Hi guys, I started to investigate how I could add 2 new JMX attributes, and that doesn't look very difficult even for someone who doesn't look at Tomcat's source code often.
My suggestion would be to add these 2 new attributes (authenticationSucceeded and authenticationFailed) to all Realms, then one could monitor suspicious activity without any access to the log files. It is just in a monitoring perspective, not to change the behavior for any user as the LockOutRealm is doing. What do you think ? best regards Eugene Adell. --------------------------------------------------------------------- To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org For additional commands, e-mail: dev-h...@tomcat.apache.org
