Class: ProxES::Middleware::ErrorHandling

Inherits:

Object

• Object
• ProxES::Middleware::ErrorHandling

Includes:

Ditty::Helpers::Wisper, Wisper::Publisher

Defined in:

lib/proxes/middleware/error_handling.rb

Instance Attribute Summary

• #logger ⇒ Object readonly

  Returns the value of attribute logger.

Instance Method Summary

• #call(env) ⇒ Object
• #error(message, code = 500) ⇒ Object

  Response Helpers.

• #failed(request, message, action, code) ⇒ Object
• #initialize(app, logger = nil) ⇒ ErrorHandling constructor

  A new instance of ErrorHandling.

• #redirect(destination, code = 302) ⇒ Object

Constructor Details

#initialize(app, logger = nil) ⇒ ErrorHandling

Returns a new instance of ErrorHandling.

# File 'lib/proxes/middleware/error_handling.rb', line 13

def initialize(app, logger = nil)
  @app = app
  @logger = logger || ::Ditty::Services::Logger.instance
end

Instance Attribute Details

#logger ⇒ Object (readonly)

Returns the value of attribute logger.

# File 'lib/proxes/middleware/error_handling.rb', line 8

def logger
  @logger
end

Instance Method Details

#call(env) ⇒ Object

# File 'lib/proxes/middleware/error_handling.rb', line 18

def call(env)
  request = Request.from_env(env)
  code, headers, body = @app.call env
  unless (200..299).cover? code
    log_action(
      :es_request_failed,
      user: request.user,
      details: "#{request.request_method.upcase} #{request.fullpath} (#{request.class.name})"
    )
  end
  [code, headers, body]
rescue Errno::EHOSTUNREACH
  error 'Could not reach Elasticsearch at ' + ENV['ELASTICSEARCH_URL']
rescue Errno::ECONNREFUSED, Faraday::ConnectionFailed
  error 'Elasticsearch not listening at ' + ENV['ELASTICSEARCH_URL']
rescue Pundit::NotAuthorizedError, Ditty::Helpers::NotAuthenticated
  if request.html? && request.user.nil?
    env['rack.session']['omniauth.origin'] = request.url
    return redirect '/_proxes/auth/identity'
  end

  user = request.user ? request.user.email : 'unauthenticated request'
  logger.error "Access denied for #{user} by security layer: #{request.detail}"

  failed request, 'Not Authorized', :es_request_denied, 401
rescue StandardError => e
  raise e if env['RACK_ENV'] != 'production'

  user = request.user ? request.user.email : 'unauthenticated request'
  logger.error "Access denied for #{user} by security exception: #{request.detail}"
  logger.error e

  failed request, 'Forbidden', :es_request_denied, 403
end

#error(message, code = 500) ⇒ Object

Response Helpers

# File 'lib/proxes/middleware/error_handling.rb', line 63

def error(message, code = 500)
  headers = { 'Content-Type' => 'application/json' }
  headers['WWW-Authenticate'] = 'Basic realm="security"' if code == 401
  [code, headers, ['{"error":"' + message + '"}']]
end

#failed(request, message, action, code) ⇒ Object

# File 'lib/proxes/middleware/error_handling.rb', line 53

def failed(request, message, action, code)
  log_action(
    action,
    user: request.user,
    details: "#{request.request_method.upcase} #{request.fullpath} (#{request.class.name})"
  )
  error message, code
end

#redirect(destination, code = 302) ⇒ Object

# File 'lib/proxes/middleware/error_handling.rb', line 69

def redirect(destination, code = 302)
  [code, { 'Location' => destination }, []]
end