Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

docs: minor fixes #2010

Merged
merged 3 commits into from
Nov 30, 2021
Merged
Show file tree
Hide file tree
Changes from 2 commits
Commits
File filter

Filter by extension

Filter by extension

Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
Original file line number Diff line number Diff line change
Expand Up @@ -3,8 +3,8 @@ id: sign-in-with-github-google-facebook-linkedin
title: Sign in with GitHub, GitLab, Google, Facebook, LinkedIn, Microsoft ...
---

In this document we will take a look at setting up "Sign in with GitHub" using
Ory Kratos.
In this document we will take a look at setting up "Social Sign In" with
different providers using Ory Kratos.

Run the [Quickstart](../quickstart.mdx) with Docker Compose:

Expand Down
10 changes: 3 additions & 7 deletions docs/versioned_docs/version-v0.8/concepts/security.mdx
Original file line number Diff line number Diff line change
Expand Up @@ -385,7 +385,7 @@ Allow the user to show the secret in the UI:
:::warning

This feature is a work in progress and is tracked as
[kratos#133](https://github.com/ory/kratos/issues/138).
[kratos#138](https://github.com/ory/kratos/issues/138).
vinckr marked this conversation as resolved.
Show resolved Hide resolved

:::

Expand All @@ -395,17 +395,13 @@ systems. The goal of such an attack is to send out so many emails or SMS, that
your reputation worsens (spam filters) or you're faced with massive costs
(carrier fees).

CAPTCHA renders these attacks either very difficult or impossible. Ory Kratos
has CAPTCHA support built-in. Ory Kratos will prompt the user to complete a
CAPTCHA in the following scenarios:
CAPTCHA renders these attacks either very difficult or impossible.
CAPTCHA will be required in the following scenarios:

- The user tries to register more than one account within 72 hours.
- The user failed provide valid credentials for the third time within 12 hours.
- The user tries to recover their account for the second time within 72 hours.

For integration guidelines, please check the individual flow's (registration,
login, account recovery) integration documentation.

## Bruteforce Attacks

Will be addressed in a future release.
Expand Down
Original file line number Diff line number Diff line change
Expand Up @@ -3,7 +3,7 @@ id: sign-in-with-github-google-facebook-linkedin
title: Sign in with GitHub, GitLab, Google, Facebook, LinkedIn, Microsoft ...
---

In this document we will take a look at setting up "Sign in with GitHub" using
In this document we will take a look at setting up "Social Sign In" with different providers using
Ory Kratos.

Run the [Quickstart](../quickstart.mdx) with Docker Compose:
Expand Down