posted 9 years ago
I'm using version 3.1.4 and I just realized that when I entered invalid credential, the message is already set to "Invalid username/password" instead of "Bad credential". I wonder where spring security is getting all of its messages. I looked inside messages.properties, and it's clearly said "Bad credentials" not "Invalid username/password". I'm trying to make a custom error message for this particular exception. thanks