Closed agronholm closed 12 years ago
The HTTPUnauthorized (401) exception was meant for indicating that HTTP authentication is required. The HTTPForbidden (403) should instead be raised to properly indicate that the user does not have the required permissions for this action.
The HTTPUnauthorized (401) exception was meant for indicating that HTTP authentication is required. The HTTPForbidden (403) should instead be raised to properly indicate that the user does not have the required permissions for this action.