less specific messages for login failures (thanks Chris Withers)

Richard Jones · Richard Jones · commit ee5dcc59c080 · 2004-08-07T22:18:41.000Z
diff --git a/CHANGES.txt b/CHANGES.txt
@@ -33,6 +33,7 @@ Fixed:
 - fixed history display when "ascending"
 - removed references to py2.3+ boolean values (sf bug 995682)
 - fix static file path normalisation in security check (thanks David Linke)
+- less specific messages for login failures (thanks Chris Withers)
 
 
 2004-07-21 0.7.6
diff --git a/doc/index.txt b/doc/index.txt
@@ -133,7 +133,8 @@ Mitchell Surface,
 Mike Thompson,
 Martin Uzak,
 Darryl VanDorp,
-J Vickroy.
+J Vickroy,
+Chris Withers.
 
 
 
diff --git a/roundup/cgi/actions.py b/roundup/cgi/actions.py
@@ -1,4 +1,4 @@
-#$Id: actions.py,v 1.36 2004-07-28 02:29:45 richard Exp $
+#$Id: actions.py,v 1.37 2004-08-07 22:17:11 richard Exp $
 
 import re, cgi, StringIO, urllib, Cookie, time, random
 
@@ -843,15 +843,14 @@ def handle(self):
             self.client.userid = self.db.user.lookup(self.client.user)
         except KeyError:
             name = self.client.user
-            self.client.error_message.append(self._('No such user "%(name)s"')
-                %locals())
+            self.client.error_message.append(self._('Ivalid login'))
             self.client.make_user_anonymous()
             return
 
         # verify the password
         if not self.verifyPassword(self.client.userid, password):
             self.client.make_user_anonymous()
-            self.client.error_message.append(self._('Incorrect password'))
+            self.client.error_message.append(self._('Invalid login'))
             return
 
         # Determine whether the user has permission to log in.
