No. It’s not something you’d “do”. Your handler is not your source. Your source is the database, and the database(likely, I don’t know for sure) has no way of blocking an account on X number of failed attempts. Lots of “it depends” there.
So your best method of discourse would be to use throttling. If that doesn’t work, then you can do it manually by tracking failed authn attempts in the database somehow. -- Misagh From: carlos maddaleno cuellar <iamcarlosmaddal...@gmail.com> Reply: carlos maddaleno cuellar <iamcarlosmaddal...@gmail.com> Date: August 3, 2016 at 12:45:57 PM To: Misagh Moayyed <mmoay...@unicon.net> Subject: Re: [cas-user] Error with auditTrailContext.xml Ok thanks i will try im using <alias name="queryDatabaseAuthenticationHandler" alias="primaryAuthenticationHandler" /> <alias name="dataSource" alias="queryDatabaseDataSource" /> to authenticate to my database so you think i could do it on the queryDatabaseAuthenticationHandler bean? 2016-08-03 13:34 GMT-06:00 Misagh Moayyed <mmoay...@unicon.net>: That’s better handled by your authentication source, if it supports that, or via throttling. Not via audits. -- Misagh From: carlos maddaleno cuellar <iamcarlosmaddal...@gmail.com> Reply: carlos maddaleno cuellar <iamcarlosmaddal...@gmail.com> Date: August 3, 2016 at 12:09:35 PM To: Misagh Moayyed <mmoay...@unicon.net> Subject: Re: [cas-user] Error with auditTrailContext.xml i wanted to overwrite org.jasig.inspektr.audit.AuditTrailManagementAspect flow so when a user make a AUTHENTICATION_FAILED I have a flag to block the user on more than 3 fails 2016-08-03 12:47 GMT-06:00 Misagh Moayyed <mmoay...@unicon.net>: Why do you have that file in your configuration? -- Misagh From: carlos maddaleno cuellar <iamcarlosmaddal...@gmail.com> Reply: carlos maddaleno cuellar <iamcarlosmaddal...@gmail.com> Date: August 3, 2016 at 10:22:23 AM To: cas-user@apereo.org <cas-user@apereo.org> Subject: [cas-user] Error with auditTrailContext.xml Hi im having a problem with auditTrailContext.xml i have it under my spring-configuration im using cas 4.2.3 the error says this org.springframework.beans.factory.UnsatisfiedDependencyException: Error creating bean with name 'assertionAsReturnValuePrincipalResolver' defined in URL [jar:file:/C:/Projects/cas/cas-overlay-template-master/cas-overlay-template-master/target/cas/WEB-INF/lib/cas-server-core-audit-4.2.3.jar!/org/jasig/cas/audit/spi/AssertionAsReturnValuePrincipalResolver.class]: Unsatisfied dependency expressed through constructor argument with index 0 of type [org.jasig.cas.audit.spi.TicketOrCredentialPrincipalResolver]: : Error creating bean with name 'auditablePrincipalResolver' defined in ServletContext resource [/WEB-INF/spring-configuration/auditTrailContext.xml]: Unsatisfied dependency expressed through constructor argument with index 0 of type [org.jasig.cas.CentralAuthenticationService]: Ambiguous constructor argument types - did you specify the correct bean references as constructor arguments?; nested exception is org.springframework.beans.factory.UnsatisfiedDependencyException: Error creating bean with name 'auditablePrincipalResolver' defined in ServletContext resource [/WEB-INF/spring-configuration/auditTrailContext.xml]: Unsatisfied dependency expressed through constructor argument with index 0 of type [org.jasig.cas.CentralAuthenticationService]: Ambiguous constructor argument types - did you specify the correct bean references as constructor arguments? this is my file: <?xml version="1.0" encoding="UTF-8"?> <beans xmlns="http://www.springframework.org/schema/beans" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:aop="http://www.springframework.org/schema/aop" xmlns:p="http://www.springframework.org/schema/p" xmlns:c="http://www.springframework.org/schema/c" xmlns:util="http://www.springframework.org/schema/util" xsi:schemaLocation="http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans.xsd http://www.springframework.org/schema/aop http://www.springframework.org/schema/aop/spring-aop.xsd http://www.springframework.org/schema/util http://www.springframework.org/schema/util/spring-util.xsd"> <description> Configuration file for the Inspektr package which handles auditing for Java applications. If enabled this should be modified to log audit and statistics information the same way your local applications do. The default is currently to log to the console which is good for debugging/testing purposes. </description> <aop:aspectj-autoproxy/> <bean id="auditTrailManagementAspect" class="org.jasig.inspektr.audit.AuditTrailManagementAspect" c:applicationCode="${cas.audit.appcode:CAS}" c:auditablePrincipalResolver-ref="assertionAsReturnValuePrincipalResolver" c:auditTrailManagers-ref="auditTrailManager" c:auditActionResolverMap-ref="auditActionResolverMap" c:auditResourceResolverMap-ref="auditResourceResolverMap"/> <util:map id="auditActionResolverMap"> <entry key="AUTHENTICATION_RESOLVER"> <ref bean="authenticationActionResolver"/> </entry> <entry key="SAVE_SERVICE_ACTION_RESOLVER"> <ref bean="authenticationActionResolver"/> </entry> <entry key="CREATE_TICKET_GRANTING_TICKET_RESOLVER"> <ref bean="ticketCreationActionResolver"/> </entry> <entry key="DESTROY_TICKET_GRANTING_TICKET_RESOLVER"> <bean class="org.jasig.inspektr.audit.spi.support.DefaultAuditActionResolver"/> </entry> <entry key="CREATE_PROXY_GRANTING_TICKET_RESOLVER"> <ref bean="ticketCreationActionResolver"/> </entry> <entry key="DESTROY_PROXY_GRANTING_TICKET_RESOLVER"> <bean class="org.jasig.inspektr.audit.spi.support.DefaultAuditActionResolver"/> </entry> <entry key="GRANT_SERVICE_TICKET_RESOLVER"> <ref bean="ticketCreationActionResolver"/> </entry> <entry key="GRANT_PROXY_TICKET_RESOLVER"> <ref bean="ticketCreationActionResolver"/> </entry> <entry key="VALIDATE_SERVICE_TICKET_RESOLVER"> <ref bean="ticketValidationActionResolver"/> </entry> </util:map> <util:map id="auditResourceResolverMap"> <entry key="AUTHENTICATION_RESOURCE_RESOLVER"> <bean class="org.jasig.cas.audit.spi.CredentialsAsFirstParameterResourceResolver"/> </entry> <entry key="CREATE_TICKET_GRANTING_TICKET_RESOURCE_RESOLVER"> <ref bean="returnValueResourceResolver"/> </entry> <entry key="DESTROY_TICKET_GRANTING_TICKET_RESOURCE_RESOLVER"> <ref bean="ticketResourceResolver"/> </entry> <entry key="CREATE_PROXY_GRANTING_TICKET_RESOURCE_RESOLVER"> <ref bean="returnValueResourceResolver"/> </entry> <entry key="DESTROY_PROXY_GRANTING_TICKET_RESOURCE_RESOLVER"> <ref bean="ticketResourceResolver"/> </entry> <entry key="GRANT_SERVICE_TICKET_RESOURCE_RESOLVER"> <bean class="org.jasig.cas.audit.spi.ServiceResourceResolver"/> </entry> <entry key="GRANT_PROXY_TICKET_RESOURCE_RESOLVER"> <bean class="org.jasig.cas.audit.spi.ServiceResourceResolver"/> </entry> <entry key="VALIDATE_SERVICE_TICKET_RESOURCE_RESOLVER"> <ref bean="ticketResourceResolver"/> </entry> <entry key="SAVE_SERVICE_RESOURCE_RESOLVER"> <ref bean="returnValueResourceResolver"/> </entry> </util:map> <bean id="authenticationActionResolver" class="org.jasig.inspektr.audit.spi.support.DefaultAuditActionResolver" c:successSuffix="_SUCCESS" c:failureSuffix="_FAILED"/> <bean id="ticketCreationActionResolver" class="org.jasig.inspektr.audit.spi.support.DefaultAuditActionResolver" c:successSuffix="_CREATED" c:failureSuffix="_NOT_CREATED"/> <bean id="ticketValidationActionResolver" class="org.jasig.inspektr.audit.spi.support.DefaultAuditActionResolver" c:successSuffix="D" c:failureSuffix="_FAILED"/> <bean id="returnValueResourceResolver" class="org.jasig.inspektr.audit.spi.support.ReturnValueAsStringResourceResolver"/> <bean id="auditablePrincipalResolver" class="org.jasig.cas.audit.spi.TicketOrCredentialPrincipalResolver" c:ticketRegistry-ref="ticketRegistry" /> <bean id="ticketResourceResolver" class="org.jasig.cas.audit.spi.TicketAsFirstParameterResourceResolver" /> </beans> could some one help me please my pom dependencies <dependency> <groupId>org.jasig.cas</groupId> <artifactId>cas-server-webapp</artifactId> <version>${cas.version}</version> <type>war</type> <scope>runtime</scope> </dependency> <dependency> <groupId>org.jasig.cas</groupId> <artifactId>cas-server-support-jdbc</artifactId> <version>${cas.version}</version> </dependency> <dependency> <groupId>org.jasig.cas</groupId> <artifactId>cas-server-webapp-actions-aup-webflow</artifactId> <version>${cas.version}</version> </dependency> <dependency> <groupId>org.apache.commons</groupId> <artifactId>commons-collections4</artifactId> <version>4.1</version> </dependency> <dependency> <groupId>org.apereo.service.persondir</groupId> <artifactId>person-directory-api</artifactId> <version>1.8.1</version> <type>jar</type> </dependency> <dependency> <groupId>org.apereo.service.persondir</groupId> <artifactId>person-directory-impl</artifactId> <version>1.8.1</version> <type>jar</type> </dependency> <dependency> <groupId>org.jasig.cas</groupId> <artifactId>cas-server-webapp-throttle</artifactId> <version>${cas.version}</version> </dependency> <dependency> <groupId>javax.servlet</groupId> <artifactId>servlet-api</artifactId> <version>2.5</version> </dependency> <dependency> <groupId>org.apereo.inspektr</groupId> <artifactId>inspektr-audit</artifactId> <version>1.5.GA</version> <type>jar</type> </dependency> <properties> <cas.version>4.2.3</cas.version> <maven-jetty-plugin.version>9.3.6.v20151106</maven-jetty-plugin.version> <maven.compiler.source>1.7</maven.compiler.source> <maven.compiler.target>1.7</maven.compiler.target> <project.build.sourceEncoding>UTF-8</project.build.sourceEncoding> </properties> -- You received this message because you are subscribed to the Google Groups "CAS Community" group. To unsubscribe from this group and stop receiving emails from it, send an email to cas-user+unsubscr...@apereo.org. To post to this group, send email to cas-user@apereo.org. Visit this group at https://groups.google.com/a/apereo.org/group/cas-user/. To view this discussion on the web visit https://groups.google.com/a/apereo.org/d/msgid/cas-user/CANEG9%2BcecBn4fBv7fqxJZJ7ecOB9Gx32UnKiFn0s3j12VUJ%2BBw%40mail.gmail.com. For more options, visit https://groups.google.com/a/apereo.org/d/optout. -- You received this message because you are subscribed to the Google Groups "CAS Community" group. To unsubscribe from this group and stop receiving emails from it, send an email to cas-user+unsubscr...@apereo.org. To post to this group, send email to cas-user@apereo.org. Visit this group at https://groups.google.com/a/apereo.org/group/cas-user/. To view this discussion on the web visit https://groups.google.com/a/apereo.org/d/msgid/cas-user/etPan.57a23c39.22a9ce41.232b%40unicon.net. For more options, visit https://groups.google.com/a/apereo.org/d/optout. -- You received this message because you are subscribed to the Google Groups "CAS Community" group. To unsubscribe from this group and stop receiving emails from it, send an email to cas-user+unsubscr...@apereo.org. To post to this group, send email to cas-user@apereo.org. Visit this group at https://groups.google.com/a/apereo.org/group/cas-user/. To view this discussion on the web visit https://groups.google.com/a/apereo.org/d/msgid/cas-user/etPan.57a2473e.3843ea7.232b%40unicon.net. For more options, visit https://groups.google.com/a/apereo.org/d/optout. -- You received this message because you are subscribed to the Google Groups "CAS Community" group. To unsubscribe from this group and stop receiving emails from it, send an email to cas-user+unsubscr...@apereo.org. To post to this group, send email to cas-user@apereo.org. Visit this group at https://groups.google.com/a/apereo.org/group/cas-user/. To view this discussion on the web visit https://groups.google.com/a/apereo.org/d/msgid/cas-user/etPan.57a24b1f.2cc1a40e.232b%40unicon.net. For more options, visit https://groups.google.com/a/apereo.org/d/optout.