add UserAccessDeniedHandler make 404 on 401

2025-07-31 22:46:45 +02:00
parent e2b3448f97
commit 9321a7eadd
2 changed files with 17 additions and 0 deletions
--- a/src/main/kotlin/ltd/hlaeja/configuration/SecurityConfiguration.kt
+++ b/src/main/kotlin/ltd/hlaeja/configuration/SecurityConfiguration.kt
@@ -1,6 +1,7 @@
 package ltd.hlaeja.configuration

 import ltd.hlaeja.security.handler.CsrfAccessDeniedHandler
+import ltd.hlaeja.security.handler.UserAccessDeniedHandler
 import org.springframework.context.annotation.Bean
 import org.springframework.context.annotation.Configuration
 import org.springframework.http.HttpStatus.FOUND
@@ -17,6 +18,7 @@ class SecurityConfiguration {
    @Bean
    fun securityWebFilterChain(serverHttpSecurity: ServerHttpSecurity): SecurityWebFilterChain = serverHttpSecurity
        .csrf { it.accessDeniedHandler(CsrfAccessDeniedHandler()) }
+        .exceptionHandling { it.accessDeniedHandler(UserAccessDeniedHandler()) }
        .authorizeExchange(::authorizeExchange)
        .formLogin(::formLogin)
        .logout(::logout)