Blocking users after x failed login attempts

Q1. What is the problem that you are trying to solve?
We want users to be blocked after e.g. five incorrect logins on the passbolt webinterface

Q2 - Who is impacted?
Every user

Q3 - Why is it important and/or urgent?
Security / Hardening

Q4 - What is your proposed solution? (optional)
We have installed and configured fail2ban for ssh, this works fine.
Unfortunately we can’t get the user logins on the start page to be blocked after x attempts.
In which log file is it recorded that a user has entered an incorrect password?

Or is there a solution implemented in passbolt?