Home Explore Help
Sign In
SMusatov
/
zammad
mirror of https://github.com/zammad/zammad.git
1
0
Fork 0
Files
Tree: c45b5ac51f
Branches Tags
zammad
/
app
/
controllers
/
application_controller
/
handles_errors.rb

handles_errors.rb 4.2 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115 
  1. module ApplicationController::HandlesErrors
    2. 

  2.   extend ActiveSupport::Concern
    3. 

  3. 

  4.   included do
    5. 

  5.     rescue_from StandardError, with: :internal_server_error
    6. 

  6.     rescue_from ExecJS::RuntimeError, with: :internal_server_error
    7. 

  7.     rescue_from ActiveRecord::RecordNotFound, with: :not_found
    8. 

  8.     rescue_from ActiveRecord::StatementInvalid, with: :unprocessable_entity
    9. 

  9.     rescue_from ActiveRecord::RecordInvalid, with: :unprocessable_entity
    10. 

  10.     rescue_from ActiveRecord::DeleteRestrictionError, with: :unprocessable_entity
    11. 

  11.     rescue_from ArgumentError, with: :unprocessable_entity
    12. 

  12.     rescue_from Exceptions::UnprocessableEntity, with: :unprocessable_entity
    13. 

  13.     rescue_from Exceptions::NotAuthorized, with: :unauthorized
    14. 

  14.     rescue_from Exceptions::Forbidden, with: :forbidden
    15. 

  15.     rescue_from Pundit::NotAuthorizedError, with: :pundit_not_authorized_error
    16. 

  16.   end
    17. 

  17. 

  18.   def not_found(e)
    19. 

  19.     logger.error e
    20. 

  20.     respond_to_exception(e, :not_found)
    21. 

  21.     http_log
    22. 

  22.   end
    23. 

  23. 

  24.   def unprocessable_entity(e)
    25. 

  25.     logger.error e
    26. 

  26.     respond_to_exception(e, :unprocessable_entity)
    27. 

  27.     http_log
    28. 

  28.   end
    29. 

  29. 

  30.   def internal_server_error(e)
    31. 

  31.     logger.error e
    32. 

  32.     respond_to_exception(e, :internal_server_error)
    33. 

  33.     http_log
    34. 

  34.   end
    35. 

  35. 

  36.   def unauthorized(e)
    37. 

  37.     logger.info { e }
    38. 

  38.     error = humanize_error(e)
    39. 

  39.     response.headers['X-Failure'] = error.fetch(:error_human, error[:error])
    40. 

  40.     respond_to_exception(e, :unauthorized)
    41. 

  41.     http_log
    42. 

  42.   end
    43. 

  43. 

  44.   def forbidden(e)
    45. 

  45.     logger.info { e }
    46. 

  46.     error = humanize_error(e)
    47. 

  47.     response.headers['X-Failure'] = error.fetch(:error_human, error[:error])
    48. 

  48.     respond_to_exception(e, :forbidden)
    49. 

  49.     http_log
    50. 

  50.   end
    51. 

  51. 

  52.   def pundit_not_authorized_error(e)
    53. 

  53.     logger.info { e }
    54. 

  54.     # check if a special authorization_error should be shown in the result payload
    55. 

  55.     # which was raised in one of the policies. Fall back to a simple "Not authorized"
    56. 

  56.     # error to hide actual cause for security reasons.
    57. 

  57.     exeption = e.policy&.custom_exception || Exceptions::Forbidden.new('Not authorized')
    58. 

  58.     forbidden(exeption)
    59. 

  59.   end
    60. 

  60. 

  61.   private
    62. 

  62. 

  63.   def respond_to_exception(e, status)
    64. 

  64.     status_code = Rack::Utils.status_code(status)
    65. 

  65. 

  66.     respond_to do |format|
    67. 

  67.       format.json { render json: humanize_error(e), status: status }
    68. 

  68.       format.any do
    69. 

  69.         errors = humanize_error(e)
    70. 

  70.         @exception = e
    71. 

  71.         @message = errors[:error_human] || errors[:error] || param[:message]
    72. 

  72.         @traceback = !Rails.env.production?
    73. 

  73.         file = File.open(Rails.root.join('public', "#{status_code}.html"), 'r')
    74. 

  74.         render inline: file.read, status: status # rubocop:disable Rails/RenderInline
    75. 

  75.       end
    76. 

  76.     end
    77. 

  77.   end
    78. 

  78. 

  79.   def humanize_error(e)
    80. 

  80. 

  81.     data = {
    82. 

  82.       error: e.message
    83. 

  83.     }
    84. 

  84. 

  85.     if e.message =~ %r{Validation failed: (.+?)(,|$)}i
    86. 

  86.       data[:error_human] = $1
    87. 

  87.     elsif e.message.match?(%r{(already exists|duplicate key|duplicate entry)}i)
    88. 

  88.       data[:error_human] = 'Object already exists!'
    89. 

  89.     elsif e.message =~ %r{null value in column "(.+?)" violates not-null constraint}i || e.message =~ %r{Field '(.+?)' doesn't have a default value}i
    90. 

  90.       data[:error_human] = "Attribute '#{$1}' required!"
    91. 

  91.     elsif e.message == 'Exceptions::Forbidden'
    92. 

  92.       data[:error]       = 'Not authorized'
    93. 

  93.       data[:error_human] = data[:error]
    94. 

  94.     elsif e.message == 'Exceptions::NotAuthorized'
    95. 

  95.       data[:error]       = 'Authorization failed'
    96. 

  96.       data[:error_human] = data[:error]
    97. 

  97.     elsif [ActionController::RoutingError, ActiveRecord::RecordNotFound, Exceptions::UnprocessableEntity, Exceptions::NotAuthorized, Exceptions::Forbidden].include?(e.class)
    98. 

  98.       data[:error_human] = data[:error]
    99. 

  99.     end
    100. 

  100. 

  101.     if data[:error_human].present?
    102. 

  102.       data[:error] = data[:error_human]
    103. 

  103.     elsif !current_user&.permissions?('admin')
    104. 

  104.       # We want to avoid leaking of internal information but also want the user
    105. 

  105.       # to give the administrator a reference to find the cause of the error.
    106. 

  106.       # Therefore we generate a one time unique error ID that can be used to
    107. 

  107.       # search the logs and find the actual error message.
    108. 

  108.       error_code_prefix = "Error ID #{SecureRandom.urlsafe_base64(6)}:"
    109. 

  109.       Rails.logger.error "#{error_code_prefix} #{data[:error]}"
    110. 

  110.       data[:error] = "#{error_code_prefix} Please contact your administrator."
    111. 

  111.     end
    112. 

  112. 

  113.     data
    114. 

  114.   end
    115. 

  115. end
    116.