Remove debug headers and return 403 on access denied

src/main/kotlin/com/android/trisolarisserver/security/SecurityConfig.kt

@@ -26,12 +26,8 @@ class SecurityConfig(
             }
             .exceptionHandling {
                 it.authenticationEntryPoint(HttpStatusEntryPoint(HttpStatus.UNAUTHORIZED))
-                it.accessDeniedHandler { request, response, ex ->
-                    if (request.getHeader("X-Debug-Auth") == "1") {
-                        val msg = ex.message?.take(200) ?: "access_denied"
-                        response.setHeader("X-Access-Debug", msg)
-                    }
-                    response.sendError(HttpStatus.UNAUTHORIZED.value(), "Unauthorized")
+                it.accessDeniedHandler { _, response, _ ->
+                    response.sendError(HttpStatus.FORBIDDEN.value(), "Forbidden")
                 }
             }
             .httpBasic { it.disable() }