PHPackages rz/user-security-bundle - PHPackages - PHPackages [Skip to content](#main-content)[PHPackages](/)[Directory](/)[Categories](/categories)[Trending](/trending)[Leaderboard](/leaderboard)[Changelog](/changelog)[Analyze](/analyze)[Collections](/collections)[Log in](/login)[Sign up](/register) 1. [Directory](/) 2. / 3. [Security](/categories/security) 4. / 5. rz/user-security-bundle AbandonedArchivedSymfony-bundle[Security](/categories/security) rz/user-security-bundle ======================= Fork of CCDN User Security Bundle 1.0.0(11y ago)08582MITPHPPHP >=5.3.3 Since Mar 12Pushed 9y agoCompare [ Source](https://github.com/rzproject/UserSecurityBundle)[ Packagist](https://packagist.org/packages/rz/user-security-bundle)[ Docs](http://github.com/rzproject/RzUserSecurityBundle)[ RSS](/packages/rz-user-security-bundle/feed)WikiDiscussions 2.0.0 Synced 1mo ago READMEChangelogDependencies (3)Versions (8)Used By (0) UserSecurityBundle ================== [](#usersecuritybundle) #### Fork of CCDNUserSecurityBundle: [](#fork-of-ccdnusersecuritybundle) - Version >= 2.0 will no longer require CCDNUserSecurityBundle #### FROM CCDNUserSecurityBundle [](#from-ccdnusersecuritybundle) This bundle is for the symfony framework and requires Symfony ~2.4 and PHP >=5.3.2 This project uses Doctrine >=2.1 and so does not require any specific database. Description: ------------ [](#description) Use this bundle to mitigate brute force dictionary attacks on your sites. Excessive failed logins will force users to recover their account, additional attempts to circumvent that will block the user from specified webpages by returning an HTTP 500 response on all specified routes. ### You can use this bundle with any User Bundle you like. [](#you-can-use-this-bundle-with-any-user-bundle-you-like) > This bundle does *NOT* provide user registration/login/logout etc features. This bundle is for brute force dictionary attack mitigation only. Use this bundle in conjunction with your preferred user bundle. Features. --------- [](#features) SecurityBundle Provides the following features: 1. Prevent brute force attacks being carried out by limiting number of login attempts: 1. When first limit is reached, redirect to an account recovery page. 2. When secondary limit is reached, return an HTTP 500 status to block login pages etc. 2. All limits are configurable. 3. Routes to block are configurable. 4. Route for account recovery page is configurable. 5. Decoupled from UserBundle specifics. You can use this with any user bundle you like. 6. Redirect user to last page they were on upon successful login. 7. Redirect user to last page they were on upon successful logout. Documentation. -------------- [](#documentation) Documentation can be found in the `Resources/doc/index.md` file in this bundle: [Read the Documentation](http://github.com/rzproject/UserSecurityBundle/blob/2.0.0/Resources/doc/index.md). Installation. ------------- [](#installation) All the installation instructions are located in [documentation](http://github.com/rzproject/UserSecurityBundle/blob/2.0.0/Resources/doc/install.md). License. -------- [](#license) This software is licensed under the MIT license. See the complete license file in the bundle: ``` Resources/meta/LICENSE ``` [Read the License](http://github.com/rzproject/UserSecurityBundle/blob/2.0.0/Resources/meta/LICENSE). About. ------ [](#about) [UserSecurityBundle](http://github.com/rzproject/UserSecurityBundle) is free software from [rzproject](http://rzproject.github.io). Reporting an issue or feature request. -------------------------------------- [](#reporting-an-issue-or-feature-request) Issues and feature requests are tracked in the [Github issue tracker](http://github.com/rzproject/UserSecurityBundle/issues). Back to: [rzproject](http://rzproject.github.io) ### Health Score 30 — LowBetter than 64% of packages Maintenance20 Infrequent updates — may be unmaintained Popularity15 Limited adoption so far Community10 Small or concentrated contributor base Maturity63 Established project with proven stability Bus Factor1 Top contributor holds 89.2% of commits — single point of failure How is this calculated?**Maintenance (25%)** — Last commit recency, latest release date, and issue-to-star ratio. Uses a 2-year decay window. **Popularity (30%)** — Total and monthly downloads, GitHub stars, and forks. Logarithmic scaling prevents top-heavy scores. **Community (15%)** — Contributors, dependents, forks, watchers, and maintainers. Measures real ecosystem engagement. **Maturity (30%)** — Project age, version count, PHP version support, and release stability. ### Release Activity Cadence Every ~84 days Recently: every ~97 days Total 7 Last Release 3579d ago Major Versions 1.1.2.x-dev → 2.0.0.x-dev2016-07-30 ### Community Maintainers ![](https://www.gravatar.com/avatar/2629aaa120706e711ccaed6a2dd7879cbed9ee74799eccb0db9bf28255ba7e90?d=identicon)[mellzamora](/maintainers/mellzamora) --- Top Contributors [![rmzamora](https://avatars.githubusercontent.com/u/350139?v=4)](https://github.com/rmzamora "rmzamora (33 commits)")[![andacu](https://avatars.githubusercontent.com/u/12728956?v=4)](https://github.com/andacu "andacu (4 commits)") --- Tags securityuserloginRz Projectbrute forcedictionary attack ### Embed Badge ![Health badge](/badges/rz-user-security-bundle/health.svg) ``` [![Health](https://phpackages.com/badges/rz-user-security-bundle/health.svg)](https://phpackages.com/packages/rz-user-security-bundle) ``` ### Alternatives [codeconsortium/ccdn-user-security-bundle CCDN User Security Bundle 60100.7k](/packages/codeconsortium-ccdn-user-security-bundle)[maba/gentle-force-bundle Symfony bundle that integrates gentle-force library for limiting both brute-force attempts and ordinary requests, using leaky/token bucket algorithm, based on Redis 53517.6k1](/packages/maba-gentle-force-bundle)[maba/gentle-force Library for limiting both brute-force attempts and ordinary requests, using leaky/token bucket algorithm, based on Redis 45591.0k2](/packages/maba-gentle-force)[anyx/login-gate-bundle Checking brute force attacks on site 59339.5k](/packages/anyx-login-gate-bundle)[websoftwares/throttle Ban identifier after certain amount of requests in a given timeframe. 1249.7k](/packages/websoftwares-throttle) PHPackages © 2026 [Directory](/)[Categories](/categories)[Trending](/trending)[Changelog](/changelog)[Analyze](/analyze)