cn.resolve throws ServiceFailure when should be NotAuthorized
in DEV environment:
https://cn-dev.dataone.org/cn/v1/meta/knb-lter-gce.117.27 ==> throws NotAuthorized
https://cn-dev.dataone.org/cn/v1/resolve/knb-lter-gce.117.27 ==> throws ServiceFailure
ResolveFilter seems to rely on the detail code, rather than the actual exception thrown by meta, to determine the ultimate exception thrown. Not sure if detail code are robust enough for that type of decision making.