How can prevent wso2 carbon or publisher or store Brute Force??
for example have a captcha or have maximum try for example lock user for 5 fault try
or any thing can prevent Brute Force? I use free wso2 and I don't have WUM , ...
You can lock an account based on the following use cases.
Please refer https://apim.docs.wso2.com/en/latest/install-and-setup/setup/security/user-account-management/#account-locking for more details