ashb opened a new pull request #18670: URL: https://github.com/apache/airflow/pull/18670
This mirrors the behaviour of FAB, where for anything but the DB user type you can edit or delete users, but (even Admins) can only create users when the AUTH_DB type is in use. I'm not 100% sold on 403 being the right error code here, but I think it fits this description (even if 403 is _usually_ auth related.)g > The request contained valid data and was understood by the server, but the server is refusing action. This may be due to the user not having the necessary permissions for a resource or needing an account of some sort, or attempting a prohibited action (e.g. creating a duplicate record where only one is allowed). This code is also typically used if the request provided authentication by answering the WWW-Authenticate header field challenge, but the server did not accept that authentication. The request should not be repeated A 404 seems wrong, as the URL is right, it's just not allowed by the current configuration. I mean I _guess_ a 5xx error would be better as this is a server error, but none of the 5xx codes feel right.) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected]
