com.github.shawven.security.app.oauth2.AppOAuth2AccessDeniedHandler Maven / Gradle / Ivy

Go to download

Show more of this group Show more artifacts with this name
Show all versions of security-app Show documentation

API（REST）接口安全相关配置

There is a newer version: 2.1.0

package com.github.shawven.security.app.oauth2;

import com.github.shawven.security.authorization.ResponseData;
import com.github.shawven.security.authorization.Responses;
import org.slf4j.Logger;
import org.slf4j.LoggerFactory;
import org.springframework.http.ResponseEntity;
import org.springframework.security.access.AccessDeniedException;
import org.springframework.security.oauth2.common.exceptions.OAuth2Exception;
import org.springframework.security.oauth2.provider.error.OAuth2AccessDeniedHandler;

/**
 * 访问没有权限（用户已登录没有访问权限）
 *
 * @author Shoven
 * @date 2018/11/1 18:15
 *
 */
public class AppOAuth2AccessDeniedHandler extends OAuth2AccessDeniedHandler {

    private final Logger logger = LoggerFactory.getLogger(AppOAuth2AccessDeniedHandler.class);

    @Override
    protected ResponseEntity enhanceResponse(ResponseEntity result, Exception e) {
        logger.debug(e.getMessage(), e);

        ResponseData data;
        if (e instanceof AccessDeniedException) {
            data = Responses.accessDenied();
        } else {
            OAuth2Exception auth2Exception = (OAuth2Exception) result.getBody();
            String message = auth2Exception != null && auth2Exception.getMessage() != null
                    ? auth2Exception.getMessage()
                    : e.getMessage();
            data = new ResponseData().setCode(result.getStatusCodeValue()).setMessage(message);
        }
        return ResponseEntity
                .status(result.getStatusCodeValue())
                .headers(result.getHeaders())
                .body(data);
    }

}