Do not retry 401/403 errors in http client (!26190) · Merge requests · Administrator / sourcegraph

Administrator requested to merge CLOUD-67-dont-retry-auth into main Oct 18, 2021

Created by: rafax

Do not retry 401/403 errors in http clients:

RFC for 401 says user agent may repeat the request with updated credentials.
RFC for 403 says "The client SHOULD NOT automatically repeat the request with the same credentials"

This was noticed in CLOUD-67, where a request with invalid Github token is retried 20 times.

Do not retry 401/403 errors in http client