1 /*
2 * Copyright 2006-2011 the original author or authors.
3 *
4 * Licensed under the Apache License, Version 2.0 (the "License"); you may not use this file except in compliance with
5 * the License. You may obtain a copy of the License at
6 *
7 * https://www.apache.org/licenses/LICENSE-2.0
8 *
9 * Unless required by applicable law or agreed to in writing, software distributed under the License is distributed on
10 * an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the License for the
11 * specific language governing permissions and limitations under the License.
12 */
13 package org.springframework.security.oauth2.provider.error;
14
15 import java.io.IOException;
16
17 import javax.servlet.ServletException;
18 import javax.servlet.http.HttpServletRequest;
19 import javax.servlet.http.HttpServletResponse;
20
21 import org.springframework.security.access.AccessDeniedException;
22 import org.springframework.security.web.access.AccessDeniedHandler;
23
24 /**
25 * If authorization fails and the caller has asked for a specific content type response, this entry point can send one,
26 * along with a standard 403 status. Add to the Spring Security configuration as an {@link AccessDeniedHandler} in
27 * the usual way.
28 *
29 * @author Dave Syer
30 *
31 */
32 public class OAuth2AccessDeniedHandler extends AbstractOAuth2SecurityExceptionHandler implements AccessDeniedHandler {
33
34 public void handle(HttpServletRequest request, HttpServletResponse response, AccessDeniedException authException)
35 throws IOException, ServletException {
36 doHandle(request, response, authException);
37 }
38
39 }