File tree Expand file tree Collapse file tree 1 file changed +4
-3
lines changed Expand file tree Collapse file tree 1 file changed +4
-3
lines changed Original file line number Diff line number Diff line change @@ -84,9 +84,10 @@ User enumeration is a common security issue where attackers infer valid username
8484based on error messages. For example, a message like "This user does not exist"
8585shown by your login form reveals whether a username is valid.
8686
87- This options lets you hide some/all errors related to user accounts (e.g. blocked
88- or expired accounts) to avoid this issue. Instead, these errors will return a
89- generic ``BadCredentialsException ``. The value of this option can be any of:
87+ This option lets you hide some or all errors related to user accounts
88+ (e.g. blocked or expired accounts) to prevent this issue. Instead, these
89+ errors will trigger a generic ``BadCredentialsException ``. The value of this
90+ option can be one of the following:
9091
9192* ``'none' ``: hides all user-related security exceptions;
9293* ``'account_status' ``: shows account-related exceptions (e.g. blocked or expired
You can’t perform that action at this time.
0 commit comments