Open coratgerl opened 1 month ago
We need to hide sensitive error message like user not found in production but not in dev to keep a clear message when we encountered an error.
A param in config inside a new object name "security".
... security : { hideSensitiveError: boolean }
Then we need to find all sensitive errors in codebase, mainly in EmailPassword, SignIn and SignUp and put a generic message if this param is to true.
Need to add a documentation about this new params :)
Is your feature request related to a problem? Please describe.
We need to hide sensitive error message like user not found in production but not in dev to keep a clear message when we encountered an error.
Describe the solution you'd like
A param in config inside a new object name "security".
Then we need to find all sensitive errors in codebase, mainly in EmailPassword, SignIn and SignUp and put a generic message if this param is to true.
AdditionalContext
Need to add a documentation about this new params :)