Currently, the user looks logged in even though the authentication is failing because the account is not active. This could be confusing to the user. We should redirect the user back to the login page with an error that the account either does not exist, is deleted or is not yet activated.