Allow to use django-axes to prevent brute force attacks on API
Our docker image comes with django-axes to prevent brute force attacks on login. TO achive that, it listens to the user_login_failed
signal.
Since our API views use tokens for authentication instead of login they were not covered. I fixed that by sending the user_login_failed
signal from APIAuthMixin
.