More specific error message ("Sorry, password authentication didn't work. Please try again") for other types of problems
This is kind of an expansion on issue #738. My issue is that I have time.conf set up so that some users are not able to login at certain times throughout the day. The current error message leads the user to assume that they typed their password incorrectly, rather than there being a separate reason preventing their login. I don't know how much information would be considered a security risk to show on the gdm, but here are a few options from least specific to most:
- Distinguish incorrect password from other authentication errors. This is what is discussed in #738 where the incorrect password message should be: "Incorrect password, try again", and the default error message for other authentication errors would be the current: "Sorry, password authentication didn't work. Please try again"
- Build off of point 1 and expand the error message for other authentication errors to be specific about what is failing. For example in my case, if time.conf is what is causing the error maybe specify that in the error: "Sorry, password authentication didn't work (time.conf). Please try again"
- Build off of point 2 and expand it more. For example in my case it would be: "This user can only login today between the times of X and Y" or "This user cannot login today".
Even solution 1 would be extremely helpful as it would tell the user and the admin that there is something other than an incorrect password that is causing the issue.