Distinguish between different errors in ControllerAuthroizationFilter

author: Bjørn Christian Seime <bjorncs@verizonmedia.com> 2019-11-08 13:34:51 +0100
committer: Bjørn Christian Seime <bjorncs@verizonmedia.com> 2019-11-08 13:34:51 +0100
commit: 2d6faaf2dde2393680175fdb46072065d4483254 (patch)
tree: fcb37552e76320594961fbdf6fa8ee8837695064 /controller-server
parent: 6de289eee885ecd31315505f0134f5da00d13aaf (diff)
1 files changed, 1 insertions, 1 deletions
diff --git a/controller-server/src/main/java/com/yahoo/vespa/hosted/controller/restapi/filter/ControllerAuthorizationFilter.java b/controller-server/src/main/java/com/yahoo/vespa/hosted/controller/restapi/filter/ControllerAuthorizationFilter.java
index 72336b4accf..ec95f0bbb4c 100644
--- a/controller-server/src/main/java/com/yahoo/vespa/hosted/controller/restapi/filter/ControllerAuthorizationFilter.java
+++ b/controller-server/src/main/java/com/yahoo/vespa/hosted/controller/restapi/filter/ControllerAuthorizationFilter.java
@@ -39,7 +39,7 @@ public class ControllerAuthorizationFilter extends JsonSecurityRequestFilterBase
             Optional<SecurityContext> securityContext = Optional.ofNullable((SecurityContext)request.getAttribute(SecurityContext.ATTRIBUTE_NAME));
 
             if (securityContext.isEmpty())
-                return Optional.of(new ErrorResponse(Response.Status.FORBIDDEN, "Access denied"));
+                return Optional.of(new ErrorResponse(Response.Status.UNAUTHORIZED, "Access denied - not authenticated"));
 
             Action action = Action.from(HttpRequest.Method.valueOf(request.getMethod()));
author	Bjørn Christian Seime <bjorncs@verizonmedia.com>	2019-11-08 13:34:51 +0100
committer	Bjørn Christian Seime <bjorncs@verizonmedia.com>	2019-11-08 13:34:51 +0100
commit	2d6faaf2dde2393680175fdb46072065d4483254 (patch)
tree	fcb37552e76320594961fbdf6fa8ee8837695064 /controller-server
parent	6de289eee885ecd31315505f0134f5da00d13aaf (diff)