From 5c853d125cd2a367ced0802e7879676f815a4117 Mon Sep 17 00:00:00 2001
From: Makhtar DIAGNE <makhtar.diagne@teamdlab.com>
Date: Tue, 16 Jun 2020 12:10:35 +0200
Subject: [PATCH] [FIX RABB-539] Handle redirections for CAS Authentication
 failure

---
 .../security/client/config/BaseCasSecurityConfigurer.java       | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/commons/commons-security/src/main/java/fr/gouv/vitamui/commons/security/client/config/BaseCasSecurityConfigurer.java b/commons/commons-security/src/main/java/fr/gouv/vitamui/commons/security/client/config/BaseCasSecurityConfigurer.java
index cd5af87b..fdb0f702 100644
--- a/commons/commons-security/src/main/java/fr/gouv/vitamui/commons/security/client/config/BaseCasSecurityConfigurer.java
+++ b/commons/commons-security/src/main/java/fr/gouv/vitamui/commons/security/client/config/BaseCasSecurityConfigurer.java
@@ -52,6 +52,7 @@ import org.springframework.security.cas.authentication.CasAuthenticationProvider
 import org.springframework.security.cas.web.CasAuthenticationFilter;
 import org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter;
 import org.springframework.security.core.userdetails.AuthenticationUserDetailsService;
+import org.springframework.security.web.authentication.SimpleUrlAuthenticationFailureHandler;
 import org.springframework.security.web.authentication.session.SessionFixationProtectionStrategy;
 
 import javax.net.ssl.HostnameVerifier;
@@ -179,6 +180,7 @@ public abstract class BaseCasSecurityConfigurer extends WebSecurityConfigurerAda
         casAuthenticationFilter.setFilterProcessesUrl("/" + uiPrefix + CALLBACK_ENDPOINT);
         casAuthenticationFilter.setAuthenticationManager(authenticationManager());
         casAuthenticationFilter.setSessionAuthenticationStrategy(new SessionFixationProtectionStrategy());
+        casAuthenticationFilter.setAuthenticationFailureHandler(new SimpleUrlAuthenticationFailureHandler(casExternalUrl));
         return casAuthenticationFilter;
     }
 
-- 
GitLab