The proposed solution to problem #787 #819
Conversation
RobinTail
changed the title
|
@TheWisestOne , please review |
There was a problem hiding this comment.
Seems good to me!
I have 2 comments:
-
EndpointHandlerError is a very generic name, and might be better renamed
EndpointHandlerZodErroror something like that to clarify that any other errors thrown by the endpoint don't get wrapped in this error class -
From my understanding, the flow of execution / error handling now looks like:
- parse middleware input / run middleware -> any errors go to ResultHandler directly
- parse handler input -> any errors go to ResultHandler directly
- run endpoint handler -> any zod errors get wrapped in
EndpointHandlerError - parse output -> any zod errors get wrapped in
OutputValidationError
It seems a little arbitrary when we wrap up errors into these wrapper classes vs. let the result handler deal with the raw error. I am fine with the current state, just want to raise that it is not all that consistent, and it might be worth thinking about if there's a way to make it more consistent.
One proposal that comes to mind to resolve 2. above would be to sort of "merge" our two approaches:
We would do a try/catch around the parseAsync call rather than around the this.handler call, and in the catch block we would throw a new InputValidationError, which gets passed on to the ResultHandler. Then, the ResultHandler code that currently checks for a ZodError and decides to throw a 400 can instead check for an InputValidationError.
In this world, parsing of both input and output have the potential to wrap zod errors, but the endpoint handler itself always throws raw errors to the ResultHandler
@TheWisestOne, yes, agree. That need to be fixed. |
there was a reason why I tried to refrain from making another validation error — it would be a breaking change for existing custom But I also agree with your point on consistency. Need to think on it a little bit. |
ah, an interesting point. One thing to note is that my attempt at this fix (#794) actually is non-breaking for people using an |
|
I'm going to tackle this problem once again keeping in mind that the breaking change is acceptable, since I'm going to make v9 with another one. |
|
I wanna go with the |
|
I wanna leave the utilization of |
| ? new z.ZodError( | ||
| e.issues.map(({ path, ...rest }) => ({ | ||
| ...rest, | ||
| path: (["output"] as typeof path).concat(path), |
There was a problem hiding this comment.
this trick is moved to the helper
|
OK. Now I'm happy with it. Anyway, I tested that throwing ZodError inside the Endpoint is not considered as IO validation issue. |
This reverts commit c71689b.
* The proposed solution. * Changing the name of the error. * Adding originalError prop. * The proposed solution. * Changing the name of the error. * Adding originalError prop. * Ref: the solution based on the consistency of OutputValidationError and InputValidationError. * Exposing getMessageFromError() and getStatusCodeFromError() helpers. * Enabling workflows. * Testing the edge cases. * Testing the inheritance of InputValidationError. * Adding the specific test for the problem #787. * Revert "Enabling workflows." This reverts commit c71689b.
* Remove request body from `DELETE` operations in OpenAPI spec (#821) * Remove request body from delete operations in OpenAPI spec * Remove `DELETE` request `body` from `defaultInputSources` + revert `src/open-api.ts` change from previous commit * Fix test name, add couple todos. * Testing fallback input sources for unknown request methods. * Updating the workflows to run in this branch. --------- Co-authored-by: Robin Tail <robin_tail@me.com> * Readme: reflecting the changes, including the config type description. * Changelog: version 9.0.0-beta1, describing the potentially breaking changes. * V9 is for Brianna Ghey. * Updating the workflows to support the future branch of v8. * Updating the Security policy. * 9.0.0-beta1 * Solving the problem #787 (#819) * The proposed solution. * Changing the name of the error. * Adding originalError prop. * The proposed solution. * Changing the name of the error. * Adding originalError prop. * Ref: the solution based on the consistency of OutputValidationError and InputValidationError. * Exposing getMessageFromError() and getStatusCodeFromError() helpers. * Enabling workflows. * Testing the edge cases. * Testing the inheritance of InputValidationError. * Adding the specific test for the problem #787. * Revert "Enabling workflows." This reverts commit c71689b. * Handling the edge case when the issues array is empty. * Changelog: v9.0.0-beta2, describing the potenitally breaking changes. * Readme: updating the instructions on creating a custom ResultHandler. * 9.0.0-beta2 * Changelog: the response may actually not be json. * Changelog: a note on base for 9.0.0-beta1. * Changelog: upcoming v9.0.0-beta3. * 9.0.0-beta3 * Breaking: removing createApiResponse(). * Ref: moving the array initializer for scopes and tags. * Replacing mimeTypes parameter with hasUpload, moving mime types initialization to constructor. * Ref: figuring out hasUpload inside the constructor. * Ref: single method for getMimeTypes() with variants. * Ref: moving response schema and status codes initializations into constructor. * Ref: single method for getStatusCode() with variants. * Ref: removing getOutputSchema() - redundant. * Ref: single method for getSchema() with variants and overloads. * Ref: extracting variant types. * Fix: using ZodTypeAny where anything is implied. * Changelog: upcoming 9.0.0-beta4. * Minor: fix typo. * 9.0.0-beta4 --------- Co-authored-by: Aleksandr Sidorenko <mcmerph@gmail.com>
Related to the discussion #787
Should enable the developer using
zodas a tool within Endpoint's handler without considering its possible parsing/validation errors as IO related ones, leading to the status code500instead of400in that case.@TheWisestOne
The approach
InputValidationError, consistent withOutputValidationError.InputValidationErrororiginalErrorprop for the further processing if needed.messageprop is already prepared for being human readable.ResultHandlernow can be sure that any ZodError is actually NOT input validation error and can respond with500.Inspired by #794.
ToDo