Phx_gen_auth design question

Hi everyone.

I noticed that using phx_gen_auth uses an assign error_message on the session_new page to display if username/password combination was invalid. All other controller actions use the flash message system.

I wonder if there is an actual security / design reason behind this?

I am considering just switching to the flash system here as well as I redirect users to the login page and want to be able to show action feedback messages on the login page. Thanks in advance!

1 Like