diff --git a/app/controllers/sessions_controller.rb b/app/controllers/sessions_controller.rb
index 3bf7328..cd3ab5d 100644
--- a/app/controllers/sessions_controller.rb
+++ b/app/controllers/sessions_controller.rb
@@ -1,5 +1,6 @@
 class SessionsController < ApplicationController
   require_unregistered_user only: %i[new create]
+  rate_limit to: 5, within: 1.minute, only: :create, with: -> { redirect_to new_session_url, alert: "Cannot currently login" }
   # GET /sessions/new
   def new
     @session = Session.new