Add missing type annotations & catch unhandled exceptions #2382
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Fix a subtle bug due to an incorrect control flow. The API request would throw an error if a user lacked the correct permission to access a people list, but the code assumed that the API would return a falsy value instead. The fix was simply to replace the `if-else` based control flow with a `try-catch` dito, properly redirecting a user which performs an unauthorized get request for some specific people list.
richardolsson
requested changes
Nov 26, 2024
Comment on lines
+39
to
+41
| // Note: We don't actually care for the returned orgnaization, but we still want to perform | ||
| // the api request to know if this user may access this particular page. | ||
| await apiClient.get<ZetkinOrganization>(`/api/orgs/${orgId}`); |
There was a problem hiding this comment.
Actually, I don't think we need to make this request. The API request above (for the journey instance) will fail if the user cannot access it, and if it can access the journey instance it will also be able to access the organization.
Comment on lines
+24
to
+25
| // Note: We don't actually care for the returned orgnaization, but we still want to perform | ||
| // the api request to know if this user may access this particular page. |
There was a problem hiding this comment.
This comment refers to "the returned organization", which I believe is a copy-paste error. Personally, I would remove the comment. I usually prefer to avoid comments (because they can become misleading over time if not carefully kept up to date) but I admit this is a grey area.
| // Note: We don't actually care for the returned journeys or orgnaization, but we still want to perform | ||
| // the api request to know if this user may access this particular page. | ||
| await apiClient.get<ZetkinJourney[]>(`/api/orgs/${orgId}/journeys`); | ||
| await apiClient.get<ZetkinOrganization>(`/api/orgs/${orgId}`); |
There was a problem hiding this comment.
This request should not be necessary.
| await apiClient.get<ZetkinJourney>( | ||
| `/api/orgs/${orgId}/journeys/${journeyId}` | ||
| ); | ||
| await apiClient.get<ZetkinOrganization>(`/api/orgs/${orgId}`); |
There was a problem hiding this comment.
This request should not be necessary.
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Description
This PR is just some minor code cleanups and bug fixes 🐞 🧹
Bug fixes
I found a lot of code on the following form
The problem with this is that we can't expect
Tto be a falsy value ifapiClient.getis able to fetch the value.Twill in practice be some kind of object, and as such theif-body will always be hit.If
getwould fail to fetch the value, it will instead throw an exception. As such, the correct form would beThis would correctly return
{ notFound: true }ifdatacould not be fetched.Since
datais seldom used, it can often be elided and we simply executeapiClient.get<T>('api/getData')for the side effect of maybe triggering the exception.Cleanups
Add type annotations to some of the aforementioned
get-requests where they were missing. Nothing fancyChanges
get-requests.Notes to reviewer
Unfortunately, this is a rather boring PR to review. I guess you could try to browse all affetched pages and try to fetch invalid data. Otherwise, it is a matter of reviewing this rather mechanical code transformation by hand.