Spring Security customizing status code, and prevent other codes overridden by 403
The Spring Security will override all errors like 400, 405, and 500 to 403, and we may want to use 401 for unauthorized requests. This article will solve this problem by customizing an Authenticati