1 /* 2 * MIT License 3 * 4 * Copyright (c) 2010-2022 The Waffle Project Contributors: https://github.com/Waffle/waffle/graphs/contributors 5 * 6 * Permission is hereby granted, free of charge, to any person obtaining a copy 7 * of this software and associated documentation files (the "Software"), to deal 8 * in the Software without restriction, including without limitation the rights 9 * to use, copy, modify, merge, publish, distribute, sublicense, and/or sell 10 * copies of the Software, and to permit persons to whom the Software is 11 * furnished to do so, subject to the following conditions: 12 * 13 * The above copyright notice and this permission notice shall be included in all 14 * copies or substantial portions of the Software. 15 * 16 * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR 17 * IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, 18 * FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE 19 * AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER 20 * LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, 21 * OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE 22 * SOFTWARE. 23 */ 24 package waffle.spring.handlers; 25 26 import java.io.IOException; 27 28 import javax.servlet.ServletException; 29 import javax.servlet.http.HttpServletRequest; 30 import javax.servlet.http.HttpServletResponse; 31 32 import org.springframework.security.access.AccessDeniedException; 33 import org.springframework.security.web.access.AccessDeniedHandler; 34 35 /** 36 * Custom Access Denied Handler class. 37 */ 38 public class CustomAccessDeniedHandler implements AccessDeniedHandler { 39 40 @Override 41 public void handle(final HttpServletRequest request, final HttpServletResponse response, 42 final AccessDeniedException ex) throws IOException, ServletException { 43 // here we can add custom headers or response status, data or redirect 44 response.addHeader("Custom-header", "some value"); 45 response.sendError(HttpServletResponse.SC_UNAUTHORIZED); 46 } 47 48 }