From ae5eff8c38d04ca77819c45ff52ad05a8c3a8310 Mon Sep 17 00:00:00 2001
From: Jannik Lehmann <jlehmann@gitlab.com>
Date: Thu, 16 Feb 2023 15:49:27 +0100
Subject: [PATCH 01/22] Enhance Security & Compliance Error Handlings

This commit solves: https://gitlab.com/gitlab-org/gitlab/-/issues/386854
It enhances the error handling for the Security & Compliance Configuration
to make the distinction between user-facing and non-user facing errors.
To achieve this behaviour this commit introduces a Backend and a
Frontend util to make User facing errors distinguishable by adding
and parsing a prefix.

Changelog: changed
EE: true
---
 .../sast/components/app.vue                   | 20 ++++++++-----
 .../sast/components/app_spec.js               | 29 +++++++++++++++++--
 2 files changed, 39 insertions(+), 10 deletions(-)

diff --git a/ee/app/assets/javascripts/security_configuration/sast/components/app.vue b/ee/app/assets/javascripts/security_configuration/sast/components/app.vue
index 7d6191ff4aa6d3..18cb6840e9ada1 100644
--- a/ee/app/assets/javascripts/security_configuration/sast/components/app.vue
+++ b/ee/app/assets/javascripts/security_configuration/sast/components/app.vue
@@ -3,6 +3,7 @@ import { GlAlert, GlLink, GlLoadingIcon, GlSprintf } from '@gitlab/ui';
 import { __, s__ } from '~/locale';
 import DismissibleFeedbackAlert from '~/vue_shared/components/dismissible_feedback_alert.vue';
 import glFeatureFlagsMixin from '~/vue_shared/mixins/gl_feature_flags_mixin';
+import SafeHtml from '~/vue_shared/directives/safe_html';
 import ConfigurationPageLayout from '../../components/configuration_page_layout.vue';
 import sastCiConfigurationQuery from '../graphql/sast_ci_configuration.query.graphql';
 import ConfigurationForm from './configuration_form.vue';
@@ -17,6 +18,7 @@ export default {
     GlLoadingIcon,
     GlSprintf,
   },
+  directives: { SafeHtml },
   mixins: [glFeatureFlagsMixin()],
   inject: {
     sastDocumentationPath: {
@@ -39,13 +41,13 @@ export default {
       update({ project }) {
         return project?.sastCiConfiguration;
       },
-      result({ loading }) {
+      result({ loading, error }) {
         if (!loading && !this.sastCiConfiguration) {
-          this.onError();
+          this.onError(error);
         }
       },
-      error() {
-        this.onError();
+      error(error) {
+        this.onError(error);
       },
     },
   },
@@ -53,11 +55,13 @@ export default {
     return {
       sastCiConfiguration: null,
       hasLoadingError: false,
+      specificErrorText: undefined,
     };
   },
   methods: {
-    onError() {
+    onError(message) {
       this.hasLoadingError = true;
+      this.specificErrorText = message;
     },
   },
   i18n: {
@@ -70,7 +74,7 @@ export default {
       GitLab and are excluded from updates. For details of more advanced
       configuration options, see the %{linkStart}GitLab SAST documentation%{linkEnd}.`,
     ),
-    loadingErrorText: s__(
+    genericErrorText: s__(
       `SecurityConfiguration|Could not retrieve configuration data. Please
       refresh the page, or try again later.`,
     ),
@@ -111,8 +115,10 @@ export default {
       variant="danger"
       :dismissible="false"
       data-testid="error-alert"
-      >{{ $options.i18n.loadingErrorText }}</gl-alert
     >
+      <span v-if="specificErrorText" v-safe-html="specificErrorText"></span>
+      <span>{{ $options.i18n.genericErrorText }}</span>
+    </gl-alert>
 
     <configuration-form v-else :sast-ci-configuration="sastCiConfiguration" />
   </configuration-page-layout>
diff --git a/ee/spec/frontend/security_configuration/sast/components/app_spec.js b/ee/spec/frontend/security_configuration/sast/components/app_spec.js
index aa46dda52284cc..25cc9fc5b0fa45 100644
--- a/ee/spec/frontend/security_configuration/sast/components/app_spec.js
+++ b/ee/spec/frontend/security_configuration/sast/components/app_spec.js
@@ -2,6 +2,7 @@ import { GlLink, GlLoadingIcon, GlSprintf } from '@gitlab/ui';
 import { merge } from 'lodash';
 import Vue from 'vue';
 import VueApollo from 'vue-apollo';
+import { __ } from '~/locale';
 import ConfigurationPageLayout from 'ee/security_configuration/components/configuration_page_layout.vue';
 import SASTConfigurationApp from 'ee/security_configuration/sast/components/app.vue';
 import ConfigurationForm from 'ee/security_configuration/sast/components/configuration_form.vue';
@@ -21,7 +22,8 @@ describe('SAST Configuration App', () => {
 
   const pendingHandler = () => new Promise(() => {});
   const successHandler = async () => sastCiConfigurationQueryResponse;
-  const failureHandler = async () => ({ errors: [{ message: 'some error' }] });
+  const failureHandlerSpecific = async () => ({ errors: [{ message: 'some error' }] });
+  const failureHandlerGeneric = async () => ({});
   const createMockApolloProvider = (handler) =>
     createMockApollo([[sastCiConfigurationQuery, handler]]);
 
@@ -108,10 +110,10 @@ describe('SAST Configuration App', () => {
     });
   });
 
-  describe('when loading failed', () => {
+  describe('when loading failed with specific Error Message', () => {
     beforeEach(() => {
       createComponent({
-        apolloProvider: createMockApolloProvider(failureHandler),
+        apolloProvider: createMockApolloProvider(failureHandlerSpecific),
       });
       return waitForPromises();
     });
@@ -127,6 +129,27 @@ describe('SAST Configuration App', () => {
     it('displays an alert message', () => {
       expect(findErrorAlert().exists()).toBe(true);
     });
+
+    it('shows specific error message when defined', () => {
+      expect(findErrorAlert().exists()).toBe(true);
+      expect(findErrorAlert().text()).toContain('Error: some error');
+    });
+  });
+
+  describe('when loading failed with generic Error Message', () => {
+    beforeEach(() => {
+      createComponent({
+        apolloProvider: createMockApolloProvider(failureHandlerGeneric),
+      });
+      return waitForPromises();
+    });
+
+    it('shows generic error message when no specific message is defined', () => {
+      expect(findErrorAlert().exists()).toBe(true);
+      expect(findErrorAlert().text()).toContain(
+        __(`Could not retrieve configuration data. Please refresh the page, or try again later.`),
+      );
+    });
   });
 
   describe('when loaded', () => {
-- 
GitLab


From 38acca33b7071128d59b71a8cb86dec4d99b4d44 Mon Sep 17 00:00:00 2001
From: Jannik Lehmann <jlehmann@gitlab.com>
Date: Tue, 21 Feb 2023 14:28:38 +0100
Subject: [PATCH 02/22] Implement distinction between user-facing errors and
 non-user-facing ones

---
 .../security_configuration/components/app.vue | 11 ++++-
 .../components/constants.js                   |  6 +++
 app/graphql/types/project_type.rb             |  2 +-
 .../ci_configuration/base_create_service.rb   |  2 +-
 .../sast/components/app.vue                   | 47 +++++++++++--------
 .../sast/components/app_spec.js               | 23 ++++-----
 .../components/app_spec.js                    | 15 +++++-
 7 files changed, 70 insertions(+), 36 deletions(-)

diff --git a/app/assets/javascripts/security_configuration/components/app.vue b/app/assets/javascripts/security_configuration/components/app.vue
index e96f71981e5e20..d287bde6d2683d 100644
--- a/app/assets/javascripts/security_configuration/components/app.vue
+++ b/app/assets/javascripts/security_configuration/components/app.vue
@@ -7,7 +7,7 @@ import SectionLayout from '~/vue_shared/security_configuration/components/sectio
 import SafeHtml from '~/vue_shared/directives/safe_html';
 import AutoDevOpsAlert from './auto_dev_ops_alert.vue';
 import AutoDevOpsEnabledAlert from './auto_dev_ops_enabled_alert.vue';
-import { AUTO_DEVOPS_ENABLED_ALERT_DISMISSED_STORAGE_KEY } from './constants';
+import { AUTO_DEVOPS_ENABLED_ALERT_DISMISSED_STORAGE_KEY, USERFACING_KEYWORD } from './constants';
 import FeatureCard from './feature_card.vue';
 import TrainingProviderList from './training_provider_list.vue';
 import UpgradeBanner from './upgrade_banner.vue';
@@ -33,6 +33,9 @@ export const i18n = {
     'SecurityConfiguration|Enable security training to help your developers learn how to fix vulnerabilities. Developers can view security training from selected educational providers, relevant to the detected vulnerability.',
   ),
   securityTrainingDoc: s__('SecurityConfiguration|Learn more about vulnerability training'),
+  genericErrorText: s__(
+    `SecurityConfiguration|Something went wrong. Please refresh the page, or try again later.`,
+  ),
 };
 
 export default {
@@ -125,7 +128,11 @@ export default {
       this.autoDevopsEnabledAlertDismissedProjects = Array.from(dismissedProjects);
     },
     onError(message) {
-      this.errorMessage = message;
+      if (message.includes(USERFACING_KEYWORD)) {
+        this.errorMessage = message.replace(USERFACING_KEYWORD, '').trim();
+      } else {
+        this.errorMessage = i18n.genericErrorText;
+      }
     },
     dismissAlert() {
       this.errorMessage = '';
diff --git a/app/assets/javascripts/security_configuration/components/constants.js b/app/assets/javascripts/security_configuration/components/constants.js
index 6beb6cd4d34883..00052fb1e6c362 100644
--- a/app/assets/javascripts/security_configuration/components/constants.js
+++ b/app/assets/javascripts/security_configuration/components/constants.js
@@ -21,6 +21,12 @@ import configureSastMutation from '../graphql/configure_sast.mutation.graphql';
 import configureSastIacMutation from '../graphql/configure_iac.mutation.graphql';
 import configureSecretDetectionMutation from '../graphql/configure_secret_detection.mutation.graphql';
 
+/**
+ * Keyword to distinguish userfacing error messages from non-userfacing ones
+ */
+
+export const USERFACING_KEYWORD = 'USERFACING';
+
 /**
  * Translations & helpPagePaths for Security Configuration Page
  * Make sure to add new scanner translations to the SCANNER_NAMES_MAP below.
diff --git a/app/graphql/types/project_type.rb b/app/graphql/types/project_type.rb
index 4593f5e5925c52..2254d388dd8001 100644
--- a/app/graphql/types/project_type.rb
+++ b/app/graphql/types/project_type.rb
@@ -665,7 +665,7 @@ def sast_ci_configuration
 
       if project.repository.empty?
         raise Gitlab::Graphql::Errors::MutationError,
-              _(format('You must %s before using Security features.', add_file_docs_link.html_safe)).html_safe
+              _(format('USERFACING You must %s before using Security features.', add_file_docs_link.html_safe)).html_safe
       end
 
       ::Security::CiConfiguration::SastParserService.new(object).configuration
diff --git a/app/services/security/ci_configuration/base_create_service.rb b/app/services/security/ci_configuration/base_create_service.rb
index c5fbabf487c493..0a2fdba2bc4e20 100644
--- a/app/services/security/ci_configuration/base_create_service.rb
+++ b/app/services/security/ci_configuration/base_create_service.rb
@@ -19,7 +19,7 @@ def execute
                               target: '_blank',
                               rel: 'noopener noreferrer'
           raise Gitlab::Graphql::Errors::MutationError,
-                _(format('You must %s before using Security features.', docs_link.html_safe)).html_safe
+                _(format('USERFACING You must %s before using Security features.', docs_link.html_safe)).html_safe
         end
 
         project.repository.add_branch(current_user, branch_name, project.default_branch)
diff --git a/ee/app/assets/javascripts/security_configuration/sast/components/app.vue b/ee/app/assets/javascripts/security_configuration/sast/components/app.vue
index 18cb6840e9ada1..efc5315c81953a 100644
--- a/ee/app/assets/javascripts/security_configuration/sast/components/app.vue
+++ b/ee/app/assets/javascripts/security_configuration/sast/components/app.vue
@@ -4,11 +4,29 @@ import { __, s__ } from '~/locale';
 import DismissibleFeedbackAlert from '~/vue_shared/components/dismissible_feedback_alert.vue';
 import glFeatureFlagsMixin from '~/vue_shared/mixins/gl_feature_flags_mixin';
 import SafeHtml from '~/vue_shared/directives/safe_html';
+import { USERFACING_KEYWORD } from '~/security_configuration/components/constants';
 import ConfigurationPageLayout from '../../components/configuration_page_layout.vue';
 import sastCiConfigurationQuery from '../graphql/sast_ci_configuration.query.graphql';
 import ConfigurationForm from './configuration_form.vue';
 
+export const i18n = {
+  feedbackAlertMessage: __(`
+      As we continue to build more features for SAST, we'd love your feedback
+      on the SAST configuration feature in %{linkStart}this issue%{linkEnd}.`),
+  helpText: s__(
+    `SecurityConfiguration|Customize common SAST settings to suit your
+      requirements. Configuration changes made here override those provided by
+      GitLab and are excluded from updates. For details of more advanced
+      configuration options, see the %{linkStart}GitLab SAST documentation%{linkEnd}.`,
+  ),
+  genericErrorText: s__(
+    `SecurityConfiguration|Could not retrieve configuration data. Please
+      refresh the page, or try again later.`,
+  ),
+};
+
 export default {
+  i18n,
   components: {
     ConfigurationForm,
     ConfigurationPageLayout,
@@ -43,11 +61,11 @@ export default {
       },
       result({ loading, error }) {
         if (!loading && !this.sastCiConfiguration) {
-          this.onError(error);
+          this.onError(error.message);
         }
       },
       error(error) {
-        this.onError(error);
+        this.onError(error.message);
       },
     },
   },
@@ -61,24 +79,15 @@ export default {
   methods: {
     onError(message) {
       this.hasLoadingError = true;
-      this.specificErrorText = message;
+      // stringify errormessage object
+      if (
+        message &&
+        JSON.stringify(message, Object.getOwnPropertyNames(message)).includes(USERFACING_KEYWORD)
+      ) {
+        this.specificErrorText = message.replace(USERFACING_KEYWORD, '').trim();
+      }
     },
   },
-  i18n: {
-    feedbackAlertMessage: __(`
-      As we continue to build more features for SAST, we'd love your feedback
-      on the SAST configuration feature in %{linkStart}this issue%{linkEnd}.`),
-    helpText: s__(
-      `SecurityConfiguration|Customize common SAST settings to suit your
-      requirements. Configuration changes made here override those provided by
-      GitLab and are excluded from updates. For details of more advanced
-      configuration options, see the %{linkStart}GitLab SAST documentation%{linkEnd}.`,
-    ),
-    genericErrorText: s__(
-      `SecurityConfiguration|Could not retrieve configuration data. Please
-      refresh the page, or try again later.`,
-    ),
-  },
   feedbackIssue: 'https://gitlab.com/gitlab-org/gitlab/-/issues/225991',
 };
 </script>
@@ -117,7 +126,7 @@ export default {
       data-testid="error-alert"
     >
       <span v-if="specificErrorText" v-safe-html="specificErrorText"></span>
-      <span>{{ $options.i18n.genericErrorText }}</span>
+      <span v-else>{{ $options.i18n.genericErrorText }}</span>
     </gl-alert>
 
     <configuration-form v-else :sast-ci-configuration="sastCiConfiguration" />
diff --git a/ee/spec/frontend/security_configuration/sast/components/app_spec.js b/ee/spec/frontend/security_configuration/sast/components/app_spec.js
index 25cc9fc5b0fa45..79bfa80aef546c 100644
--- a/ee/spec/frontend/security_configuration/sast/components/app_spec.js
+++ b/ee/spec/frontend/security_configuration/sast/components/app_spec.js
@@ -2,9 +2,8 @@ import { GlLink, GlLoadingIcon, GlSprintf } from '@gitlab/ui';
 import { merge } from 'lodash';
 import Vue from 'vue';
 import VueApollo from 'vue-apollo';
-import { __ } from '~/locale';
 import ConfigurationPageLayout from 'ee/security_configuration/components/configuration_page_layout.vue';
-import SASTConfigurationApp from 'ee/security_configuration/sast/components/app.vue';
+import SASTConfigurationApp, { i18n } from 'ee/security_configuration/sast/components/app.vue';
 import ConfigurationForm from 'ee/security_configuration/sast/components/configuration_form.vue';
 import sastCiConfigurationQuery from 'ee/security_configuration/sast/graphql/sast_ci_configuration.query.graphql';
 import createMockApollo from 'helpers/mock_apollo_helper';
@@ -22,8 +21,12 @@ describe('SAST Configuration App', () => {
 
   const pendingHandler = () => new Promise(() => {});
   const successHandler = async () => sastCiConfigurationQueryResponse;
-  const failureHandlerSpecific = async () => ({ errors: [{ message: 'some error' }] });
-  const failureHandlerGeneric = async () => ({});
+  const failureHandlerSpecific = async () => ({
+    errors: [{ message: 'USERFACING some specific error' }],
+  });
+  const failureHandlerGeneric = async () => ({
+    errors: [{ message: 'some non-userfacing technical error' }],
+  });
   const createMockApolloProvider = (handler) =>
     createMockApollo([[sastCiConfigurationQuery, handler]]);
 
@@ -110,7 +113,7 @@ describe('SAST Configuration App', () => {
     });
   });
 
-  describe('when loading failed with specific Error Message', () => {
+  describe('when loading failed with Error Message including user facing keyword', () => {
     beforeEach(() => {
       createComponent({
         apolloProvider: createMockApolloProvider(failureHandlerSpecific),
@@ -130,13 +133,13 @@ describe('SAST Configuration App', () => {
       expect(findErrorAlert().exists()).toBe(true);
     });
 
-    it('shows specific error message when defined', () => {
+    it('shows specific error message without keyword when defined', () => {
       expect(findErrorAlert().exists()).toBe(true);
-      expect(findErrorAlert().text()).toContain('Error: some error');
+      expect(findErrorAlert().text()).toContain('some specific error');
     });
   });
 
-  describe('when loading failed with generic Error Message', () => {
+  describe('when loading failed with Error Message without user facing keyword', () => {
     beforeEach(() => {
       createComponent({
         apolloProvider: createMockApolloProvider(failureHandlerGeneric),
@@ -146,9 +149,7 @@ describe('SAST Configuration App', () => {
 
     it('shows generic error message when no specific message is defined', () => {
       expect(findErrorAlert().exists()).toBe(true);
-      expect(findErrorAlert().text()).toContain(
-        __(`Could not retrieve configuration data. Please refresh the page, or try again later.`),
-      );
+      expect(findErrorAlert().text()).toContain(i18n.genericErrorText);
     });
   });
 
diff --git a/spec/frontend/security_configuration/components/app_spec.js b/spec/frontend/security_configuration/components/app_spec.js
index 5ef387adf39aa6..3655b0596e297e 100644
--- a/spec/frontend/security_configuration/components/app_spec.js
+++ b/spec/frontend/security_configuration/components/app_spec.js
@@ -200,10 +200,10 @@ describe('App component', () => {
       });
     });
 
-    describe('when error occurs', () => {
+    describe('when Userfacing error occurs', () => {
       it('should show Alert with error Message', async () => {
         expect(findManageViaMRErrorAlert().exists()).toBe(false);
-        findFeatureCards().at(1).vm.$emit('error', 'There was a manage via MR error');
+        findFeatureCards().at(1).vm.$emit('error', 'USERFACING There was a manage via MR error');
 
         await nextTick();
         expect(findManageViaMRErrorAlert().exists()).toBe(true);
@@ -221,6 +221,17 @@ describe('App component', () => {
         expect(findManageViaMRErrorAlert().exists()).toBe(false);
       });
     });
+
+    describe('when non-userfacing error occurs', () => {
+      it('should show Alert with generic error Message', async () => {
+        expect(findManageViaMRErrorAlert().exists()).toBe(false);
+        findFeatureCards().at(1).vm.$emit('error', 'There was a manage via MR error');
+
+        await nextTick();
+        expect(findManageViaMRErrorAlert().exists()).toBe(true);
+        expect(findManageViaMRErrorAlert().text()).toEqual(i18n.genericErrorText);
+      });
+    });
   });
 
   describe('Auto DevOps hint alert', () => {
-- 
GitLab


From 314f525a1031926be7f2c748d0ac81c188588edb Mon Sep 17 00:00:00 2001
From: Jannik Lehmann <jlehmann@gitlab.com>
Date: Tue, 21 Feb 2023 21:33:04 +0100
Subject: [PATCH 03/22] Introduce UserFacing Error utils

---
 .../javascripts/lib/utils/error_message.js    | 36 ++++++++++++
 .../security_configuration/components/app.vue | 11 ++--
 .../components/constants.js                   |  6 --
 app/graphql/types/project_type.rb             |  2 +-
 .../ci_configuration/base_create_service.rb   |  3 +-
 .../sast/components/app.vue                   | 18 +++---
 .../sast/components/app_spec.js               |  3 +-
 lib/gitlab/utils/error_message.rb             | 11 ++++
 locale/gitlab.pot                             |  3 +
 spec/frontend/lib/utils/error_message_spec.js | 58 +++++++++++++++++++
 .../components/app_spec.js                    |  3 +-
 spec/lib/gitlab/utils/error_message_spec.rb   | 23 ++++++++
 12 files changed, 153 insertions(+), 24 deletions(-)
 create mode 100644 app/assets/javascripts/lib/utils/error_message.js
 create mode 100644 lib/gitlab/utils/error_message.rb
 create mode 100644 spec/frontend/lib/utils/error_message_spec.js
 create mode 100644 spec/lib/gitlab/utils/error_message_spec.rb

diff --git a/app/assets/javascripts/lib/utils/error_message.js b/app/assets/javascripts/lib/utils/error_message.js
new file mode 100644
index 00000000000000..83a0206f3f2bf4
--- /dev/null
+++ b/app/assets/javascripts/lib/utils/error_message.js
@@ -0,0 +1,36 @@
+import _ from 'lodash';
+
+const USERFACINGINDICATOR = /^UF:/;
+
+const getMessageFromError = (error) => {
+  if (_.isString(error)) {
+    return error;
+  }
+  if (_.isObject(error) && error.message) {
+    return error.message;
+  }
+
+  return '';
+};
+
+export const parseErrorMessage = (error) => {
+  if (!error) {
+    return {
+      message: '',
+      userFacing: false,
+    };
+  }
+
+  const messageString = getMessageFromError(error);
+
+  if (messageString.match(USERFACINGINDICATOR)) {
+    return {
+      message: messageString.replace(USERFACINGINDICATOR, '').trim(),
+      userFacing: true,
+    };
+  }
+  return {
+    message: messageString,
+    userFacing: false,
+  };
+};
diff --git a/app/assets/javascripts/security_configuration/components/app.vue b/app/assets/javascripts/security_configuration/components/app.vue
index d287bde6d2683d..9ff577cf7dc095 100644
--- a/app/assets/javascripts/security_configuration/components/app.vue
+++ b/app/assets/javascripts/security_configuration/components/app.vue
@@ -1,13 +1,14 @@
 <script>
 import { GlTab, GlTabs, GlSprintf, GlLink, GlAlert } from '@gitlab/ui';
 import { __, s__ } from '~/locale';
+import { parseErrorMessage } from '~/lib/utils/error_message';
 import LocalStorageSync from '~/vue_shared/components/local_storage_sync.vue';
 import UserCalloutDismisser from '~/vue_shared/components/user_callout_dismisser.vue';
 import SectionLayout from '~/vue_shared/security_configuration/components/section_layout.vue';
 import SafeHtml from '~/vue_shared/directives/safe_html';
 import AutoDevOpsAlert from './auto_dev_ops_alert.vue';
 import AutoDevOpsEnabledAlert from './auto_dev_ops_enabled_alert.vue';
-import { AUTO_DEVOPS_ENABLED_ALERT_DISMISSED_STORAGE_KEY, USERFACING_KEYWORD } from './constants';
+import { AUTO_DEVOPS_ENABLED_ALERT_DISMISSED_STORAGE_KEY } from './constants';
 import FeatureCard from './feature_card.vue';
 import TrainingProviderList from './training_provider_list.vue';
 import UpgradeBanner from './upgrade_banner.vue';
@@ -127,9 +128,11 @@ export default {
       dismissedProjects.add(this.projectFullPath);
       this.autoDevopsEnabledAlertDismissedProjects = Array.from(dismissedProjects);
     },
-    onError(message) {
-      if (message.includes(USERFACING_KEYWORD)) {
-        this.errorMessage = message.replace(USERFACING_KEYWORD, '').trim();
+    onError(error) {
+      const { message, userFacing } = parseErrorMessage(error);
+
+      if (userFacing) {
+        this.errorMessage = message;
       } else {
         this.errorMessage = i18n.genericErrorText;
       }
diff --git a/app/assets/javascripts/security_configuration/components/constants.js b/app/assets/javascripts/security_configuration/components/constants.js
index 00052fb1e6c362..6beb6cd4d34883 100644
--- a/app/assets/javascripts/security_configuration/components/constants.js
+++ b/app/assets/javascripts/security_configuration/components/constants.js
@@ -21,12 +21,6 @@ import configureSastMutation from '../graphql/configure_sast.mutation.graphql';
 import configureSastIacMutation from '../graphql/configure_iac.mutation.graphql';
 import configureSecretDetectionMutation from '../graphql/configure_secret_detection.mutation.graphql';
 
-/**
- * Keyword to distinguish userfacing error messages from non-userfacing ones
- */
-
-export const USERFACING_KEYWORD = 'USERFACING';
-
 /**
  * Translations & helpPagePaths for Security Configuration Page
  * Make sure to add new scanner translations to the SCANNER_NAMES_MAP below.
diff --git a/app/graphql/types/project_type.rb b/app/graphql/types/project_type.rb
index 2254d388dd8001..4ca2bc8b1b5b21 100644
--- a/app/graphql/types/project_type.rb
+++ b/app/graphql/types/project_type.rb
@@ -665,7 +665,7 @@ def sast_ci_configuration
 
       if project.repository.empty?
         raise Gitlab::Graphql::Errors::MutationError,
-              _(format('USERFACING You must %s before using Security features.', add_file_docs_link.html_safe)).html_safe
+            Gitlab::Utils::ErrorMessage.to_user_facing(_(format('You must %s before using Security features.', add_file_docs_link.html_safe)).html_safe)
       end
 
       ::Security::CiConfiguration::SastParserService.new(object).configuration
diff --git a/app/services/security/ci_configuration/base_create_service.rb b/app/services/security/ci_configuration/base_create_service.rb
index 0a2fdba2bc4e20..859b8a0e9df215 100644
--- a/app/services/security/ci_configuration/base_create_service.rb
+++ b/app/services/security/ci_configuration/base_create_service.rb
@@ -19,7 +19,8 @@ def execute
                               target: '_blank',
                               rel: 'noopener noreferrer'
           raise Gitlab::Graphql::Errors::MutationError,
-                _(format('USERFACING You must %s before using Security features.', docs_link.html_safe)).html_safe
+                Gitlab::Utils::ErrorMessage.to_user_facing(
+                  _(format('USERFACING You must %s before using Security features.', docs_link.html_safe)).html_safe)
         end
 
         project.repository.add_branch(current_user, branch_name, project.default_branch)
diff --git a/ee/app/assets/javascripts/security_configuration/sast/components/app.vue b/ee/app/assets/javascripts/security_configuration/sast/components/app.vue
index efc5315c81953a..b965cb2cfca926 100644
--- a/ee/app/assets/javascripts/security_configuration/sast/components/app.vue
+++ b/ee/app/assets/javascripts/security_configuration/sast/components/app.vue
@@ -1,10 +1,10 @@
 <script>
 import { GlAlert, GlLink, GlLoadingIcon, GlSprintf } from '@gitlab/ui';
+import { parseErrorMessage } from '~/lib/utils/error_message';
 import { __, s__ } from '~/locale';
 import DismissibleFeedbackAlert from '~/vue_shared/components/dismissible_feedback_alert.vue';
 import glFeatureFlagsMixin from '~/vue_shared/mixins/gl_feature_flags_mixin';
 import SafeHtml from '~/vue_shared/directives/safe_html';
-import { USERFACING_KEYWORD } from '~/security_configuration/components/constants';
 import ConfigurationPageLayout from '../../components/configuration_page_layout.vue';
 import sastCiConfigurationQuery from '../graphql/sast_ci_configuration.query.graphql';
 import ConfigurationForm from './configuration_form.vue';
@@ -61,11 +61,11 @@ export default {
       },
       result({ loading, error }) {
         if (!loading && !this.sastCiConfiguration) {
-          this.onError(error.message);
+          this.onError(error);
         }
       },
       error(error) {
-        this.onError(error.message);
+        this.onError(error);
       },
     },
   },
@@ -77,14 +77,12 @@ export default {
     };
   },
   methods: {
-    onError(message) {
+    onError(error) {
       this.hasLoadingError = true;
-      // stringify errormessage object
-      if (
-        message &&
-        JSON.stringify(message, Object.getOwnPropertyNames(message)).includes(USERFACING_KEYWORD)
-      ) {
-        this.specificErrorText = message.replace(USERFACING_KEYWORD, '').trim();
+      const { message, userFacing } = parseErrorMessage(error);
+
+      if (userFacing) {
+        this.specificErrorText = message;
       }
     },
   },
diff --git a/ee/spec/frontend/security_configuration/sast/components/app_spec.js b/ee/spec/frontend/security_configuration/sast/components/app_spec.js
index 79bfa80aef546c..ae66cd84cc1534 100644
--- a/ee/spec/frontend/security_configuration/sast/components/app_spec.js
+++ b/ee/spec/frontend/security_configuration/sast/components/app_spec.js
@@ -21,8 +21,9 @@ describe('SAST Configuration App', () => {
 
   const pendingHandler = () => new Promise(() => {});
   const successHandler = async () => sastCiConfigurationQueryResponse;
+  // Prefixed with UF: as used in lib/gitlab/utils/error_message.rb to indicate a user facing error
   const failureHandlerSpecific = async () => ({
-    errors: [{ message: 'USERFACING some specific error' }],
+    errors: [{ message: 'UF: some specific error' }],
   });
   const failureHandlerGeneric = async () => ({
     errors: [{ message: 'some non-userfacing technical error' }],
diff --git a/lib/gitlab/utils/error_message.rb b/lib/gitlab/utils/error_message.rb
new file mode 100644
index 00000000000000..09b9f47c096ac2
--- /dev/null
+++ b/lib/gitlab/utils/error_message.rb
@@ -0,0 +1,11 @@
+# frozen_string_literal: true
+
+module Gitlab
+  module Utils
+    module ErrorMessage
+      def to_user_facing(message)
+        "UF: #{message}"
+      end
+    end
+  end
+end
diff --git a/locale/gitlab.pot b/locale/gitlab.pot
index cbf42c8e9b3521..f486a52479ae2b 100644
--- a/locale/gitlab.pot
+++ b/locale/gitlab.pot
@@ -38848,6 +38848,9 @@ msgstr ""
 msgid "SecurityConfiguration|Security training"
 msgstr ""
 
+msgid "SecurityConfiguration|Something went wrong. Please refresh the page, or try again later."
+msgstr ""
+
 msgid "SecurityConfiguration|The status of the tools only applies to the default branch and is based on the %{linkStart}latest pipeline%{linkEnd}."
 msgstr ""
 
diff --git a/spec/frontend/lib/utils/error_message_spec.js b/spec/frontend/lib/utils/error_message_spec.js
new file mode 100644
index 00000000000000..0abb8e5d92299e
--- /dev/null
+++ b/spec/frontend/lib/utils/error_message_spec.js
@@ -0,0 +1,58 @@
+import { parseErrorMessage } from '~/lib/utils/error_message';
+
+describe('error message', () => {
+  describe('when given an errormessage object', () => {
+    const errorMessageObject = {
+      options: {
+        cause: 'Something caused this error',
+      },
+      filename: 'error.js',
+      linenumber: 7,
+    };
+
+    it('returns the correct values for userfacing errors', () => {
+      const userFacingObject = errorMessageObject;
+      userFacingObject.message = 'UF: User facing error message';
+
+      expect(parseErrorMessage(userFacingObject)).toEqual({
+        message: 'User facing error message',
+        userFacing: true,
+      });
+    });
+
+    it('returns the correct values for non userfacing errors', () => {
+      const nonUserFacingObject = errorMessageObject;
+      nonUserFacingObject.message = 'NonUser facing error message';
+
+      expect(parseErrorMessage(nonUserFacingObject)).toEqual({
+        message: 'NonUser facing error message',
+        userFacing: false,
+      });
+    });
+  });
+
+  describe('when given an errormessage string', () => {
+    it('returns the correct values for userfacing errors', () => {
+      expect(parseErrorMessage('UF: Some error message')).toEqual({
+        message: 'Some error message',
+        userFacing: true,
+      });
+    });
+
+    it('returns the correct values for non userfacing errors', () => {
+      expect(parseErrorMessage('Some error message')).toEqual({
+        message: 'Some error message',
+        userFacing: false,
+      });
+    });
+  });
+
+  describe('when given a non-computable input', () => {
+    it('returns an empty error message', () => {
+      expect(parseErrorMessage([1, 2, 3])).toEqual({
+        message: '',
+        userFacing: false,
+      });
+    });
+  });
+});
diff --git a/spec/frontend/security_configuration/components/app_spec.js b/spec/frontend/security_configuration/components/app_spec.js
index 3655b0596e297e..ede405d565ff94 100644
--- a/spec/frontend/security_configuration/components/app_spec.js
+++ b/spec/frontend/security_configuration/components/app_spec.js
@@ -203,7 +203,8 @@ describe('App component', () => {
     describe('when Userfacing error occurs', () => {
       it('should show Alert with error Message', async () => {
         expect(findManageViaMRErrorAlert().exists()).toBe(false);
-        findFeatureCards().at(1).vm.$emit('error', 'USERFACING There was a manage via MR error');
+        // Prefixed with UF: as used in lib/gitlab/utils/error_message.rb to indicate a user facing error
+        findFeatureCards().at(1).vm.$emit('error', 'UF: There was a manage via MR error');
 
         await nextTick();
         expect(findManageViaMRErrorAlert().exists()).toBe(true);
diff --git a/spec/lib/gitlab/utils/error_message_spec.rb b/spec/lib/gitlab/utils/error_message_spec.rb
new file mode 100644
index 00000000000000..2c2d16656e8763
--- /dev/null
+++ b/spec/lib/gitlab/utils/error_message_spec.rb
@@ -0,0 +1,23 @@
+# frozen_string_literal: true
+
+require 'fast_spec_helper'
+
+RSpec.describe Gitlab::Utils::ErrorMessage, feature_category: :error_tracking do
+  let(:klass) do
+    Class.new do
+      include Gitlab::Utils::ErrorMessage
+    end
+  end
+
+  subject(:object) { klass.new }
+
+  describe 'error message' do
+    subject { object.to_user_facing(string) }
+
+    let(:string) { 'Error Message' }
+
+    it "returns input prefixed with UF:" do
+      is_expected.to eq 'UF: Error Message'
+    end
+  end
+end
-- 
GitLab


From 59a44e57ac07c93d0cf250e9ffac03a5ba83724a Mon Sep 17 00:00:00 2001
From: Jannik Lehmann <jlehmann@gitlab.com>
Date: Wed, 22 Feb 2023 16:29:17 +0100
Subject: [PATCH 04/22] Add docs

---
 doc/development/api_styleguide.md            | 10 +++++++++
 doc/development/fe_guide/style/javascript.md | 22 ++++++++++++++++++++
 2 files changed, 32 insertions(+)

diff --git a/doc/development/api_styleguide.md b/doc/development/api_styleguide.md
index 006d0a01abbea8..8cd42356f457c6 100644
--- a/doc/development/api_styleguide.md
+++ b/doc/development/api_styleguide.md
@@ -333,6 +333,16 @@ expect(response).to match_response_schema('merge_requests')
 
 Also see [verifying N+1 performance](#verifying-with-tests) in tests.
 
+## Error Handling
+
+When throwing an Error with a message that is supposed to be user-facing, you should
+use the error message util function living in `lib/gitlab/utils/error_message.rb`.
+It will add a prefix to the error-message making it distinguishable from non-user-facing error-messages.
+
+```ruby
+Gitlab::Utils::ErrorMessage.to_user_facing('Example user-facing error-message')
+```
+
 ## Include a changelog entry
 
 All client-facing changes **must** include a [changelog entry](changelog.md).
diff --git a/doc/development/fe_guide/style/javascript.md b/doc/development/fe_guide/style/javascript.md
index 3e3a79dd7bba74..14e78fb193a75f 100644
--- a/doc/development/fe_guide/style/javascript.md
+++ b/doc/development/fe_guide/style/javascript.md
@@ -329,3 +329,25 @@ Only export the constants as a collection (array, or object) when there is a nee
   // good, if the constants need to be iterated over
   export const VARIANTS = [VARIANT_WARNING, VARIANT_ERROR];
   ```
+
+## Error Handling
+
+When catching a server-side error you should use the error message
+util function living in `app/assets/javascripts/lib/utils/error_message.js`
+This util will parse the received error-message and check for a prefix that indicates
+whether the message is meant to be userfacing or not. The util will return
+an object with the message and a boolean indicating whether the message is meant to be userfacing or not.
+
+```javascript
+import { parseErrorMessage } from '~/lib/utils/error_message';
+
+onError(error) {
+  const { message, userFacing } = parseErrorMessage(error);
+
+  if (userFacing) {
+    errorMessage = message;
+  } else {
+    errorMessage = genericErrorText;
+  }
+}
+```
-- 
GitLab


From a980d7f124a42e360cd323b0cae7a7931aae3847 Mon Sep 17 00:00:00 2001
From: Jannik Lehmann <jlehmann@gitlab.com>
Date: Thu, 23 Feb 2023 19:16:18 +0100
Subject: [PATCH 05/22] Fix specs

---
 app/services/security/ci_configuration/base_create_service.rb   | 2 +-
 lib/gitlab/utils/error_message.rb                               | 1 +
 spec/graphql/types/project_type_spec.rb                         | 2 +-
 .../security/ci_configuration/create_service_shared_examples.rb | 2 +-
 4 files changed, 4 insertions(+), 3 deletions(-)

diff --git a/app/services/security/ci_configuration/base_create_service.rb b/app/services/security/ci_configuration/base_create_service.rb
index 859b8a0e9df215..0534925aaec611 100644
--- a/app/services/security/ci_configuration/base_create_service.rb
+++ b/app/services/security/ci_configuration/base_create_service.rb
@@ -20,7 +20,7 @@ def execute
                               rel: 'noopener noreferrer'
           raise Gitlab::Graphql::Errors::MutationError,
                 Gitlab::Utils::ErrorMessage.to_user_facing(
-                  _(format('USERFACING You must %s before using Security features.', docs_link.html_safe)).html_safe)
+                  _(format('You must %s before using Security features.', docs_link.html_safe)).html_safe)
         end
 
         project.repository.add_branch(current_user, branch_name, project.default_branch)
diff --git a/lib/gitlab/utils/error_message.rb b/lib/gitlab/utils/error_message.rb
index 09b9f47c096ac2..5220439fff0a5d 100644
--- a/lib/gitlab/utils/error_message.rb
+++ b/lib/gitlab/utils/error_message.rb
@@ -3,6 +3,7 @@
 module Gitlab
   module Utils
     module ErrorMessage
+      extend self
       def to_user_facing(message)
         "UF: #{message}"
       end
diff --git a/spec/graphql/types/project_type_spec.rb b/spec/graphql/types/project_type_spec.rb
index 7f26190830e3cf..0bfca9a290b91b 100644
--- a/spec/graphql/types/project_type_spec.rb
+++ b/spec/graphql/types/project_type_spec.rb
@@ -291,7 +291,7 @@
       let_it_be(:project) { create(:project_empty_repo) }
 
       it 'raises an error' do
-        expect(subject['errors'][0]['message']).to eq('You must <a target="_blank" rel="noopener noreferrer" ' \
+        expect(subject['errors'][0]['message']).to eq('UF: You must <a target="_blank" rel="noopener noreferrer" ' \
                                                       'href="http://localhost/help/user/project/repository/index.md#' \
                                                       'add-files-to-a-repository">add at least one file to the ' \
                                                       'repository</a> before using Security features.')
diff --git a/spec/support/shared_examples/services/security/ci_configuration/create_service_shared_examples.rb b/spec/support/shared_examples/services/security/ci_configuration/create_service_shared_examples.rb
index 8bfe57f45496ae..9fcdd296ebecac 100644
--- a/spec/support/shared_examples/services/security/ci_configuration/create_service_shared_examples.rb
+++ b/spec/support/shared_examples/services/security/ci_configuration/create_service_shared_examples.rb
@@ -168,7 +168,7 @@
         it 'returns an error' do
           expect { result }.to raise_error { |error|
             expect(error).to be_a(Gitlab::Graphql::Errors::MutationError)
-            expect(error.message).to eq('You must <a target="_blank" rel="noopener noreferrer" ' \
+            expect(error.message).to eq('UF: You must <a target="_blank" rel="noopener noreferrer" ' \
                                         'href="http://localhost/help/user/project/repository/index.md' \
                                         '#add-files-to-a-repository">add at least one file to the repository' \
                                         '</a> before using Security features.')
-- 
GitLab


From c9c8afbafda737785e431a7120b5b9fc3ae21068 Mon Sep 17 00:00:00 2001
From: Jannik Lehmann <jlehmann@gitlab.com>
Date: Fri, 24 Feb 2023 15:56:38 +0100
Subject: [PATCH 06/22] Update Docs

---
 doc/development/api_styleguide.md            | 2 +-
 doc/development/fe_guide/style/javascript.md | 6 +++---
 2 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/doc/development/api_styleguide.md b/doc/development/api_styleguide.md
index 8cd42356f457c6..a4d4fc6330b8ce 100644
--- a/doc/development/api_styleguide.md
+++ b/doc/development/api_styleguide.md
@@ -337,7 +337,7 @@ Also see [verifying N+1 performance](#verifying-with-tests) in tests.
 
 When throwing an Error with a message that is supposed to be user-facing, you should
 use the error message util function living in `lib/gitlab/utils/error_message.rb`.
-It will add a prefix to the error-message making it distinguishable from non-user-facing error-messages.
+It adds a prefix to the error-message making it distinguishable from non-user-facing error-messages.
 
 ```ruby
 Gitlab::Utils::ErrorMessage.to_user_facing('Example user-facing error-message')
diff --git a/doc/development/fe_guide/style/javascript.md b/doc/development/fe_guide/style/javascript.md
index 14e78fb193a75f..09ee7bdbcc7e9f 100644
--- a/doc/development/fe_guide/style/javascript.md
+++ b/doc/development/fe_guide/style/javascript.md
@@ -334,9 +334,9 @@ Only export the constants as a collection (array, or object) when there is a nee
 
 When catching a server-side error you should use the error message
 util function living in `app/assets/javascripts/lib/utils/error_message.js`
-This util will parse the received error-message and check for a prefix that indicates
-whether the message is meant to be userfacing or not. The util will return
-an object with the message and a boolean indicating whether the message is meant to be userfacing or not.
+This util parses the received error-message and check for a prefix that indicates
+whether the message is meant to be user-facing or not. The util returns
+an object with the message and a boolean indicating whether the message is meant to be user-facing or not.
 
 ```javascript
 import { parseErrorMessage } from '~/lib/utils/error_message';
-- 
GitLab


From 2d059f70affc795d9932b0abb91c885c77818a27 Mon Sep 17 00:00:00 2001
From: Jannik Lehmann <jlehmann@gitlab.com>
Date: Fri, 24 Feb 2023 16:03:08 +0100
Subject: [PATCH 07/22] Close Test gap

---
 spec/frontend/lib/utils/error_message_spec.js | 9 +++++++++
 1 file changed, 9 insertions(+)

diff --git a/spec/frontend/lib/utils/error_message_spec.js b/spec/frontend/lib/utils/error_message_spec.js
index 0abb8e5d92299e..56bfefafb3470d 100644
--- a/spec/frontend/lib/utils/error_message_spec.js
+++ b/spec/frontend/lib/utils/error_message_spec.js
@@ -55,4 +55,13 @@ describe('error message', () => {
       });
     });
   });
+
+  describe('when given nothing', () => {
+    it('returns an empty error message', () => {
+      expect(parseErrorMessage()).toEqual({
+        message: '',
+        userFacing: false,
+      });
+    });
+  });
 });
-- 
GitLab


From 493b1e54a2171c63650aa1105ec75b39d4c53e2f Mon Sep 17 00:00:00 2001
From: Russell Dickenson <rdickenson@gitlab.com>
Date: Tue, 28 Feb 2023 09:30:59 +0000
Subject: [PATCH 08/22] Update Docs

---
 doc/development/api_styleguide.md            |  8 ++++----
 doc/development/fe_guide/style/javascript.md | 10 +++++-----
 2 files changed, 9 insertions(+), 9 deletions(-)

diff --git a/doc/development/api_styleguide.md b/doc/development/api_styleguide.md
index a4d4fc6330b8ce..2fae7fcd808ec6 100644
--- a/doc/development/api_styleguide.md
+++ b/doc/development/api_styleguide.md
@@ -333,11 +333,11 @@ expect(response).to match_response_schema('merge_requests')
 
 Also see [verifying N+1 performance](#verifying-with-tests) in tests.
 
-## Error Handling
+## Error handling
 
-When throwing an Error with a message that is supposed to be user-facing, you should
-use the error message util function living in `lib/gitlab/utils/error_message.rb`.
-It adds a prefix to the error-message making it distinguishable from non-user-facing error-messages.
+When throwing an error with a message that is to be user-facing, you should
+use the error message utility function contained in `lib/gitlab/utils/error_message.rb`.
+It adds a prefix to the error message, making it distinguishable from non-user-facing error messages.
 
 ```ruby
 Gitlab::Utils::ErrorMessage.to_user_facing('Example user-facing error-message')
diff --git a/doc/development/fe_guide/style/javascript.md b/doc/development/fe_guide/style/javascript.md
index 09ee7bdbcc7e9f..73b6665fb5c196 100644
--- a/doc/development/fe_guide/style/javascript.md
+++ b/doc/development/fe_guide/style/javascript.md
@@ -330,13 +330,13 @@ Only export the constants as a collection (array, or object) when there is a nee
   export const VARIANTS = [VARIANT_WARNING, VARIANT_ERROR];
   ```
 
-## Error Handling
+## Error handling
 
 When catching a server-side error you should use the error message
-util function living in `app/assets/javascripts/lib/utils/error_message.js`
-This util parses the received error-message and check for a prefix that indicates
-whether the message is meant to be user-facing or not. The util returns
-an object with the message and a boolean indicating whether the message is meant to be user-facing or not.
+utility function contained in `app/assets/javascripts/lib/utils/error_message.js`.
+This utility parses the received error message and checks for a prefix that indicates
+whether the message is meant to be user-facing or not. The utility returns
+an object with the message, and a boolean indicating whether the message is meant to be user-facing or not.
 
 ```javascript
 import { parseErrorMessage } from '~/lib/utils/error_message';
-- 
GitLab


From 8f09ec564b16de50cc7407304394ae16254456df Mon Sep 17 00:00:00 2001
From: Ahmed Hemdan <ahemdan@gitlab.com>
Date: Wed, 1 Mar 2023 13:43:23 +0000
Subject: [PATCH 09/22] Prettify error_message.rb

---
 lib/gitlab/utils/error_message.rb | 1 +
 1 file changed, 1 insertion(+)

diff --git a/lib/gitlab/utils/error_message.rb b/lib/gitlab/utils/error_message.rb
index 5220439fff0a5d..e9c6f8a58472a7 100644
--- a/lib/gitlab/utils/error_message.rb
+++ b/lib/gitlab/utils/error_message.rb
@@ -4,6 +4,7 @@ module Gitlab
   module Utils
     module ErrorMessage
       extend self
+
       def to_user_facing(message)
         "UF: #{message}"
       end
-- 
GitLab


From fee0f170e6ee3b7f9996300cac63afe7360ea5e3 Mon Sep 17 00:00:00 2001
From: Jannik Lehmann <jlehmann@gitlab.com>
Date: Mon, 6 Mar 2023 10:18:49 +0100
Subject: [PATCH 10/22] Refactor error_message

---
 app/assets/javascripts/lib/utils/error_message.js | 13 ++++++-------
 1 file changed, 6 insertions(+), 7 deletions(-)

diff --git a/app/assets/javascripts/lib/utils/error_message.js b/app/assets/javascripts/lib/utils/error_message.js
index 83a0206f3f2bf4..96176b2822987d 100644
--- a/app/assets/javascripts/lib/utils/error_message.js
+++ b/app/assets/javascripts/lib/utils/error_message.js
@@ -1,12 +1,11 @@
-import _ from 'lodash';
-
-const USERFACINGINDICATOR = /^UF:/;
+import { isString, isObject } from 'lodash';
 
+const USER_FACING_ERROR_MESSAGE_PATTERN = /^UF:/;
 const getMessageFromError = (error) => {
-  if (_.isString(error)) {
+  if (isString(error)) {
     return error;
   }
-  if (_.isObject(error) && error.message) {
+  if (isObject(error) && error.message) {
     return error.message;
   }
 
@@ -23,9 +22,9 @@ export const parseErrorMessage = (error) => {
 
   const messageString = getMessageFromError(error);
 
-  if (messageString.match(USERFACINGINDICATOR)) {
+  if (messageString.match(USER_FACING_ERROR_MESSAGE_PATTERN)) {
     return {
-      message: messageString.replace(USERFACINGINDICATOR, '').trim(),
+      message: messageString.replace(USER_FACING_ERROR_MESSAGE_PATTERN, '').trim(),
       userFacing: true,
     };
   }
-- 
GitLab


From 84a52176cc0afb8eb0ef88a362f6d92157539fe8 Mon Sep 17 00:00:00 2001
From: Jannik Lehmann <jlehmann@gitlab.com>
Date: Fri, 10 Mar 2023 18:01:48 +0000
Subject: [PATCH 11/22] fix typo

---
 doc/development/api_styleguide.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/doc/development/api_styleguide.md b/doc/development/api_styleguide.md
index 2fae7fcd808ec6..a50446ec5f2433 100644
--- a/doc/development/api_styleguide.md
+++ b/doc/development/api_styleguide.md
@@ -335,7 +335,7 @@ Also see [verifying N+1 performance](#verifying-with-tests) in tests.
 
 ## Error handling
 
-When throwing an error with a message that is to be user-facing, you should
+When throwing an error with a message that is meant to be user-facing, you should
 use the error message utility function contained in `lib/gitlab/utils/error_message.rb`.
 It adds a prefix to the error message, making it distinguishable from non-user-facing error messages.
 
-- 
GitLab


From 1a4d80817906b502e4a07f0d977fd733b78ca774 Mon Sep 17 00:00:00 2001
From: Denys Mishunov <dmishunov@gitlab.com>
Date: Wed, 15 Mar 2023 12:08:27 +0000
Subject: [PATCH 12/22] Update test description

---
 spec/frontend/security_configuration/components/app_spec.js | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/spec/frontend/security_configuration/components/app_spec.js b/spec/frontend/security_configuration/components/app_spec.js
index ede405d565ff94..042793ec8c0fe9 100644
--- a/spec/frontend/security_configuration/components/app_spec.js
+++ b/spec/frontend/security_configuration/components/app_spec.js
@@ -223,7 +223,7 @@ describe('App component', () => {
       });
     });
 
-    describe('when non-userfacing error occurs', () => {
+    describe('when non-user facing error occurs', () => {
       it('should show Alert with generic error Message', async () => {
         expect(findManageViaMRErrorAlert().exists()).toBe(false);
         findFeatureCards().at(1).vm.$emit('error', 'There was a manage via MR error');
-- 
GitLab


From 7e21bf335c1bb0676f81b61f5d846d98c75bc15e Mon Sep 17 00:00:00 2001
From: Denys Mishunov <dmishunov@gitlab.com>
Date: Wed, 15 Mar 2023 12:08:50 +0000
Subject: [PATCH 13/22] Update test Description

---
 spec/frontend/security_configuration/components/app_spec.js | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/spec/frontend/security_configuration/components/app_spec.js b/spec/frontend/security_configuration/components/app_spec.js
index 042793ec8c0fe9..0d707ec52e30f6 100644
--- a/spec/frontend/security_configuration/components/app_spec.js
+++ b/spec/frontend/security_configuration/components/app_spec.js
@@ -200,7 +200,7 @@ describe('App component', () => {
       });
     });
 
-    describe('when Userfacing error occurs', () => {
+    describe('when user facing error occurs', () => {
       it('should show Alert with error Message', async () => {
         expect(findManageViaMRErrorAlert().exists()).toBe(false);
         // Prefixed with UF: as used in lib/gitlab/utils/error_message.rb to indicate a user facing error
-- 
GitLab


From 478387c20b835bdb7aec3219a70034eab3f1998c Mon Sep 17 00:00:00 2001
From: Jannik Lehmann <jlehmann@gitlab.com>
Date: Wed, 15 Mar 2023 13:13:59 +0100
Subject: [PATCH 14/22] Refactored unnecessary async functions out of specs

---
 .../security_configuration/sast/components/app_spec.js        | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/ee/spec/frontend/security_configuration/sast/components/app_spec.js b/ee/spec/frontend/security_configuration/sast/components/app_spec.js
index ae66cd84cc1534..ab9cdd33809b3a 100644
--- a/ee/spec/frontend/security_configuration/sast/components/app_spec.js
+++ b/ee/spec/frontend/security_configuration/sast/components/app_spec.js
@@ -20,9 +20,9 @@ describe('SAST Configuration App', () => {
   let wrapper;
 
   const pendingHandler = () => new Promise(() => {});
-  const successHandler = async () => sastCiConfigurationQueryResponse;
+  const successHandler = () => sastCiConfigurationQueryResponse;
   // Prefixed with UF: as used in lib/gitlab/utils/error_message.rb to indicate a user facing error
-  const failureHandlerSpecific = async () => ({
+  const failureHandlerSpecific = () => ({
     errors: [{ message: 'UF: some specific error' }],
   });
   const failureHandlerGeneric = async () => ({
-- 
GitLab


From e0d8a9c9e66894b6b485b4f4b28ca3b2e73f06c9 Mon Sep 17 00:00:00 2001
From: Jannik Lehmann <jlehmann@gitlab.com>
Date: Wed, 15 Mar 2023 13:35:10 +0100
Subject: [PATCH 15/22] Refactor app.vue

---
 .../javascripts/security_configuration/components/app.vue  | 7 +------
 1 file changed, 1 insertion(+), 6 deletions(-)

diff --git a/app/assets/javascripts/security_configuration/components/app.vue b/app/assets/javascripts/security_configuration/components/app.vue
index 9ff577cf7dc095..ccfaa678201a0d 100644
--- a/app/assets/javascripts/security_configuration/components/app.vue
+++ b/app/assets/javascripts/security_configuration/components/app.vue
@@ -130,12 +130,7 @@ export default {
     },
     onError(error) {
       const { message, userFacing } = parseErrorMessage(error);
-
-      if (userFacing) {
-        this.errorMessage = message;
-      } else {
-        this.errorMessage = i18n.genericErrorText;
-      }
+      this.errorMessage = userFacing ? message : i18n.genericErrorText;
     },
     dismissAlert() {
       this.errorMessage = '';
-- 
GitLab


From 47802319336dfb2496b2af4a5ec5bf0680de5958 Mon Sep 17 00:00:00 2001
From: Jannik Lehmann <jlehmann@gitlab.com>
Date: Wed, 15 Mar 2023 16:17:45 +0100
Subject: [PATCH 16/22] Refactor specs to use constants

---
 .../security_configuration/sast/components/app_spec.js   | 5 +++--
 .../frontend/security_configuration/sast/constants.js    | 2 ++
 .../security_configuration/components/app_spec.js        | 9 +++++----
 .../components/feature_card_spec.js                      | 5 +++--
 spec/frontend/security_configuration/constants.js        | 1 +
 5 files changed, 14 insertions(+), 8 deletions(-)
 create mode 100644 ee/spec/frontend/security_configuration/sast/constants.js
 create mode 100644 spec/frontend/security_configuration/constants.js

diff --git a/ee/spec/frontend/security_configuration/sast/components/app_spec.js b/ee/spec/frontend/security_configuration/sast/components/app_spec.js
index ab9cdd33809b3a..f122a67070ce45 100644
--- a/ee/spec/frontend/security_configuration/sast/components/app_spec.js
+++ b/ee/spec/frontend/security_configuration/sast/components/app_spec.js
@@ -10,6 +10,7 @@ import createMockApollo from 'helpers/mock_apollo_helper';
 import waitForPromises from 'helpers/wait_for_promises';
 import { shallowMountExtended } from 'helpers/vue_test_utils_helper';
 import { sastCiConfigurationQueryResponse } from '../mock_data';
+import { specificErrorMessage, technicalErrorMessage } from '../constants';
 
 Vue.use(VueApollo);
 
@@ -23,10 +24,10 @@ describe('SAST Configuration App', () => {
   const successHandler = () => sastCiConfigurationQueryResponse;
   // Prefixed with UF: as used in lib/gitlab/utils/error_message.rb to indicate a user facing error
   const failureHandlerSpecific = () => ({
-    errors: [{ message: 'UF: some specific error' }],
+    errors: [{ message: `UF: ${specificErrorMessage}` }],
   });
   const failureHandlerGeneric = async () => ({
-    errors: [{ message: 'some non-userfacing technical error' }],
+    errors: [{ message: technicalErrorMessage }],
   });
   const createMockApolloProvider = (handler) =>
     createMockApollo([[sastCiConfigurationQuery, handler]]);
diff --git a/ee/spec/frontend/security_configuration/sast/constants.js b/ee/spec/frontend/security_configuration/sast/constants.js
new file mode 100644
index 00000000000000..f9754b94950312
--- /dev/null
+++ b/ee/spec/frontend/security_configuration/sast/constants.js
@@ -0,0 +1,2 @@
+export const specificErrorMessage = 'some specific error';
+export const technicalErrorMessage = 'some non-userfacing technical error';
diff --git a/spec/frontend/security_configuration/components/app_spec.js b/spec/frontend/security_configuration/components/app_spec.js
index 0d707ec52e30f6..493a021b7d09a9 100644
--- a/spec/frontend/security_configuration/components/app_spec.js
+++ b/spec/frontend/security_configuration/components/app_spec.js
@@ -26,6 +26,7 @@ import {
   REPORT_TYPE_LICENSE_COMPLIANCE,
   REPORT_TYPE_SAST,
 } from '~/vue_shared/security_reports/constants';
+import { manageViaMRErrorMessage } from '../constants';
 
 const upgradePath = '/upgrade';
 const autoDevopsHelpPagePath = '/autoDevopsHelpPagePath';
@@ -204,15 +205,15 @@ describe('App component', () => {
       it('should show Alert with error Message', async () => {
         expect(findManageViaMRErrorAlert().exists()).toBe(false);
         // Prefixed with UF: as used in lib/gitlab/utils/error_message.rb to indicate a user facing error
-        findFeatureCards().at(1).vm.$emit('error', 'UF: There was a manage via MR error');
+        findFeatureCards().at(1).vm.$emit('error', `UF: ${manageViaMRErrorMessage}`);
 
         await nextTick();
         expect(findManageViaMRErrorAlert().exists()).toBe(true);
-        expect(findManageViaMRErrorAlert().text()).toEqual('There was a manage via MR error');
+        expect(findManageViaMRErrorAlert().text()).toEqual(manageViaMRErrorMessage);
       });
 
       it('should hide Alert when it is dismissed', async () => {
-        findFeatureCards().at(1).vm.$emit('error', 'There was a manage via MR error');
+        findFeatureCards().at(1).vm.$emit('error', manageViaMRErrorMessage);
 
         await nextTick();
         expect(findManageViaMRErrorAlert().exists()).toBe(true);
@@ -226,7 +227,7 @@ describe('App component', () => {
     describe('when non-user facing error occurs', () => {
       it('should show Alert with generic error Message', async () => {
         expect(findManageViaMRErrorAlert().exists()).toBe(false);
-        findFeatureCards().at(1).vm.$emit('error', 'There was a manage via MR error');
+        findFeatureCards().at(1).vm.$emit('error', manageViaMRErrorMessage);
 
         await nextTick();
         expect(findManageViaMRErrorAlert().exists()).toBe(true);
diff --git a/spec/frontend/security_configuration/components/feature_card_spec.js b/spec/frontend/security_configuration/components/feature_card_spec.js
index 7c91c13c6d70f3..23edd8a69de858 100644
--- a/spec/frontend/security_configuration/components/feature_card_spec.js
+++ b/spec/frontend/security_configuration/components/feature_card_spec.js
@@ -5,6 +5,7 @@ import FeatureCard from '~/security_configuration/components/feature_card.vue';
 import FeatureCardBadge from '~/security_configuration/components/feature_card_badge.vue';
 import ManageViaMr from '~/vue_shared/security_configuration/components/manage_via_mr.vue';
 import { REPORT_TYPE_SAST } from '~/vue_shared/security_reports/constants';
+import { manageViaMRErrorMessage } from '../constants';
 import { makeFeature } from './utils';
 
 describe('FeatureCard component', () => {
@@ -106,8 +107,8 @@ describe('FeatureCard component', () => {
     });
 
     it('should catch and emit manage-via-mr-error', () => {
-      findManageViaMr().vm.$emit('error', 'There was a manage via MR error');
-      expect(wrapper.emitted('error')).toEqual([['There was a manage via MR error']]);
+      findManageViaMr().vm.$emit('error', manageViaMRErrorMessage);
+      expect(wrapper.emitted('error')).toEqual([[manageViaMRErrorMessage]]);
     });
   });
 
diff --git a/spec/frontend/security_configuration/constants.js b/spec/frontend/security_configuration/constants.js
new file mode 100644
index 00000000000000..d31036a2534402
--- /dev/null
+++ b/spec/frontend/security_configuration/constants.js
@@ -0,0 +1 @@
+export const manageViaMRErrorMessage = 'There was a manage via MR error';
-- 
GitLab


From 8d137b67d77c7057271813b96b83e739c483482a Mon Sep 17 00:00:00 2001
From: Jannik Lehmann <jlehmann@gitlab.com>
Date: Wed, 15 Mar 2023 19:48:42 +0100
Subject: [PATCH 17/22] Refactor Error Message util to use constants

---
 .../javascripts/lib/utils/error_message.js    |  7 ++---
 .../sast/components/app_spec.js               |  5 ++--
 spec/frontend/lib/utils/error_message_spec.js | 27 ++++++++++++-------
 3 files changed, 24 insertions(+), 15 deletions(-)

diff --git a/app/assets/javascripts/lib/utils/error_message.js b/app/assets/javascripts/lib/utils/error_message.js
index 96176b2822987d..9b4e6c68ced463 100644
--- a/app/assets/javascripts/lib/utils/error_message.js
+++ b/app/assets/javascripts/lib/utils/error_message.js
@@ -1,6 +1,7 @@
 import { isString, isObject } from 'lodash';
 
-const USER_FACING_ERROR_MESSAGE_PATTERN = /^UF:/;
+export const USER_FACING_ERROR_MESSAGE_PREFIX = 'UF:';
+
 const getMessageFromError = (error) => {
   if (isString(error)) {
     return error;
@@ -22,9 +23,9 @@ export const parseErrorMessage = (error) => {
 
   const messageString = getMessageFromError(error);
 
-  if (messageString.match(USER_FACING_ERROR_MESSAGE_PATTERN)) {
+  if (messageString.startsWith(USER_FACING_ERROR_MESSAGE_PREFIX)) {
     return {
-      message: messageString.replace(USER_FACING_ERROR_MESSAGE_PATTERN, '').trim(),
+      message: messageString.replace(USER_FACING_ERROR_MESSAGE_PREFIX, '').trim(),
       userFacing: true,
     };
   }
diff --git a/ee/spec/frontend/security_configuration/sast/components/app_spec.js b/ee/spec/frontend/security_configuration/sast/components/app_spec.js
index f122a67070ce45..9be3820fae80a4 100644
--- a/ee/spec/frontend/security_configuration/sast/components/app_spec.js
+++ b/ee/spec/frontend/security_configuration/sast/components/app_spec.js
@@ -9,6 +9,7 @@ import sastCiConfigurationQuery from 'ee/security_configuration/sast/graphql/sas
 import createMockApollo from 'helpers/mock_apollo_helper';
 import waitForPromises from 'helpers/wait_for_promises';
 import { shallowMountExtended } from 'helpers/vue_test_utils_helper';
+import { USER_FACING_ERROR_MESSAGE_PREFIX } from '~/lib/utils/error_message';
 import { sastCiConfigurationQueryResponse } from '../mock_data';
 import { specificErrorMessage, technicalErrorMessage } from '../constants';
 
@@ -22,9 +23,9 @@ describe('SAST Configuration App', () => {
 
   const pendingHandler = () => new Promise(() => {});
   const successHandler = () => sastCiConfigurationQueryResponse;
-  // Prefixed with UF: as used in lib/gitlab/utils/error_message.rb to indicate a user facing error
+  // Prefixed with USER_FACING_ERROR_MESSAGE_PREFIX as used in lib/gitlab/utils/error_message.rb to indicate a user facing error
   const failureHandlerSpecific = () => ({
-    errors: [{ message: `UF: ${specificErrorMessage}` }],
+    errors: [{ message: `${USER_FACING_ERROR_MESSAGE_PREFIX} ${specificErrorMessage}` }],
   });
   const failureHandlerGeneric = async () => ({
     errors: [{ message: technicalErrorMessage }],
diff --git a/spec/frontend/lib/utils/error_message_spec.js b/spec/frontend/lib/utils/error_message_spec.js
index 56bfefafb3470d..3a5c6805fd9dfd 100644
--- a/spec/frontend/lib/utils/error_message_spec.js
+++ b/spec/frontend/lib/utils/error_message_spec.js
@@ -1,10 +1,15 @@
-import { parseErrorMessage } from '~/lib/utils/error_message';
+import { parseErrorMessage, USER_FACING_ERROR_MESSAGE_PREFIX } from '~/lib/utils/error_message';
+
+const defaultErrorMessage = 'Something caused this error';
+const userFacingErrorMessage = 'User facing error message';
+const nonUserFacingErrorMessage = 'NonUser facing error message';
+const genericErrorMessage = 'Some error message';
 
 describe('error message', () => {
   describe('when given an errormessage object', () => {
     const errorMessageObject = {
       options: {
-        cause: 'Something caused this error',
+        cause: defaultErrorMessage,
       },
       filename: 'error.js',
       linenumber: 7,
@@ -12,20 +17,20 @@ describe('error message', () => {
 
     it('returns the correct values for userfacing errors', () => {
       const userFacingObject = errorMessageObject;
-      userFacingObject.message = 'UF: User facing error message';
+      userFacingObject.message = `${USER_FACING_ERROR_MESSAGE_PREFIX} ${userFacingErrorMessage}`;
 
       expect(parseErrorMessage(userFacingObject)).toEqual({
-        message: 'User facing error message',
+        message: userFacingErrorMessage,
         userFacing: true,
       });
     });
 
     it('returns the correct values for non userfacing errors', () => {
       const nonUserFacingObject = errorMessageObject;
-      nonUserFacingObject.message = 'NonUser facing error message';
+      nonUserFacingObject.message = nonUserFacingErrorMessage;
 
       expect(parseErrorMessage(nonUserFacingObject)).toEqual({
-        message: 'NonUser facing error message',
+        message: nonUserFacingErrorMessage,
         userFacing: false,
       });
     });
@@ -33,15 +38,17 @@ describe('error message', () => {
 
   describe('when given an errormessage string', () => {
     it('returns the correct values for userfacing errors', () => {
-      expect(parseErrorMessage('UF: Some error message')).toEqual({
-        message: 'Some error message',
+      expect(
+        parseErrorMessage(`${USER_FACING_ERROR_MESSAGE_PREFIX} ${genericErrorMessage}`),
+      ).toEqual({
+        message: genericErrorMessage,
         userFacing: true,
       });
     });
 
     it('returns the correct values for non userfacing errors', () => {
-      expect(parseErrorMessage('Some error message')).toEqual({
-        message: 'Some error message',
+      expect(parseErrorMessage(genericErrorMessage)).toEqual({
+        message: genericErrorMessage,
         userFacing: false,
       });
     });
-- 
GitLab


From 90b8c8012c6cfa9a358f84b1647421d0c06146a7 Mon Sep 17 00:00:00 2001
From: Jannik Lehmann <jlehmann@gitlab.com>
Date: Wed, 15 Mar 2023 20:11:30 +0100
Subject: [PATCH 18/22] Refactored parseErrorMessage

---
 app/assets/javascripts/lib/utils/error_message.js | 9 +--------
 1 file changed, 1 insertion(+), 8 deletions(-)

diff --git a/app/assets/javascripts/lib/utils/error_message.js b/app/assets/javascripts/lib/utils/error_message.js
index 9b4e6c68ced463..1de98168b3936f 100644
--- a/app/assets/javascripts/lib/utils/error_message.js
+++ b/app/assets/javascripts/lib/utils/error_message.js
@@ -13,14 +13,7 @@ const getMessageFromError = (error) => {
   return '';
 };
 
-export const parseErrorMessage = (error) => {
-  if (!error) {
-    return {
-      message: '',
-      userFacing: false,
-    };
-  }
-
+export const parseErrorMessage = (error = '') => {
   const messageString = getMessageFromError(error);
 
   if (messageString.startsWith(USER_FACING_ERROR_MESSAGE_PREFIX)) {
-- 
GitLab


From 1a1053515c93792fddd09ee104c90c38fff461ce Mon Sep 17 00:00:00 2001
From: Jannik Lehmann <jlehmann@gitlab.com>
Date: Thu, 16 Mar 2023 09:45:20 +0100
Subject: [PATCH 19/22] Refactor Error message js util

---
 app/assets/javascripts/lib/utils/error_message.js | 13 ++-----------
 spec/frontend/lib/utils/error_message_spec.js     |  9 ---------
 2 files changed, 2 insertions(+), 20 deletions(-)

diff --git a/app/assets/javascripts/lib/utils/error_message.js b/app/assets/javascripts/lib/utils/error_message.js
index 1de98168b3936f..4cea4257e7b6ee 100644
--- a/app/assets/javascripts/lib/utils/error_message.js
+++ b/app/assets/javascripts/lib/utils/error_message.js
@@ -1,16 +1,7 @@
-import { isString, isObject } from 'lodash';
-
 export const USER_FACING_ERROR_MESSAGE_PREFIX = 'UF:';
 
-const getMessageFromError = (error) => {
-  if (isString(error)) {
-    return error;
-  }
-  if (isObject(error) && error.message) {
-    return error.message;
-  }
-
-  return '';
+const getMessageFromError = (error = '') => {
+  return error.message || error;
 };
 
 export const parseErrorMessage = (error = '') => {
diff --git a/spec/frontend/lib/utils/error_message_spec.js b/spec/frontend/lib/utils/error_message_spec.js
index 3a5c6805fd9dfd..17b5168c32f417 100644
--- a/spec/frontend/lib/utils/error_message_spec.js
+++ b/spec/frontend/lib/utils/error_message_spec.js
@@ -54,15 +54,6 @@ describe('error message', () => {
     });
   });
 
-  describe('when given a non-computable input', () => {
-    it('returns an empty error message', () => {
-      expect(parseErrorMessage([1, 2, 3])).toEqual({
-        message: '',
-        userFacing: false,
-      });
-    });
-  });
-
   describe('when given nothing', () => {
     it('returns an empty error message', () => {
       expect(parseErrorMessage()).toEqual({
-- 
GitLab


From f71ec6dd2a1a48739220d6e1c3fc898e354acb38 Mon Sep 17 00:00:00 2001
From: Jannik Lehmann <jlehmann@gitlab.com>
Date: Thu, 16 Mar 2023 11:03:47 +0100
Subject: [PATCH 20/22] Enhance Docs

---
 doc/development/api_styleguide.md            | 1 +
 doc/development/fe_guide/style/javascript.md | 9 +++------
 2 files changed, 4 insertions(+), 6 deletions(-)

diff --git a/doc/development/api_styleguide.md b/doc/development/api_styleguide.md
index a50446ec5f2433..828ef21ba9ac82 100644
--- a/doc/development/api_styleguide.md
+++ b/doc/development/api_styleguide.md
@@ -338,6 +338,7 @@ Also see [verifying N+1 performance](#verifying-with-tests) in tests.
 When throwing an error with a message that is meant to be user-facing, you should
 use the error message utility function contained in `lib/gitlab/utils/error_message.rb`.
 It adds a prefix to the error message, making it distinguishable from non-user-facing error messages.
+Please make sure that the Frontend is aware of the prefix usage and is using the according utils.
 
 ```ruby
 Gitlab::Utils::ErrorMessage.to_user_facing('Example user-facing error-message')
diff --git a/doc/development/fe_guide/style/javascript.md b/doc/development/fe_guide/style/javascript.md
index 73b6665fb5c196..b35ffdd8669555 100644
--- a/doc/development/fe_guide/style/javascript.md
+++ b/doc/development/fe_guide/style/javascript.md
@@ -336,7 +336,8 @@ When catching a server-side error you should use the error message
 utility function contained in `app/assets/javascripts/lib/utils/error_message.js`.
 This utility parses the received error message and checks for a prefix that indicates
 whether the message is meant to be user-facing or not. The utility returns
-an object with the message, and a boolean indicating whether the message is meant to be user-facing or not.
+an object with the message, and a boolean indicating whether the message is meant to be user-facing or not. Please make sure that the Backend is aware of the utils usage and is adding the prefix
+to the error message accordingly.
 
 ```javascript
 import { parseErrorMessage } from '~/lib/utils/error_message';
@@ -344,10 +345,6 @@ import { parseErrorMessage } from '~/lib/utils/error_message';
 onError(error) {
   const { message, userFacing } = parseErrorMessage(error);
 
-  if (userFacing) {
-    errorMessage = message;
-  } else {
-    errorMessage = genericErrorText;
-  }
+  const errorMessage = userFacing ? message : genericErrorText;
 }
 ```
-- 
GitLab


From d37da1b4ee71d4bce4f85b1e2f70f7095daaee0d Mon Sep 17 00:00:00 2001
From: Jannik Lehmann <jlehmann@gitlab.com>
Date: Thu, 16 Mar 2023 11:23:33 +0100
Subject: [PATCH 21/22] Refactored app spec

---
 .../frontend/security_configuration/components/app_spec.js | 7 +++++--
 1 file changed, 5 insertions(+), 2 deletions(-)

diff --git a/spec/frontend/security_configuration/components/app_spec.js b/spec/frontend/security_configuration/components/app_spec.js
index 493a021b7d09a9..0ca350f9ed7cb8 100644
--- a/spec/frontend/security_configuration/components/app_spec.js
+++ b/spec/frontend/security_configuration/components/app_spec.js
@@ -26,6 +26,7 @@ import {
   REPORT_TYPE_LICENSE_COMPLIANCE,
   REPORT_TYPE_SAST,
 } from '~/vue_shared/security_reports/constants';
+import { USER_FACING_ERROR_MESSAGE_PREFIX } from '~/lib/utils/error_message';
 import { manageViaMRErrorMessage } from '../constants';
 
 const upgradePath = '/upgrade';
@@ -204,8 +205,10 @@ describe('App component', () => {
     describe('when user facing error occurs', () => {
       it('should show Alert with error Message', async () => {
         expect(findManageViaMRErrorAlert().exists()).toBe(false);
-        // Prefixed with UF: as used in lib/gitlab/utils/error_message.rb to indicate a user facing error
-        findFeatureCards().at(1).vm.$emit('error', `UF: ${manageViaMRErrorMessage}`);
+        // Prefixed with USER_FACING_ERROR_MESSAGE_PREFIX as used in lib/gitlab/utils/error_message.rb to indicate a user facing error
+        findFeatureCards()
+          .at(1)
+          .vm.$emit('error', `${USER_FACING_ERROR_MESSAGE_PREFIX} ${manageViaMRErrorMessage}`);
 
         await nextTick();
         expect(findManageViaMRErrorAlert().exists()).toBe(true);
-- 
GitLab


From 66b80a71463bfb2e5b9c763f3900762be56ca615 Mon Sep 17 00:00:00 2001
From: Jannik Lehmann <jlehmann@gitlab.com>
Date: Thu, 16 Mar 2023 15:27:24 +0100
Subject: [PATCH 22/22] Refactor to use computed values

---
 .../security_configuration/sast/components/app.vue        | 8 ++++++--
 1 file changed, 6 insertions(+), 2 deletions(-)

diff --git a/ee/app/assets/javascripts/security_configuration/sast/components/app.vue b/ee/app/assets/javascripts/security_configuration/sast/components/app.vue
index b965cb2cfca926..35ee1b17a362d5 100644
--- a/ee/app/assets/javascripts/security_configuration/sast/components/app.vue
+++ b/ee/app/assets/javascripts/security_configuration/sast/components/app.vue
@@ -76,6 +76,11 @@ export default {
       specificErrorText: undefined,
     };
   },
+  computed: {
+    errorText() {
+      return this.specificErrorText || this.$options.i18n.genericErrorText;
+    },
+  },
   methods: {
     onError(error) {
       this.hasLoadingError = true;
@@ -123,8 +128,7 @@ export default {
       :dismissible="false"
       data-testid="error-alert"
     >
-      <span v-if="specificErrorText" v-safe-html="specificErrorText"></span>
-      <span v-else>{{ $options.i18n.genericErrorText }}</span>
+      <span v-safe-html="errorText"></span>
     </gl-alert>
 
     <configuration-form v-else :sast-ci-configuration="sastCiConfiguration" />
-- 
GitLab