Some of the REST interfaces are returning a 500 Internal Server Error for a situation where it is most likely a 404 Not Found situation.
Example: calling workflow/taskinstance/1468 normally returns the tasks details, if the tasks exists. If the task has been completed (thus deleted), the call returns 500 Internal Sever error:
In this situation we are authenticated via OpenAM integration. If end-user is not logged in ... this REST call does return 401 as expected:
You need to be authenticated to experience the 500 error situation.
It would be better if this situation returned a 404 Not Found. Other similar REST APIs exhibit the same behavior