Instead, add status 401 specifically to the statuses that cause redirects. This will keep the newfound support for detecting when APIs are failing because the user isn't logged in and for automatically handling this case, with fewer under-considered side effects.
Review for security considerations
[x] The change has been examined for security impact.
PR considerations checklist:
[x] Updates CHANGELOG.md to reflect this PR's change.
On reflection, https://github.com/uPortal-Project/uportal-app-framework/pull/1014 went too far in making any status redirect the user in miscService.redirectUser(). In particular this made 404s redirect.
Instead, add status 401 specifically to the statuses that cause redirects. This will keep the newfound support for detecting when APIs are failing because the user isn't logged in and for automatically handling this case, with fewer under-considered side effects.
Review for security considerations
PR considerations checklist:
CHANGELOG.mdto reflect this PR's change.