LexikJWTAuthenticationBundle icon indicating copy to clipboard operation
LexikJWTAuthenticationBundle copied to clipboard

Published 20 hours ago verified publisher icon lexik

feat: Pass DisabledException to JWTAuthenticationFailureResponse

Open arneee opened this issue 1 year ago • 1 comments

Hi,

currently the response is always "Bad credentials". If a user has been disabled, the response should be accordingly so the user can take additional steps, for example contacting the admin.

This PR checks if the AuthenticationException "previous" is a DisabledException and passes that instead.

What do you think?

arneee avatar Dec 23 '23 19:12 arneee

This seems like a very application-specific thing to me. Passing through whatever exception the authentication system gives to the failure handler is the best thing for the bundle to do IMO, and an application can make checks like this to adjust the response either in a decorated failure handler or through the authentication failure event that is dispatched.

mbabker avatar Jan 09 '24 15:01 mbabker