public final class BearerTokenAccessDeniedHandler extends java.lang.Object implements AccessDeniedHandler
AccessDeniedException
into an HTTP response in accordance with
RFC 6750 Section 3: The WWW-Authenticate.
So long as the class can prove that the request has a valid OAuth 2.0 Authentication
, then will return an
insufficient scope error; otherwise,
it will simply indicate the scheme (Bearer) and any configured realm.
Constructor and Description |
---|
BearerTokenAccessDeniedHandler() |
Modifier and Type | Method and Description |
---|---|
void |
handle(javax.servlet.http.HttpServletRequest request,
javax.servlet.http.HttpServletResponse response,
AccessDeniedException accessDeniedException)
Collect error details from the provided parameters and format according to
RFC 6750, specifically
error , error_description , error_uri , and scope . |
void |
setRealmName(java.lang.String realmName)
Set the default realm name to use in the bearer token error response
|
public void handle(javax.servlet.http.HttpServletRequest request, javax.servlet.http.HttpServletResponse response, AccessDeniedException accessDeniedException)
error
, error_description
, error_uri
, and scope
.handle
in interface AccessDeniedHandler
request
- that resulted in an AccessDeniedException
response
- so that the user agent can be advised of the failureaccessDeniedException
- that caused the invocationpublic void setRealmName(java.lang.String realmName)
realmName
-