No, the current security interface for the authentication contract does not throw an exception on failure. It simply provides a true/false response to the question of whether the user is authenticated. There should be an accessor for any exception information so that it can be propagated back to clients.
Thanks for the answer. Can you provide some sample code or pointers on how to implement the accessor to propogate the exception information to client