Alerting: Fix fine-grained rule access control to use 403 for authorization error (#79239)

* use 403 for authorization error * update silences API * add ForbiddenError to rule API responses
2023-12-07 13:43:58 -05:00
parent aa12c6c772
commit 2be7605794
17 changed files with 629 additions and 444 deletions
@@ -285,7 +285,7 @@ func TestIntegrationAlertRulePermissions(t *testing.T) {
 				ExportQueryParams: apimodels.ExportQueryParams{Format: "json"},
 				FolderUID:         []string{"folder2"},
 			})
-			assert.Equal(t, http.StatusUnauthorized, status)
+			assert.Equal(t, http.StatusForbidden, status)
 		})

 		t.Run("Export from one group", func(t *testing.T) {