how to display custom error message in jsp for spring security auth exception

java spring spring-mvc spring-security

Solution 1:

Redefine the properties in messages.properties inside spring security jar. For example add to the classpath myMessages.properties and add a message source to the context:

AbstractUserDetailsAuthenticationProvider.badCredentials=Username/Password entered is incorrect.
AbstractUserDetailsAuthenticationProvider.disabled=Your account is diabled, please contact administrator.

At Salvin Francis:

  1. Add myMessages.properties to the WAR file inside WEB-INF/classes.
  2. Add this bean to spring context config file

Message Source Bean 

<bean id="messageSource"   
    class="org.springframework.context.support.ResourceBundleMessageSource">  
    <property name="basenames">  
        <list>
            <value>myMessages</value>
        </list>
    </property>
</bean>

Solution 2:

After adding the "messageSource" bean, I had problems to get the Error Message work with the CookieLocaleResolver because the DispatcherServlet (which does use this for your application automatically) is invoked after the Security. See: http://static.springsource.org/spring-security/site/docs/3.1.x/reference/springsecurity-single.html#localization

My Solution was a custom Filter which sets the LocalContextHolder:

public class LocaleContextFilter extends OncePerRequestFilter {
    private LocaleResolver localeResolver;
    public void setLocaleResolver(LocaleResolver localeResolver) {
        this.localeResolver = localeResolver;
    }
    @Override
    protected void doFilterInternal(HttpServletRequest request, HttpServletResponse response,
            FilterChain filterChain) throws ServletException, IOException {
        // store Local into ThreadLocale
        if (this.localeResolver != null) {
            final Locale locale = this.localeResolver.resolveLocale(request);
            LocaleContextHolder.setLocale(locale);
        }
        try {
            filterChain.doFilter(request, response);
        } finally {
            LocaleContextHolder.resetLocaleContext();
        }
    }
}

And the Spring Security Context configuration:

  <http use-expressions="true">
    <custom-filter ref="localeContextFilter" after="FIRST" />
    .....
  </http>
  <beans:bean id="localeContextFilter" class="at.telekom.ppp.util.opce.fe.interceptor.LocaleContextFilter" >
    <beans:property name="localeResolver" ref="localeResolver" /><!-- e.g.: CookieLocaleResolver -->
  </beans:bean>

I hope this helps others which has this problem.

Related

Iterating over list of dictionaries
cURL: How do I set the email subject when using -F (multipart / attachment)
Access a folder on another computer? Windows 10 to Linux
VirtualBox doesn't see a raw disk by its DeviceID in Windows 7 (VERR_FILE_NOT_FOUND)
Error for remove mysql-server-8.0 on linux system
Create a White List of USB Mass Storage devices permited in a GPO Active Directory with Serial Numbers
Changing default user for PostgreSQL on Windows 10?
Why using swap file over a SMB/NFS mounted filesystem is not possible in Linux?
Slow ping while using ssh on a server in another continent
Refreshing Pivot Table clears Values and Column Labels fields
Google Chrome - How to Turn off the Omnibox/Search box
Codeblocks Permision denied after update from 12.10 to 13.04