{var%20f='http://v.t.sina.com.cn/share/share.php?appkey=1515056452',u=z||d.location,p=['&url=',e(u),'&title=',e(t||d.title),'&source=',e(r),'&sourceUrl=',e(l),'&content=',c||'gb2312','&pic=',e(p||'')].join('');function%20a(){if(!window.open([f,p].join(''),'mb',['toolbar=0,status=0,resizable=1,width=440,height=430,left=',(s.width-440)/2,',top=',(s.height-430)/2].join('')))u.href=[f,p].join('');};if(/Firefox/.test(navigator.userAgent))setTimeout(a,0);else%20a();})(screen,document,encodeURIComponent,'','','https://www.manongdao.com/data/attach/logo/logo.png', '推荐 Bombasti 的问题《How to get the reason of login failure in clients》','https://www.manongdao.com/q-971994.html','页面编码gb2312|utf-8默认gb2312'));){kind=link}
We are using Grails Spring Security Rest plugin 1.5.2 with Grails 2.5.2.
Unfortunately it doesn't seem to report any reason of why a login failure occurred. The only thing we get from the login request is HTTP 401.
We have a mechanism where after a number of login failures we set the accountLocked property of the User, so the account becomes disabled/locked.
We would like to get at least a JSON response of why the login failed, like "User account is locked", "Bad credentials", "No such user", etc.
Is there a way to do this with current versions that we use?
The plugin doesn't support that out of the box. However, you can easily workaround it by replacing RestAuthenticationFailureHandler with your own implementation and wiring it in
resources.groovyasrestAuthenticationFailureHandler.