its-op-server/src/main/java/com/its/op/security/WebLoginFailureHandler.java

package com.its.op.security;

import lombok.extern.slf4j.Slf4j;
import org.springframework.security.authentication.*;
import org.springframework.security.core.AuthenticationException;
import org.springframework.security.core.userdetails.UsernameNotFoundException;
import org.springframework.security.web.authentication.AuthenticationFailureHandler;
import org.springframework.stereotype.Service;

import javax.servlet.RequestDispatcher;
import javax.servlet.ServletException;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
import java.io.IOException;

@Slf4j
@Service
public class WebLoginFailureHandler implements AuthenticationFailureHandler {

    @Override
    public void onAuthenticationFailure(HttpServletRequest request, HttpServletResponse response, AuthenticationException exception) throws IOException, ServletException {
        String key = "LoginFail";
        String message = "계정을 찾을 수 없습니다.";
        if (exception instanceof AuthenticationServiceException) {
            message ="시스템에 오류가 발생했습니다.";
        }
        else if (exception instanceof UsernameNotFoundException) {
            message = "아이디를 찾을 수 없습니다.";
        }
        else if (exception instanceof BadCredentialsException) {
            message = "아이디 또는 비밀번호가 일치하지 않습니다.";
        }
        else if (exception instanceof DisabledException) {
            message = "현재 사용할 수 없는 계정입니다.";
        }
        else if (exception instanceof LockedException) {
            message = "현재 잠긴 계정입니다.";
        }
        else if (exception instanceof AccountExpiredException) {
            message = "이미 만료된 계정입니다.";
        }
        else if (exception instanceof CredentialsExpiredException) {
            message = "비밀번호가 만료된 계정입니다.";
        }
        log.error("{}: {}, {}", key, message, request.getParameter("username"));
        request.setAttribute(key, message);
        RequestDispatcher dispatcher = request.getRequestDispatcher("/login.html");
        dispatcher.forward(request, response);

//        request.setAttribute("username", request.getParameter("username"));
//        request.getRequestDispatcher("/login_view?error=true").forward(request, response);
    }
}