From e6fd8deb007ef6dcf15ed93be584cc6aa1e4fb4b Mon Sep 17 00:00:00 2001
From: Fabien Potencier <fabien.potencier@gmail.com>
Date: Tue, 12 Apr 2011 11:41:39 +0200
Subject: [PATCH] [Security] tweaked some exception messages

---
 .../Authentication/Provider/DaoAuthenticationProvider.php     | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/src/Symfony/Component/Security/Core/Authentication/Provider/DaoAuthenticationProvider.php b/src/Symfony/Component/Security/Core/Authentication/Provider/DaoAuthenticationProvider.php
index 21bec8292a..fa08955969 100644
--- a/src/Symfony/Component/Security/Core/Authentication/Provider/DaoAuthenticationProvider.php
+++ b/src/Symfony/Component/Security/Core/Authentication/Provider/DaoAuthenticationProvider.php
@@ -59,11 +59,11 @@ class DaoAuthenticationProvider extends UserAuthenticationProvider
             }
         } else {
             if (!$presentedPassword = $token->getCredentials()) {
-                throw new BadCredentialsException('Bad credentials');
+                throw new BadCredentialsException('The presented password cannot be empty.');
             }
 
             if (!$this->encoderFactory->getEncoder($user)->isPasswordValid($user->getPassword(), $presentedPassword, $user->getSalt())) {
-                throw new BadCredentialsException('Bad credentials');
+                throw new BadCredentialsException('The presented password is invalid.');
             }
         }
     }