mirror of
https://github.com/zitadel/zitadel.git
synced 2025-03-01 17:27:24 +00:00
5eeff97ffe
# Which Problems Are Solved Adds `failed attempts` field to the grpc response when a user enters wrong password when logging in FYI: this only covers the senario above; other senarios where this is not applied are: SetPasswordWithVerifyCode setPassword ChangPassword setPasswordWithPermission # How the Problems Are Solved Created new grpc message `CredentialsCheckError` - `proto/zitadel/message.proto` to include `failed_attempts` field. Had to create a new package - `github.com/zitadel/zitadel/internal/command/errors` to resolve cycle dependency between `github.com/zitadel/zitadel/internal/command` and `github.com/zitadel/zitadel/internal/command`. # Additional Changes - none # Additional Context - Closes https://github.com/zitadel/zitadel/issues/9198 --------- Co-authored-by: Iraq Jaber <IraqJaber@gmail.com>
91 lines
2.9 KiB
Go
91 lines
2.9 KiB
Go
package gerrors
|
|
|
|
import (
|
|
"errors"
|
|
|
|
"github.com/jackc/pgx/v5/pgconn"
|
|
"github.com/zitadel/logging"
|
|
"google.golang.org/grpc/codes"
|
|
"google.golang.org/grpc/status"
|
|
"google.golang.org/protobuf/protoadapt"
|
|
|
|
commandErrors "github.com/zitadel/zitadel/internal/command/errors"
|
|
"github.com/zitadel/zitadel/internal/zerrors"
|
|
"github.com/zitadel/zitadel/pkg/grpc/message"
|
|
)
|
|
|
|
func ZITADELToGRPCError(err error) error {
|
|
if err == nil {
|
|
return nil
|
|
}
|
|
code, key, id, ok := ExtractZITADELError(err)
|
|
if !ok {
|
|
return status.Convert(err).Err()
|
|
}
|
|
msg := key
|
|
msg += " (" + id + ")"
|
|
|
|
errorInfo := getErrorInfo(id, key, err)
|
|
|
|
s, err := status.New(code, msg).WithDetails(errorInfo)
|
|
if err != nil {
|
|
logging.WithError(err).WithField("logID", "GRPC-gIeRw").Debug("unable to add detail")
|
|
return status.New(code, msg).Err()
|
|
}
|
|
|
|
return s.Err()
|
|
}
|
|
|
|
func ExtractZITADELError(err error) (c codes.Code, msg, id string, ok bool) {
|
|
if err == nil {
|
|
return codes.OK, "", "", false
|
|
}
|
|
connErr := new(pgconn.ConnectError)
|
|
if ok := errors.As(err, &connErr); ok {
|
|
return codes.Internal, "db connection error", "", true
|
|
}
|
|
zitadelErr := new(zerrors.ZitadelError)
|
|
if ok := errors.As(err, &zitadelErr); !ok {
|
|
return codes.Unknown, err.Error(), "", false
|
|
}
|
|
switch {
|
|
case zerrors.IsErrorAlreadyExists(err):
|
|
return codes.AlreadyExists, zitadelErr.GetMessage(), zitadelErr.GetID(), true
|
|
case zerrors.IsDeadlineExceeded(err):
|
|
return codes.DeadlineExceeded, zitadelErr.GetMessage(), zitadelErr.GetID(), true
|
|
case zerrors.IsInternal(err):
|
|
return codes.Internal, zitadelErr.GetMessage(), zitadelErr.GetID(), true
|
|
case zerrors.IsErrorInvalidArgument(err):
|
|
return codes.InvalidArgument, zitadelErr.GetMessage(), zitadelErr.GetID(), true
|
|
case zerrors.IsNotFound(err):
|
|
return codes.NotFound, zitadelErr.GetMessage(), zitadelErr.GetID(), true
|
|
case zerrors.IsPermissionDenied(err):
|
|
return codes.PermissionDenied, zitadelErr.GetMessage(), zitadelErr.GetID(), true
|
|
case zerrors.IsPreconditionFailed(err):
|
|
return codes.FailedPrecondition, zitadelErr.GetMessage(), zitadelErr.GetID(), true
|
|
case zerrors.IsUnauthenticated(err):
|
|
return codes.Unauthenticated, zitadelErr.GetMessage(), zitadelErr.GetID(), true
|
|
case zerrors.IsUnavailable(err):
|
|
return codes.Unavailable, zitadelErr.GetMessage(), zitadelErr.GetID(), true
|
|
case zerrors.IsUnimplemented(err):
|
|
return codes.Unimplemented, zitadelErr.GetMessage(), zitadelErr.GetID(), true
|
|
case zerrors.IsResourceExhausted(err):
|
|
return codes.ResourceExhausted, zitadelErr.GetMessage(), zitadelErr.GetID(), true
|
|
default:
|
|
return codes.Unknown, err.Error(), "", false
|
|
}
|
|
}
|
|
|
|
func getErrorInfo(id, key string, err error) protoadapt.MessageV1 {
|
|
var errorInfo protoadapt.MessageV1
|
|
|
|
var wpe *commandErrors.WrongPasswordError
|
|
if err != nil && errors.As(err, &wpe) {
|
|
errorInfo = &message.CredentialsCheckError{Id: id, Message: key, FailedAttempts: wpe.FailedAttempts}
|
|
} else {
|
|
errorInfo = &message.ErrorDetail{Id: id, Message: key}
|
|
}
|
|
|
|
return errorInfo
|
|
}
|