private boolean isLoginThresholdEnable(HttpServletRequest request, SessionLog sessionLog) {
boolean res = false;
if (sessionLog.getNbSuccessiveLoginAttempts() >= LOGIN_THRESHOLD) {
if (sessionLog.getLastLoginAttempts().getTime() + LOGIN_THRESHOLD_TIMEOUT
> System.currentTimeMillis()) {
res = true;
}
}
return res;
}
private void populateSessionLog(HttpServletRequest request, SessionLog sessionLog) {
if (isRessource(request)) {
sessionLog.setNbRequestRessources(sessionLog.getNbRequestRessources() + 1);
} else {
sessionLog.setNbRequestPages(sessionLog.getNbRequestPages() + 1);
if (request.getRequestURI().contains(GenericController.LOGIN_PROCESS_URL)) {
if (sessionLog.getLastLoginAttempts() != null) {
Date lastTry = sessionLog.getLastLoginAttempts();
Date timeOut = new Date(lastTry.getTime() + LOGIN_THRESHOLD_TIMEOUT);
if (timeOut.before(new Date())) {
sessionLog.setNbSuccessiveLoginAttempts(1);
} else {
sessionLog.setNbSuccessiveLoginAttempts(sessionLog.getNbSuccessiveLoginAttempts() + 1);
}
} else {
sessionLog.setNbSuccessiveLoginAttempts(1);
}
sessionLog.setLastLoginAttempts(new Date());
}
}
}
