Thank you for the article!
It is better to have one error message User not exists or Incorrect password instead of two different because of security.
User not exists or Incorrect password
I suggest you to add login brute-force protection with rate-limiter-flexible package. You can read more here
Are you sure you want to hide this comment? It will become hidden in your post, but will still be visible via the comment's permalink.
Hide child comments as well
Confirm
For further actions, you may consider blocking this person and/or reporting abuse
We're a place where coders share, stay up-to-date and grow their careers.
Thank you for the article!
It is better to have one error message
User not exists or Incorrect password
instead of two different because of security.I suggest you to add login brute-force protection with rate-limiter-flexible package. You can read more here