UserRoleAuthorizationInterceptor.java 文件源码

/**
 * Handle a request that is not authorized according to this interceptor.
 * Default implementation throws a new PortletSecurityException.
 * <p>This method can be overridden to write a custom message, forward or
 * redirect to some error page or login page, or throw a PortletException.
 * @param request current portlet request
 * @param response current portlet response
 * @param handler chosen handler to execute, for type and/or instance evaluation
 * @throws javax.portlet.PortletException if there is an internal error
 * @throws java.io.IOException in case of an I/O error when writing the response
 */
protected void handleNotAuthorized(PortletRequest request, PortletResponse response, Object handler)
        throws PortletException, IOException {

    throw new PortletSecurityException("Request not authorized");
}