Uploaded image for project: 'Dev - Nexus Repo'
  1. Dev - Nexus Repo
  2. NEXUS-24102

Provide Indication of Last Successful or Failed Login

    Details

    • Type: Improvement
    • Status: Open
    • Priority: Major
    • Resolution: Unresolved
    • Affects Version/s: None
    • Fix Version/s: None
    • Component/s: Security, UI
    • Labels:
      None

      Description

      Description

      The application does not show the user the time, date, or source IP address of the last time they logged into the application. Showing this information to the user is a best practice that allows them to discover and report possible account compromise. Users that check this data can compare the last made account login attempt time with the last time they tried to log in. If there is a discrepancy, they can alert the application’s security administration team.

      Recommendations

      Provide users with an ability to detect possible compromise of their account by displaying the timestamp and IP address information related to their last login attempt.

        Attachments

          Activity

            People

            Assignee:
            Unassigned Unassigned
            Reporter:
            mprescott Michael Prescott
            Last Updated By:
            Michael Prescott Michael Prescott
            Votes:
            0 Vote for this issue
            Watchers:
            4 Start watching this issue

              Dates

              Created:
              Updated:
              Date of First Response:

                tigCommentSecurity.panel-title