studio/tuwunel
2
0
Fork 0
Code Issues Pull Requests Actions 1 Packages Projects Releases Wiki Activity

Respond with 403 instead of 404 for non-existing user.

Browse Source 
Signed-off-by: Jason Volk <jason@zemos.net>
This commit is contained in:
Jason Volk
2025-07-31 06:26:25 +00:00
parent f3f23ee7ee
commit dc0976a2e5
3 changed files with 2 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

1
src/api/client/session/password.rs
View File

@@ -86,6 +86,7 @@ pub(super) async fn password_login(
.password_hash(lowercased_user_id)
.map_ok(|hash| (hash, lowercased_user_id))
})
.map_err(|_| err!(Request(Forbidden("Wrong username or password."))))
.await?;
if hash.is_empty() {