From 84a723d035f591972648c21c358228531186ed5d Mon Sep 17 00:00:00 2001 From: "Mark St. Godard" Date: Wed, 21 Sep 2005 01:53:35 +0000 Subject: [PATCH] Adding more Common User problems to FAQ --- doc/xdocs/faq.html | 29 +++++++++++++++++++++++++++++ 1 file changed, 29 insertions(+) diff --git a/doc/xdocs/faq.html b/doc/xdocs/faq.html index c740eaf999..4525c9094d 100644 --- a/doc/xdocs/faq.html +++ b/doc/xdocs/faq.html @@ -179,6 +179,35 @@

See this forum post for more details.

+

Common Problem #3: How do I disable a user after a number of failed logins?

+

A common user requirement is to disable / lock an account after a number of failed login attempts. + Acegi itself does not provide anything "out of the box", however in your application you can implement + and register an org.springframework.context.ApplicationListener. Inside your application + event listener you can then check for an instanceof the particular AuthenticationFailureEvent + and then call your application user management interface to update the user details. +

+ For example: + 

+     public void onApplicationEvent(ApplicationEvent event) {
+     
+       // check failed event
+       if(event instanceof AuthenticationFailurePasswordEvent){
+          // call user management interface to increment failed login attempts, etc.
+          . . .
+       }  
+     }
+
+ See this forum post for more details.

+ +

Common Problem #4: I am changing my password using a web controller and DAO, why is my password still not being refreshed?

+

There are three things you must do to make a user password change take affect: +

+ See this forum post for more details.

+

I need some help. What files should I post?

The most important things to post with any support requests on the Spring Forums are your