Hi, I have implemented CAS 6.0.0 with succes so far.
I have difficulties with 'Throttling Authentication Attempts' After doing connexion attempts with a wrong password, I am happy to see the page "Too many attempts ...." However I am NOT blocked. I can immediatly perform a succesfull connexion with the correct password with the same browser on a new page. ## extract of cas.properties ## cas.authn.throttle.usernameParameter= cas.authn.throttle.schedule.startDelay=PT10S cas.authn.throttle.schedule.repeatInterval=PT120S cas.authn.throttle.appCode=CAS cas.authn.throttle.failure.threshold=30 cas.authn.throttle.failure.code=AUTHENTICATION_FAILED cas.authn.throttle.failure.rangeSeconds=60 cas.authn.throttle.bucket4j.rangeInSeconds=60 cas.authn.throttle.bucket4j.capacity=120 cas.authn.throttle.bucket4j.blocking=true cas.authn.throttle.bucket4j.overdraft=0 ## Logs #### 2019-04-05 18:33:28,139 ERROR [org.apereo.cas.authentication.PolicyBasedAuthenticationManager] - <Authentication has failed. Credentials may be incorrect or CAS cannot find authentication handler that supports [UsernamePasswordCredential(username=XXXXXXX, source=null)] of type [UsernamePasswordCredential]. Examine the configuration to ensure a method of authentication is defined and analyze CAS logs at DEBUG level to trace the authentication event.> 2019-04-05 18:33:28,141 INFO [org.apereo.inspektr.audit.support.Slf4jLoggingAuditTrailManager] - <Audit trail record BEGIN ============================================================= WHO: XXXXXXXXX WHAT: Supplied credentials: [UsernamePasswordCredential(username=XXXXXXXXXXX, source=null)] ACTION: AUTHENTICATION_FAILED APPLICATION: CAS WHEN: Fri Apr 05 18:33:28 CEST 2019 CLIENT IP ADDRESS: 92.170.234.118 SERVER IP ADDRESS: 127.0.0.1 ============================================================= > *2019-04-05 18:33:30,072 WARN [org.apereo.cas.web.support.AbstractThrottledSubmissionHandlerInterceptorAdapter] - <Throttling submission from [92.170.234.118]. More than [30] failed login attempts within [60] seconds. Authentication attempt exceeds the failure threshold [30]>* 2019-04-05 18:33:38,814 INFO [org.apereo.inspektr.audit.support.Slf4jLoggingAuditTrailManager] - <Audit trail record BEGIN ============================================================= WHO: audit:unknown WHAT: [event=success,timestamp=Fri Apr 05 18:33:38 CEST 2019,source=RankedMultifactorAuthenticationProviderWebflowEventResolver] ACTION: AUTHENTICATION_EVENT_TRIGGERED APPLICATION: CAS WHEN: Fri Apr 05 18:33:38 CEST 2019 CLIENT IP ADDRESS: 92.170.234.118 SERVER IP ADDRESS: 127.0.0.1 ============================================================= ==> Do you have ant suggestion how to have my IP (here 92.170.234.118) blocked ? Thks, Rgds -- - Website: https://apereo.github.io/cas - Gitter Chatroom: https://gitter.im/apereo/cas - List Guidelines: https://goo.gl/1VRrw7 - Contributions: https://goo.gl/mh7qDG --- You received this message because you are subscribed to the Google Groups "CAS Community" group. To unsubscribe from this group and stop receiving emails from it, send an email to cas-user+unsubscr...@apereo.org. To view this discussion on the web visit https://groups.google.com/a/apereo.org/d/msgid/cas-user/153ead59-6a8c-4a80-9bc4-b6064a6369a6%40apereo.org.
