[OPENAM-14192] Addition needed for sample custom auth code to mention account lockout Created: 04/Jan/19  Updated: 23/Jul/19  Resolved: 09/Jan/19

Status: Resolved
Project: OpenAM
Component/s: documentation
Affects Version/s: 14.0.0, 14.5.0, 6.0.0, 6.5.0, 7.0.0
Fix Version/s: 14.0.0, 6.5.1, 6.0.1, 5.5.2, 7.0.0

Type: Bug Priority: Major
Reporter: Dom Reed Assignee: Chris Lee
Resolution: Fixed Votes: 0
Remaining Estimate: Not Specified
Time Spent: Not Specified
Original Estimate: Not Specified

Needs backport:
Needs QA verification:
Functional tests:
Are the reproduction steps defined?:
Yes and I used the same an in the description


I've written a KB about account lockout not working with custom modules which should be published soon, but it would be useful to note in  Authentication and Single Sign-On Guide › The Sample Authentication Logic something like:

The account lockout functionality works based on invalid password exceptions rather than invalid login exceptions. This means all login modules must throw an InvalidPasswordException instead of an AuthLoginException to trigger account lockout.

Comment by Chris Lee [ 09/Jan/19 ]

Mentioned account lockout, will be in the next releases of the various doc sets.

Generated at Tue Sep 22 10:47:46 UTC 2020 using Jira 7.13.12#713012-sha1:6e07c38070d5191bbf7353952ed38f111754533a.