Validation message enhancements (#6608)

agr · web-flow · commit 7e155f7a657f · 2018-10-31T10:00:52.000-07:00
* Package validation returns error and warning messages as IValidationMessage.
PacakgesController converts those to JsonValidationMessage for Json responses and passes through IValidationMessage to Views for rendering. All PackageController Json responses use JsonValidationMessage in case of failure for consistency.
ApiController always uses plain text version of the IValidationMessage.
Updated tests to accomodate for the changes.

* Initial view change

* Safety fallbacks for error communication to the upload page.

* Organized usings.

* Making sure `PackageShouldNotBeSignedUserFixableValidationMessage` does not emit raw HTML.

* Made type checks consistent

* may it

* PR feedback.
diff --git a/src/NuGetGallery/Controllers/ApiController.cs b/src/NuGetGallery/Controllers/ApiController.cs
@@ -710,12 +710,12 @@ await AuditingService.SaveAuditRecordAsync(
 
                             TelemetryService.TrackPackagePushEvent(package, currentUser, User.Identity);
 
-                            var warnings = new List<string>();
+                            var warnings = new List<IValidationMessage>();
                             warnings.AddRange(beforeValidationResult.Warnings);
                             warnings.AddRange(afterValidationResult.Warnings);
                             if (package.SemVerLevelKey == SemVerLevelKey.SemVer2)
                             {
-                                warnings.Add(Strings.WarningSemVer2PackagePushed);
+                                warnings.Add(new PlainTextOnlyValidationMessage(Strings.WarningSemVer2PackagePushed));
                             }
 
                             return new HttpStatusCodeWithServerWarningResult(HttpStatusCode.Created, warnings);
@@ -764,9 +764,7 @@ private static ActionResult GetActionResultOrNull(PackageValidationResult valida
                 case PackageValidationResultType.Accepted:
                     return null;
                 case PackageValidationResultType.Invalid:
-                case PackageValidationResultType.PackageShouldNotBeSigned:
-                case PackageValidationResultType.PackageShouldNotBeSignedButCanManageCertificates:
-                    return new HttpStatusCodeWithBodyResult(HttpStatusCode.BadRequest, validationResult.Message);
+                    return new HttpStatusCodeWithBodyResult(HttpStatusCode.BadRequest, validationResult.Message.PlainTextMessage);
                 default:
                     throw new NotImplementedException($"The package validation result type {validationResult.Type} is not supported.");
             }
diff --git a/src/NuGetGallery/Controllers/PackagesController.cs b/src/NuGetGallery/Controllers/PackagesController.cs
diff --git a/src/NuGetGallery/Infrastructure/HttpStatusCodeWithServerWarningResult.cs b/src/NuGetGallery/Infrastructure/HttpStatusCodeWithServerWarningResult.cs
@@ -18,6 +18,11 @@ public HttpStatusCodeWithServerWarningResult(HttpStatusCode statusCode, IReadOnl
             Warnings = warnings ?? new string[0];
         }
 
+        public HttpStatusCodeWithServerWarningResult(HttpStatusCode statusCode, IReadOnlyList<IValidationMessage> warnings)
+            : this(statusCode, warnings.Select(w => w.PlainTextMessage).ToList())
+        {
+        }
+
         public override void ExecuteResult(ControllerContext context)
         {
             var response = context.RequestContext.HttpContext.Response;
diff --git a/src/NuGetGallery/NuGetGallery.csproj b/src/NuGetGallery/NuGetGallery.csproj
@@ -426,6 +426,10 @@
     <Compile Include="Services\ITyposquattingConfiguration.cs" />
     <Compile Include="Services\ISymbolsConfiguration.cs" />
     <Compile Include="Services\ITyposquattingService.cs" />
+    <Compile Include="Services\IValidationMessage.cs" />
+    <Compile Include="Services\JsonValidationMessage.cs" />
+    <Compile Include="Services\PackageShouldNotBeSignedUserFixableValidationMessage.cs" />
+    <Compile Include="Services\PlainTextOnlyValidationMessage.cs" />
     <Compile Include="Services\SymbolPackageValidationResult.cs" />
     <Compile Include="Infrastructure\Mail\MarkdownMessageService.cs" />
     <Compile Include="Services\SymbolPackageUploadService.cs" />
diff --git a/src/NuGetGallery/RequestModels/VerifyPackageRequest.cs b/src/NuGetGallery/RequestModels/VerifyPackageRequest.cs
@@ -120,7 +120,7 @@ public VerifyPackageRequest(PackageMetadata packageMetadata, IEnumerable<User> p
         public bool IsSymbolsPackage { get; set; }
         public bool HasExistingAvailableSymbols { get; set; }
 
-        public List<string> Warnings { get; set; } = new List<string>();
+        public List<JsonValidationMessage> Warnings { get; set; } = new List<JsonValidationMessage>();
 
         private static IReadOnlyCollection<string> ParseUserList(IEnumerable<User> users)
         {
diff --git a/src/NuGetGallery/Services/IValidationMessage.cs b/src/NuGetGallery/Services/IValidationMessage.cs
@@ -0,0 +1,32 @@
+﻿// Copyright (c) .NET Foundation. All rights reserved.
+// Licensed under the Apache License, Version 2.0. See License.txt in the project root for license information.
+
+namespace NuGetGallery
+{
+    /// <summary>
+    /// Represents a validation message that may include a raw HTML message (if we want to present some links in the message, for example).
+    /// </summary>
+    /// <remarks>
+    /// Implementations should sanitize all input used to generate <see cref="IValidationMessage.RawHtmlMessage"/> value.
+    /// We should never have a generic implementation that would accept a raw HTML message as a constructor argument and
+    /// simply returns it as a value of <see cref="IValidationMessage.RawHtmlMessage"/>.
+    /// </remarks>
+    public interface IValidationMessage
+    {
+        /// <summary>
+        /// Plain text representation of the validation message. If pasted into HTML, will be html encoded.
+        /// </summary>
+        string PlainTextMessage { get; }
+
+        /// <summary>
+        /// An indicator that raw HTML representation is available.
+        /// </summary>
+        bool HasRawHtmlRepresentation { get; }
+
+        /// <summary>
+        /// HANDLE WITH EXTREME CARE. Raw HTML representation of the message.
+        /// Under no conditions may it contain unvalidated user data.
+        /// </summary>
+        string RawHtmlMessage { get; }
+    }
+}
diff --git a/src/NuGetGallery/Services/JsonValidationMessage.cs b/src/NuGetGallery/Services/JsonValidationMessage.cs
@@ -0,0 +1,41 @@
+﻿// Copyright (c) .NET Foundation. All rights reserved.
+// Licensed under the Apache License, Version 2.0. See License.txt in the project root for license information.
+
+using System;
+
+namespace NuGetGallery
+{
+    /// <summary>
+    /// Validation message representation for returning in Json responses for Gallery web pages.
+    /// </summary>
+    public class JsonValidationMessage
+    {
+        public JsonValidationMessage(string message)
+        {
+            PlainTextMessage = message ?? throw new ArgumentNullException(nameof(message));
+            RawHtmlMessage = null;
+        }
+
+        public JsonValidationMessage(IValidationMessage message)
+        {
+            if (message == null)
+            {
+                throw new ArgumentNullException(nameof(message));
+            }
+
+            if (message.HasRawHtmlRepresentation)
+            {
+                PlainTextMessage = null;
+                RawHtmlMessage = message.RawHtmlMessage;
+            }
+            else
+            {
+                PlainTextMessage = message.PlainTextMessage;
+                RawHtmlMessage = null;
+            }
+        }
+
+        public string PlainTextMessage { get; }
+        public string RawHtmlMessage { get; }
+    }
+}
diff --git a/src/NuGetGallery/Services/PackageShouldNotBeSignedUserFixableValidationMessage.cs b/src/NuGetGallery/Services/PackageShouldNotBeSignedUserFixableValidationMessage.cs
@@ -0,0 +1,25 @@
+﻿// Copyright (c) .NET Foundation. All rights reserved.
+// Licensed under the Apache License, Version 2.0. See License.txt in the project root for license information.
+
+using System.Web;
+
+namespace NuGetGallery
+{
+    /// <summary>
+    /// Represents an error message to be displayed when user uploads a signed package but theirs account
+    /// was not setup to accept signed packages. We want to display some additional text when the error is
+    /// presented on a web page, so this class abuses the messaging a little, no actual HTML is generated.
+    /// </summary>
+    public class PackageShouldNotBeSignedUserFixableValidationMessage : IValidationMessage
+    {
+        public string PlainTextMessage => Strings.UploadPackage_PackageIsSignedButMissingCertificate_CurrentUserCanManageCertificates;
+
+        public bool HasRawHtmlRepresentation => true;
+
+        public string RawHtmlMessage 
+            => HttpUtility.HtmlEncode(
+                Strings.UploadPackage_PackageIsSignedButMissingCertificate_CurrentUserCanManageCertificates 
+                + " " 
+                + Strings.UploadPackage_PackageIsSignedButMissingCertificate_ManageCertificate);
+    }
+}
diff --git a/src/NuGetGallery/Services/PackageUploadService.cs b/src/NuGetGallery/Services/PackageUploadService.cs
@@ -48,7 +48,7 @@ public PackageUploadService(
 
         public async Task<PackageValidationResult> ValidateBeforeGeneratePackageAsync(PackageArchiveReader nuGetPackage, PackageMetadata packageMetadata)
         {
-            var warnings = new List<string>();
+            var warnings = new List<IValidationMessage>();
 
             var result = await CheckPackageEntryCountAsync(nuGetPackage, warnings);
 
@@ -121,7 +121,7 @@ private PackageValidationResult CheckLicenseMetadata(PackageArchiveReader nuGetP
 
         private async Task<PackageValidationResult> CheckPackageEntryCountAsync(
             PackageArchiveReader nuGetPackage,
-            List<string> warnings)
+            List<IValidationMessage> warnings)
         {
             if (!_config.RejectPackagesWithTooManyPackageEntries)
             {
@@ -152,7 +152,7 @@ private async Task<PackageValidationResult> CheckPackageEntryCountAsync(
         /// 1. If the type is "git" - allow the URL scheme "git://" or "https://". We will translate "git://" to "https://" at display time for known domains.
         /// 2. For types other then "git" - URL scheme should be "https://"
         /// </summary>
-        private PackageValidationResult CheckRepositoryMetadata(PackageMetadata packageMetadata, List<string> warnings)
+        private PackageValidationResult CheckRepositoryMetadata(PackageMetadata packageMetadata, List<IValidationMessage> warnings)
         {
             if (packageMetadata.RepositoryUrl == null)
             {
@@ -164,14 +164,14 @@ private PackageValidationResult CheckRepositoryMetadata(PackageMetadata packageM
             {
                 if (!packageMetadata.RepositoryUrl.IsGitProtocol() && !packageMetadata.RepositoryUrl.IsHttpsProtocol())
                 {
-                    warnings.Add(Strings.WarningNotHttpsOrGitRepositoryUrlScheme);
+                    warnings.Add(new PlainTextOnlyValidationMessage(Strings.WarningNotHttpsOrGitRepositoryUrlScheme));
                 }
             }
             else
             {
                 if (!packageMetadata.RepositoryUrl.IsHttpsProtocol())
                 {
-                    warnings.Add(Strings.WarningNotHttpsRepositoryUrlScheme);
+                    warnings.Add(new PlainTextOnlyValidationMessage(Strings.WarningNotHttpsRepositoryUrlScheme));
                 }
             }
 
@@ -189,7 +189,7 @@ private PackageValidationResult CheckRepositoryMetadata(PackageMetadata packageM
         /// <returns>The package validation result or null.</returns>
         private async Task<PackageValidationResult> CheckForUnsignedPushAfterAuthorSignedAsync(
             PackageArchiveReader nuGetPackage,
-            List<string> warnings)
+            List<IValidationMessage> warnings)
         {
             // If the package is signed, there's no problem.
             if (await nuGetPackage.IsSignedAsync(CancellationToken.None))
@@ -220,9 +220,10 @@ private async Task<PackageValidationResult> CheckForUnsignedPushAfterAuthorSigne
 
             if (previousPackage != null && previousPackage.CertificateKey.HasValue)
             {
-                warnings.Add(string.Format(
-                    Strings.UploadPackage_SignedToUnsignedTransition,
-                    previousPackage.Version.ToNormalizedString()));
+                warnings.Add(new PlainTextOnlyValidationMessage(
+                    string.Format(
+                        Strings.UploadPackage_SignedToUnsignedTransition,
+                        previousPackage.Version.ToNormalizedString())));
             }
 
             return null;
@@ -271,14 +272,11 @@ private async Task<PackageValidationResult> ValidateSignatureFilePresenceAsync(
                     {
                         if (requiredSigner == currentUser)
                         {
-                            return new PackageValidationResult(
-                                PackageValidationResultType.PackageShouldNotBeSignedButCanManageCertificates,
-                                Strings.UploadPackage_PackageIsSignedButMissingCertificate_CurrentUserCanManageCertificates);
+                            return PackageValidationResult.Invalid(new PackageShouldNotBeSignedUserFixableValidationMessage());
                         }
                         else
                         {
-                            return new PackageValidationResult(
-                               PackageValidationResultType.PackageShouldNotBeSigned,
+                            return PackageValidationResult.Invalid(
                                string.Format(
                                    Strings.UploadPackage_PackageIsSignedButMissingCertificate_RequiredSigner,
                                    requiredSigner.Username));
@@ -295,14 +293,11 @@ private async Task<PackageValidationResult> ValidateSignatureFilePresenceAsync(
                         // someone else for help.
                         if (isCurrentUserAnOwner)
                         {
-                            return new PackageValidationResult(
-                                PackageValidationResultType.PackageShouldNotBeSignedButCanManageCertificates,
-                                Strings.UploadPackage_PackageIsSignedButMissingCertificate_CurrentUserCanManageCertificates);
+                            return PackageValidationResult.Invalid(new PackageShouldNotBeSignedUserFixableValidationMessage());
                         }
                         else
                         {
-                            return new PackageValidationResult(
-                                PackageValidationResultType.PackageShouldNotBeSigned,
+                            return PackageValidationResult.Invalid(
                                 string.Format(
                                     Strings.UploadPackage_PackageIsSignedButMissingCertificate_RequiredSigner,
                                     owner.Username));
diff --git a/src/NuGetGallery/Services/PackageValidationResult.cs b/src/NuGetGallery/Services/PackageValidationResult.cs
@@ -12,14 +12,19 @@ namespace NuGetGallery
     /// </summary>
     public class PackageValidationResult
     {
-        private static readonly IReadOnlyList<string> EmptyList = new string[0];
+        private static readonly IReadOnlyList<IValidationMessage> EmptyList = new IValidationMessage[0];
 
-        public PackageValidationResult(PackageValidationResultType type, string message)
+        public PackageValidationResult(PackageValidationResultType type, IValidationMessage message)
             : this(type, message, warnings: null)
         {
         }
 
-        public PackageValidationResult(PackageValidationResultType type, string message, IReadOnlyList<string> warnings)
+        public PackageValidationResult(PackageValidationResultType type, string message)
+            : this(type, new PlainTextOnlyValidationMessage(message))
+        {
+        }
+
+        public PackageValidationResult(PackageValidationResultType type, IValidationMessage message, IReadOnlyList<IValidationMessage> warnings)
         {
             if (type != PackageValidationResultType.Accepted && message == null)
             {
@@ -32,8 +37,8 @@ public PackageValidationResult(PackageValidationResultType type, string message,
         }
 
         public PackageValidationResultType Type { get; }
-        public string Message { get; }
-        public IReadOnlyList<string> Warnings { get; }
+        public IValidationMessage Message { get; }
+        public IReadOnlyList<IValidationMessage> Warnings { get; }
 
         public static PackageValidationResult Accepted()
         {
@@ -43,7 +48,7 @@ public static PackageValidationResult Accepted()
                 warnings: null);
         }
 
-        public static PackageValidationResult AcceptedWithWarnings(IReadOnlyList<string> warnings)
+        public static PackageValidationResult AcceptedWithWarnings(IReadOnlyList<IValidationMessage> warnings)
         {
             return new PackageValidationResult(
                 PackageValidationResultType.Accepted,
@@ -52,6 +57,9 @@ public static PackageValidationResult AcceptedWithWarnings(IReadOnlyList<string>
         }
 
         public static PackageValidationResult Invalid(string message)
+            => Invalid(new PlainTextOnlyValidationMessage(message));
+
+        public static PackageValidationResult Invalid(IValidationMessage message)
         {
             if (message == null)
             {
diff --git a/src/NuGetGallery/Services/PackageValidationResultType.cs b/src/NuGetGallery/Services/PackageValidationResultType.cs
@@ -18,17 +18,5 @@ public enum PackageValidationResultType
         /// The package is invalid based on the package content.
         /// </summary>
         Invalid,
-
-        /// <summary>
-        /// The package is invalid because it should not be signed given the current required signer certificates (or
-        /// lack thereof).
-        /// </summary>
-        PackageShouldNotBeSigned,
-
-        /// <summary>
-        /// Similar to <see cref="PackageShouldNotBeSigned"/> but the current user can manage certificates and
-        /// potentially remediate the situation.
-        /// </summary>
-        PackageShouldNotBeSignedButCanManageCertificates,
     }
 }
diff --git a/src/NuGetGallery/Services/PlainTextOnlyValidationMessage.cs b/src/NuGetGallery/Services/PlainTextOnlyValidationMessage.cs
@@ -0,0 +1,23 @@
+﻿// Copyright (c) .NET Foundation. All rights reserved.
+// Licensed under the Apache License, Version 2.0. See License.txt in the project root for license information.
+
+namespace NuGetGallery
+{
+    /// <summary>
+    /// Cautious default implementation of <see cref="IValidationMessage"/> that does not allow
+    /// user to specify raw html response.
+    /// </summary>
+    public class PlainTextOnlyValidationMessage : IValidationMessage
+    {
+        public PlainTextOnlyValidationMessage(string validationMessage)
+        {
+            PlainTextMessage = validationMessage;
+        }
+
+        public string PlainTextMessage { get; }
+
+        public bool HasRawHtmlRepresentation => false;
+
+        public string RawHtmlMessage => null;
+    }
+}
diff --git a/src/NuGetGallery/Views/Packages/_VerifyMetadata.cshtml b/src/NuGetGallery/Views/Packages/_VerifyMetadata.cshtml
diff --git a/tests/NuGetGallery.Facts/Controllers/ApiControllerFacts.cs b/tests/NuGetGallery.Facts/Controllers/ApiControllerFacts.cs
diff --git a/tests/NuGetGallery.Facts/Controllers/PackagesControllerFacts.cs b/tests/NuGetGallery.Facts/Controllers/PackagesControllerFacts.cs
diff --git a/tests/NuGetGallery.Facts/Services/PackageUploadServiceFacts.cs b/tests/NuGetGallery.Facts/Services/PackageUploadServiceFacts.cs

Original file line number	Diff line number	Diff line change
`@@ -18,6 +18,11 @@ public HttpStatusCodeWithServerWarningResult(HttpStatusCode statusCode, IReadOnl`
`18`	`18`	`Warnings = warnings ?? new string[0];`
`19`	`19`	`}`
`20`	`20`
	`21`	`+ public HttpStatusCodeWithServerWarningResult(HttpStatusCode statusCode, IReadOnlyList<IValidationMessage> warnings)`
	`22`	`+ : this(statusCode, warnings.Select(w => w.PlainTextMessage).ToList())`
	`23`	`+ {`
	`24`	`+ }`
	`25`	`+`
`21`	`26`	`public override void ExecuteResult(ControllerContext context)`
`22`	`27`	`{`
`23`	`28`	`var response = context.RequestContext.HttpContext.Response;`
Original file line number	Diff line number	Diff line change
`@@ -120,7 +120,7 @@ public VerifyPackageRequest(PackageMetadata packageMetadata, IEnumerable<User> p`
`120`	`120`	`public bool IsSymbolsPackage { get; set; }`
`121`	`121`	`public bool HasExistingAvailableSymbols { get; set; }`
`122`	`122`
`123`		`- public List<string> Warnings { get; set; } = new List<string>();`
	`123`	`+ public List<JsonValidationMessage> Warnings { get; set; } = new List<JsonValidationMessage>();`
`124`	`124`
`125`	`125`	`private static IReadOnlyCollection<string> ParseUserList(IEnumerable<User> users)`
`126`	`126`	`{`
Original file line number	Diff line number	Diff line change
`@@ -48,7 +48,7 @@ public PackageUploadService(`
`48`	`48`
`49`	`49`	`public async Task<PackageValidationResult> ValidateBeforeGeneratePackageAsync(PackageArchiveReader nuGetPackage, PackageMetadata packageMetadata)`
`50`	`50`	`{`
`51`		`- var warnings = new List<string>();`
	`51`	`+ var warnings = new List<IValidationMessage>();`
`52`	`52`
`53`	`53`	`var result = await CheckPackageEntryCountAsync(nuGetPackage, warnings);`
`54`	`54`
`@@ -121,7 +121,7 @@ private PackageValidationResult CheckLicenseMetadata(PackageArchiveReader nuGetP`
`121`	`121`
`122`	`122`	`private async Task<PackageValidationResult> CheckPackageEntryCountAsync(`
`123`	`123`	`PackageArchiveReader nuGetPackage,`
`124`		`- List<string> warnings)`
	`124`	`+ List<IValidationMessage> warnings)`
`125`	`125`	`{`
`126`	`126`	`if (!_config.RejectPackagesWithTooManyPackageEntries)`
`127`	`127`	`{`
`@@ -152,7 +152,7 @@ private async Task<PackageValidationResult> CheckPackageEntryCountAsync(`
`152`	`152`	`/// 1. If the type is "git" - allow the URL scheme "git://" or "https://". We will translate "git://" to "https://" at display time for known domains.`
`153`	`153`	`/// 2. For types other then "git" - URL scheme should be "https://"`
`154`	`154`	`/// </summary>`
`155`		`- private PackageValidationResult CheckRepositoryMetadata(PackageMetadata packageMetadata, List<string> warnings)`
	`155`	`+ private PackageValidationResult CheckRepositoryMetadata(PackageMetadata packageMetadata, List<IValidationMessage> warnings)`
`156`	`156`	`{`
`157`	`157`	`if (packageMetadata.RepositoryUrl == null)`
`158`	`158`	`{`
`@@ -164,14 +164,14 @@ private PackageValidationResult CheckRepositoryMetadata(PackageMetadata packageM`
`164`	`164`	`{`
`165`	`165`	`if (!packageMetadata.RepositoryUrl.IsGitProtocol() && !packageMetadata.RepositoryUrl.IsHttpsProtocol())`
`166`	`166`	`{`
`167`		`- warnings.Add(Strings.WarningNotHttpsOrGitRepositoryUrlScheme);`
	`167`	`+ warnings.Add(new PlainTextOnlyValidationMessage(Strings.WarningNotHttpsOrGitRepositoryUrlScheme));`
`168`	`168`	`}`
`169`	`169`	`}`
`170`	`170`	`else`
`171`	`171`	`{`
`172`	`172`	`if (!packageMetadata.RepositoryUrl.IsHttpsProtocol())`
`173`	`173`	`{`
`174`		`- warnings.Add(Strings.WarningNotHttpsRepositoryUrlScheme);`
	`174`	`+ warnings.Add(new PlainTextOnlyValidationMessage(Strings.WarningNotHttpsRepositoryUrlScheme));`
`175`	`175`	`}`
`176`	`176`	`}`
`177`	`177`
`@@ -189,7 +189,7 @@ private PackageValidationResult CheckRepositoryMetadata(PackageMetadata packageM`
`189`	`189`	`/// <returns>The package validation result or null.</returns>`
`190`	`190`	`private async Task<PackageValidationResult> CheckForUnsignedPushAfterAuthorSignedAsync(`
`191`	`191`	`PackageArchiveReader nuGetPackage,`
`192`		`- List<string> warnings)`
	`192`	`+ List<IValidationMessage> warnings)`
`193`	`193`	`{`
`194`	`194`	`// If the package is signed, there's no problem.`
`195`	`195`	`if (await nuGetPackage.IsSignedAsync(CancellationToken.None))`
`@@ -220,9 +220,10 @@ private async Task<PackageValidationResult> CheckForUnsignedPushAfterAuthorSigne`
`220`	`220`
`221`	`221`	`if (previousPackage != null && previousPackage.CertificateKey.HasValue)`
`222`	`222`	`{`
`223`		`- warnings.Add(string.Format(`
`224`		`- Strings.UploadPackage_SignedToUnsignedTransition,`
`225`		`- previousPackage.Version.ToNormalizedString()));`
	`223`	`+ warnings.Add(new PlainTextOnlyValidationMessage(`
	`224`	`+ string.Format(`
	`225`	`+ Strings.UploadPackage_SignedToUnsignedTransition,`
	`226`	`+ previousPackage.Version.ToNormalizedString())));`
`226`	`227`	`}`
`227`	`228`
`228`	`229`	`return null;`
`@@ -271,14 +272,11 @@ private async Task<PackageValidationResult> ValidateSignatureFilePresenceAsync(`
`271`	`272`	`{`
`272`	`273`	`if (requiredSigner == currentUser)`
`273`	`274`	`{`
`274`		`- return new PackageValidationResult(`
`275`		`- PackageValidationResultType.PackageShouldNotBeSignedButCanManageCertificates,`
`276`		`- Strings.UploadPackage_PackageIsSignedButMissingCertificate_CurrentUserCanManageCertificates);`
	`275`	`+ return PackageValidationResult.Invalid(new PackageShouldNotBeSignedUserFixableValidationMessage());`
`277`	`276`	`}`
`278`	`277`	`else`
`279`	`278`	`{`
`280`		`- return new PackageValidationResult(`
`281`		`- PackageValidationResultType.PackageShouldNotBeSigned,`
	`279`	`+ return PackageValidationResult.Invalid(`
`282`	`280`	`string.Format(`
`283`	`281`	`Strings.UploadPackage_PackageIsSignedButMissingCertificate_RequiredSigner,`
`284`	`282`	`requiredSigner.Username));`
`@@ -295,14 +293,11 @@ private async Task<PackageValidationResult> ValidateSignatureFilePresenceAsync(`
`295`	`293`	`// someone else for help.`
`296`	`294`	`if (isCurrentUserAnOwner)`
`297`	`295`	`{`
`298`		`- return new PackageValidationResult(`
`299`		`- PackageValidationResultType.PackageShouldNotBeSignedButCanManageCertificates,`
`300`		`- Strings.UploadPackage_PackageIsSignedButMissingCertificate_CurrentUserCanManageCertificates);`
	`296`	`+ return PackageValidationResult.Invalid(new PackageShouldNotBeSignedUserFixableValidationMessage());`
`301`	`297`	`}`
`302`	`298`	`else`
`303`	`299`	`{`
`304`		`- return new PackageValidationResult(`
`305`		`- PackageValidationResultType.PackageShouldNotBeSigned,`
	`300`	`+ return PackageValidationResult.Invalid(`
`306`	`301`	`string.Format(`
`307`	`302`	`Strings.UploadPackage_PackageIsSignedButMissingCertificate_RequiredSigner,`
`308`	`303`	`owner.Username));`
Original file line number	Diff line number	Diff line change
`@@ -12,14 +12,19 @@ namespace NuGetGallery`
`12`	`12`	`/// </summary>`
`13`	`13`	`public class PackageValidationResult`
`14`	`14`	`{`
`15`		`- private static readonly IReadOnlyList<string> EmptyList = new string[0];`
	`15`	`+ private static readonly IReadOnlyList<IValidationMessage> EmptyList = new IValidationMessage[0];`
`16`	`16`
`17`		`- public PackageValidationResult(PackageValidationResultType type, string message)`
	`17`	`+ public PackageValidationResult(PackageValidationResultType type, IValidationMessage message)`
`18`	`18`	`: this(type, message, warnings: null)`
`19`	`19`	`{`
`20`	`20`	`}`
`21`	`21`
`22`		`- public PackageValidationResult(PackageValidationResultType type, string message, IReadOnlyList<string> warnings)`
	`22`	`+ public PackageValidationResult(PackageValidationResultType type, string message)`
	`23`	`+ : this(type, new PlainTextOnlyValidationMessage(message))`
	`24`	`+ {`
	`25`	`+ }`
	`26`	`+`
	`27`	`+ public PackageValidationResult(PackageValidationResultType type, IValidationMessage message, IReadOnlyList<IValidationMessage> warnings)`
`23`	`28`	`{`
`24`	`29`	`if (type != PackageValidationResultType.Accepted && message == null)`
`25`	`30`	`{`
`@@ -32,8 +37,8 @@ public PackageValidationResult(PackageValidationResultType type, string message,`
`32`	`37`	`}`
`33`	`38`
`34`	`39`	`public PackageValidationResultType Type { get; }`
`35`		`- public string Message { get; }`
`36`		`- public IReadOnlyList<string> Warnings { get; }`
	`40`	`+ public IValidationMessage Message { get; }`
	`41`	`+ public IReadOnlyList<IValidationMessage> Warnings { get; }`
`37`	`42`
`38`	`43`	`public static PackageValidationResult Accepted()`
`39`	`44`	`{`
`@@ -43,7 +48,7 @@ public static PackageValidationResult Accepted()`
`43`	`48`	`warnings: null);`
`44`	`49`	`}`
`45`	`50`
`46`		`- public static PackageValidationResult AcceptedWithWarnings(IReadOnlyList<string> warnings)`
	`51`	`+ public static PackageValidationResult AcceptedWithWarnings(IReadOnlyList<IValidationMessage> warnings)`
`47`	`52`	`{`
`48`	`53`	`return new PackageValidationResult(`
`49`	`54`	`PackageValidationResultType.Accepted,`
`@@ -52,6 +57,9 @@ public static PackageValidationResult AcceptedWithWarnings(IReadOnlyList<string>`
`52`	`57`	`}`
`53`	`58`
`54`	`59`	`public static PackageValidationResult Invalid(string message)`
	`60`	`+ => Invalid(new PlainTextOnlyValidationMessage(message));`
	`61`	`+`
	`62`	`+ public static PackageValidationResult Invalid(IValidationMessage message)`
`55`	`63`	`{`
`56`	`64`	`if (message == null)`
`57`	`65`	`{`