Release status: stable
|Description||Notify users of suspicious logins|
|Author(s)||Brian Wolff (Bawolfftalk)|
|Translate the LoginNotify extension if it is available at translatewiki.net|
|Check usage and version matrix.|
|Issues||Open tasks · Report a bug|
The LoginNotify extension notifies you when someone logs into your account. It can be configured to give warnings after a certain number of failed login attempts (The number is configurable, and can be different between unknown IPs/devices and known IPs/devices). It can also give Echo notices (which can also be emailed) for successful logins from IPs you don't normally use. It can optionally integrate into the CheckUser extension in order to determine if the login is from an IP address you don't normally use. It can also set a cookie to try and determine if the login is from a device you normally use.
This extension requires the Echo extension to be installed. This extension can optionally integrate with the CheckUser extension if it is installed, but does not require it.
- Download and place the file(s) in a directory called
- Add the following code at the bottom of your LocalSettings.php: Configure as required.
wfLoadExtension( 'LoginNotify' );
- Done – Navigate to Special:Version on your wiki to verify that the extension is successfully installed.
To users running MediaWiki 1.24 or earlier:
The instructions above describe the new way of installing this extension using
wfLoadExtension(). If you need to install this extension on these earlier versions (MediaWiki 1.24 and earlier), instead of
wfLoadExtension( 'LoginNotify' );, you need to use:
Once LoginNotify is installed, whenever a user logs into the wiki, their IP subnet is cached on the server and a cookie named
loginnotify_prevlogins is stored in their browser.
These tokens, optionally along with CheckUser tables, are used to see if subsequent logins are coming from a known IP/device.
Parameters that can be set (in "LocalSettings.php"):
||The number of failed login attempts to permit from a known IP before a notification is triggered.||10|
||The number of failed login attempts to permit from a new IP before a notification is triggered.||3|
||The time-to-live of the count of failed login attempts from a known IP (from the time of the first failed attempt).||604800 (7 days)|
||The time-to-live of the count of failed login attempts from a new IP (from the time of the first failed attempt).||1209600 (14 days)|
||Whether to trigger a notification after failed logins from known IPs.|
||Whether to trigger a notification after successful logins from unknown IPs.|
||Set different default notification preferences for different user groups. For user groups that have any of the user rights listed in this array, the preferences specified in Hooks:getOverridenOptions() are on by default. ("Failed login attempts" web notifications and "Login from new computer" web notifications.)|
||Use this key instead of
||Expiration of the cookie.||15552000 (180 days)|
||To allow sharing login cookies between sites on different subdomains, set this to the parent domain name.|
||Maximum number of users (records) to track as having successfully logged in on a particular device.||6|
||How long to cache IPs in memcache. Set to
||5184000 (60 days)|
|This extension is being used on one or more Wikimedia projects. This probably means that the extension is stable and works well enough to be used by such high-traffic websites. Look for this extension's name in Wikimedia's $2 and $3 configuration files to see where it's installed. A full list of the extensions installed on a particular wiki can be seen on the wiki's Special:Version page.|