1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22 package cz.zcu.mre.security;
23
24 import java.io.IOException;
25 import jakarta.servlet.ServletException;
26 import jakarta.servlet.http.HttpServletRequest;
27 import jakarta.servlet.http.HttpServletResponse;
28 import org.slf4j.Logger;
29 import org.slf4j.LoggerFactory;
30 import org.springframework.security.access.AccessDeniedException;
31 import org.springframework.security.web.access.AccessDeniedHandlerImpl;
32
33
34
35
36
37
38 public class AccessDeniedHandler extends AccessDeniedHandlerImpl {
39
40 private static final Logger LOG = LoggerFactory.getLogger(AccessDeniedHandler.class);
41 private static final String LOG_TEMPLATE = "AccessDeniedHandler: User attempted to access a resource for which do not have permission. User {} attempted to access {}";
42
43 @Override
44 public void handle(HttpServletRequest _request, HttpServletResponse _response, AccessDeniedException _exception) throws IOException, ServletException {
45 setErrorPage("/securityAccessDenied");
46
47 LOG.error(LOG_TEMPLATE, _request.getRemoteUser(), _request.getRequestURL());
48
49 super.handle(_request, _response, _exception);
50 }
51 }