Comment by dhosek

Reminds me of a service I led the development on where we had to provide mocks for the front end to develop against as well as develop against mocks of an external service which wasn’t ready for us to use.

When we finally were able to do an end-to-end test, everything worked perfectly on the first try.

Except, the front end REST library, when given a 401 error when an incorrect auth code was sent, retried the request rather than reporting to the user that there was an error which meant that entering an incorrect auth code would lock the user out of their account immediately.

We ended up having to return all results with a 200 response regardless of the contents because of that broken library.