kontrabass
Well-known member
I have cloudflare set up to send an http header "expose-credential-check" with any requests that include leaked credentials. I'm hoping to intercept such users and show them password reset instructions. Or force 2FA. Has anyone done this with conditionals? Or is this even possible?
The test itself works great. 100 or so users with leaked credentials logged in 24 hours. If I can intercept these it'd be easier than forcing a mass password reset.
The test itself works great. 100 or so users with leaked credentials logged in 24 hours. If I can intercept these it'd be easier than forcing a mass password reset.
- Exposed-Credential-Check Header: Adds a new HTTP header to HTTP requests with exposed credentials. Your application at the origin can then force a password reset, start a two-factor authentication process, or perform any other action. The name of the added HTTP header is Exposed-Credential-Check and its value is 1.