store and display login history
Store logins and display them is a security issue: users can check when they got connected, so they can check if they were spoofed.
Failed connections should be stored as same as succeeded ones, to detect spoofing attempt. Stored information should be at least IP and date, and error message for failed connections (since "Unable to connect to LDAP server" is not as serious as "wrong password"). It should be possible to store additional informations, as the way the user got authenticated, or the X-forwarded-for field.
Display of last connections should be possible when connecting (with a checkbox "show my last connections" in the login form) and in the menu.
Besides, this allows to lock accounts if someone failed to connect too many times - but for that feature to complete, we also need an interface to unlock accounts.
Attached is an example of functions for that.