I guess this should being implement has core feature of Flarum that when someone try to log-in in your account that warn the user by email or SMS that intruder is trying to connect to your account and you may needs to take actions if you didn't logged-in your account after the warning.
This feature could help agaisn't account stealers has well and may could being a essential feature when about creating your acccount. Has i guess, this should add any details over this warning.
- IP adresss (Ex: 1.111.11.1:1111
- Location (Ex: United-States)
- Date and time where the login was triggered (Ex: 2023-09-11)
- Browser or app used and version (Ex: Chrome 101)
- Device (Ex: Android 13 - Google Pixel 7)
They could implement two button that goes in these options inside a message.
- It's not me (Change the password and suggest or force the user to enable A2F)
- It's me (Ignore the warning and determinate is safe.)