Details
-
Improvement
-
Status: Resolved
-
Major
-
Resolution: Fixed
-
1.6.0
-
None
-
None
Description
We should catch EJBAccessException and use a 401 status code instead of a 500.
Caused by: javax.ejb.EJBAccessException: Unauthorized Access by Principal Denied
at org.apache.openejb.core.stateless.StatelessContainer.invoke(StatelessContainer.java:174)
at org.apache.openejb.util.proxy.ProxyEJB$Handler.invoke(ProxyEJB.java:73)
at
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:57)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
at java.lang.reflect.Method.invoke(Method.java:601)
at org.apache.openejb.server.cxf.rs.OpenEJBEJBInvoker.performInvocation(OpenEJBEJBInvoker.java:88)
at org.apache.cxf.service.invoker.AbstractInvoker.invoke(AbstractInvoker.java:96)