Bug Report: Rate Limiting Issue on Signup #71
Description
Describe the bug
Users are incorrectly receiving "Too many authentication attempts from this IP, please try again later" error messages when attempting to sign up for the first time. The rate limiting system is blocking legitimate registration attempts, preventing new users from creating accounts.
To Reproduce
Steps to reproduce the behavior:
1.Go to FintechForge signup page
2.Enter valid username (e.g., 'sahilsanap101')
3.Enter valid email (e.g., '[email protected]')
4.Enter secure password
5.Click 'Sign Up' button
6.See error: "Too many authentication attempts from this IP, please try again later"
Expected behavior
First-time signup attempts from new IP addresses should be allowed to create accounts without being blocked by rate limiting. The rate limiting should only apply to repeated failed authentication attempts, not legitimate registration attempts.
Screenshots
If applicable, add screenshots to help explain your problem.
Desktop (please complete the following information):
- OS: Windows 11, macOS Ventura
- Browser: Chrome, Firefox, Safari
- Version: Chrome 119, Firefox 119, Safari 17
Smartphone (please complete the following information):
- Device: iPhone 14, Samsung Galaxy S23
- OS: iOS 17, Android 14
- Browser: Safari, Chrome
- Version: Safari 17, Chrome 119
Additional context
1.The issue occurs consistently on first attempt from new IP addresses
2.Affects both signup and potentially login functionality
3.Rate limiting window appears to be too aggressive (15 minutes)
4.No distinction between signup and login attempts in current implementation
5.Shared IP environments (corporate networks, universities) are disproportionately affected