Skip to content

Fix Exception on empty JSON login: BadCredentials message too generic #61152

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
wants to merge 3 commits into from
Closed

Fix Exception on empty JSON login: BadCredentials message too generic #61152

wants to merge 3 commits into from

Conversation

Yashingle1307
Copy link

Q A
Branch? 7.4 for features / 6.4, 7.2, or 7.3 for bug fixes
Bug fix? yes/no
New feature? yes/no
Deprecations? yes/no
Issues Fix #...
License MIT

@Yashingle1307 Yashingle1307 requested a review from chalasr as a code owner July 18, 2025 10:43
@carsonbot carsonbot added this to the 7.4 milestone Jul 18, 2025
@Yashingle1307 Yashingle1307 changed the base branch from 7.4 to 6.4 July 18, 2025 11:11
@Yashingle1307 Yashingle1307 changed the base branch from 6.4 to 7.4 July 18, 2025 11:16
nicolas-grekas
nicolas-grekas reviewed Jul 20, 2025
View reviewed changes
src/Symfony/Component/Security/Http/Authenticator/JsonLoginAuthenticator.php
@@ -147,7 +148,7 @@ private function getCredentials(\stdClass $data): array
$credentials['username'] = $this->propertyAccessor->getValue($data, $this->options['username_path']);

if (!\is_string($credentials['username']) || '' === $credentials['username']) {
throw new BadRequestHttpException(\sprintf('The key "%s" must be a non-empty string.', $this->options['username_path']));
throw new BadCredentialsException('The key "username" must be a non-empty string.');
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

the default for option username_path is "username", so I'm missing what this PR provides. The resulting message will be exactly the same to me. And when one changes the value of the option, then the message might be considered less accurate actually.

@symfony symfony deleted a comment from carsonbot Jul 21, 2025
@symfony symfony deleted a comment from carsonbot Jul 21, 2025
@Yashingle1307 Yashingle1307 closed this by deleting the head repository Jul 24, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@nicolas-grekas nicolas-grekas nicolas-grekas left review comments

@chalasr chalasr Awaiting requested review from chalasr chalasr is a code owner

@lyrixx lyrixx Awaiting requested review from lyrixx

@yceruto yceruto Awaiting requested review from yceruto

@dunglas dunglas Awaiting requested review from dunglas

@jderusse jderusse Awaiting requested review from jderusse

@xabbuh xabbuh Awaiting requested review from xabbuh

Assignees
No one assigned
Labels
Bug Deprecation Feature Status: Needs Review
Projects
None yet
Milestone
7.4
Development

Successfully merging this pull request may close these issues.
3 participants
@Yashingle1307 @nicolas-grekas @carsonbot
pFad - Phonifier reborn

Pfad - The Proxy pFad of © 2024 Garber Painting. All rights reserved.

Note: This service is not intended for secure transactions such as banking, social media, email, or purchasing. Use at your own risk. We assume no liability whatsoever for broken pages.


Alternative Proxies:

Alternative Proxy

pFad Proxy

pFad v3 Proxy

pFad v4 Proxy