Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Arrowhead violates RFC on status code 401 Unauthorized #215

Open
mzsilak opened this issue Apr 23, 2020 · 0 comments
Open

Arrowhead violates RFC on status code 401 Unauthorized #215

mzsilak opened this issue Apr 23, 2020 · 0 comments
Labels
5.0 Arrowhead 5.0 enhancement New feature or request

Comments

@mzsilak
Copy link
Contributor

mzsilak commented Apr 23, 2020

https://tools.ietf.org/html/rfc2616#section-10.4.2

10.4.2 401 Unauthorized
The request requires user authentication. The response MUST include a
WWW-Authenticate header field (section 14.47) containing a challenge
applicable to the requested resource. The client MAY repeat the
request with a suitable Authorization header field (section 14.8). [...]

I stumbles open this while tinkering with the successor of RestTemplate, the WebClient.
Maybe we should return 403 Forbidden instead of 401 Unauthorized?
@tsvetlin tsvetlin added enhancement New feature or request 5.0 Arrowhead 5.0 labels Apr 30, 2020
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
5.0 Arrowhead 5.0 enhancement New feature or request
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@tsvetlin @mzsilak