jsr339-experts@jax-rs-spec.java.net

[jsr339-experts] Re: Client Authorization

From: Bill Burke <bburke_at_redhat.com>
Date: Sun, 28 Oct 2012 19:23:22 -0400

IMO, we should add a ForbiddenException. I have already logged a JIRA
on this awhile back. We throw it on role-check failures.

On 10/27/2012 10:02 AM, Markus KARG wrote:
> Experts,
>
> possibly another dumb question, please don't mind. :-)
>
> Does the JAX-RS 2.0 specification mandate that a compliant
> implementation of the Client API MUST throw some kind of
> SecurityException in case a 403 Forbidden is received?
>
> Thanks
>
> Markus
>

-- 
Bill Burke
JBoss, a division of Red Hat
http://bill.burkecentral.com