feat: update interledger/openapi, handle openapi validator errors in …

…middleware
interledger · May 15, 2024 · 85a7724 · 85a7724
1 parent d04092a
commit 85a7724
Show file tree

Hide file tree

Showing 5 changed files with 32 additions and 9 deletions.
diff --git a/packages/auth/package.json b/packages/auth/package.json
@@ -30,7 +30,7 @@
     "@graphql-tools/schema": "^10.0.3",
     "@interledger/http-signature-utils": "2.0.2",
     "@interledger/open-payments": "6.8.0",
-    "@interledger/openapi": "1.2.1",
+    "@interledger/openapi": "2.0.1",
     "@koa/cors": "^5.0.0",
     "@koa/router": "^12.0.0",
     "ajv": "^8.12.0",

diff --git a/packages/auth/src/index.ts b/packages/auth/src/index.ts
@@ -33,7 +33,13 @@ export function initIocContainer(
   container.singleton('logger', async (deps: IocContract<AppServices>) => {
     const config = await deps.use('config')
     const logger = createLogger({
-      level: config.logLevel
+      level: config.logLevel,
+      redact: [
+        'grant.continueToken',
+        'headers.authorization',
+        'accessToken.value',
+        'requestBody.access_token'
+      ]
     })
     return logger
   })

diff --git a/packages/auth/src/shared/gnapErrors.ts b/packages/auth/src/shared/gnapErrors.ts
@@ -1,5 +1,5 @@
 import { AppContext } from '../app'
-
+import { OpenAPIValidatorMiddlewareError } from '@interledger/openapi'
 export enum GNAPErrorCode {
   InvalidRequest = 'invalid_request',
   InvalidClient = 'invalid_client',
@@ -54,17 +54,30 @@ export async function gnapServerErrorMiddleware(
           message: err.message,
           requestBody: ctx.request.body
         },
-        'Received error when handling GNAP request'
+        'Received error when handling Open Payments GNAP request'
       )
 
       ctx.throw(err.status, err.code, {
         error: { code: err.code, description: err.message }
       })
+    } else if (err instanceof OpenAPIValidatorMiddlewareError) {
+      const finalStatus = err.status || 400
+
+      logger.info(
+        {
+          ...baseLog,
+          message: err.message,
+          status: finalStatus
+        },
+        'Received OpenAPI validation error when handling Open Payments GNAP request'
+      )
+
+      ctx.throw(finalStatus, err.message)
     }
 
     logger.error(
       { ...baseLog, err },
-      'Received unhandled error in GNAP request'
+      'Received unhandled error in Open Payments GNAP request'
     )
     ctx.throw(500)
   }

diff --git a/packages/auth/src/signature/middleware.ts b/packages/auth/src/signature/middleware.ts
@@ -161,6 +161,10 @@ export async function tokenHttpsigMiddleware(
   }
 
   if (!accessToken.grant) {
+    const logger = await ctx.container.use('logger')
+    logger.error(
+      `access token with management id ${ctx.params['id']} has no grant associated with it.`
+    )
     throw new GNAPServerRouteError(
       500,
       GNAPErrorCode.RequestDenied,

diff --git a/pnpm-lock.yaml b/pnpm-lock.yaml