From 60963ef69dbfb0a5dcf9f66dff1f8724aa5a2dff Mon Sep 17 00:00:00 2001
From: Ian Fijolek <ian@iamthefij.com>
Date: Tue, 15 Nov 2022 12:59:37 -0800
Subject: [PATCH] Handle failed login

---
 main.py | 7 ++++++-
 1 file changed, 6 insertions(+), 1 deletion(-)

diff --git a/main.py b/main.py
index 8f5bd78..b8521bd 100644
--- a/main.py
+++ b/main.py
@@ -4,6 +4,7 @@ from flask import Flask
 from flask import Response
 from flask import request
 from hvac import Client
+from hvac.exceptions import InvalidRequest
 
 
 BIND_HOST = os.getenv("BIND_HOST", "0.0.0.0")
@@ -46,7 +47,11 @@ def login():
         username, password = request.form["username"], request.form["password"]
 
         client = Client(VAULT_ADDR)
-        client.auth.userpass.login(username, password)
+        try:
+            client.auth.userpass.login(username, password)
+        except InvalidRequest:
+            return Response(response="Unauthorized", status=401)
+
         if not client.is_authenticated():
             return Response(response="Unauthorized", status=401)