<html><body><div>Thank you, that sounds logical.</div><div><br></div><div>I just wondered, because you have a different error message for disabled users on the login screen.</div><div><span class="kc-feedback-text">"Account is disabled, contact admin"</span></div><div><br></div><div>Best</div><div>Michael</div><div><br>Am 12. Januar 2015 um 10:45 schrieb Stian Thorgersen <stian@redhat.com>:<br><br></div><div><blockquote type="cite"><div class="msg-quote"><div class="_stretch"><span class="body-text-content"><span class="body-text-content">This is intentional. If we provide specific error messages on reset password it can be used to find out whether or not a username/email is valid. Same applies to login, instead of saying invalid username it just says invalid username or password.<br><br>As an improvement we could extend the message to say if you haven't received a message within a certain time, then retry or contact an admin/support.<br><br>----- Original Message -----<br></span></span><blockquote class="quoted-plain-text" type="cite">From: "Michael Gerber" <<a href="mailto:gerbermichi@me.com" data-mce-href="mailto:gerbermichi@me.com">gerbermichi@me.com</a>></blockquote><blockquote class="quoted-plain-text" type="cite">To: <a href="mailto:keycloak-dev@lists.jboss.org" data-mce-href="mailto:keycloak-dev@lists.jboss.org">keycloak-dev@lists.jboss.org</a></blockquote><blockquote class="quoted-plain-text" type="cite">Sent: Friday, 9 January, 2015 4:01:49 PM</blockquote><blockquote class="quoted-plain-text" type="cite">Subject: [keycloak-dev] A disabled user receives a confusing info message, if he tries to reset his password</blockquote><blockquote class="quoted-plain-text" type="cite"></blockquote><blockquote class="quoted-plain-text" type="cite">A disabled user receives the following info message, if he tries to reset his</blockquote><blockquote class="quoted-plain-text" type="cite">password:</blockquote><blockquote class="quoted-plain-text" type="cite">You should receive an email shortly with further instructions.</blockquote><blockquote class="quoted-plain-text" type="cite"></blockquote><blockquote class="quoted-plain-text" type="cite">This is a bit confusing. A message like that would be nicer:</blockquote><blockquote class="quoted-plain-text" type="cite">Failed to send email, please contact the administrator.</blockquote><blockquote class="quoted-plain-text" type="cite"></blockquote><blockquote class="quoted-plain-text" type="cite">I will create a PR if that is ok with you?</blockquote><blockquote class="quoted-plain-text" type="cite"></blockquote><blockquote class="quoted-plain-text" type="cite">_______________________________________________</blockquote><blockquote class="quoted-plain-text" type="cite">keycloak-dev mailing list</blockquote><blockquote class="quoted-plain-text" type="cite"><a href="mailto:keycloak-dev@lists.jboss.org" data-mce-href="mailto:keycloak-dev@lists.jboss.org">keycloak-dev@lists.jboss.org</a></blockquote><blockquote class="quoted-plain-text" type="cite"><a href="https://lists.jboss.org/mailman/listinfo/keycloak-dev" data-mce-href="https://lists.jboss.org/mailman/listinfo/keycloak-dev">https://lists.jboss.org/mailman/listinfo/keycloak-dev</a></blockquote></div></div></blockquote></div></body></html>