user = repository.findUserById(userId);
} catch (RepositoryException e) {
throw new AuthenticatorException("Error while authenticating user", e);
}
user.unlock(userSecret);
// user.unlockWithToken(UserEntity.TOKEN_ID_DEFAULT, tokenSecret);
if (user.isLocked()) {
return null;