With the event-listening approach, I see that you could track the number of failed attempts, but how would that tie back into preventing additional attempts after the limit was exceeded? Wouldn't you have to modify the authentication processing at some point?
-----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Ben Alex Sent: Thursday, August 24, 2006 8:35 PM To: [email protected] Subject: Re: [Acegisecurity-developer] Limiting number of failed logins [EMAIL PROTECTED] wrote: > This seems to be working ok, however, this might be slightly simpler > to do if the AuthenticationException had its own handler interface, > like the accessDeniedHandler. > > call it the authentcationFailedHandler. Most people either do it the way you have, or listen for events and update the authentication repository accordingly. You're welcome to pop a patch into JIRA if you like... Cheers Ben ------------------------------------------------------------------------- Using Tomcat but need to do more? Need to support web services, security? Get stuff done quickly with pre-integrated technology to make your job easier Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642 _______________________________________________ Home: http://acegisecurity.org Acegisecurity-developer mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer ------------------------------------------------------------------------- Using Tomcat but need to do more? Need to support web services, security? Get stuff done quickly with pre-integrated technology to make your job easier Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642 _______________________________________________ Home: http://acegisecurity.org Acegisecurity-developer mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer
