mirror of
https://github.com/mozilla-services/syncstorage-rs.git
synced 2025-08-06 20:06:57 +02:00
2fb6b84ad4
Some checks failed
Glean probe-scraper / glean-probe-scraper (push) Has been cancelled
and cleanup feature flag usage (only specifying defaults in syncserver's Cargo.toml) Closes STOR-295
351 lines
9.8 KiB
Rust
351 lines
9.8 KiB
Rust
use std::{cmp::PartialEq, error::Error, fmt};
|
|
|
|
use actix_web::{HttpResponse, ResponseError};
|
|
use backtrace::Backtrace;
|
|
use http::StatusCode;
|
|
use serde::{
|
|
ser::{SerializeMap, Serializer},
|
|
Serialize,
|
|
};
|
|
use syncserver_common::{InternalError, ReportableError};
|
|
|
|
/// An error type that represents application-specific errors to Tokenserver. This error is not
|
|
/// used to represent database-related errors; database-related errors have their own type.
|
|
#[derive(Debug)]
|
|
pub struct TokenserverError {
|
|
pub status: &'static str,
|
|
pub location: ErrorLocation,
|
|
pub name: String,
|
|
pub description: String,
|
|
pub http_status: StatusCode,
|
|
/// For internal use only. Used to report any additional context behind an error to
|
|
/// distinguish between similar errors in Sentry.
|
|
pub context: String,
|
|
pub backtrace: Box<Backtrace>,
|
|
pub tags: Option<Vec<(&'static str, String)>>,
|
|
/// TODO: refactor TokenserverError to include a TokenserverErrorKind, w/
|
|
/// variants for sources (currently just DbError). May require moving
|
|
/// TokenserverError out of common (into syncserver)
|
|
pub source: Option<Box<dyn ReportableError + Send>>,
|
|
}
|
|
|
|
impl Error for TokenserverError {}
|
|
|
|
// We implement `PartialEq` manually here because `Backtrace` doesn't implement `PartialEq`, so we
|
|
// can't derive it
|
|
impl PartialEq for TokenserverError {
|
|
fn eq(&self, other: &Self) -> bool {
|
|
self.status == other.status
|
|
&& self.location == other.location
|
|
&& self.name == other.name
|
|
&& self.description == other.description
|
|
&& self.http_status == other.http_status
|
|
&& self.context == other.context
|
|
}
|
|
}
|
|
|
|
impl fmt::Display for TokenserverError {
|
|
fn fmt(&self, f: &mut fmt::Formatter<'_>) -> fmt::Result {
|
|
write!(f, "{}", self.context)
|
|
}
|
|
}
|
|
|
|
impl Default for TokenserverError {
|
|
fn default() -> Self {
|
|
Self {
|
|
status: "error",
|
|
location: ErrorLocation::default(),
|
|
name: "".to_owned(),
|
|
description: "Unauthorized".to_owned(),
|
|
http_status: StatusCode::UNAUTHORIZED,
|
|
context: "Unauthorized".to_owned(),
|
|
backtrace: Box::new(Backtrace::new()),
|
|
tags: None,
|
|
source: None,
|
|
}
|
|
}
|
|
}
|
|
|
|
impl TokenserverError {
|
|
pub fn invalid_generation() -> Self {
|
|
Self {
|
|
status: "invalid-generation",
|
|
location: ErrorLocation::Body,
|
|
context: "Invalid generation".to_owned(),
|
|
..Self::default()
|
|
}
|
|
}
|
|
|
|
pub fn invalid_keys_changed_at() -> Self {
|
|
Self {
|
|
status: "invalid-keysChangedAt",
|
|
location: ErrorLocation::Body,
|
|
context: "Invalid keys_changed_at".to_owned(),
|
|
..Self::default()
|
|
}
|
|
}
|
|
|
|
pub fn invalid_key_id(description: String) -> Self {
|
|
Self {
|
|
status: "invalid-key-id",
|
|
context: description.clone(),
|
|
description,
|
|
..Self::default()
|
|
}
|
|
}
|
|
|
|
pub fn invalid_credentials(description: String) -> Self {
|
|
Self {
|
|
status: "invalid-credentials",
|
|
location: ErrorLocation::Body,
|
|
context: description.clone(),
|
|
description,
|
|
..Self::default()
|
|
}
|
|
}
|
|
|
|
pub fn invalid_client_state(
|
|
description: String,
|
|
tags: Option<Vec<(&'static str, String)>>,
|
|
) -> Self {
|
|
Self {
|
|
status: "invalid-client-state",
|
|
context: description.clone(),
|
|
description,
|
|
name: "X-Client-State".to_owned(),
|
|
tags,
|
|
..Self::default()
|
|
}
|
|
}
|
|
|
|
pub fn internal_error() -> Self {
|
|
Self {
|
|
status: "internal-error",
|
|
location: ErrorLocation::Internal,
|
|
description: "Server error".to_owned(),
|
|
http_status: StatusCode::INTERNAL_SERVER_ERROR,
|
|
context: "Internal error".to_owned(),
|
|
..Self::default()
|
|
}
|
|
}
|
|
|
|
pub fn elapsed() -> Self {
|
|
Self {
|
|
status: "elapsed",
|
|
location: ErrorLocation::Body,
|
|
description: "Elapsed".to_owned(),
|
|
http_status: StatusCode::GATEWAY_TIMEOUT,
|
|
context: "Elapsed".to_owned(),
|
|
..Self::default()
|
|
}
|
|
}
|
|
|
|
pub fn resource_unavailable() -> Self {
|
|
Self {
|
|
location: ErrorLocation::Body,
|
|
description: "Resource is not available".to_owned(),
|
|
http_status: StatusCode::SERVICE_UNAVAILABLE,
|
|
context: "Resource is not available".to_owned(),
|
|
..Self::default()
|
|
}
|
|
}
|
|
|
|
pub fn oauth_timeout() -> Self {
|
|
Self {
|
|
context: "OAuth verification timeout".to_owned(),
|
|
tags: Some(vec![("reason", "oauth_verify_timeout".to_owned())]),
|
|
..Self::resource_unavailable()
|
|
}
|
|
}
|
|
|
|
pub fn unsupported(description: String, name: String) -> Self {
|
|
Self {
|
|
status: "error",
|
|
location: ErrorLocation::Url,
|
|
context: description.clone(),
|
|
description,
|
|
name,
|
|
http_status: StatusCode::NOT_FOUND,
|
|
..Self::default()
|
|
}
|
|
}
|
|
|
|
pub fn unauthorized(description: String) -> Self {
|
|
Self {
|
|
location: ErrorLocation::Body,
|
|
context: description.clone(),
|
|
description,
|
|
..Self::default()
|
|
}
|
|
}
|
|
}
|
|
|
|
#[derive(Clone, Copy, Debug, Eq, PartialEq)]
|
|
pub enum ErrorLocation {
|
|
Header,
|
|
Url,
|
|
Body,
|
|
Internal,
|
|
}
|
|
|
|
impl Default for ErrorLocation {
|
|
fn default() -> Self {
|
|
Self::Header
|
|
}
|
|
}
|
|
|
|
impl fmt::Display for ErrorLocation {
|
|
fn fmt(&self, f: &mut fmt::Formatter<'_>) -> fmt::Result {
|
|
match self {
|
|
Self::Header => write!(f, "header"),
|
|
Self::Url => write!(f, "url"),
|
|
Self::Body => write!(f, "body"),
|
|
Self::Internal => write!(f, "internal"),
|
|
}
|
|
}
|
|
}
|
|
|
|
impl ResponseError for TokenserverError {
|
|
fn error_response(&self) -> HttpResponse {
|
|
HttpResponse::build(self.status_code()).json(ErrorResponse::from(self))
|
|
}
|
|
|
|
fn status_code(&self) -> actix_web::http::StatusCode {
|
|
actix_web::http::StatusCode::from_u16(self.http_status.as_u16()).unwrap()
|
|
}
|
|
}
|
|
|
|
struct ErrorResponse {
|
|
status: &'static str,
|
|
errors: [ErrorInstance; 1],
|
|
}
|
|
|
|
struct ErrorInstance {
|
|
location: ErrorLocation,
|
|
name: String,
|
|
description: String,
|
|
}
|
|
|
|
impl From<&TokenserverError> for ErrorResponse {
|
|
fn from(error: &TokenserverError) -> Self {
|
|
ErrorResponse {
|
|
status: error.status,
|
|
errors: [ErrorInstance {
|
|
location: error.location,
|
|
name: error.name.clone(),
|
|
description: error.description.clone(),
|
|
}],
|
|
}
|
|
}
|
|
}
|
|
|
|
impl Serialize for ErrorInstance {
|
|
fn serialize<S>(&self, serializer: S) -> Result<S::Ok, S::Error>
|
|
where
|
|
S: Serializer,
|
|
{
|
|
let mut map = serializer.serialize_map(Some(3))?;
|
|
map.serialize_entry("location", &self.location.to_string())?;
|
|
map.serialize_entry("name", &self.name)?;
|
|
map.serialize_entry("description", &self.description)?;
|
|
map.end()
|
|
}
|
|
}
|
|
|
|
impl Serialize for ErrorResponse {
|
|
fn serialize<S>(&self, serializer: S) -> Result<S::Ok, S::Error>
|
|
where
|
|
S: Serializer,
|
|
{
|
|
let mut map = serializer.serialize_map(Some(2))?;
|
|
map.serialize_entry("status", &self.status)?;
|
|
map.serialize_entry("errors", &self.errors)?;
|
|
map.end()
|
|
}
|
|
}
|
|
|
|
impl Serialize for TokenserverError {
|
|
fn serialize<S>(&self, serializer: S) -> Result<S::Ok, S::Error>
|
|
where
|
|
S: Serializer,
|
|
{
|
|
ErrorResponse::from(self).serialize(serializer)
|
|
}
|
|
}
|
|
|
|
impl From<TokenserverError> for HttpResponse {
|
|
fn from(inner: TokenserverError) -> Self {
|
|
ResponseError::error_response(&inner)
|
|
}
|
|
}
|
|
|
|
impl ReportableError for TokenserverError {
|
|
fn backtrace(&self) -> Option<&Backtrace> {
|
|
if let Some(source) = &self.source {
|
|
return source.backtrace();
|
|
}
|
|
Some(&self.backtrace)
|
|
}
|
|
|
|
fn is_sentry_event(&self) -> bool {
|
|
if let Some(source) = &self.source {
|
|
return source.is_sentry_event();
|
|
}
|
|
if self.http_status == StatusCode::SERVICE_UNAVAILABLE {
|
|
return false;
|
|
}
|
|
self.http_status.is_server_error() && self.metric_label().is_none()
|
|
}
|
|
|
|
fn metric_label(&self) -> Option<&str> {
|
|
if let Some(source) = &self.source {
|
|
return source.metric_label();
|
|
}
|
|
|
|
if self.http_status == StatusCode::SERVICE_UNAVAILABLE {
|
|
return Some("request.error.resource_unavailable");
|
|
}
|
|
if self.http_status.is_client_error() {
|
|
return Some("request.error.oauth");
|
|
}
|
|
(self.status == "invalid-client-state").then_some("request.error.invalid_client_state")
|
|
}
|
|
|
|
fn tags(&self) -> Vec<(&str, String)> {
|
|
self.tags.clone().unwrap_or_default()
|
|
}
|
|
}
|
|
|
|
impl InternalError for TokenserverError {
|
|
fn internal_error(message: String) -> Self {
|
|
TokenserverError {
|
|
context: message,
|
|
..TokenserverError::internal_error()
|
|
}
|
|
}
|
|
}
|
|
|
|
#[cfg(feature = "py")]
|
|
impl From<pyo3::prelude::PyErr> for TokenserverError {
|
|
fn from(err: pyo3::prelude::PyErr) -> Self {
|
|
InternalError::internal_error(err.to_string())
|
|
}
|
|
}
|
|
|
|
#[cfg(test)]
|
|
mod tests {
|
|
use super::TokenserverError;
|
|
use syncserver_common::middleware::sentry::exception_from_reportable_error;
|
|
|
|
#[test]
|
|
fn sentry_event() {
|
|
let err = TokenserverError {
|
|
context: "OAuth verification timeout".to_owned(),
|
|
..TokenserverError::resource_unavailable()
|
|
};
|
|
let exc = exception_from_reportable_error(&err);
|
|
assert_eq!(exc.ty, "TokenserverError");
|
|
assert_eq!(exc.value, Some(err.context));
|
|
}
|
|
}
|