External API v2.0.0 - /api/security responses are suboptimal

Description

If a URL cannot be signed, the request POST /api/security/sign returns HTTP 200 OK with the following content:

{
"error": "Given URL cannot be signed"
}

It would be preferable to not return HTTP 200 OK in case the request could not be full-filled so that clients can assume the nominal response format upon retrieving HTTP 200 OK.

Steps to reproduce

None

Status

Assignee

Unassigned

Reporter

Sven Stauber

Criticality

None

Tags (folksonomy)

None

Components

Fix versions

Affects versions

5.0

Priority

Minor
Configure