@Override public boolean passwordValid(UserInfo userInfo, String j_password) { boolean passwordvalid = false; _log.info("password : "******"passwordvalid : " + passwordvalid); if (!passwordvalid) { setBadPasswordCount(userInfo); throw new BadCredentialsException("passwordvalid is " + passwordvalid); } return passwordvalid; }