on 11-14-2022 2:36 PM
Hey there,
Is it possible that currently, the HTTP Status Code Responses for the annotation of @readonly and the capability "IndexableByKey" are handled differently depending on the HTTP method?
For DELETE, as expected, I get 401 (Unauthorized) for unauthenticated users and 405 (Method not allowed) for authenticated users.
For PATCH / PUT / POST and a GET on an entity, I unexpectedly get 401 back in all cases.
I would have expected it to be 405 for authenticated and 401 for unauthenticated users, as with Delete. Alternatively, I would have expected at least the combination 401 and 403 (Forbidden).
Is the current behavior as desired, or is it a bug?
Best regards,
Tobias
User | Count |
---|---|
69 | |
7 | |
7 | |
6 | |
6 | |
6 | |
5 | |
5 | |
5 | |
4 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.