Pac4j and Custom Forbidden page?
If a user has no permission, I got only this blank Forbidden page:
In the org.pac4j.jee.filter.SecurityFilter there is no unauthorizedUrl field to define the URL.
Is there any other possibility to set / redirect the user to a custom page, if the user has not the permission? How can this be done?
Solution
Either you can override the 403 error page in your app or you can create your own permission Authorizer and throw a FoundAction exception with the wanted location (to break the flow and redirect to the expected error page).
- Pac4j and Custom Forbidden page?
- Shiro filter not working in Spring Boot application
- How to show result page when integrating Struts 2 with Apache Shiro
- Grails + Securing Application
- PrimeFaces 13.0 displays "Invalid Request" at beginning of browser session
- Jakarta EE with Apache Shiro
- How to make JasperReports work with Jakarta EE 9 or any workaround to make JasperReports (6.20.0 version) work with Jakarta EE 9?
- Achieve Dynamic REST Resource specific Authorization
- shiro filters with duplicate patterns which one used
- Apache Shiro integration and Netty ExecutionHandler/OrderedMemoryAwareThreadPoolExecutor
- API Key implementation in Apache Shiro
- Please ensure that at least one realm can authenticate these tokens
- Shiro - redirect to login page after session timeout
- UnavailableSecurityManagerException while integrating shiro with jetty
- apacahe shiro ,after 1 successful basic authentication it returns true for all wrong credentials
- Does Shiro offer extended duration cookie authentication?
- Migrating Shiro hashed passwords to Spring Security hashed passwords
- Session replication with VaadinSession not working
- newbie question : Apache Shiro recover password
- The method expect(boolean) is undefined for the type in Shiro test
- why @Autowired work without @Component when inside @Configuration
- How to correct Shiro logout code (user can still access pages after log out is executed)?
- What class or method needs to be overridden or implemented to customize only the authenticate logic for Shiro?
- ABAC support for Spring Security or Apache Shiro
- Apache Shiro: How do I add a new annotation method interceptor into the mix?
- How to redirect already authenticated user from login page to home page
- Tag Mismatch using RememberMe token with Shiro
- org.apache.shiro.web.filter.authc.LogoutFilter is already configured in ShiroWebModule
- JAAS, Spring Security or Apache Shiro
- How to fix "org.apache.shiro.UnavailableSecurityManagerException" error with "SecurityUtils.getSubject()"