feat: log ldap error messages on invalid-credentials

src/Auth/LDAP.hs

@@ -203,7 +203,11 @@ campusLogin pool mode = AuthPlugin{..}
             $logErrorS apName $ "Error during login: " <> tshow err
             observeLoginOutcome apName LoginError
             loginErrorMessageI LoginR Msg.AuthError
-          Right (Left _bindErr) -> do
+          Right (Left bindErr) -> do
+            case bindErr of
+              Ldap.ResponseErrorCode _ _ _ errTxt -> 
+                $logInfoS apName [st|#{campusIdent}: #{errTxt}|]
+              _other -> return ()
             $logDebugS apName "Invalid credentials"
             observeLoginOutcome apName LoginInvalidCredentials
             loginErrorMessageI LoginR Msg.InvalidLogin