mirror of
https://github.com/overleaf/overleaf.git
synced 2024-11-21 20:47:08 -05:00
Merge pull request #11702 from overleaf/em-headers-sent
Don't send an error response when headers have already been sent GitOrigin-RevId: a9832022a4f47562d31134d34bfd8c52e1eb4d7e
This commit is contained in:
Eric Mc Sween
Copybot
parent
1e94069acb
commit
0830760f0f
1 changed files with 36 additions and 12 deletions
|
|
@ -23,6 +23,7 @@ module.exports = ErrorController = {
|
||||||
},
|
},
|
||||||
|
|
||||||
handleError(error, req, res, next) {
|
handleError(error, req, res, next) {
|
||||||
|
const shouldSendErrorResponse = !res.headersSent
|
||||||
const user = SessionManager.getSessionUser(req.session)
|
const user = SessionManager.getSessionUser(req.session)
|
||||||
// log errors related to SAML flow
|
// log errors related to SAML flow
|
||||||
if (req.session && req.session.saml) {
|
if (req.session && req.session.saml) {
|
||||||
|
|
@ -33,44 +34,67 @@ module.exports = ErrorController = {
|
||||||
{ err: error, url: req.url, method: req.method, user },
|
{ err: error, url: req.url, method: req.method, user },
|
||||||
'invalid csrf'
|
'invalid csrf'
|
||||||
)
|
)
|
||||||
|
if (shouldSendErrorResponse) {
|
||||||
res.sendStatus(403)
|
res.sendStatus(403)
|
||||||
|
}
|
||||||
} else if (error instanceof Errors.NotFoundError) {
|
} else if (error instanceof Errors.NotFoundError) {
|
||||||
logger.warn({ err: error, url: req.url }, 'not found error')
|
logger.warn({ err: error, url: req.url }, 'not found error')
|
||||||
|
if (shouldSendErrorResponse) {
|
||||||
ErrorController.notFound(req, res)
|
ErrorController.notFound(req, res)
|
||||||
|
}
|
||||||
} else if (
|
} else if (
|
||||||
error instanceof URIError &&
|
error instanceof URIError &&
|
||||||
error.message.match(/^Failed to decode param/)
|
error.message.match(/^Failed to decode param/)
|
||||||
) {
|
) {
|
||||||
logger.warn({ err: error, url: req.url }, 'Express URIError')
|
logger.warn({ err: error, url: req.url }, 'Express URIError')
|
||||||
|
if (shouldSendErrorResponse) {
|
||||||
res.status(400)
|
res.status(400)
|
||||||
res.render('general/500', { title: 'Invalid Error' })
|
res.render('general/500', { title: 'Invalid Error' })
|
||||||
|
}
|
||||||
} else if (error instanceof Errors.ForbiddenError) {
|
} else if (error instanceof Errors.ForbiddenError) {
|
||||||
logger.error({ err: error }, 'forbidden error')
|
logger.error({ err: error }, 'forbidden error')
|
||||||
|
if (shouldSendErrorResponse) {
|
||||||
ErrorController.forbidden(req, res)
|
ErrorController.forbidden(req, res)
|
||||||
|
}
|
||||||
} else if (error instanceof Errors.TooManyRequestsError) {
|
} else if (error instanceof Errors.TooManyRequestsError) {
|
||||||
logger.warn({ err: error, url: req.url }, 'too many requests error')
|
logger.warn({ err: error, url: req.url }, 'too many requests error')
|
||||||
|
if (shouldSendErrorResponse) {
|
||||||
res.sendStatus(429)
|
res.sendStatus(429)
|
||||||
|
}
|
||||||
} else if (error instanceof Errors.InvalidError) {
|
} else if (error instanceof Errors.InvalidError) {
|
||||||
logger.warn({ err: error, url: req.url }, 'invalid error')
|
logger.warn({ err: error, url: req.url }, 'invalid error')
|
||||||
|
if (shouldSendErrorResponse) {
|
||||||
res.status(400)
|
res.status(400)
|
||||||
plainTextResponse(res, error.message)
|
plainTextResponse(res, error.message)
|
||||||
|
}
|
||||||
} else if (error instanceof Errors.InvalidNameError) {
|
} else if (error instanceof Errors.InvalidNameError) {
|
||||||
logger.warn({ err: error, url: req.url }, 'invalid name error')
|
logger.warn({ err: error, url: req.url }, 'invalid name error')
|
||||||
|
if (shouldSendErrorResponse) {
|
||||||
res.status(400)
|
res.status(400)
|
||||||
plainTextResponse(res, error.message)
|
plainTextResponse(res, error.message)
|
||||||
|
}
|
||||||
} else if (error instanceof Errors.SAMLSessionDataMissing) {
|
} else if (error instanceof Errors.SAMLSessionDataMissing) {
|
||||||
logger.warn(
|
logger.warn(
|
||||||
{ err: error, url: req.url },
|
{ err: error, url: req.url },
|
||||||
'missing SAML session data error'
|
'missing SAML session data error'
|
||||||
)
|
)
|
||||||
|
if (shouldSendErrorResponse) {
|
||||||
HttpErrorHandler.badRequest(req, res, error.message)
|
HttpErrorHandler.badRequest(req, res, error.message)
|
||||||
|
}
|
||||||
} else {
|
} else {
|
||||||
logger.error(
|
logger.error(
|
||||||
{ err: error, url: req.url, method: req.method, user },
|
{ err: error, url: req.url, method: req.method, user },
|
||||||
'error passed to top level next middleware'
|
'error passed to top level next middleware'
|
||||||
)
|
)
|
||||||
|
if (shouldSendErrorResponse) {
|
||||||
ErrorController.serverError(req, res)
|
ErrorController.serverError(req, res)
|
||||||
}
|
}
|
||||||
|
}
|
||||||
|
if (!shouldSendErrorResponse) {
|
||||||
|
// Pass the error to the default Express error handler, which will close
|
||||||
|
// the connection.
|
||||||
|
next(error)
|
||||||
|
}
|
||||||
},
|
},
|
||||||
|
|
||||||
handleApiError(error, req, res, next) {
|
handleApiError(error, req, res, next) {
|
||||||
|
|
|
||||||
Loading…
Reference in a new issue