brute force protection for Nextcloud APIs

[schiessle]

As discussed last week in Stuttgart with @LukasReschke, it would be nice to have some kind of brute force protection for OCS/REST APIs. Maybe with a decorator where you can enable/disable it at the controller.

[ChristophWurst]

dup of #270?

[rullzer]

I agree it would be nice. But I still think protection here is better done on a firewall level. A lot of work has already been done at this point which makes DoS attacks way easier then if blocking would happen at the firewall level.

[jknockaert]

@rullzer Protection should ideally be done at the firewall level as I already argued in #270.
@ChristophWurst Ja this is a dup.

[jknockaert]

@LukasReschke I notice that this feature is to be implemented for 10. It would be good to consolidate the earlier thinking on this topic and link back. There's been discussion on the repo in #270, as well as on the forum.

[rullzer]

This is in #479
The logging that is done there coud be fed to fail2ban for example.