Limit number of login attempts until user gets blocked


is there any chance to configure xwiki to limit the number of failed login attempts within a certain time-window and block a user once the limit is reached?



There is nothing like this in the standard XWiki authenticator right now. You should probably create a “new feature” issue on

In the meantime I guess it should not be too hard to implement in a custom authenticator extending the standard authenticator. See