org.springframework.security.web.authentication
Class Http403ForbiddenEntryPoint
java.lang.Object
org.springframework.security.web.authentication.Http403ForbiddenEntryPoint
- All Implemented Interfaces:
- AuthenticationEntryPoint
- Direct Known Subclasses:
- PreAuthenticatedProcessingFilterEntryPoint
public class Http403ForbiddenEntryPoint
- extends Object
- implements AuthenticationEntryPoint
In the pre-authenticated authentication case (unlike CAS, for example) the
user will already have been identified through some external mechanism and a
secure context established by the time the security-enforcement filter is
invoked.
Therefore this class isn't actually responsible for the commencement of
authentication, as it is in the case of other providers. It will be called if
the user is rejected by the AbstractPreAuthenticatedProcessingFilter,
resulting in a null authentication.
The commence
method will always return an
HttpServletResponse.SC_FORBIDDEN
(403 error).
- Since:
- 2.0
- Author:
- Luke Taylor, Ruud Senden
- See Also:
ExceptionTranslationFilter
Methods inherited from class java.lang.Object |
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait |
Http403ForbiddenEntryPoint
public Http403ForbiddenEntryPoint()
commence
public void commence(HttpServletRequest request,
HttpServletResponse response,
AuthenticationException arg2)
throws IOException,
ServletException
- Always returns a 403 error code to the client.
- Specified by:
commence
in interface AuthenticationEntryPoint
- Parameters:
request
- that resulted in an AuthenticationException
response
- so that the user agent can begin authenticationarg2
- that caused the invocation
- Throws:
IOException
ServletException
Copyright © 2004-2009 SpringSource, Inc. All Rights Reserved.