001/**
002 * Copyright 2015 DuraSpace, Inc.
003 *
004 * Licensed under the Apache License, Version 2.0 (the "License");
005 * you may not use this file except in compliance with the License.
006 * You may obtain a copy of the License at
007 *
008 *     http://www.apache.org/licenses/LICENSE-2.0
009 *
010 * Unless required by applicable law or agreed to in writing, software
011 * distributed under the License is distributed on an "AS IS" BASIS,
012 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
013 * See the License for the specific language governing permissions and
014 * limitations under the License.
015 */
016package org.fcrepo.http.commons.exceptionhandlers;
017
018import static javax.ws.rs.core.Response.status;
019import static javax.ws.rs.core.Response.Status.FORBIDDEN;
020import static org.slf4j.LoggerFactory.getLogger;
021
022import java.security.AccessControlException;
023
024import javax.ws.rs.core.Response;
025import javax.ws.rs.ext.ExceptionMapper;
026import javax.ws.rs.ext.Provider;
027
028import org.slf4j.Logger;
029
030/**
031 * Translate Java Security AccessControlExceptions into HTTP 403 Forbidden errors
032 *
033 * @author lsitu
034 * @author awoods
035 * @author gregjan
036 */
037@Provider
038public class AccessControlJavaSecurityExceptionMapper implements
039        ExceptionMapper<AccessControlException> {
040
041    private static final Logger LOGGER =
042        getLogger(AccessControlJavaSecurityExceptionMapper.class);
043
044    @Override
045    public Response toResponse(final AccessControlException e) {
046        LOGGER.debug("AccessControlJavaSecurityExceptionMapper intercepted exception: \n",
047                        e);
048
049        return status(FORBIDDEN).build();
050    }
051
052}