Skip to content

One Time Token user lookup should fail with BadCredentialsException #16494

New issue
New issue
Closed
#16506
Closed
One Time Token user lookup should fail with BadCredentialsException#16494
#16506
Assignees
jzheaux
Labels
in: coreAn issue in spring-security-corestatus: duplicateA duplicate of another issuetype: enhancementA general enhancement
@jzheaux

Description

@jzheaux
jzheaux
opened on Jan 28, 2025

When credentials fail authentication, Spring Security conventionally throws BadCredentialsException.

OneTimeTokenAuthenticationProvider should catch UsernameNotFoundException, wrap it, and rethrow as BadCredentialsException.

Metadata

Metadata

Assignees

Labels

in: coreAn issue in spring-security-corestatus: duplicateA duplicate of another issuetype: enhancementA general enhancement

Type

No type

Projects

No projects

Milestone

No milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions