-
|
Hello, do you know if there is a way to protect from brute force attacks? Right now I find the solution using fail2ban but I would like not to use third-party software. |
Beta Was this translation helpful? Give feedback.
Replies: 1 comment 1 reply
-
|
This could be handled in a custom authn interception script or an Agama Flow by writing login metadata to the cache. We have such a script for oxauth: https://github.com/GluuFederation/oxAuth/tree/master/Server/integrations/basic.lock.account We plan to add this feature into the Gluu agama-pw project |
Beta Was this translation helpful? Give feedback.
-
|
thx Mike. |
Beta Was this translation helpful? Give feedback.
This could be handled in a custom authn interception script or an Agama Flow by writing login metadata to the cache. We have such a script for oxauth: https://github.com/GluuFederation/oxAuth/tree/master/Server/integrations/basic.lock.account
We plan to add this feature into the Gluu agama-pw project