public final class BearerTokenAccessDeniedHandler extends java.lang.Object implements AccessDeniedHandler
AccessDeniedException
into an HTTP response in accordance with
RFC 6750 Section 3: The WWW-Authenticate.
So long as the class can prove that the request has a valid OAuth 2.0 Authentication
, then will return an
insufficient scope error; otherwise,
it will simply indicate the scheme (Bearer) and any configured realm.Constructor and Description |
---|
BearerTokenAccessDeniedHandler() |
Modifier and Type | Method and Description |
---|---|
void |
handle(javax.servlet.http.HttpServletRequest request,
javax.servlet.http.HttpServletResponse response,
AccessDeniedException accessDeniedException)
Collect error details from the provided parameters and format according to
RFC 6750, specifically
error , error_description , error_uri , and . |
void |
setRealmName(java.lang.String realmName)
Set the default realm name to use in the bearer token error response
|
public void handle(javax.servlet.http.HttpServletRequest request, javax.servlet.http.HttpServletResponse response, AccessDeniedException accessDeniedException) throws java.io.IOException, javax.servlet.ServletException
error
, error_description
, error_uri
, and .handle
in interface AccessDeniedHandler
request
- that resulted in an AccessDeniedException
response
- so that the user agent can be advised of the failureaccessDeniedException
- that caused the invocationjava.io.IOException
- in the event of an IOExceptionjavax.servlet.ServletException
- in the event of a ServletExceptionpublic final void setRealmName(java.lang.String realmName)
realmName
-