Hi Team,
We have a requirement that we need to lock the account after 'n'
unsuccessful attempts.
Say user should not be allowed to login for 10 minutes after 3('n')
unsuccessful attempts. We have tried throttle mechanism which cas already
supports but it is based on time and throttle rate. There is no option to
lock the account for certain period of time.
cas.authn.throttle.failure.threshold=3
cas.authn.throttle.failure.code=AUTHENTICATION_FAILED
cas.authn.throttle.failure.rangeSeconds=60
We need to lock after fixed number of unsuccessful attempts but not based
on time..
Also we need to lock the user for certain period of time.
Please let u know how to handle this requirement using the cas properties.
-Thanks,
Devi.U
--
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
---
You received this message because you are subscribed to the Google Groups "CAS
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to [email protected].
To view this discussion on the web visit
https://groups.google.com/a/apereo.org/d/msgid/cas-user/5b39e40b-a143-41b2-a405-1b3279219d79n%40apereo.org.
