IMO, we should add a ForbiddenException. I have already logged a JIRA
on this awhile back. We throw it on role-check failures.
On 10/27/2012 10:02 AM, Markus KARG wrote:
> Experts,
>
> possibly another dumb question, please don't mind. :-)
>
> Does the JAX-RS 2.0 specification mandate that a compliant
> implementation of the Client API MUST throw some kind of
> SecurityException in case a 403 Forbidden is received?
>
> Thanks
>
> Markus
>
--
Bill Burke
JBoss, a division of Red Hat
http://bill.burkecentral.com