Uploaded image for project: 'XWiki Platform'
  1. XWiki Platform
  2. XWIKI-2261

Don't give password hints

    XMLWordPrintable

    Details

    • keywords:
      Login, Authentication
    • Similar issues:

      Description

      Whenever you try to login with a wrong username or wrong password, XWiki shouldn't tell the user which one is not correct as that may eases login-attacks.

      Instead of "Wrong password" / "Wrong user name" XWiki should simply write something like "Ooops, you made a mistake, try again"

        Attachments

          Issue Links

            Activity

              People

              Assignee:
              vmassol Vincent Massol
              Reporter:
              squirrel Squirrel
              Votes:
              1 Vote for this issue
              Watchers:
              0 Start watching this issue

                Dates

                Created:
                Updated:
                Resolved:
                Date of First Response: