fix : Not implemented fixes on DefaultWebAuthenticationFailureHandlerImpl, but already implemented on CustomizedWebAuthenticationFailureHandlerImpl

Author: patternhelloworld

README.md

@@ -250,9 +250,10 @@ public class CommonDataSourceConfiguration {
         - PKCE (``code_challege, code_challege_METHOD``) is optional.
         - PKCE adds a Code Verifier and a Code Challenge to the flow, enhancing the Authorization Code Grant Flow by preventing the issuance of an Access Token if the Authorization Code is compromised.
     2. Login with ``[email protected] / 1234 ``
-    3. You will be redirected to
+    3. You will be redirected to 
        ``https://localhost:8081/callback1?code=215e9539-1dcb-4843-b1ea-b2d7be0a3c44&state=xxx``
-       4. You can login with the API in the Postman
+       - However, if ``patternhelloworld.securityhelper.authorization-code.consent=Y``is set in the``application.properties``, it will be redirected to the consent page. 
+    4. You can login with the API in the Postman
         - ![img4.png](reference/docs/img.png)
         - ``code_verifier`` sample : EAp91aanXdoMcoOc2Il55H3UDDIV909k9olEEcl6L24J6_9X
 

lib/src/main/java/io/github/patternhelloworld/securityhelper/oauth2/api/config/security/response/auth/authentication/DefaultWebAuthenticationFailureHandlerImpl.java

@@ -15,7 +15,9 @@
 
 import java.io.IOException;
 import java.util.ArrayList;
+import java.util.HashMap;
 import java.util.List;
+import java.util.Map;
 
 
 @RequiredArgsConstructor
@@ -28,7 +30,7 @@ public class DefaultWebAuthenticationFailureHandlerImpl implements Authenticatio
     // SecurityEasyPlusExceptionHandler does NOT handle this error.
     @Override
     public void onAuthenticationFailure(HttpServletRequest request, HttpServletResponse response, AuthenticationException exception) throws IOException, ServletException {
-
+        // SecurityEasyPlusExceptionHandler does NOT handle this error.
         logger.error("Authentication failed: ", exception);
 
         String errorMessage = "An unexpected error occurred.";
@@ -45,6 +47,24 @@ public void onAuthenticationFailure(HttpServletRequest request, HttpServletRespo
                 return;
             }
             if(oauth2Exception.getError().getErrorCode().equals(ErrorCodeConstants.REDIRECT_TO_CONSENT)){
+                // Construct full URL
+                String fullURL = request.getRequestURL().toString();
+                if (request.getQueryString() != null) {
+                    fullURL += "?" + request.getQueryString();
+                }
+                Map<String, String> consentAttributes = new HashMap<>();
+                consentAttributes.put("clientId", request.getParameter("client_id"));
+                consentAttributes.put("redirectUri", request.getParameter("redirect_uri"));
+                consentAttributes.put("code", request.getParameter("code"));
+                consentAttributes.put("state", request.getParameter("state"));
+                consentAttributes.put("scope", request.getParameter("scope"));
+                if(request.getParameter("code_challenge") == null || request.getParameter("code_challenge_method") == null) {
+                    consentAttributes.put("codeChallenge", request.getParameter("code_challenge"));
+                    consentAttributes.put("codeChallengeMethod", request.getParameter("code_challenge_method"));
+                }
+                consentAttributes.put("consentRequestURI", fullURL);
+
+                request.setAttribute("consentAttributes", consentAttributes);
                 request.getRequestDispatcher("/consent").forward(request, response);
                 return;
             }
@@ -53,5 +73,6 @@ public void onAuthenticationFailure(HttpServletRequest request, HttpServletRespo
         request.setAttribute("errorDetails", errorDetails);
 
         request.getRequestDispatcher("/error").forward(request, response);
+
     }
 }