Handle API authentication errors for the API services #1034
Conversation
Codecov ReportAll modified and coverable lines are covered by tests ✅
Additional details and impacted files@@ Coverage Diff @@
## master #1034 +/- ##
==========================================
- Coverage 69.36% 69.23% -0.14%
==========================================
Files 275 275
Lines 7152 7193 +41
==========================================
+ Hits 4961 4980 +19
- Misses 2191 2213 +22 ☔ View full report in Codecov by Sentry. |
arahmarchak
force-pushed
the
enhance-jwt-claim-error-messages
branch
from
53e9942 to
c651335
Compare
| %{ | ||
| errors: %{ | ||
| detail: | ||
| "Authorization failed due to an invalid path. Ensure the realm name and endpoint are correctly specified in the request" |
There was a problem hiding this comment.
Nit: the path does not contain an Astarte endpoint, since this is Realm Management API. See https://docs.astarte-platform.org/astarte/latest/api/?urls.primaryName=Realm%20Management%20API for more
arahmarchak
force-pushed
the
enhance-jwt-claim-error-messages
branch
2 times, most recently
from
4de7590 to
11d3e7d
Compare
arahmarchak
changed the title
arahmarchak
force-pushed
the
enhance-jwt-claim-error-messages
branch
from
11d3e7d to
a29db4c
Compare
| @@ -130,11 +130,37 @@ defmodule Astarte.RealmManagement.APIWeb.FallbackController do | |||
| end | |||
|
|
|||
| # This is called when no JWT token is present | |||
| def auth_error(conn, {:unauthenticated, _reason}, _opts) do | |||
There was a problem hiding this comment.
I'll keep a catch-all error handler anyway if there are no other good reasons to remove it.
This goes for all the other services too
arahmarchak
force-pushed
the
enhance-jwt-claim-error-messages
branch
from
a29db4c to
4e16867
Compare
arahmarchak
force-pushed
the
enhance-jwt-claim-error-messages
branch
4 times, most recently
from
a7974b2 to
773fd4c
Compare
@Annopaolo Since I'm going to change the .yaml files, should I change the contact email as well? |
arahmarchak
force-pushed
the
enhance-jwt-claim-error-messages
branch
from
773fd4c to
2f7728e
Compare
arahmarchak
force-pushed
the
enhance-jwt-claim-error-messages
branch
4 times, most recently
from
d8f415f to
e23c961
Compare
- Expand the Fallback controller with some failed auth functions - Add additional error views with useful feedback messages - Add the gen_jwt_token_with_wrong_signature function in the JWTTestHelper - Add the necessary auth tests and adapt existing ones - Add new errors to the OpenAPI schema Signed-off-by: Armin Ahmetović <[email protected]>
- Expand the Fallback controller with some failed auth functions - Add additional error views with useful feedback messages - Add the gen_jwt_token_with_wrong_signature function in the JWTTestHelper - Add the necessary auth tests and adapt existing ones - Add new errors to the OpenAPI schema Signed-off-by: Armin Ahmetović <[email protected]>
- Expand the Fallback controller with some failed auth functions - Add additional error views with useful feedback messages - Add the gen_jwt_token_with_wrong_signature function in the JWTTestHelper - Add the necessary auth tests and adapt existing ones - Add new errors to the OpenAPI schema Signed-off-by: Armin Ahmetović <[email protected]>
- Expand the Fallback controller with some failed auth functions - Add additional error views with useful feedback messages - Add the gen_jwt_token_with_wrong_signature function in the JWTTestHelper - Add the necessary auth tests and adapt existing ones - Add new errors to the OpenAPI schema Signed-off-by: Armin Ahmetović <[email protected]>
arahmarchak
force-pushed
the
enhance-jwt-claim-error-messages
branch
from
e23c961 to
e7c1eb7
Compare
Let's change it in another PR! |
What this PR does / why we need it:
fallback_controllerwith someauth_errorfunctionsgen_jwt_token_with_wrong_signaturefunction in theJWTTestHelperWhich issue(s) this PR fixes:
Fixes: #1031
Special notes for your reviewer:
Does this PR introduce a user-facing change?
Additional documentation e.g. usage docs, diagrams, etc.:
None