You are viewing a plain text version of this content. The canonical link for it is here.
Posted to issues@cxf.apache.org by "Freeman Fang (JIRA)" <ji...@apache.org> on 2016/08/10 07:28:20 UTC
[jira] [Assigned] (CXF-7006) add an util method in
AuthorizationUtils which can take AuthorizationFailure cause
[ https://issues.apache.org/jira/browse/CXF-7006?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Freeman Fang reassigned CXF-7006:
---------------------------------
Assignee: Freeman Fang
> add an util method in AuthorizationUtils which can take AuthorizationFailure cause
> ----------------------------------------------------------------------------------
>
> Key: CXF-7006
> URL: https://issues.apache.org/jira/browse/CXF-7006
> Project: CXF
> Issue Type: Improvement
> Reporter: Freeman Fang
> Assignee: Freeman Fang
>
> though by default we just return a 401 without any message to say why the authorization failed for more security reason, in some cases like in Customer AccessTokenValidatorService they may wanna return a 401 with entity message like "token expired" which can bring back more info. We better extend AuthorizationUtils a bit to add the method which can take authorizationFailure cause and build response accordingly.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)