Notify the user by email that their account has been deactivated due to brute force

kevinmartins · August 17, 2021, 2:56pm

Hello, is it possible to implement this feature if yes what are the classes to overload? DefaultBruteForceProtector keycloak/DefaultBruteForceProtector.java at master · keycloak/keycloak · GitHub ?

xgp · August 17, 2021, 5:07pm

You can write your own implementation of BruteForceProtector and change it in your config. You might also be able to write an EventListener that looks for LOGIN_ERROR event types and then checks the user to see if they have just been disabled.

kevinmartins · December 10, 2021, 2:02pm

Hello, If it’s of any use to anyone else, here’s my solution : GitHub - ubitransports/keycloak-notification-user-disabled

atulchauhan01 · October 11, 2022, 10:03am

Hey @kevinmartins, can you share the valid URL to your solution repository?

Topic		Replies	Views
Keycloak Custom message on user temporary lock Configuring the server admin-console	20	12354	March 4, 2024
Send notification for failed login Getting advice authentication	12	5917	May 29, 2021
Get login failures in keycloak custom theme Extending the server	0	567	December 5, 2019
Get smtp Config into DefaultBruteForceProtector Getting advice authentication	0	448	March 1, 2022
Events for brute force	0	496	April 15, 2021

Notify the user by email that their account has been deactivated due to brute force

Related Topics