You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
The API returns an appropriately descriptive error message in its response:
{
"error": {
"message": "invalid authorization: api keys are not allowed within algorithms"
}
}
That tells the algorithm developer that API keys are not to be used within algorithms.
However, the algorithmia-ruby library does not surface this message. Instead, it raises an exception with a rather misleading message:
Error: The request you are making requires authorization. Please check that you have permissions & that you've set your API key./opt/algorithm/vendor/bundle/ruby/2.2.0/gems/algorithmia-1.0.1/lib/algorithmia/requester.rb:92:in `check_for_errors'# ...
Cause
Requester#check_for_errors intends to surface the API response error message, as can be seen on line 87:
However, the response object returned is a HTTParty::Response object. This HTTParty::Response object is returned by the delegated get, post, put, head, and delete within Requester
Note that while the HTTParty::Response responds to Hash-like methods due to internal method_missing delegation, is_a? Hash will evaluate to false.
Additional Concern
Even if we were to remove a Hash type check, we must be careful. Hash#dig was added in Ruby 2.3; and the Algorithmia developer platform runs on Ruby 2.2. Therefore Hash#dig is not available to algorithm developers and will raise an error if invoked within an algorithm.
Solution
There are a few possible solutions. First, we should remove the Hash type check. Additionally, we should either find a way other than Hash#dig to retrieve the error message, or we should specify a required ruby version in the gem specification for this library.
Also, it may make sense to add a regression test to exercise this code path such that it doesn't resurface in the future.
The text was updated successfully, but these errors were encountered:
Problem Description
When an algorithm developer attempts to invoke another algorithm with an improperly configured client:
The API returns an appropriately descriptive error message in its response:
{ "error": { "message": "invalid authorization: api keys are not allowed within algorithms" } }That tells the algorithm developer that API keys are not to be used within algorithms.
However, the
algorithmia-rubylibrary does not surface this message. Instead, it raises an exception with a rather misleading message:Cause
Requester#check_for_errorsintends to surface the API response error message, as can be seen on line 87:However, the response object returned is a
HTTParty::Responseobject. ThisHTTParty::Responseobject is returned by the delegated get, post, put, head, and delete withinRequesterNote that while the
HTTParty::Responseresponds to Hash-like methods due to internal method_missing delegation,is_a? Hashwill evaluate tofalse.Additional Concern
Even if we were to remove a
Hashtype check, we must be careful.Hash#digwas added in Ruby 2.3; and the Algorithmia developer platform runs on Ruby 2.2. ThereforeHash#digis not available to algorithm developers and will raise an error if invoked within an algorithm.Solution
There are a few possible solutions. First, we should remove the
Hashtype check. Additionally, we should either find a way other thanHash#digto retrieve the error message, or we should specify a required ruby version in the gem specification for this library.Also, it may make sense to add a regression test to exercise this code path such that it doesn't resurface in the future.
The text was updated successfully, but these errors were encountered: