Interesting business issue from one of our customers.
We run a multi-tenant environment. The Launchpad is open to the world wide web to support many tenants all across the USA.
This particular tenant (identified by the first three letters of the user's login name), only wants their employees logging into Launchpad from their corporate office. They are trying to force their employees to control their work-life balance.
Business logic is:
If, when click Login, Username starts with 'ABC' and IP Address NOT IN (10.2.1.5,10.2.1.6,10.2.1.7) then prevent the user from logging in.
Is just business logic possible with login.jsp or custom.jsp?