Examples of NotAuthorizedException

• com.amazonaws.services.cognitoidentity.model.NotAuthorizedException

  Thrown when a user is not authorized to access the requested resource.

• com.bazaarvoice.auth.hmac.server.exception.NotAuthorizedException
• com.bradmcevoy.http.exceptions.NotAuthorizedException
  Indicates that the current user is not able to perform the requested operation This should not normally be used. Instead, a resource should determine if a user can perform an operation in its authorised method However, this exception allows for cases where the authorised status can only be determined during processing
• com.caucho.bam.NotAuthorizedException
  HMPP wrapper
• com.dotcms.repackage.com.bradmcevoy.http.exceptions.NotAuthorizedException
• com.esri.gpt.framework.security.identity.NotAuthorizedException
  A configuration related exception.
• com.taskadapter.redmineapi.NotAuthorizedException
  The user was authenticated successfully, but it does not have required privileges for the operation. E.g. trying to create an issue in a project, which the user has no access to.
• javax.ws.rs.NotAuthorizedException
  A runtime exception indicating request authorization failure caused by one of the following scenarios:

  • a client did not send the required authorization credentials to access the requested resource, i.e. {@link javax.ws.rs.core.HttpHeaders#AUTHORIZATION Authorization} HTTP header is missingin the request,
  • or - in case the request already contains the HTTP {@code Authorization} header - thenthe exception indicates that authorization has been refused for the credentials contained in the request header.

  @author Marek Potociar @since 2.0
• org.fenixedu.academic.service.services.exceptions.NotAuthorizedException
• org.gatein.management.api.exceptions.NotAuthorizedException
  @author Nick Scavelli
• org.mule.common.security.oauth.exception.NotAuthorizedException
• org.odata4j.exceptions.NotAuthorizedException
• org.springframework.social.NotAuthorizedException
  Indicates the client is not authorized to invoke the API. This can occur when: - when invoking an API operation with a revoked or expired access token - when invoking an operation that requires authorization without providing authorization credentials. @author Craig Walls

Examples of javax.ws.rs.NotAuthorizedException

        Form form = readFormData(message);
        String assertionType = form.getData().getFirst(Constants.CLIENT_AUTH_ASSERTION_TYPE);
        String decodedAssertionType = assertionType != null ? HttpUtils.urlDecode(assertionType) : null;
        if (decodedAssertionType == null || !Constants.CLIENT_AUTH_SAML2_BEARER.equals(decodedAssertionType)) {
            throw new NotAuthorizedException(errorResponse());
        }
        String assertion = form.getData().getFirst(Constants.CLIENT_AUTH_ASSERTION_PARAM);

        Element token = readToken(message, assertion);
        String clientId = form.getData().getFirst(OAuthConstants.CLIENT_ID);
        validateToken(message, token, clientId);


        form.getData().remove(OAuthConstants.CLIENT_ID);
        form.getData().remove(Constants.CLIENT_AUTH_ASSERTION_PARAM);
        form.getData().remove(Constants.CLIENT_AUTH_ASSERTION_TYPE);

        // restore input stream
        try {
            FormUtils.restoreForm(provider, form, message);
        } catch (Exception ex) {
            throw new NotAuthorizedException(errorResponse());
        }
        return null;
    }

Examples of javax.ws.rs.NotAuthorizedException

    private Form readFormData(Message message) {
        try {
            return FormUtils.readForm(provider, message);
        } catch (Exception ex) {
            throw new NotAuthorizedException(errorResponse());
        }
    }

Examples of javax.ws.rs.NotAuthorizedException

        }
    }

    protected Element readToken(Message message, String assertion) {
        if (assertion == null) {
            throw new NotAuthorizedException(errorResponse());
        }
        try {
            byte[] deflatedToken = Base64UrlUtility.decode(assertion);
            InputStream is = new ByteArrayInputStream(deflatedToken);
            return readToken(message, is);
        } catch (Base64Exception ex) {
            throw new NotAuthorizedException(errorResponse());
        }
    }

Examples of org.fenixedu.academic.service.services.exceptions.NotAuthorizedException

    @Atomic
    public static Boolean run(Person person) throws NotAuthorizedException {
        /* start chain */
        Person requester = AccessControl.getPerson();
        if ((requester == null) || !requester.hasRole(RoleType.DEPARTMENT_CREDITS_MANAGER)) {
            throw new NotAuthorizedException();
        }
        if (person.getTeacher() != null) {
            final Person requesterPerson = requester;
            Department teacherDepartment = person.getTeacher().getDepartment();
            Collection departmentsWithAccessGranted = requesterPerson.getManageableDepartmentCreditsSet();
            if (!departmentsWithAccessGranted.contains(teacherDepartment)) {
                throw new NotAuthorizedException();
            }
        }
        /* end chain */
        return true;
    }

Examples of org.gatein.management.api.exceptions.NotAuthorizedException

public abstract class SecureOperationHandler implements OperationHandler {
    @Override
    public final void execute(OperationContext operationContext, ResultHandler resultHandler) throws ResourceNotFoundException, OperationException {
        // Secure all operations for MOP Management extension to /platform/administrators group.
        if (!operationContext.getExternalContext().isUserInRole("administrators")) {
            throw new NotAuthorizedException(operationContext.getUser(), operationContext.getOperationName());
        }

        doExecute(operationContext, resultHandler);
    }

Examples of org.gatein.management.api.exceptions.NotAuthorizedException

      }

      // Make sure user is authorized to invoke operation
      if (!isAuthorized(operationContext.getExternalContext(), managedRole, owner.managedRole))
      {
         throw new NotAuthorizedException(operationContext.getUser(), operationContext.getOperationName());
      }

      invokeBefore(operationContext);
      try
      {

Examples of org.mule.common.security.oauth.exception.NotAuthorizedException

    @Override
    public final void hasBeenAuthorized(OAuth2Adapter adapter) throws NotAuthorizedException
    {
        if (adapter.getAccessToken() == null)
        {
            throw new NotAuthorizedException(
                "This connector has not yet been authorized, please authorize by calling \"authorize\".");
        }
    }

Examples of org.odata4j.exceptions.NotAuthorizedException

  }

  public static void checkAccess(DatastoreService datastore, Entity e, AccessType accessType) {
    UserService userService = UserServiceFactory.getUserService();
    if (!userService.isUserLoggedIn()) {
      throw new NotAuthorizedException();
    }
    if (e == null) {
      return;
    }
    if (userService.isUserAdmin()) {
      return;
    }

    // Check read access by kind
    if (accessType == AccessType.READ) {
      Query q = new Query(KIND_ACCESS_CONTROL_KIND);
      Filter filter = new FilterPredicate("Kind", FilterOperator.EQUAL, e.getKind());
      q.setFilter(filter);
      Entity kac = datastore.prepare(q).asSingleEntity();
      if (kac != null) {
        Long access = (Long) kac.getProperty("Access");
        if (access.equals(UserGroup.USER.groupId)) {
          return;
        }
      }
    }
    // Check write access by entity
    else if (accessType == AccessType.WRITE) {
      Query q = new Query(ENTITY_ACCESS_CONTROL_KIND);
      Filter filter = new FilterPredicate("Entity", FilterOperator.EQUAL, e);
      q.setFilter(filter);
      Entity eac = datastore.prepare(q).asSingleEntity();

      User owner = (User) eac.getProperty("owner");
      if (owner.compareTo(userService.getCurrentUser()) == 0) {
        return;
      }
    }
    throw new NotAuthorizedException();
  }

Examples of org.springframework.social.NotAuthorizedException

        return null;
    }

  private void handleFoursquareError(int code, String errorType, String message) {
    if(errorType.equals("invalid_auth")) {
      throw new NotAuthorizedException(message);
    } else if(errorType.equals("param_error")) {
      throw new ParamErrorException(code, errorType, message);
    } else if(errorType.equals("endpoint_error")) {
      throw new ResourceNotFoundException(message);
    } else if(errorType.equals("not_authorized")) {