Closed
Description
AuthenticationServiceException is reserved for internal errors, but sometimes the problem might be with the creds provided (and thus not an internal error).
It would be better to throw a Saml2AuthenticationException. Such an exception does not yet exist, but it seems a pretty handy exception to have.