- Raises a more specific exception
ForbiddenError
when the user of an
operation is authenticated properly, but authorization fails.
This enables better handling of authorization errors, differentiating when the
user context is missing or invalid, and when the context is valid but the
user has no rights to do a certain operation. See #371.