From be814eb0d59e62d548298bcd16ae536b7eb141d3 Mon Sep 17 00:00:00 2001
From: androidlover5842 <androidlover5842@gmail.com>
Date: Tue, 27 Jan 2026 02:14:38 +0530
Subject: [PATCH] Add access denied debug header for auth troubleshooting

---
 .../com/android/trisolarisserver/security/SecurityConfig.kt | 6 +++++-
 1 file changed, 5 insertions(+), 1 deletion(-)

diff --git a/src/main/kotlin/com/android/trisolarisserver/security/SecurityConfig.kt b/src/main/kotlin/com/android/trisolarisserver/security/SecurityConfig.kt
index 6bcf9a9..51e980c 100644
--- a/src/main/kotlin/com/android/trisolarisserver/security/SecurityConfig.kt
+++ b/src/main/kotlin/com/android/trisolarisserver/security/SecurityConfig.kt
@@ -26,7 +26,11 @@ class SecurityConfig(
             }
             .exceptionHandling {
                 it.authenticationEntryPoint(HttpStatusEntryPoint(HttpStatus.UNAUTHORIZED))
-                it.accessDeniedHandler { _, response, _ ->
+                it.accessDeniedHandler { request, response, ex ->
+                    if (request.getHeader("X-Debug-Auth") == "1") {
+                        val msg = ex.message?.take(200) ?: "access_denied"
+                        response.setHeader("X-Access-Debug", msg)
+                    }
                     response.sendError(HttpStatus.UNAUTHORIZED.value(), "Unauthorized")
                 }
             }