Home » geronimo-2.2-source-release » org.apache.geronimo.security.realm.providers » [javadoc | source]
org.apache.geronimo.security.realm.providers
public class: RepeatedFailureLockoutLoginModule [javadoc | source]
java.lang.Object
   org.apache.geronimo.security.realm.providers.RepeatedFailureLockoutLoginModule

All Implemented Interfaces:
    LoginModule

Tracks the number of recent login failures for each user, and starts rejecting login attemps if the number of failures in a certain period for a particular user gets too high. The period, number of failures, and lockout duration are configurable, but default to 5 failures in 5 minutes cause all subsequent attemps to fail for 30 minutes. This module does not write any Principals into the Subject. To enable this login module, set your primary login module and any other login modules to REQUIRED or OPTIONAL, and list this module in last place, set to REQUISITE. The parameters used by this module are: This login module does not check credentials so it should never be able to cause a login to succeed. Therefore the lifecycle methods must return false to indicate success or throw a LoginException to indicate failure.
Field Summary
public static final  String FAILURE_COUNT_OPTION     
public static final  String FAILURE_PERIOD_OPTION     
public static final  String LOCKOUT_DURATION_OPTION     
public static final  List<String> supportedOptions     
Method from org.apache.geronimo.security.realm.providers.RepeatedFailureLockoutLoginModule Summary:
abort,   commit,   initialize,   login,   logout
Methods from java.lang.Object:
clone,   equals,   finalize,   getClass,   hashCode,   notify,   notifyAll,   toString,   wait,   wait,   wait
Method from org.apache.geronimo.security.realm.providers.RepeatedFailureLockoutLoginModule Detail:
 public boolean abort() throws LoginException 
    Notes that (and when) a login failure occured, used to calculate whether the user should be locked out.
 public boolean commit() throws LoginException 
    This module does nothing if a login succeeds.
 public  void initialize(Subject subject,
    CallbackHandler callbackHandler,
    Map sharedState,
    Map options) 
    Reads the configuration settings for this module.
 public boolean login() throws LoginException 
    Checks whether the user should be or has been locked out.
 public boolean logout() throws LoginException 
    This module does nothing on a logout.