User-facing messages may be configured in the section. At this point the only supported message is what is displayed to a user when his/her authentication fails. This presupposes that the server is using the supplied authorization servlet, of course and if another authorizatiion method is in use (e.g. REMOTE_HEADER) then this will be ignored.
Basic configuration with a customized message if authentication fails.
<config>
<service name="main-server"
version="1.0"
address="https://go.teragrid.org/oauth">
<messages>
<retryMessage>Authentication Failed! Note: Only members of
active projects are able to sign in.</retryMessage>
</messages>
</service>
</config>
This would be displayed on authorization page if an invalid login were tried. In this case it informs the user that while s/he may try again, if there is no active project associated with this login, it will continue to fail.
