This page is an administrative page to manage users, and detect attack on user. An attack is define by a number of tentative to access an user account. After X tentative, the user account is disabled for security reason.
Administrator can see:
- the last attack on user
- see who are currently connected
- can manage user privilege, like enable/disable an user, reset the password.
The function is compose by a custom page and filters.
-
Install filters Stop the Bonita Engine Copy the library SecurityCar-Filter.jar under the web application library (/webapps/bonita/WEB-INF/lib for Tomcat for example)
Modify the web.xml, add these three component:
SecurityCarFilter org.bonitasoft.securitycar.server.SecurityCarFilter SecurityCarFilter /portal/* /bonita/* org.bonitasoft.securitycar.server.SecurityCarListenerSession -
Download the page, and install it in a Profile or an Application.