Handling 403 error coming from Spring Boot's actuator?

Slava_Imeshev · June 9, 2025, 9:34pm

Folks, I get this error when trying to access /manage (Spring Actuator) url :

Whitelabel Error Page
This application has no explicit mapping for /error, so you are seeing this as a fallback.

Mon Jun 09 14:24:37 PDT 2025
There was an unexpected error (type=Forbidden, status=403).
Forbidden

It rejects access as it should, but I want to use app’s application layout to display an error. There a “standard” Vaadin way to handle 403 (access denied) error? Or should I just go ahead and create “/error” router view?

knoobie · June 10, 2025, 3:38am

Actuator should not be accessed by humans, therefore showing Vaadin’s error page sounds wrong. Using the Spring’s Error Page is the better way.

Note: I would highly recommend to put the actuator endpoint on the management port for enhanced security

Slava_Imeshev · June 10, 2025, 3:55am

I can read Json just fine. AND, I would like to have a pretty error page with 403 status code, thus the question. Ditto on the port.