We shouldn't let the user know if the user is correct but the password isn't

2026-05-04 18:00:48 +03:00 · 2025-02-10 17:52:01 +00:00
parent c948c3ea2e
commit e156ee4b38
1 changed files with 0 additions and 1 deletions
--- a/lang/en/auth.php
+++ b/lang/en/auth.php
@@ -14,7 +14,6 @@ return [
    */

    'failed' => 'These credentials do not match our records.',
-    'password' => 'The provided password is incorrect.',
    'throttle' => 'Too many login attempts. Please try again in :seconds seconds.',

 ];