Dec 07 2021 12:34 AM
Hi,
When reading the guidelines for developing web applications, the login process should go so that it is not clear if the login ID or password are wrong. But Office 365 gives easy possibility to verify sign-in addresses:
So if you do have list of accounts, you could verify them if they are valid on O365. Is this expected behavior for all? Anybody things if this could be a security risk?
Dec 07 2021 08:53 AM