Security

🔐 PIN System

The PIN system can be configured in config/shared.lua. See Configuration Guide for setup.

🛡️ Rate Limiting

For detailed information about rate limiting protection, see our Rate Limiting Guide.

rateLimit = {
    enabled = true,
    limits = {
        requestUI = 5,      -- UI request cooldown
        putPhone = 5,       -- Storage cooldown
        takeoutPhone = 5,   -- Retrieval cooldown
        recoverPhone = 10   -- Recovery attempt cooldown
    }
}

👮 Staff Recovery

Access Configuration

recoverAccess = {
    ['police'] = 4,          -- Police job grade required
    ['phone_recover'] = 4    -- Recovery job grade required
}

Recovery Process

1. Staff checks lost phone list

2. Verifies ownership

3. Processes recovery request

4. Returns phone to owner

📝 Logging

• Phone storage/retrieval

• Failed PIN attempts

• Staff recoveries

• Rate limit triggers

⚠️ Security Tips

• Use unique PINs

• Regular staff monitoring

• Keep recovery grades restricted

• Enable logging in production

---

Secured by Sahara Scripters - Because '1234' isn't a good PIN