Hi all I red on the web site that it can be easy to lock an account when the user set password wrong for n times. I define a listener that implements ApplicationListener and capture the event AuthenticationFailurePasswordEvent. Can someone give me a good advice to implement a secure way to memorize the failure and attempt login and lock the user via DAO object? I just read http://forum.springframework.org/viewtopic.php?t=8525 but i cannot find a god implemetation. Thanks. Kind regards
mannobug ------------------------------------------------------- SF.Net email is sponsored by: Tame your development challenges with Apache's Geronimo App Server. Download it for free - -and be entered to win a 42" plasma tv or your very own Sony(tm)PSP. Click here to play: http://sourceforge.net/geronimo.php _______________________________________________ Home: http://acegisecurity.sourceforge.net Acegisecurity-developer mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer
