• Home
• com.naharoo.commons
• ms-toolkit-rest-exception-handler-starter
• 0.7.7
• source code
• AccessDeniedExceptionHandler.java

×

Project download

Many resources are needed to download a project. Please understand that we have to compensate our server costs. Thank you in advance.
Project price only 1 $

You can buy this project and download/modify it how often you want.

com.naharoo.commons.mstoolkit.rest.exceptionhandler.AccessDeniedExceptionHandler Maven / Gradle / Ivy

package com.naharoo.commons.mstoolkit.rest.exceptionhandler;

import com.naharoo.commons.mstoolkit.exceptions.IssueType;
import org.springframework.boot.autoconfigure.condition.ConditionalOnClass;
import org.springframework.boot.autoconfigure.condition.ConditionalOnProperty;
import org.springframework.boot.autoconfigure.condition.ConditionalOnWebApplication;
import org.springframework.http.HttpStatus;
import org.springframework.http.ResponseEntity;
import org.springframework.security.access.AccessDeniedException;
import org.springframework.web.bind.annotation.ControllerAdvice;
import org.springframework.web.bind.annotation.ExceptionHandler;

import javax.servlet.http.HttpServletRequest;
import java.time.LocalDateTime;
import java.util.ArrayList;
import java.util.HashSet;
import java.util.List;
import java.util.Set;

import static com.naharoo.commons.mstoolkit.exceptions.CommonIssueType.FORBIDDEN_ACCESS;

@ControllerAdvice
@ConditionalOnProperty(prefix = "ms-toolkit.rest-exception-handler.handlers.enabled", name = "FORBIDDEN_ACCESS", havingValue = "true", matchIfMissing = true)
@ConditionalOnWebApplication(type = ConditionalOnWebApplication.Type.SERVLET)
@ConditionalOnClass(name = "org.springframework.security.access.AccessDeniedException")
public class AccessDeniedExceptionHandler {

  private static final String ERROR_MESSAGE = "Access is denied.";

  @ExceptionHandler(AccessDeniedException.class)
  public ResponseEntity handleException(
          final AccessDeniedException exception,
          final HttpServletRequest request
  ) {
    final Set issueTypes = new HashSet<>();
    issueTypes.add(FORBIDDEN_ACCESS);

    final List errorMessages = new ArrayList<>();
    errorMessages.add(ERROR_MESSAGE);

    final ApiErrorResponse apiErrorResponse = new ApiErrorResponse(
            HttpStatus.FORBIDDEN.value(),
            issueTypes,
            errorMessages,
            LocalDateTime.now()
    );
    return ResponseEntity.status(HttpStatus.FORBIDDEN).body(apiErrorResponse);
  }
}