Limit the size of login field in res.user
Currently the login field in res.user has no size limit.
Given that LoginAttempt will store the given string even when provided by unauthenticated users, it seems wise to prevent too large strings that actually make no sense to support.
I suggest adding a size=64 to login field to both res.user and res.user.login.attempt.