/*
* Licensed to the Apache Software Foundation (ASF) under one or more
* contributor license agreements. See the NOTICE file distributed with
* this work for additional information regarding copyright ownership.
* The ASF licenses this file to You under the Apache License, Version 2.0
* (the "License"); you may not use this file except in compliance with
* the License. You may obtain a copy of the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
package org.apache.usergrid.rest.exceptions;
import javax.ws.rs.core.MediaType;
import javax.ws.rs.core.Response;
import javax.ws.rs.core.Response.Status;
import javax.ws.rs.ext.Provider;
import static javax.ws.rs.core.Response.Status.UNAUTHORIZED;
/**
* <p> Map an authentication exception to an HTTP 401 response, optionally including the realm for a credentials
* challenge at the client. </p>
*/
@Provider
public class SecurityExceptionMapper extends AbstractExceptionMapper<SecurityException> {
@Override
public Response toResponse( SecurityException e ) {
if ( e.getRealm() != null ) {
return Response.status( Status.UNAUTHORIZED )
.header( "WWW-Authenticate", "Basic realm=\"" + e.getRealm() + "\"" )
.type( MediaType.APPLICATION_JSON ).entity( e.getJsonResponse() ).build();
}
else {
return toResponse( UNAUTHORIZED, e.getJsonResponse() );
}
}
}