hello , firstly sorry for my bad english.
I have a food store application. Application has some .permitAll() endpoints and .hasRole("ADMIN") endpoints. As you know, .permitAll() endpoints dont need any tokens on header. but hasRole endpoints NEEDS; if there is no token, spring security throws AUTOMATICLY 403.
yeah , its supposed to but there is something wrong with response type. i added custom access denied handler and not worked.
I added 2 images, as you see, spring security works excellent but i cant receive any responses. when i want to test with rest assured or browser console, there is NO body. thats why i cant test. thats why i opened this ticket. regards
Comment From: emirhankarakoc
https://github.com/emirhankarakoc/restassured-test its my github repo for ONLY rest assured testing. if you run this project, you will see how is my problem.
Comment From: yassir78
i can't see the code in the repository you provided can you specify the branch you are using ?
Comment From: jzheaux
Thanks for getting in touch, @emirhankarakoc, and for your detailed report!
It feels like this is a question that would be better suited to Stack Overflow. We prefer to use GitHub issues only for bugs and enhancements.
Will you please consider posting your question to SO and then update this issue with a link to your re-posted question?
Comment From: emirhankarakoc
i can't see the code in the repository you provided can you specify the branch you are using ?
hello yassir. there is only 1 branch. if you try to run tests , 403 tests will be problem.