bdawg.io02/23/2019, 11:13 PM
idiomatic way to return a
for a found principal? I am able to authenticate the user with their credentials, but I committed to the clients that I would return a forbidden respond when the user is not authorized with a certain permission.
Riccardo Montagnin02/24/2019, 7:43 PM
and catch it inside
returning a 403 in that case