Hi List Has anyone done anything with tomcat authorisation to configure in a maximum number of retries before an address/account is blocked.
I have setup a secure site and want to only give the user a maximum number of 3 tries at logging in before denying them the login ability for a specified period of time. I.e. let them try 3 times then disable the account for 20 minutes. Interested in hearing from anyone who has done something along those lines. I have done a google search and read the doco but couldn't find any mention to something like this. Cheers Simon
