Application is not displaying correct Error Message while failed login
(Doc ID 2834661.1)
Last updated on JANUARY 19, 2022
Applies to:
Oracle Banking Digital Experience - Version 21.1.0.0.0 and laterInformation in this document applies to any platform.
Symptoms
On : 21.1.0.0.0 version, Production Support
ACTUAL BEHAVIOR
---------------
User reported that after 5 failed log in, the error thrown is still 'Invalid Username and/or Password'. However, it should be saying the "account is locked" so the customer knows their account is not accessible.
EXPECTED BEHAVIOR
-----------------------
Once user id locked , error message should be "account is locked" not 'Invalid Username and/or Password'.
STEPS
-----------------------
The issue can be reproduced at will with the following steps:
1 - Enter username & incorrect password 5 times
2 - Account will be locked
3 - Error thrown is 'Invalid Username and/or Password' instead of saying the "account is locked"
BUSINESS IMPACT
-----------------------
The issue has the following business impact:
Due to this issue, users cannot know exact reason for failure login.
Changes
No changes done to environment / hardware / account causes this issue.
Cause
To view full details, sign in with your My Oracle Support account. |
|
Don't have a My Oracle Support account? Click to get started! |
In this Document
| Symptoms |
| Changes |
| Cause |
| Solution |