Would it be possible to return a 403 http status code on the login post request if invalid credentials are used? This way the webserver and other software can capitalize on this information more easily.
Thanks for the suggestion :+1:
Wondering if there could maybe be side effects on some server configuration, but probably not?
I took a look into it and was not able to fiddle with the return codes. If anyone can hint me a method or example, will look into it further.