vault icon indicating copy to clipboard operation
vault copied to clipboard

Published 20 hours ago verified publisher icon hashicorp

Return errInvalidCredentials when wrong credentials is provided for existent users

Open akshya96 opened this issue 3 years ago • 2 comments

https://hashicorp.atlassian.net/browse/VAULT-8304 The auth methods returns a specific error code “ErrInvalidCredentials” in cases where it fails due to invalid credentials for existent users. This helps to differentiate between existent and not existent users when lockout feature is implemented to prevent brute forcing This is only used for handling lockouts and will be removed before return. This will not be returned or seen externally. These changes are for approle, ldap and userpass auth methods

akshya96 avatar Sep 12 '22 21:09 akshya96

Are the ErrInvalidCredentials changes only for the Approle and Userpass login endpoints?

HridoyRoy avatar Sep 12 '22 22:09 HridoyRoy

Are the ErrInvalidCredentials changes only for the Approle and Userpass login endpoints?

It is for approle, userpass and ldap

akshya96 avatar Sep 12 '22 22:09 akshya96