Results 1 to 3 of 3

Thread: Lock User After Consecutive Invalid Login Attempts

  1. Apr 4th, 2011, 09:03 AM #1
    rickyeng1
    rickyeng1 is offline Junior Member
    Join Date
    Mar 2011
    Posts
    6

    Default Lock User After Consecutive Invalid Login Attempts

    Hi,

    Using spring security, is it possible to lock a user's account after a number of consecutive invalid login attempts?

    Thanks,
    rickyeng1
    Reply With Quote Reply With Quote
  2. Apr 4th, 2011, 10:44 AM #2
    Luke Taylor
    Luke Taylor is offline Senior Member Acegi Security System TeamSpring Team
    Join Date
    Aug 2004
    Location
    Glasgow, Scotland
    Posts
    3,449

    Default

    Search the forum for "lock", e.g.

    http://forum.springsource.org/showth...highlight=lock

    http://forum.springsource.org/showth...highlight=lock
    Spring - by Pivotal
    twitter @tekul
    Reply With Quote Reply With Quote
  3. Apr 4th, 2011, 12:23 PM #3
    rickyeng1
    rickyeng1 is offline Junior Member
    Join Date
    Mar 2011
    Posts
    6

    Default

    Quote Originally Posted by Luke Taylor View Post
    Search the forum for "lock", e.g.

    http://forum.springsource.org/showth...highlight=lock

    http://forum.springsource.org/showth...highlight=lock
    From the posts above it appears that I could accomplish this by listening for AbstractAuthenticationFailureEvent.

    I have two questions:

    1. How do I create a custom listener to listen for this type of event? Is there a specific interface that I need to implement?
    2. Are there any special bean registration steps that I need to perform?

    Regards,
    rickyeng1
    Reply With Quote Reply With Quote
« Previous Thread | Next Thread »

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

Forum Rules