Details
-
Improvement
-
Resolution: Won't Do
-
Major
-
None
-
4.3
-
None
Description
Authorization failures issued by info.magnolia.cms.security.URISecurityFilter#isAuthorized are only logged at debug level. After failure a login form is shown to the user which says nothing about why access to a certain resource has been denied and rather let them think that something was wrong with their username/password. It would be nice to give visual feedback in the login form also for this kind of errors, as it is done for authentication failures (e.g. wrong password).
Checklists
Acceptance criteria
Attachments
Issue Links
- is related to
-
MAGNOLIA-1566 Expose login failed attribute to form pages
-
- Closed
-