fix: #3555974 HttpExceptionNormalizer sets cache-max to 0 unnecessarily sometimes

      $cacheability->setCacheMaxAge(0);

    }

    $is_verbose_reporting = \Drupal::config('system.logging')->get('error_level') === ERROR_REPORTING_DISPLAY_VERBOSE;

    $cacheability->addCacheTags(['config:system.logging']);

    if (\Drupal::config('system.logging')->get('error_level') === ERROR_REPORTING_DISPLAY_VERBOSE) {

    $site_report_access = $this->currentUser->hasPermission('access site reports');

    $cacheability->addCacheContexts(['user.permissions']);

    if ($site_report_access && $is_verbose_reporting) {

      $cacheability->setCacheMaxAge(0);

    }

        'http_response',

        'user:2',

      ])

      ->setCacheContexts(['url.query_args', 'url.site', 'user.roles']);

      ->setCacheContexts(['url.query_args', 'url.site', 'user.permissions', 'user.roles']);

  }

  /**

      'url.query_args',

      // Drupal defaults.

      'url.site',

      'user.permissions',

    ];

    // If the entity type is revisionable, add a resource version cache context.

    $cache_contexts = Cache::mergeContexts($cache_contexts, $entity_type->isRevisionable() ? ['url.query_args:resourceVersion'] : []);

      $expected_document,

      $response,

      ['4xx-response', 'http_response'],

      ['url.query_args', 'url.site'],

      ['url.query_args', 'url.site', 'user.permissions'],

      'UNCACHEABLE (request policy)',

      TRUE,

    );

      [

        'url.query_args',

        'url.site',

        'user.permissions',

      ],

      'UNCACHEABLE (request policy)',

      'UNCACHEABLE (poor cacheability)',

      [

        'url.query_args',

        'url.site',

        'user.permissions',

      ],

      'UNCACHEABLE (request policy)',

      'UNCACHEABLE (poor cacheability)',

      'url.path',

      'url.query_args',

      'url.site',

      'user.permissions',

    ];

    $this->assertResourceErrorResponse(501, 'JSON:API does not support filtering on revisions other than the latest version because a secure Drupal core API does not yet exist to do so.', $rel_working_copy_collection_url_filtered, $actual_response, FALSE, ['http_response'], $filtered_collection_expected_cache_contexts);

    // Fetch the collection URL using an invalid version identifier.

      'url.path',

      'url.query_args',

      'url.site',

      'user.permissions',

    ];

    $this->assertResourceErrorResponse(

      400,

    $this->grantPermissionsToTestedRole(['administer users']);

    $response = $this->request('GET', $collection_url, $request_options);

    $expected_cache_contexts = ['url.path', 'url.query_args', 'url.site'];

    $expected_cache_contexts = ['url.path', 'url.query_args', 'url.site', 'user.permissions'];

    $this->assertResourceErrorResponse(

      400,

      "Filtering on config entities is not supported by Drupal's entity API. You tried to filter on a Role config entity.",

namespace Drupal\Tests\jsonapi\Unit\Normalizer;

use Drupal\Core\Cache\Cache;

use Drupal\Core\Cache\Context\CacheContextsManager;

use Drupal\Core\Config\ConfigFactory;

use Drupal\Core\Config\ImmutableConfig;

use Drupal\Core\Http\Exception\CacheableAccessDeniedHttpException;

use Drupal\Core\Session\AccountInterface;

use Drupal\jsonapi\Normalizer\HttpExceptionNormalizer;

use Drupal\jsonapi\Normalizer\Value\HttpExceptionNormalizerValue;

use Drupal\Tests\Core\Render\TestCacheableDependency;

use Drupal\Tests\UnitTestCase;

use PHPUnit\Framework\Attributes\CoversClass;

use PHPUnit\Framework\Attributes\Group;

use Symfony\Component\DependencyInjection\ContainerInterface;

use Symfony\Component\HttpFoundation\Request;

use Symfony\Component\HttpFoundation\RequestStack;

use Symfony\Component\HttpKernel\Exception\AccessDeniedHttpException;

/**

 * Tests Drupal\jsonapi\Normalizer\HttpExceptionNormalizer.

    $config_factory = $this->prophesize(ConfigFactory::class);

    $config_factory->get('system.logging')->willReturn($config->reveal());

    $container->get('config.factory')->willReturn($config_factory->reveal());

    $cache_contexts_manager = $this->prophesize(CacheContextsManager::class);

    $cache_contexts_manager->assertValidTokens(['user.permissions'])->willReturn(TRUE);

    $container->get('cache_contexts_manager')->willReturn($cache_contexts_manager->reveal());

    \Drupal::setContainer($container->reveal());

    $exception = new AccessDeniedHttpException('lorem', NULL, 13);

    $cacheability = new TestCacheableDependency([], [], Cache::PERMANENT);

    $exception = new CacheableAccessDeniedHttpException($cacheability, 'lorem', NULL, 13);

    $current_user = $this->prophesize(AccountInterface::class);

    $current_user->hasPermission('access site reports')->willReturn(TRUE);

    $normalizer = new HttpExceptionNormalizer($current_user->reveal());

    $normalized = $normalizer->normalize($exception, 'api_json');

    $this->assertInstanceOf(HttpExceptionNormalizerValue::class, $normalized);

    $this->assertEquals(0, $normalized->getCacheMaxAge());

    $normalized = $normalized->getNormalization();

    $error = $normalized[0];

    $this->assertNotEmpty($error['meta']);

    $current_user->hasPermission('access site reports')->willReturn(FALSE);

    $normalizer = new HttpExceptionNormalizer($current_user->reveal());

    $normalized = $normalizer->normalize($exception, 'api_json');

    $this->assertInstanceOf(HttpExceptionNormalizerValue::class, $normalized);

    $this->assertEquals(Cache::PERMANENT, $normalized->getCacheMaxAge());

    $normalized = $normalized->getNormalization();

    $error = $normalized[0];

    $this->assertArrayNotHasKey('meta', $error);