Allow or disallow multiple logins from the same IP address
under review
Duncan Hamra
1) The problem → Prevent users from sharing accounts. There's no way to do it right now.
2) Why is this important → Our income is based on the number of people who have access.
3) What's your plan B → NA
4) Possible solutions we could build for you → Give me a toggle to disable concurrent logins or a field to specify how many IP addresses may be logged in at the same time.
John Matias
Watching... :-)
Naitik Mehta
Merged in a post:
Multiple Login from Same IP Address
Matthew Palmer
1) The problem → I have students who all need to be able to log in within the same timeframe. Since each student shares the same IP on a network, a maximum of 3 people can sign in at once before there is a 1 minute lock placed on login. In a class of 30 students, it would take 10 minutes to log my class in.
2) Why is this important → Every minute is precious in a classroom. If I have to spend 10 minutes just getting everyone logged in, it wastes so much time.
3) What's your plan B → N/A
4) Possible solutions we could build for you → Lift the restriction on how many people can sign in to the same account at once on the same IP address without it locking the account.
Q
QOG Admin
This feature would be nice. Currently we used a database to store user sessions and repeatedly ping our own API server to detect account sharing. Not a good solution but it's the best we can do right now.
Naitik Mehta
under review
This feature is under review for after we launch 2.0. Please keep the feedback coming — our product team is keeping a close eye on it. 😊
Chase Heckendorn
Naitik Mehta: Any update? Has this feature been released? To be clear, I'm interested in "disallowing" multiple logins using the same credentials. Basically 1 login allowed at a time... very important for the product I'm about to launch.
Naitik Mehta
Chase Heckendorn: Got it! No updates on this yet, we need 2.0 to be fully live and public before we can look into implementing this, so I'd say it's likely in or after Q1 next year at this point. If this is a hard requirement for your project, something like Firebase might be a better option for now! 😊
M
Matthew Caldwell
Naitik Mehta: Any update on this for timescale? Likely to be before Q2? I have client that would happily switch if we could limit account sharing and would make my life easier!
Naitik Mehta
Matthew Caldwell: Hey Matthew! Likely not before Q2. Still focusing on launching 2.0 to the public since it's a new infrastructure that we need to make stable before adding a feature like this. 🙌
Duncan Hamra
Merged in a post:
Limit concurrent logins
Duncan Hamra
1) The problem → Members are able to share accounts with an unlimited number of friends/family/random strangers on the internet without any consequences.
2) Why is this important → This has an obvious impact on revenue & sign-ups.
3) What's your plan B → NA 👎
4) Possible solutions we could build for you → Ideally, the site admin would be able to specify the number of allowed concurrent logins at a given time (1, 2, 10, ♾️, etc.) It needs to be a toggle! 1000+ people are using Memberstack right now with unlimited concurrent logins and we get very few complaints.
Duncan Hamra
Merged in a post:
Limit number of devices per user
I
Iga Michalowska
1) The problem → One user can share account credentials with unlimited number of people
2) Why is this important → We have business customers and our memberships are based on number of employees that can use our service, if we can not control how many users login under one account we will not be able to make different plans for different number of employees using our services
3) What's your plan B → no alternative solutions
4) Possible solutions we could build for you → just have an option to control number of user per device ( all streaming platforms have that option)
Bryan Maddock
We are looking to offer enterprise memberships, and it's already been pointed out to us that one login is already being used for every user in an organization. Hundreds of seats...
Is there an update on how we can limit this? Thanks!
Duncan Hamra
Hey Matthew & Aletta Rulz! I have some good news and some bad news. The good news is any number of people may log in at the same time (even in the same account). The bad news is the number of
unsuccessful
login attempts allowed. If a student gets the login incorrect 3 times, (or 3 students enter the wrong details once) they will be blocked for 1 minute.A
Aletta Rulz
Duncan Hamra: Hi Duncan. Based on my own testing, it doesn't seem to matter whether the logins are correct or incorrect. If I log in (correctly) three times, on the fourth correct attempt I am locked out for one minute. So there is no simple workaround for teachers (e.g., copy and paste the password).
Duncan Hamra
Aletta Rulz: Ooooo interesting! Thank you so much for letting us know. I'll see what can be done 👍 I'm surprised this hasn't come up before, but I can see why it's breaking now.
D
Diana Mendez
Duncan Hamra: Hello! Duncan, I've been having this same issue with a corporate client (same IP on a network), we have discussed it in the forum before.. I have been told in the forum and the support chat that the same IP was not a problem, but I am almost sure it is... https://community.memberstack.com/c/community-support/why-is-the-too-many-attempts-validation-message-showing-on-first-attempt?expand_comment_id=706596#notifications
Duncan Hamra
Diana Mendez: Thank you for letting us know again. I can see why there was some confusion. There's nothing wrong with the IP itself, but Memberstack assumes that IP is attempting to brute force your login... hopefully we can get this fixed very soon! All of our resources are fully invested in Memberstack 2.0 right now, but this may be fixable sooner.
D
Diana Mendez
Duncan Hamra: Hello me again! we will be hosting an event with the same client next month... will I be facing this issue again? maybe you guys found a solution? Thank you!
A
Aletta Rulz
Diana Mendez: The issue seems to be resolved for me right now. (I can't generate the "too many logins" error at all.) Although I haven't heard anything from MS saying that a fix has been rolled out.