1 /* 2 * Copyright 2006-2011 the original author or authors. 3 * 4 * Licensed under the Apache License, Version 2.0 (the "License"); you may not use this file except in compliance with 5 * the License. You may obtain a copy of the License at 6 * 7 * https://www.apache.org/licenses/LICENSE-2.0 8 * 9 * Unless required by applicable law or agreed to in writing, software distributed under the License is distributed on 10 * an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the License for the 11 * specific language governing permissions and limitations under the License. 12 */ 13 package org.springframework.security.oauth2.provider.error; 14 15 import java.io.IOException; 16 17 import javax.servlet.ServletException; 18 import javax.servlet.http.HttpServletRequest; 19 import javax.servlet.http.HttpServletResponse; 20 21 import org.springframework.security.access.AccessDeniedException; 22 import org.springframework.security.web.access.AccessDeniedHandler; 23 24 /** 25 * If authorization fails and the caller has asked for a specific content type response, this entry point can send one, 26 * along with a standard 403 status. Add to the Spring Security configuration as an {@link AccessDeniedHandler} in 27 * the usual way. 28 * 29 * @author Dave Syer 30 * 31 */ 32 public class OAuth2AccessDeniedHandler extends AbstractOAuth2SecurityExceptionHandler implements AccessDeniedHandler { 33 34 public void handle(HttpServletRequest request, HttpServletResponse response, AccessDeniedException authException) 35 throws IOException, ServletException { 36 doHandle(request, response, authException); 37 } 38 39 }