org.nuxeo.ecm.platform.web.common.exceptionhandling

Class NuxeoSecurityExceptionHandler

java.lang.Object

org.nuxeo.ecm.platform.web.common.exceptionhandling.DefaultNuxeoExceptionHandler

org.nuxeo.ecm.platform.web.common.exceptionhandling.NuxeoSecurityExceptionHandler

All Implemented Interfaces:

NuxeoExceptionHandler

Direct Known Subclasses:

ShibbolethSecurityExceptionHandler

public class NuxeoSecurityExceptionHandler
extends DefaultNuxeoExceptionHandler

This exception handler adds security error flag in the URL parameters to ensure the anonymous user will get appropriate error message when being redirected to login page.

If it isn't a security exception, or if the user is not anonymous, this handler ends up using DefaultNuxeoExceptionHandler.

Author:

ldoguin

Field Summary

Fields

Modifier and Type	Field and Description
protected PluggableAuthenticationService	service

Fields inherited from class org.nuxeo.ecm.platform.web.common.exceptionhandling.DefaultNuxeoExceptionHandler

parameters

Fields inherited from interface org.nuxeo.ecm.platform.web.common.exceptionhandling.NuxeoExceptionHandler

EXCEPTION_HANDLER_MARKER

Constructor Summary

Constructors

Constructor and Description
NuxeoSecurityExceptionHandler()

Method Summary

Modifier and Type	Method and Description
protected PluggableAuthenticationService	getAuthenticationService()
protected boolean	handleAnonymousException(javax.servlet.http.HttpServletRequest request, javax.servlet.http.HttpServletResponse response) Handles the Security Error when the user is anonymous.
void	handleException(javax.servlet.http.HttpServletRequest request, javax.servlet.http.HttpServletResponse response, Throwable t)

Methods inherited from class org.nuxeo.ecm.platform.web.common.exceptionhandling.DefaultNuxeoExceptionHandler

getHandler, getUserMessage, setParameters, startHandlingException, unwrapException

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Field Detail

service

protected PluggableAuthenticationService service

Constructor Detail

NuxeoSecurityExceptionHandler

public NuxeoSecurityExceptionHandler()

Method Detail

handleException

public void handleException(javax.servlet.http.HttpServletRequest request,
                            javax.servlet.http.HttpServletResponse response,
                            Throwable t)
                     throws IOException,
                            javax.servlet.ServletException

Specified by:

handleException in interface NuxeoExceptionHandler

Overrides:

handleException in class DefaultNuxeoExceptionHandler

Throws:

IOException

javax.servlet.ServletException

handleAnonymousException

protected boolean handleAnonymousException(javax.servlet.http.HttpServletRequest request,
                                           javax.servlet.http.HttpServletResponse response)
                                    throws IOException,
                                           javax.servlet.ServletException

Handles the Security Error when the user is anonymous.

Returns:

true if the Security Error is handled so that the calling method won't fallback on the default handler, false otherwise.

Throws:

IOException

javax.servlet.ServletException

getAuthenticationService

protected PluggableAuthenticationService getAuthenticationService()
                                                           throws javax.servlet.ServletException

Throws:

javax.servlet.ServletException