首页 发现 帮助
注册 登录
github
/
spring-security
镜像自地址 https://github.com/spring-projects/spring-security
2
0
派生 0
文件 工单管理 0 Wiki
浏览代码

sendError now returns less informative forbidden message rather than the exception message.

Luke Taylor 20 年之前
父节点
602b1473c5
当前提交
ae47fb722d
共有 1 个文件被更改,包括 1 次插入1 次删除
分列视图 显示文件统计
  1. 1 1
      core/src/main/java/org/acegisecurity/ui/x509/X509ProcessingFilterEntryPoint.java

+ 1 - 1
core/src/main/java/org/acegisecurity/ui/x509/X509ProcessingFilterEntryPoint.java
查看文件 

@@ -57,6 +57,6 @@ public class X509ProcessingFilterEntryPoint implements AuthenticationEntryPoint
 
     public void commence(ServletRequest request, ServletResponse response, AuthenticationException authException) throws IOException, ServletException {
 
         logger.debug("X509 entry point called. Rejecting access");
 
         HttpServletResponse httpResponse = (HttpServletResponse)response;
 
-        httpResponse.sendError(HttpServletResponse.SC_FORBIDDEN, authException.getMessage());
 
+        httpResponse.sendError(HttpServletResponse.SC_FORBIDDEN, "Access Denied");
 
     }
 
 }