Is it necessary to reject every request that password check failed

What will happened if i not use reject_login_request ?

Or when should i use reject login.
Or what the use of the reject operation
What will happen if i do not reject a check failed request but just silently return