From ee877fdcc67a716c04d1c3bf6a3c7698a61e7f50 Mon Sep 17 00:00:00 2001
From: Steve Hu <stevehu@gmail.com>
Date: Thu, 13 Apr 2023 13:33:17 -0400
Subject: [PATCH] fixes #300 return immediately after the missing token with
 WWW-Authenticate header (#301)

---
 .../main/java/com/networknt/openapi/UnifiedSecurityHandler.java  | 1 +
 1 file changed, 1 insertion(+)

diff --git a/openapi-security/src/main/java/com/networknt/openapi/UnifiedSecurityHandler.java b/openapi-security/src/main/java/com/networknt/openapi/UnifiedSecurityHandler.java
index 2b19e636..c44ae5e6 100644
--- a/openapi-security/src/main/java/com/networknt/openapi/UnifiedSecurityHandler.java
+++ b/openapi-security/src/main/java/com/networknt/openapi/UnifiedSecurityHandler.java
@@ -78,6 +78,7 @@ public void handleRequest(HttpServerExchange exchange) throws Exception {
                             if(logger.isDebugEnabled())
                                 logger.debug("UnifiedSecurityHandler.handleRequest ends with an error.");
                             exchange.endExchange();
+                            return;
                         } else {
                             // make sure that the length is greater than 5.
                             if(authorization.trim().length() <= 5) {