Added login failure handler

Pinnacle/src/main/java/com/cfive/pinnacle/config/SecurityConfig.java

@@ -1,6 +1,7 @@
 package com.cfive.pinnacle.config;
 
 import com.cfive.pinnacle.filter.JwtAuthenticationTokenFilter;
+import com.cfive.pinnacle.handler.AccessDeniedHandler;
 import com.cfive.pinnacle.handler.AuthenticationEntryPointHandler;
 import com.cfive.pinnacle.service.permission.impl.UserDetailsServiceImpl;
 import org.springframework.beans.factory.annotation.Autowired;
@@ -25,6 +26,7 @@ public class SecurityConfig {
     private UserDetailsServiceImpl userDetailsService;
     private JwtAuthenticationTokenFilter jwtAuthenticationTokenFilter;
     private AuthenticationEntryPointHandler authenticationEntryPointHandler;
+    private AccessDeniedHandler accessDeniedHandler;
 
     @Autowired
     public void setUserDetailsService(UserDetailsServiceImpl userDetailsService) {
@@ -41,6 +43,11 @@ public class SecurityConfig {
         this.authenticationEntryPointHandler = authenticationEntryPointHandler;
     }
 
+    @Autowired
+    public void setAccessDeniedHandler(AccessDeniedHandler accessDeniedHandler) {
+        this.accessDeniedHandler = accessDeniedHandler;
+    }
+
     @Bean
     public PasswordEncoder passwordEncoder() {
         return new BCryptPasswordEncoder();
@@ -94,6 +101,7 @@ public class SecurityConfig {
 
                 .exceptionHandling()
                 .authenticationEntryPoint(authenticationEntryPointHandler)
+                .accessDeniedHandler(accessDeniedHandler)
                 .and()
 
                 .cors()

Pinnacle/src/main/java/com/cfive/pinnacle/entity/common/ResponseCode.java

@@ -22,6 +22,7 @@ public class ResponseCode {
     public static final int DATABASE_CONNECT_ERROR = 20036;
 
     public static final int UNAUTHORIZED = 30010;
+    public static final int ACCESS_DENIED = 30030;
 
     public static final int SYSTEM_ERROR = 50001;
     public static final int SYSTEM_TIMEOUT = 50002;

Pinnacle/src/main/java/com/cfive/pinnacle/handler/AccessDeniedHandler.java

@@ -0,0 +1,19 @@
+package com.cfive.pinnacle.handler;
+
+import com.cfive.pinnacle.entity.common.ResponseCode;
+import com.cfive.pinnacle.utils.WebUtil;
+import jakarta.servlet.http.HttpServletRequest;
+import jakarta.servlet.http.HttpServletResponse;
+import org.springframework.security.access.AccessDeniedException;
+import org.springframework.stereotype.Component;
+
+import java.io.IOException;
+
+@Component
+public class AccessDeniedHandler implements org.springframework.security.web.access.AccessDeniedHandler {
+    @Override
+    public void handle(HttpServletRequest request, HttpServletResponse response, AccessDeniedException accessDeniedException) throws IOException {
+        String objectResponse = WebUtil.objectResponse(ResponseCode.ACCESS_DENIED, "Access denied", null);
+        WebUtil.renderString(response, objectResponse);
+    }
+}

Pinnacle/src/main/java/com/cfive/pinnacle/handler/AuthenticationEntryPointHandler.java

@@ -4,6 +4,8 @@ import com.cfive.pinnacle.entity.common.ResponseCode;
 import com.cfive.pinnacle.utils.WebUtil;
 import jakarta.servlet.http.HttpServletRequest;
 import jakarta.servlet.http.HttpServletResponse;
+import org.springframework.security.authentication.BadCredentialsException;
+import org.springframework.security.authentication.InsufficientAuthenticationException;
 import org.springframework.security.core.AuthenticationException;
 import org.springframework.security.web.AuthenticationEntryPoint;
 import org.springframework.stereotype.Component;
@@ -14,7 +16,14 @@ import java.io.IOException;
 public class AuthenticationEntryPointHandler implements AuthenticationEntryPoint {
     @Override
     public void commence(HttpServletRequest request, HttpServletResponse response, AuthenticationException authException) throws IOException {
-        String objectResponse = WebUtil.objectResponse(ResponseCode.UNAUTHORIZED, "Unauthorized access", null);
+        String objectResponse;
+        if (authException instanceof BadCredentialsException) {
+            objectResponse = WebUtil.objectResponse(ResponseCode.LOGOUT_FAILED, authException.getMessage(), null);
+        } else if (authException instanceof InsufficientAuthenticationException) {
+            objectResponse = WebUtil.objectResponse(ResponseCode.UNAUTHORIZED, authException.getMessage(), null);
+        } else {
+            objectResponse = WebUtil.objectResponse(ResponseCode.UNAUTHORIZED, authException.getClass().toString() + ": " + authException.getMessage(), null);
+        }
         WebUtil.renderString(response, objectResponse);
     }
 }