From 81a6b2a0a23e0c6021fba4ff8caa2f7a8cb3af07 Mon Sep 17 00:00:00 2001
From: einhornimmond <dario.rekowski@gmx.de>
Date: Mon, 7 Jun 2021 17:39:12 +0200
Subject: [PATCH] don't give away the info about security criteria of password

---
 login_server/src/cpp/JSONInterface/JsonUnsecureLogin.cpp | 6 ++----
 1 file changed, 2 insertions(+), 4 deletions(-)

diff --git a/login_server/src/cpp/JSONInterface/JsonUnsecureLogin.cpp b/login_server/src/cpp/JSONInterface/JsonUnsecureLogin.cpp
index e82e75dc8..0457b572e 100644
--- a/login_server/src/cpp/JSONInterface/JsonUnsecureLogin.cpp
+++ b/login_server/src/cpp/JSONInterface/JsonUnsecureLogin.cpp
@@ -79,10 +79,8 @@ Poco::JSON::Object* JsonUnsecureLogin::handle(Poco::Dynamic::Var params)
 	if (!password.size() || !sm->checkPwdValidation(password, &pwd_errors, LanguageManager::getInstance()->getFreeCatalog(LANG_EN))) {
 		Poco::Thread::sleep(ServerConfig::g_FakeLoginSleepTime);
 		result->set("state", "error");
-		result->set("msg", pwd_errors.getLastError()->getString(false));
-		if (pwd_errors.errorCount()) {
-			result->set("details", pwd_errors.getLastError()->getString(false));
-		}
+		result->set("msg", "password incorrect");
+		
 		return result;
 	}