HTTP/1.1 403 Forbidden header on a failed login
Send an “HTTP/1.1 403 Forbidden” header on a failed login instead of the default “HTTP/1.1 200 OK”
Send an “HTTP/1.1 403 Forbidden” header on a failed login instead of the default “HTTP/1.1 200 OK”