[OGo-Users] Automatically Lock an Account on Failed Logins
Adam Tauno Williams
users@opengroupware.org
Wed, 26 Sep 2007 07:40:51 -0400
> > Because it doesn't work. :) But the section before it on locked
> > accounts applies.
> I created a bugzilla entry, to not forget it, I hope there is not one
> already.
> http://bugzilla.opengroupware.org/bugzilla/show_bug.cgi?id=1917
I thought there was but can't find it.
> > > > It also doesn't work
> > > What do you mean with also? So this feature is just unusable because the
> > > lock out does never happen?
> > The lockout never happens.
> I'd rather say the logout happens immediately and consequently for
> everyone ;)
> > > > It stores locked status in the isLocked attribute of
> Person; "is_locked"
> > > > in the "person" table. It looks like it tries to use the session log
> > > > to compute the failures.
> > > ok, so when it is persistently locked via the is_locked column in the
> > > database, then the Admin has to reenable the account via the WebUI.
> That's
> > > fine for me. thanks.
> > Yep, would be a good feature.
> I think so too, I hope I'll find some time to take a look at the source to
> figure out what is going wrong there.