Notes/src/routes/error_handlers.ts

import type { Application, NextFunction, Request, Response } from "express";
import log from "../services/log.js";
import NotFoundError from "../errors/not_found_error.js";
import ForbiddenError from "../errors/forbidden_error.js";

function register(app: Application) {
    app.use((err: any, req: Request, res: Response, next: NextFunction) => {
        if (err.code !== "EBADCSRFTOKEN") {
            return next(err);
        }

        log.error(`Invalid CSRF token: ${req.headers["x-csrf-token"]}, secret: ${req.cookies["_csrf"]}`);
        next(new ForbiddenError("Invalid CSRF token"));
    });

    // catch 404 and forward to error handler
    app.use((req, res, next) => {
        const err = new NotFoundError(`Router not found for request ${req.method} ${req.url}`);
        next(err);
    });

    // error handler
    app.use((err: any, req: Request, res: Response, _next: NextFunction) => {
        if (err.status !== 404) {
            log.info(err);
        } else {
            log.info(`${err.status} ${req.method} ${req.url}`);
        }

        res.status(err.status || 500);
        res.send({
            message: err.message
        });
    });
}

export default {
    register
};
refactor(ts): enable verbatim module syntax 2025-01-09 18:36:24 +02:00			`import type { Application, NextFunction, Request, Response } from "express";`
server-esm: Change simple local import statements 2024-07-18 21:35:17 +03:00			`import log from "../services/log.js";`
refactor(error_handlers): use existing NotFoundError class also gets rid of "any" type :-) 2025-03-07 22:31:55 +01:00			`import NotFoundError from "../errors/not_found_error.js";`
refactor(error_handlers): use newly added ForbiddenError class 2025-03-07 23:29:35 +01:00			`import ForbiddenError from "../errors/forbidden_error.js";`
cleanup of app.js, wwww 2023-05-07 15:23:46 +02:00
server-ts: Convert routes/error_handlers 2024-04-07 14:13:57 +03:00			`function register(app: Application) {`
			`app.use((err: any, req: Request, res: Response, next: NextFunction) => {`
chore(prettier): fix all files 2025-01-09 18:07:02 +02:00			`if (err.code !== "EBADCSRFTOKEN") {`
cleanup of app.js, wwww 2023-05-07 15:23:46 +02:00			`return next(err);`
			`}`

chore(prettier): fix all files 2025-01-09 18:07:02 +02:00			log.error(`Invalid CSRF token: ${req.headers["x-csrf-token"]}, secret: ${req.cookies["_csrf"]}`);
refactor(error_handlers): use newly added ForbiddenError class 2025-03-07 23:29:35 +01:00			`next(new ForbiddenError("Invalid CSRF token"));`
cleanup of app.js, wwww 2023-05-07 15:23:46 +02:00			`});`

			`// catch 404 and forward to error handler`
			`app.use((req, res, next) => {`
refactor(error_handlers): use existing NotFoundError class also gets rid of "any" type :-) 2025-03-07 22:31:55 +01:00			const err = new NotFoundError(`Router not found for request ${req.method} ${req.url}`);
cleanup of app.js, wwww 2023-05-07 15:23:46 +02:00			`next(err);`
			`});`

			`// error handler`
chore(lint): fix no-unused-vars errors 2025-03-06 23:21:47 +01:00			`app.use((err: any, req: Request, res: Response, _next: NextFunction) => {`
server: Minimize not found logs (closes #505) 2024-10-20 01:19:02 +03:00			`if (err.status !== 404) {`
cleanup of app.js, wwww 2023-05-07 15:23:46 +02:00			`log.info(err);`
server: Minimize not found logs (closes #505) 2024-10-20 01:19:02 +03:00			`} else {`
			log.info(`${err.status} ${req.method} ${req.url}`);
cleanup of app.js, wwww 2023-05-07 15:23:46 +02:00			`}`

			`res.status(err.status \|\| 500);`
			`res.send({`
			`message: err.message`
			`});`
			`});`
			`}`

server-esm: Change export object to export default object 2024-07-18 21:42:44 +03:00			`export default {`
cleanup of app.js, wwww 2023-05-07 15:23:46 +02:00			`register`
			`};`