r-dev 48f7e4c6ac test(session) : align expectations with hardened auth from WIP 476060c ...

Generic 'Identifiants invalides.' is now returned for both wrong
password and missing-password-set cases (security obscurity, prevents
account enumeration). Tests still asserted the granular 'Mot de passe
incorrect.' message and a 403 status that the controller no longer
emits.

Co-Authored-By: RuFlo <ruv@ruv.net>

2026-05-03 19:56:53 +02:00

3.9 KiB

Raw Blame History

View Raw