refactor : utils, saver

Author: patternhelloworld

client/src/main/java/com/patternknife/securityhelper/oauth2/client/config/response/error/GlobalExceptionHandler.java

@@ -7,7 +7,7 @@
 import io.github.patternknife.securityhelper.oauth2.api.config.security.response.error.exception.KnifeOauth2AuthenticationException;
 import io.github.patternknife.securityhelper.oauth2.api.config.security.message.DefaultSecurityUserExceptionMessage;
 import io.github.patternknife.securityhelper.oauth2.api.config.security.message.ISecurityUserExceptionMessageService;
-import io.github.patternknife.securityhelper.oauth2.api.config.security.util.OrderConstants;
+import io.github.patternknife.securityhelper.oauth2.api.config.util.OrderConstants;
 import lombok.RequiredArgsConstructor;;
 import org.springframework.core.annotation.Order;
 import org.springframework.http.HttpStatus;

client/src/test/java/com/patternknife/securityhelper/oauth2/client/integration/auth/CustomerIntegrationTest.java

@@ -1,7 +1,7 @@
 package com.patternknife.securityhelper.oauth2.client.integration.auth;
 
 
-import io.github.patternknife.securityhelper.oauth2.api.config.security.util.KnifeHttpHeaders;
+import io.github.patternknife.securityhelper.oauth2.api.config.util.KnifeHttpHeaders;
 import com.patternknife.securityhelper.oauth2.client.config.securityimpl.message.CustomSecurityUserExceptionMessage;
 import jakarta.xml.bind.DatatypeConverter;
 import lombok.SneakyThrows;

src/main/java/io/github/patternknife/securityhelper/oauth2/api/config/security/converter/auth/endpoint/AuthorizationCodeAuthenticationConverter.java

@@ -1,7 +1,7 @@
 package io.github.patternknife.securityhelper.oauth2.api.config.security.converter.auth.endpoint;
 
 
-import io.github.patternknife.securityhelper.oauth2.api.config.security.util.RequestOAuth2Distiller;
+import io.github.patternknife.securityhelper.oauth2.api.config.util.RequestOAuth2Distiller;
 import jakarta.servlet.http.HttpServletRequest;
 import lombok.RequiredArgsConstructor;
 import org.springframework.lang.Nullable;
@@ -11,7 +11,6 @@
 import org.springframework.security.oauth2.core.ClientAuthenticationMethod;
 import org.springframework.security.oauth2.core.endpoint.OAuth2ParameterNames;
 import org.springframework.security.oauth2.server.authorization.authentication.OAuth2AuthorizationCodeAuthenticationToken;
-import org.springframework.security.oauth2.server.authorization.authentication.OAuth2AuthorizationCodeRequestAuthenticationToken;
 import org.springframework.security.oauth2.server.authorization.authentication.OAuth2ClientAuthenticationToken;
 import org.springframework.security.oauth2.server.authorization.client.RegisteredClient;
 import org.springframework.security.oauth2.server.authorization.client.RegisteredClientRepository;

src/main/java/io/github/patternknife/securityhelper/oauth2/api/config/security/converter/auth/endpoint/AuthorizationCodeRequestAuthenticationConverter.java

@@ -2,7 +2,7 @@
 
 
 import io.github.patternknife.securityhelper.oauth2.api.config.security.dao.KnifeAuthorizationConsentRepository;
-import io.github.patternknife.securityhelper.oauth2.api.config.security.util.RequestOAuth2Distiller;
+import io.github.patternknife.securityhelper.oauth2.api.config.util.RequestOAuth2Distiller;
 import jakarta.servlet.http.HttpServletRequest;
 import lombok.RequiredArgsConstructor;
 import org.springframework.lang.Nullable;

src/main/java/io/github/patternknife/securityhelper/oauth2/api/config/security/converter/auth/endpoint/PasswordAuthenticationConverter.java

@@ -1,14 +1,12 @@
 package io.github.patternknife.securityhelper.oauth2.api.config.security.converter.auth.endpoint;
 
-import io.github.patternknife.securityhelper.oauth2.api.config.security.util.RequestOAuth2Distiller;
+import io.github.patternknife.securityhelper.oauth2.api.config.util.RequestOAuth2Distiller;
 import io.github.patternknife.securityhelper.oauth2.api.config.security.token.CustomGrantAuthenticationToken;
 import jakarta.servlet.http.HttpServletRequest;
 import lombok.RequiredArgsConstructor;
 import org.springframework.security.core.Authentication;
 import org.springframework.security.core.context.SecurityContextHolder;
 import org.springframework.security.oauth2.core.AuthorizationGrantType;
-import org.springframework.security.oauth2.core.endpoint.OAuth2AuthorizationResponseType;
-import org.springframework.security.oauth2.core.endpoint.OAuth2ParameterNames;
 import org.springframework.security.oauth2.server.authorization.authentication.OAuth2ClientAuthenticationToken;
 import org.springframework.security.web.authentication.AuthenticationConverter;
 

src/main/java/io/github/patternknife/securityhelper/oauth2/api/config/security/entity/KnifeAuthorization.java

@@ -1,7 +1,7 @@
 package io.github.patternknife.securityhelper.oauth2.api.config.security.entity;
 
 import io.github.patternknife.securityhelper.oauth2.api.config.security.token.generator.CustomAuthenticationKeyGenerator;
-import io.github.patternknife.securityhelper.oauth2.api.config.security.util.SerializableObjectConverter;
+import io.github.patternknife.securityhelper.oauth2.api.config.util.SerializableObjectConverter;
 import jakarta.persistence.*;
 
 import lombok.Getter;

src/main/java/io/github/patternknife/securityhelper/oauth2/api/config/security/response/error/handler/SecurityKnifeExceptionHandler.java

@@ -2,7 +2,7 @@
 
 
 import io.github.patternknife.securityhelper.oauth2.api.config.security.response.error.exception.KnifeOauth2AuthenticationException;
-import io.github.patternknife.securityhelper.oauth2.api.config.security.util.OrderConstants;
+import io.github.patternknife.securityhelper.oauth2.api.config.util.OrderConstants;
 import io.github.patternknife.securityhelper.oauth2.api.config.security.response.error.dto.SecurityKnifeErrorResponsePayload;
 
 import io.github.patternknife.securityhelper.oauth2.api.config.security.message.DefaultSecurityUserExceptionMessage;

src/main/java/io/github/patternknife/securityhelper/oauth2/api/config/security/serivce/CommonOAuth2AuthorizationSaverImpl.java

@@ -2,21 +2,24 @@
 
 
 import io.github.patternknife.securityhelper.oauth2.api.config.logger.KnifeSecurityLogConfig;
+import io.github.patternknife.securityhelper.oauth2.api.config.security.message.DefaultSecurityUserExceptionMessage;
+import io.github.patternknife.securityhelper.oauth2.api.config.security.message.ISecurityUserExceptionMessageService;
+import io.github.patternknife.securityhelper.oauth2.api.config.security.response.error.dto.ErrorMessages;
 import io.github.patternknife.securityhelper.oauth2.api.config.security.response.error.exception.KnifeOauth2AuthenticationException;
-import io.github.patternknife.securityhelper.oauth2.api.config.security.util.KnifeHttpHeaders;
+import io.github.patternknife.securityhelper.oauth2.api.config.util.KnifeHttpHeaders;
 import io.github.patternknife.securityhelper.oauth2.api.config.security.serivce.authentication.OAuth2AuthorizationBuildingService;
 import io.github.patternknife.securityhelper.oauth2.api.config.security.serivce.persistence.authorization.OAuth2AuthorizationServiceImpl;
 
+import io.github.patternknife.securityhelper.oauth2.api.config.util.SecurityExceptionUtils;
 import jakarta.validation.constraints.NotNull;
 import lombok.RequiredArgsConstructor;
 import org.slf4j.Logger;
 import org.slf4j.LoggerFactory;
-import org.springframework.dao.DataIntegrityViolationException;
+
 import org.springframework.security.core.userdetails.UserDetails;
 import org.springframework.security.oauth2.core.AuthorizationGrantType;
 import org.springframework.security.oauth2.core.OAuth2RefreshToken;
 import org.springframework.security.oauth2.server.authorization.OAuth2Authorization;
-import org.springframework.security.oauth2.server.authorization.OAuth2AuthorizationCode;
 import org.springframework.security.oauth2.server.authorization.OAuth2TokenType;
 import org.springframework.stereotype.Service;
 
@@ -31,118 +34,63 @@ public class CommonOAuth2AuthorizationSaverImpl implements CommonOAuth2Authoriza
 
      private final OAuth2AuthorizationBuildingService oAuth2AuthorizationBuildingService;
      private final OAuth2AuthorizationServiceImpl oAuth2AuthorizationService;
+     private final ISecurityUserExceptionMessageService iSecurityUserExceptionMessageService;
 
+     /*
+      *  While the Spring Authorization Server is generally not expected to cause duplicate exceptions,
+      *  I have observed such errors in the past. This is a preventive measure to handle potential issues gracefully.
+      */
      @Override
      public @NotNull OAuth2Authorization save(UserDetails userDetails, AuthorizationGrantType authorizationGrantType, String clientId,
                                               Map<String, Object> additionalParameters, Map<String, Object> modifiableAdditionalParameters) {
 
-          OAuth2Authorization oAuth2Authorization = null;
           if (authorizationGrantType.getValue().equals(AuthorizationGrantType.AUTHORIZATION_CODE.getValue())) {
+               return SecurityExceptionUtils.retryOnDuplicateException(() -> {
+                    OAuth2Authorization oAuth2Authorization = oAuth2AuthorizationBuildingService.build(
+                            userDetails, authorizationGrantType, clientId, additionalParameters, null);
+                    oAuth2AuthorizationService.save(oAuth2Authorization);
+                    return oAuth2Authorization;
+               }, 5, logger, "[Authorization Code] An error occurred with the Key during the execution of persistOAuth2Authorization for " + userDetails.getUsername());
+          }
 
-               int retryLogin = 0;
-               while (retryLogin < 5) {
-                    try {
-                         oAuth2Authorization = oAuth2AuthorizationBuildingService.build(
-                                 userDetails,
-                                 authorizationGrantType,
-                                 clientId,
-                                 additionalParameters,
-                                 null
-                         );
-                         oAuth2AuthorizationService.save(oAuth2Authorization);
-                         return oAuth2Authorization;
-                    } catch (DataIntegrityViolationException e) {
-                         logger.error("[Authorization Code] An error occurred with the Key during the execution of persistOAuth2Authorization for " + userDetails.getUsername() + "... Retrying up to 5 times.... (Count: " + retryLogin + ") - " + e.getMessage());
-                         retryLogin += 1;
-                         if (retryLogin == 4) {
-                              throw e;
-                         }
-                    }
+          OAuth2Authorization oAuth2Authorization = oAuth2AuthorizationService.findByUserNameAndClientIdAndAppToken(
+                  userDetails.getUsername(), clientId, (String) additionalParameters.get(KnifeHttpHeaders.APP_TOKEN));
+
+          if (authorizationGrantType.getValue().equals(AuthorizationGrantType.PASSWORD.getValue())) {
+               if (oAuth2Authorization == null || oAuth2Authorization.getAccessToken().isExpired()) {
+                    return SecurityExceptionUtils.retryOnDuplicateException(() -> {
+                         OAuth2Authorization authorization = oAuth2AuthorizationBuildingService.build(
+                                 userDetails, authorizationGrantType, clientId, additionalParameters, null);
+                         oAuth2AuthorizationService.save(authorization);
+                         return authorization;
+                    }, 5, logger, "[Access Token] An error occurred with the Key during the execution of persistOAuth2Authorization for " + userDetails.getUsername());
                }
-          }else{
-               oAuth2Authorization = oAuth2AuthorizationService.findByUserNameAndClientIdAndAppToken(userDetails.getUsername(), clientId, (String) additionalParameters.get(KnifeHttpHeaders.APP_TOKEN));
-
-               if(authorizationGrantType.getValue().equals(AuthorizationGrantType.PASSWORD.getValue())){
-                    if (oAuth2Authorization == null || oAuth2Authorization.getAccessToken().isExpired()) {
-                         int retryLogin = 0;
-                         while (retryLogin < 5) {
-                              try {
-                                   oAuth2Authorization = oAuth2AuthorizationBuildingService.build(
-                                           userDetails, authorizationGrantType, clientId, additionalParameters, null);
-
-                                   oAuth2AuthorizationService.save(oAuth2Authorization);
-
-                                   return oAuth2Authorization;
+          } else if (authorizationGrantType.getValue().equals(AuthorizationGrantType.REFRESH_TOKEN.getValue())) {
+               return SecurityExceptionUtils.retryOnDuplicateException(() -> {
+                    String refreshTokenValue = (String) (additionalParameters.containsKey("refresh_token") ? additionalParameters.get("refresh_token")
+                            : modifiableAdditionalParameters.get("refresh_token"));
 
-                              } catch (DataIntegrityViolationException e) {
+                    OAuth2Authorization oAuth2AuthorizationFromRefreshToken = oAuth2AuthorizationService.findByToken(refreshTokenValue, OAuth2TokenType.REFRESH_TOKEN);
 
-                                   logger.error("[Access Token] An error occurred with the Key during the execution of persistOAuth2Authorization for " + userDetails.getUsername() + "... Retrying up to 5 times.... (Count: " + retryLogin + ") - " + e.getMessage());
-                                   retryLogin += 1;
-
-                                   if(retryLogin == 4){
-                                        throw e;
-                                   }
-
-                              }
-                         }
-                    }else{
-                         // Keep the previous OAuth2Authorization
+                    if (oAuth2AuthorizationFromRefreshToken == null || oAuth2AuthorizationFromRefreshToken.getRefreshToken().isExpired()) {
+                         oAuth2AuthorizationService.remove(oAuth2AuthorizationFromRefreshToken);
+                         throw new KnifeOauth2AuthenticationException("Refresh Token Expired.");
                     }
-               }else if(authorizationGrantType.getValue().equals(AuthorizationGrantType.REFRESH_TOKEN.getValue())){
-                    int retryLogin = 0;
-                    while (retryLogin < 5) {
-                         try {
-                              String refreshTokenValue = null;
-                              if(additionalParameters.containsKey("refresh_token")){
-                                   refreshTokenValue = (String) additionalParameters.get("refresh_token");
-                              }else{
-                                   assert modifiableAdditionalParameters != null;
-                                   refreshTokenValue = (String)modifiableAdditionalParameters.get("refresh_token");
-                              }
-                              assert refreshTokenValue != null;
-
-
-                              OAuth2Authorization oAuth2AuthorizationFromRefreshToken = oAuth2AuthorizationService.findByToken(refreshTokenValue, OAuth2TokenType.REFRESH_TOKEN);
-
-                              if(oAuth2AuthorizationFromRefreshToken == null){
-                                   throw new KnifeOauth2AuthenticationException("Refresh Token Expired.");
-                              }
-                              if(oAuth2AuthorizationFromRefreshToken.getRefreshToken() == null || oAuth2AuthorizationFromRefreshToken.getRefreshToken().isExpired()){
-                                   oAuth2AuthorizationService.remove(oAuth2AuthorizationFromRefreshToken);
-                                   throw new KnifeOauth2AuthenticationException("Refresh Token Expired.");
-                              }
-
-                              OAuth2RefreshToken shouldBePreservedRefreshToken = oAuth2AuthorizationFromRefreshToken.getRefreshToken().getToken();
 
-                              oAuth2AuthorizationService.remove(oAuth2AuthorizationFromRefreshToken);
+                    OAuth2RefreshToken shouldBePreservedRefreshToken = oAuth2AuthorizationFromRefreshToken.getRefreshToken().getToken();
+                    oAuth2AuthorizationService.remove(oAuth2AuthorizationFromRefreshToken);
 
-                              oAuth2Authorization = oAuth2AuthorizationBuildingService.build(
-                                      userDetails, authorizationGrantType, clientId, additionalParameters, shouldBePreservedRefreshToken);
+                    OAuth2Authorization authorization = oAuth2AuthorizationBuildingService.build(
+                            userDetails, authorizationGrantType, clientId, additionalParameters, shouldBePreservedRefreshToken);
+                    oAuth2AuthorizationService.save(authorization);
+                    return authorization;
 
-                              oAuth2AuthorizationService.save(oAuth2Authorization);
-
-                              return oAuth2Authorization;
-
-                         } catch (DataIntegrityViolationException e) {
-
-                              logger.error("[Refresh Token] An error occurred with the Key during the execution of persistOAuth2Authorization for " + userDetails.getUsername() + "... Retrying up to 5 times.... (Count: " + retryLogin + ") - " + e.getMessage());
-                              retryLogin += 1;
-
-                              if(retryLogin == 4){
-                                   throw e;
-                              }
-                         }
-                    }
-
-               }else{
-                    // TO DO. Exception & Message that should be thrown
-               }
+               }, 5, logger, "[Refresh Token] An error occurred with the Key during the execution of persistOAuth2Authorization for " + userDetails.getUsername());
+          } else {
+               throw new KnifeOauth2AuthenticationException(ErrorMessages.builder().message("Wrong grant type from Req : " + authorizationGrantType.getValue()).userMessage(iSecurityUserExceptionMessageService.getUserMessage(DefaultSecurityUserExceptionMessage.AUTHENTICATION_WRONG_GRANT_TYPE)).build());
           }
-          
-
-
 
           return oAuth2Authorization;
-
      }
 }
+

src/main/java/io/github/patternknife/securityhelper/oauth2/api/config/security/serivce/persistence/authorization/OAuth2AuthorizationServiceImpl.java

@@ -5,7 +5,7 @@
 import io.github.patternknife.securityhelper.oauth2.api.config.security.dao.KnifeAuthorizationRepository;
 import io.github.patternknife.securityhelper.oauth2.api.config.security.entity.KnifeAuthorization;
 import io.github.patternknife.securityhelper.oauth2.api.config.security.token.generator.CustomAuthenticationKeyGenerator;
-import io.github.patternknife.securityhelper.oauth2.api.config.security.util.KnifeHttpHeaders;
+import io.github.patternknife.securityhelper.oauth2.api.config.util.KnifeHttpHeaders;
 
 import jakarta.annotation.Nullable;
 import jakarta.validation.constraints.NotEmpty;

src/main/java/io/github/patternknife/securityhelper/oauth2/api/config/security/util/KnifeHttpHeaders.java renamed to src/main/java/io/github/patternknife/securityhelper/oauth2/api/config/util/KnifeHttpHeaders.java

@@ -1,4 +1,4 @@
-package io.github.patternknife.securityhelper.oauth2.api.config.security.util;
+package io.github.patternknife.securityhelper.oauth2.api.config.util;
 
 import org.springframework.http.HttpHeaders;
 

src/main/java/io/github/patternknife/securityhelper/oauth2/api/config/security/util/OrderConstants.java renamed to src/main/java/io/github/patternknife/securityhelper/oauth2/api/config/util/OrderConstants.java

@@ -1,4 +1,4 @@
-package io.github.patternknife.securityhelper.oauth2.api.config.security.util;
+package io.github.patternknife.securityhelper.oauth2.api.config.util;
 
 public class OrderConstants {
     public static final int SECURITY_KNIFE_EXCEPTION_HANDLER_ORDER = -9977;

src/main/java/io/github/patternknife/securityhelper/oauth2/api/config/security/util/RequestOAuth2Distiller.java renamed to src/main/java/io/github/patternknife/securityhelper/oauth2/api/config/util/RequestOAuth2Distiller.java

@@ -1,4 +1,4 @@
-package io.github.patternknife.securityhelper.oauth2.api.config.security.util;
+package io.github.patternknife.securityhelper.oauth2.api.config.util;
 
 
 import io.github.patternknife.securityhelper.oauth2.api.config.security.response.error.exception.KnifeOauth2AuthenticationException;

src/main/java/io/github/patternknife/securityhelper/oauth2/api/config/util/SecurityExceptionUtils.java

@@ -0,0 +1,25 @@
+package io.github.patternknife.securityhelper.oauth2.api.config.util;
+
+import org.slf4j.Logger;
+import org.springframework.dao.DataIntegrityViolationException;
+
+import java.util.function.Supplier;
+
+public class SecurityExceptionUtils {
+
+    public static <T> T retryOnDuplicateException(Supplier<T> action, int maxRetries, Logger logger, String errorMessage) {
+        int attempt = 0;
+        while (attempt < maxRetries) {
+            try {
+                return action.get();
+            } catch (DataIntegrityViolationException e) {
+                logger.error(String.format("%s... Retrying up to %d times.... (Count: %d) - %s", errorMessage, maxRetries, attempt, e.getMessage()));
+                attempt++;
+                if (attempt == maxRetries) {
+                    throw e;
+                }
+            }
+        }
+        return null;
+    }
+}

src/main/java/io/github/patternknife/securityhelper/oauth2/api/config/security/util/SerializableObjectConverter.java renamed to src/main/java/io/github/patternknife/securityhelper/oauth2/api/config/util/SerializableObjectConverter.java

@@ -1,4 +1,4 @@
-package io.github.patternknife.securityhelper.oauth2.api.config.security.util;
+package io.github.patternknife.securityhelper.oauth2.api.config.util;
 
 
 import org.apache.tomcat.util.codec.binary.Base64;