import javax.security.auth.callback.PasswordCallback;
import javax.security.auth.callback.UnsupportedCallbackException;
import javax.security.auth.login.CredentialNotFoundException;
+import javax.security.auth.login.FailedLoginException;
import javax.security.auth.login.LoginException;
import javax.security.auth.spi.LoginModule;
import javax.servlet.http.HttpServletRequest;
User user = userAdmin.getUser(null, username);
if (user == null)
- return false;
+ throw new FailedLoginException("Invalid credentials");
if (!user.hasCredential(null, password))
- return false;
+ throw new FailedLoginException("Invalid credentials");
+ // return false;
authorization = userAdmin.getAuthorization(user);
}
}