Challenge 1 / 1

Check out this code in our authenticator:

public function authenticate(Request $request): Passport
{
    $email = $request->request->get('email');
    $password = $request->request->get('password');

    if ($email === 'ryan@symfonycasts.com') {
        throw new UserNotFoundException('Get outta here Ryan!');
    }

    return new Passport(new UserBadge($email), new PasswordCredentials($password));
}

public function onAuthenticationFailure(Request $request, AuthenticationException $exception): Response
{
    dd($exception);
}

If I try to login as ryan@symfonycasts.com, what type of object will be dumped inside onAuthenticationFailure()? And if we redirected to /login and rendered that error, what text would be displayed?

The exception class would either be UserNotFoundException or BadCredentialsException based on whether or not you have hide_user_not_found in your security.yaml. The user would see Get outta here Ryan!

The onAuthenticationFailure() method would actually not be called because you can't throw that exception from directly inside authenticate(): you can only throw it from inside a "user loader" callback, like we have in the tutorial.

Rewatch the video