java.lang.Object | |
↳ | org.springframework.security.web.authentication.Http403ForbiddenEntryPoint |
In the pre-authenticated authentication case (unlike CAS, for example) the user will already have been identified through some external mechanism and a secure context established by the time the security-enforcement filter is invoked.
Therefore this class isn't actually responsible for the commencement of authentication, as it is in the case of other providers. It will be called if the user is rejected by the AbstractPreAuthenticatedProcessingFilter, resulting in a null authentication.
The commence
method will always return an
HttpServletResponse.SC_FORBIDDEN
(403 error).
Public Constructors | |||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|
Public Methods | |||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|
Always returns a 403 error code to the client.
|
[Expand]
Inherited Methods | |||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|
From class
java.lang.Object
| |||||||||||
From interface
org.springframework.security.web.AuthenticationEntryPoint
|
Always returns a 403 error code to the client.
request | that resulted in an AuthenticationException |
---|---|
response | so that the user agent can begin authentication |
arg2 | that caused the invocation |
IOException | |
---|---|
ServletException |