feature : can inject error messages from outside

Author: patternhelloworld

client/pom.xml

@@ -7,7 +7,7 @@ http://maven.apache.org/xsd/maven-4.0.0.xsd">
     <modelVersion>4.0.0</modelVersion>
     <groupId>com.patternknife.securityhelper.oauth2.client</groupId>
     <artifactId>spring-security-oauth2-password-jpa-implementation-client</artifactId>
-    <version>2.2.0</version>
+    <version>2.3.0</version>
     <packaging>jar</packaging>
 
     <properties>
@@ -41,7 +41,7 @@ http://maven.apache.org/xsd/maven-4.0.0.xsd">
         <dependency>
             <groupId>com.patternknife.securityhelper.oauth2.api</groupId>
             <artifactId>spring-security-oauth2-password-jpa-implementation</artifactId>
-            <version>2.2.0</version>
+            <version>2.3.0</version>
         </dependency>
 
         <!-- DB -->

client/src/main/java/com/patternknife/securityhelper/oauth2/client/config/response/error/GlobalExceptionHandler.java

@@ -1,9 +1,6 @@
 package com.patternknife.securityhelper.oauth2.client.config.response.error;
 
 
-import com.patternknife.securityhelper.oauth2.api.config.response.error.dto.ErrorResponsePayload;
-import com.patternknife.securityhelper.oauth2.api.config.response.error.exception.auth.KnifeOauth2AuthenticationException;
-import com.patternknife.securityhelper.oauth2.api.config.response.error.message.SecurityUserExceptionMessage;
 import com.patternknife.securityhelper.oauth2.client.config.response.error.dto.CustomErrorResponsePayload;
 import com.patternknife.securityhelper.oauth2.client.config.response.error.exception.auth.*;
 import com.patternknife.securityhelper.oauth2.client.config.response.error.exception.data.*;
@@ -13,18 +10,9 @@
 import com.patternknife.securityhelper.oauth2.client.config.response.error.message.GeneralErrorMessage;
 import jakarta.servlet.http.HttpServletRequest;
 import jakarta.validation.ConstraintViolationException;
-import org.springframework.core.Ordered;
-import org.springframework.core.annotation.Order;
 import org.springframework.http.HttpStatus;
 import org.springframework.http.ResponseEntity;
 import org.springframework.http.converter.HttpMessageNotReadableException;
-import org.springframework.security.access.AccessDeniedException;
-import org.springframework.security.authentication.BadCredentialsException;
-import org.springframework.security.authentication.DisabledException;
-import org.springframework.security.authentication.InsufficientAuthenticationException;
-import org.springframework.security.core.AuthenticationException;
-import org.springframework.security.core.userdetails.UsernameNotFoundException;
-import org.springframework.transaction.HeuristicCompletionException;
 import org.springframework.validation.BindException;
 import org.springframework.validation.FieldError;
 import org.springframework.web.bind.MethodArgumentNotValidException;

client/src/main/java/com/patternknife/securityhelper/oauth2/client/config/response/error/exception/util/EncodingProcessException.java

@@ -1,6 +1,6 @@
 package com.patternknife.securityhelper.oauth2.client.config.response.error.exception.util;
 
-import com.patternknife.securityhelper.oauth2.client.config.response.error.message.ExceptionMessageInterface;
+import com.patternknife.securityhelper.oauth2.api.config.security.message.ExceptionMessageInterface;
 import org.springframework.http.HttpStatus;
 import org.springframework.web.bind.annotation.ResponseStatus;
 

client/src/main/java/com/patternknife/securityhelper/oauth2/client/config/response/error/message/ExceptionMessageInterface.java

@@ -1,5 +1,6 @@
 package com.patternknife.securityhelper.oauth2.client.config.response.error.message;
 
+import com.patternknife.securityhelper.oauth2.api.config.security.message.ExceptionMessageInterface;
 import lombok.Getter;
 import org.springframework.http.HttpStatus;
 

client/src/main/java/com/patternknife/securityhelper/oauth2/client/config/response/error/message/GeneralErrorMessage.java

@@ -0,0 +1,36 @@
+package com.patternknife.securityhelper.oauth2.client.config.securityimpl.message;
+
+import com.patternknife.securityhelper.oauth2.api.config.security.message.ExceptionMessageInterface;
+
+public enum CustomSecurityUserExceptionMessage implements ExceptionMessageInterface {
+
+    AUTHENTICATION_LOGIN_FAILURE("1Authentication information is not valid. Please check and try again."),
+    AUTHENTICATION_LOGIN_ERROR("1An error occurred during authentication. If the problem persists, please contact customer service."),
+    AUTHENTICATION_TOKEN_FAILURE("1The authentication token has expired. Please log in again."),
+    AUTHENTICATION_TOKEN_ERROR("1There was a problem verifying the authentication token. Please log in again."),
+    AUTHORIZATION_FAILURE("1You do not have access permissions. Please request this from the administrator."),
+    AUTHORIZATION_ERROR("1An error occurred with access permissions. If the problem persists, please contact customer service."),
+
+    // ID PASSWORD
+    AUTHENTICATION_ID_NO_EXISTS("1The specified ID does not exist."),
+    AUTHENTICATION_WRONG_ID_PASSWORD("1User information could not be verified. Please check your ID or password. If the problem persists, please contact customer service."),
+    AUTHENTICATION_PASSWORD_FAILED_EXCEEDED("1The number of password attempts has been exceeded."),
+
+    // CLIENT ID, SECRET
+    AUTHENTICATION_WRONG_CLIENT_ID_SECRET("1Client information is not verified."),
+
+    // GRANT TYPE
+    AUTHENTICATION_WRONG_GRANT_TYPE("1Wrong Grant Type detected.");
+
+    private String message;
+
+    @Override
+    public String getMessage() {
+        return message;
+    }
+
+    CustomSecurityUserExceptionMessage(String message) {
+        this.message = message;
+    }
+
+}

client/src/main/java/com/patternknife/securityhelper/oauth2/client/config/securityimpl/message/CustomSecurityUserExceptionMessage.java

@@ -0,0 +1,21 @@
+package com.patternknife.securityhelper.oauth2.client.config.securityimpl.message;
+
+
+import com.patternknife.securityhelper.oauth2.api.config.security.message.DefaultSecurityUserExceptionMessage;
+import com.patternknife.securityhelper.oauth2.api.config.security.message.ISecurityUserExceptionMessageService;
+import org.springframework.context.annotation.Configuration;
+
+@Configuration
+public class SecurityMessageServiceImpl implements ISecurityUserExceptionMessageService {
+
+    @Override
+    public String getUserMessage(DefaultSecurityUserExceptionMessage defaultSecurityUserExceptionMessage) {
+        try {
+            CustomSecurityUserExceptionMessage customMessage = CustomSecurityUserExceptionMessage.valueOf(defaultSecurityUserExceptionMessage.name());
+            return customMessage.getMessage();
+        } catch (IllegalArgumentException e) {
+            return defaultSecurityUserExceptionMessage.getMessage();
+        }
+    }
+
+}

client/src/main/java/com/patternknife/securityhelper/oauth2/client/config/securityimpl/message/SecurityMessageServiceImpl.java

@@ -2,11 +2,11 @@
 
 import com.patternknife.securityhelper.oauth2.api.config.response.error.dto.ErrorMessages;
 import com.patternknife.securityhelper.oauth2.api.config.response.error.exception.auth.KnifeOauth2AuthenticationException;
-import com.patternknife.securityhelper.oauth2.api.config.response.error.message.SecurityUserExceptionMessage;
+import com.patternknife.securityhelper.oauth2.api.config.security.message.DefaultSecurityUserExceptionMessage;
 
 public class PasswordFailedExceededOauth2AuthenticationException extends KnifeOauth2AuthenticationException {
     public PasswordFailedExceededOauth2AuthenticationException() {
-        super(SecurityUserExceptionMessage.AUTHENTICATION_PASSWORD_FAILED_EXCEEDED.getMessage());
+        super(DefaultSecurityUserExceptionMessage.AUTHENTICATION_PASSWORD_FAILED_EXCEEDED.getMessage());
     }
 
     public PasswordFailedExceededOauth2AuthenticationException(String message) {

client/src/main/java/com/patternknife/securityhelper/oauth2/client/domain/admin/exception/PasswordFailedExceededOauth2AuthenticationException.java

@@ -2,8 +2,9 @@
 
 
 import com.patternknife.securityhelper.oauth2.api.config.response.error.exception.auth.KnifeOauth2AuthenticationException;
-import com.patternknife.securityhelper.oauth2.api.config.response.error.message.SecurityUserExceptionMessage;
+import com.patternknife.securityhelper.oauth2.api.config.security.message.DefaultSecurityUserExceptionMessage;
 
+import com.patternknife.securityhelper.oauth2.api.config.security.message.ISecurityUserExceptionMessageService;
 import com.patternknife.securityhelper.oauth2.api.domain.traditionaloauth.dto.SpringSecurityTraditionalOauthDTO;
 import com.patternknife.securityhelper.oauth2.api.domain.traditionaloauth.service.TraditionalOauthService;
 import lombok.RequiredArgsConstructor;
@@ -17,18 +18,19 @@
 public class TraditionalOauthApi {
 
     private final TraditionalOauthService traditionalOauthService;
+    private final ISecurityUserExceptionMessageService iSecurityUserExceptionMessageService;
 
     @PostMapping("/traditional-oauth/token")
     public SpringSecurityTraditionalOauthDTO.TokenResponse createAccessToken(
             @ModelAttribute SpringSecurityTraditionalOauthDTO.TokenRequest tokenRequest,
-            @RequestHeader("Authorization") String authorizationHeader) throws IOException {
+            @RequestHeader("Authorization") String authorizationHeader){
         switch(tokenRequest.getGrant_type()) {
             case "password":
                 return traditionalOauthService.createAccessToken(tokenRequest, authorizationHeader);
             case "refresh_token":
                 return traditionalOauthService.refreshAccessToken(tokenRequest, authorizationHeader);
             default:
-                throw new KnifeOauth2AuthenticationException(SecurityUserExceptionMessage.AUTHENTICATION_WRONG_GRANT_TYPE.getMessage());
+                throw new KnifeOauth2AuthenticationException(iSecurityUserExceptionMessageService.getUserMessage(DefaultSecurityUserExceptionMessage.AUTHENTICATION_WRONG_GRANT_TYPE));
         }
     }
 

client/src/main/java/com/patternknife/securityhelper/oauth2/client/domain/traditionaloauth/api/v1/TraditionalOauthApi.java

@@ -1,8 +1,8 @@
 package com.patternknife.securityhelper.oauth2.client.integration.auth;
 
 
-import com.patternknife.securityhelper.oauth2.api.config.response.error.message.SecurityUserExceptionMessage;
 import com.patternknife.securityhelper.oauth2.api.config.security.KnifeHttpHeaders;
+import com.patternknife.securityhelper.oauth2.client.config.securityimpl.message.CustomSecurityUserExceptionMessage;
 import jakarta.xml.bind.DatatypeConverter;
 import lombok.SneakyThrows;
 import org.codehaus.jackson.map.ObjectMapper;
@@ -470,7 +470,7 @@ public void testLoginWithInvalidCredentials_ORIGINAL() throws Exception {
         JSONObject jsonResponse = new JSONObject(responseString);
         String userMessage = jsonResponse.getString("userMessage");
 
-        assertEquals(userMessage, SecurityUserExceptionMessage.AUTHENTICATION_LOGIN_FAILURE.getMessage());
+        assertEquals(userMessage, CustomSecurityUserExceptionMessage.AUTHENTICATION_LOGIN_FAILURE.getMessage());
 
 
 
@@ -500,7 +500,7 @@ public void testLoginWithInvalidCredentials_ORIGINAL() throws Exception {
         jsonResponse = new JSONObject(responseString);
         userMessage = jsonResponse.getString("userMessage");
 
-        assertEquals(userMessage, SecurityUserExceptionMessage.AUTHENTICATION_WRONG_CLIENT_ID_SECRET.getMessage());
+        assertEquals(userMessage, CustomSecurityUserExceptionMessage.AUTHENTICATION_WRONG_CLIENT_ID_SECRET.getMessage());
 
 
 
@@ -530,7 +530,7 @@ public void testLoginWithInvalidCredentials_ORIGINAL() throws Exception {
         jsonResponse = new JSONObject(responseString);
         userMessage = jsonResponse.getString("userMessage");
 
-        assertEquals(userMessage, SecurityUserExceptionMessage.AUTHENTICATION_WRONG_GRANT_TYPE.getMessage());
+        assertEquals(userMessage, CustomSecurityUserExceptionMessage.AUTHENTICATION_WRONG_GRANT_TYPE.getMessage());
     }
 
 
@@ -563,7 +563,7 @@ public void testLoginWithInvalidCredentials_EXPOSE() throws Exception {
         JSONObject jsonResponse = new JSONObject(responseString);
         String userMessage = jsonResponse.getString("userMessage");
 
-        assertEquals(userMessage, SecurityUserExceptionMessage.AUTHENTICATION_LOGIN_FAILURE.getMessage());
+        assertEquals(userMessage, CustomSecurityUserExceptionMessage.AUTHENTICATION_LOGIN_FAILURE.getMessage());
 
 
 
@@ -593,7 +593,7 @@ public void testLoginWithInvalidCredentials_EXPOSE() throws Exception {
         jsonResponse = new JSONObject(responseString);
         userMessage = jsonResponse.getString("userMessage");
 
-        assertEquals(userMessage, SecurityUserExceptionMessage.AUTHENTICATION_WRONG_CLIENT_ID_SECRET.getMessage());
+        assertEquals(userMessage, CustomSecurityUserExceptionMessage.AUTHENTICATION_WRONG_CLIENT_ID_SECRET.getMessage());
 
 
         result = mockMvc.perform(RestDocumentationRequestBuilders.post("/api/v1/traditional-oauth/token")
@@ -622,7 +622,7 @@ public void testLoginWithInvalidCredentials_EXPOSE() throws Exception {
         jsonResponse = new JSONObject(responseString);
         userMessage = jsonResponse.getString("userMessage");
 
-        assertEquals(userMessage, SecurityUserExceptionMessage.AUTHENTICATION_WRONG_GRANT_TYPE.getMessage());
+        assertEquals(userMessage, CustomSecurityUserExceptionMessage.AUTHENTICATION_WRONG_GRANT_TYPE.getMessage());
     }