Upon 403 login attempt by unregistered user return Invalid Password

globekeeper · May 15, 2022 · 677c763 · 677c763
1 parent 6b6dcdc
commit 677c763
Showing 1 changed file with 1 addition and 1 deletion.
diff --git a/synapse/handlers/auth.py b/synapse/handlers/auth.py
@@ -1204,7 +1204,7 @@ async def validate_login(
                     await self._failed_login_attempts_ratelimiter.can_do_action(
                         None, (medium, address)
                     )
-                raise LoginError(403, "", errcode=Codes.FORBIDDEN)
+                raise LoginError(403, "Invalid password", errcode=Codes.FORBIDDEN)
 
             identifier_dict = {"type": "m.id.user", "user": user_id}