA. Thanks.

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.