[OGo-Users] Automatically Lock an Account on Failed Logins

[Adam Tauno Williams]

> users@opengroupware.org wrote: 
> > > I took a look at this page:
> http://docs.opengroupware.org/Members/helge/Configurations/FailedLoginLock/view?searchterm=login
> > > and have a few questions: 
> > This feature is documented in WMOGAG.
> > http://docs.opengroupware.org/Members/whitemice/wmogag/file_view
> unfortunately the chapter "Locking Accounts For Failed Login Attempts" is 
> empty. Nevertheless, I can writeup a littlebit, and send it to you, when I 
> know how it works and that it works, or not works...

Because it doesn't work.  :)  But the section before it on locked
accounts applies.

> > It also doesn't work
> What do you mean with also? So this feature is just unusable because the 
> lock out does never happen?

The lockout never happens.

> > It stores locked status in the isLocked attribute of Person; "is_locked"
> > in the "person" table.   It looks like it tries to use the session log
> > to compute the failures.
> ok, so when it is persistently locked via the is_locked column in the 
> database, then the Admin has to reenable the account via the WebUI. That's 
> fine for me. thanks.

Yep, would be a good feature.