From 8c46d9b441484160f65c6e4b267568a6431fbdd1 Mon Sep 17 00:00:00 2001
From: Edouard DUPIN <yui.heero@gmail.com>
Date: Fri, 18 Apr 2025 08:31:17 +0200
Subject: [PATCH] [FIX] Error 403 instead of 401 when no role found in token.

---
 src/org/atriasoft/archidata/filter/AuthenticationFilter.java | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/org/atriasoft/archidata/filter/AuthenticationFilter.java b/src/org/atriasoft/archidata/filter/AuthenticationFilter.java
index 42bbfcf..d683d86 100644
--- a/src/org/atriasoft/archidata/filter/AuthenticationFilter.java
+++ b/src/org/atriasoft/archidata/filter/AuthenticationFilter.java
@@ -174,7 +174,7 @@ public class AuthenticationFilter implements ContainerRequestFilter {
 		if (!haveRight) {
 			LOGGER.error("REJECTED not enought right : {} require: {}", requestContext.getUriInfo().getPath(), roles);
 			requestContext
-					.abortWith(Response.status(Response.Status.UNAUTHORIZED).entity("Not enought RIGHT !!!").build());
+					.abortWith(Response.status(Response.Status.FORBIDDEN).entity("Not enought RIGHT !!!").build());
 			return;
 		}
 		requestContext.setSecurityContext(userContext);