Class BearerTokenAccessDeniedHandler
- java.lang.Object
-
- org.springframework.security.oauth2.server.resource.web.access.BearerTokenAccessDeniedHandler
-
- All Implemented Interfaces:
AccessDeniedHandler
public final class BearerTokenAccessDeniedHandler extends java.lang.Object implements AccessDeniedHandler
Translates anyAccessDeniedException
into an HTTP response in accordance with RFC 6750 Section 3: The WWW-Authenticate.So long as the class can prove that the request has a valid OAuth 2.0
Authentication
, then will return an insufficient scope error; otherwise, it will simply indicate the scheme (Bearer) and any configured realm.- Since:
- 5.1
-
-
Constructor Summary
Constructors Constructor Description BearerTokenAccessDeniedHandler()
-
Method Summary
All Methods Instance Methods Concrete Methods Modifier and Type Method Description void
handle(javax.servlet.http.HttpServletRequest request, javax.servlet.http.HttpServletResponse response, AccessDeniedException accessDeniedException)
Collect error details from the provided parameters and format according to RFC 6750, specificallyerror
,error_description
,error_uri
, andscope
.void
setRealmName(java.lang.String realmName)
Set the default realm name to use in the bearer token error response
-
-
-
Method Detail
-
handle
public void handle(javax.servlet.http.HttpServletRequest request, javax.servlet.http.HttpServletResponse response, AccessDeniedException accessDeniedException)
Collect error details from the provided parameters and format according to RFC 6750, specificallyerror
,error_description
,error_uri
, andscope
.- Specified by:
handle
in interfaceAccessDeniedHandler
- Parameters:
request
- that resulted in anAccessDeniedException
response
- so that the user agent can be advised of the failureaccessDeniedException
- that caused the invocation
-
setRealmName
public void setRealmName(java.lang.String realmName)
Set the default realm name to use in the bearer token error response- Parameters:
realmName
-
-
-