Consistently return `404` for all requests on non existent source in `/authorization/sources/:source[/*]`.