PAIA-driver: add better error handling and scopes

[lahmann]

These changes add better error handling as defined in PAIA specification (cf. http://gbv.github.io/paia/paia.html#request-errors). Errors are handled in a single place (paiaHandleErrors()) and throw Exceptions by default which will be passed up to ILS-Connection with the error message provided by the PAIA service. This should result in more detailed error messages (via flashmessenger) for the user.

According to the scopes reported for the logged in user by PAIA the user will now have limited actions available in MyResearch views (e.g. do not allow renew if user has not scope write_items).

[demiankatz]

Have you tested how this interacts with the translation system? If we're displaying new messages to end users, do we need to add translations and/or map language to existing strings?

[lahmann]

The messages are from the PAIA service which should be "Human-readable error description". PAIA supports a "Accept-Language" parameter which could enable the service to return only localized messages based on the header parameter. Though current PAIA ILS-driver does not support this parameter.
Regarding translation of the messages in VuFind this depends entirely on the PAIA service - there is no standardized set of messages to be returned by the PAIA service therefore I cannot provide any translations in advance. As the messages should be pretty unique I doubt that there might be any collisions with any pre defined message translations in VuFind.

Does this answer your question?

[lahmann]

Ah, btw. I did test this with the translation system: we added a translation for one error message returned by our ILS to support English language. This works fine as the flashmessenger attempts to translate any given string iirc.

[demiankatz]

I definitely understand that you can't translate unpredictable strings coming out of the API... but my question was actually in reference to some of the hard-coded strings you seem to have added, like You are not allowed to write items.. I apologize if these are already covered by translation, or if these are not displayed to the user at all -- it's possible I'm just confused. I just saw a bunch of new strings in the code and wanted to be sure they weren't a translation issue.

[lahmann]

Oh, yes - you are right. I forgot to add translations for these strings, will do so asap (and check if we do have any strings that are more or less equivalent in meaning).

[lahmann]

I added translations for the exception strings - the "Exception" translation-domain is a suggestion, maybe an even more general term would be better to put all the error messages and exception strings into those language files.

Apart from the translations I added a little bit more coherent exception-handling to the PAIA driver which will now pass exceptions to the controller in case the PAIA service reports that the logged in patron has not sufficient rights (i.e. missing scopes) to do certain actions.

Unfortunately the controller is kind of a dead end for these exceptions and will result in an uncaught exception which is not very pleasant to view for the user. I started to look at the MyResearchController and saw that #815 introduced some blocking-report-logic to the controller which aims at a similar direction. At least it seems appropriate for the PAIA scope write_items but all the other scopes (read_items, change_password etc.) are not covered by the logic as far as I can tell.

Which brings me to the question if we should introduce ILSException handling in the MyResearchController in order to allow the ILS driver to pass messages to the user if certain actions fail. What do you think?

[demiankatz]

@lahmann, have you seen #917? This introduces ILSException handling to the MyResearchController, as you suggest. However, that PR has currently hit a dead end because we're trying to figure out exactly which use cases it is useful for, particularly due to possible interactions with the "fail over to NoILS driver" functionality. Perhaps this PR adds some relevant use cases.

Anyway, that's just one of several issues you bring up -- I'll try to review the rest of the new code before too long. Just wanted to get this idea out as soon as possible in case it is helpful.

[lahmann]

@demiankatz thanks for pointing me to #917! I tested it locally and it works fine for passing the exceptions to the frontend if actually passing the exception message to the flash messenger instead a generic string (but this is a small detail). So I guess #917 would be a great addition for the PAIA driver in this pull request or the other way round, this pull request seems to be a good use case for #917 ;)

[demiankatz]

@lahmann, as I alluded to on #917, we have some issues regarding end-user-readable vs. admin-readable exception messages. In the current implementation, ILSException messages contain administrative details that may be useful to log, but which should not be displayed to a public user. That's why we always catch the exceptions but display a flat, standard flash message.

By contrast, you are using human-readable messages in your implementation here. I think we may need to either develop a new exception type for these situations, or else add a custom method to the existing exception to extract a human-readable message. Adding a custom method might be the simpler solution, but my gut feeling is that it's not the right one. I think the core issue here is that right now, the current ILSException means "something has gone wrong with the ILS" while the way you are using it here appears to indicate "the user is not authorized to do something in the ILS." I wonder if a Forbidden exception might actually be better here, with a try..catch in the appropriate spot to offer cleaner feedback.

Any thoughts?

[lahmann]

@demiankatz I think you are right! The way I use most of ILSExceptions in the PAIA driver could be framed more narrowly as ForbiddenException whereas ILSExceptions should be more technical ones resulting in more generic messages for the user.
If I am not mistaken the ForbiddenException would be a good addition to the blocking-features in VuFind such as it would allow the ILS driver to report an ILS-specific error message to the user somehow managed to send a request although she is blocked (e.g. because of racing conditions).
So I suggest, I will suspend this pull request and open another one with ForbiddenException. After the ForbiddenException got merged into master we can continue to refactor this pull request to use ForbiddenException.

What do you think?

[demiankatz]

@lahmann, VuFind already has a ForbiddenException. Are you proposing to create an ILS-oriented subclass, change the error handling, or something else? In any case, I think we are on the right track; just want to be sure about the details.

[lahmann]

@demiankatz no you are right, I simply wasn't aware of VuFind\Exception\Forbidden but this makes the whole thing a lot easier. I quickly refactored the code to throw ForbiddenExceptions when appropriate but haven't tested it yet. Hopefully I'll find some time this week to test it and see if it works as expected, so that we can discuss changes in error handling if needed.
Thanks!

[demiankatz]

@lahmann, glad you've been able to make some progress on this. I'll wait to hear more about your testing progress before proceeding, but in the meantime, one more question: I notice that you now have some try..catch blocks where the catch clause does nothing but re-throw the exception. I don't think these serve any purpose (not catching an exception has the same result as catching and re-throwing it without processing); is there a reason they are there?

[demiankatz]

I have merged the latest master into this branch and have resolved conflicts. However, I am not in a position to test this. Is anyone interested in moving this forward in @lahmann's absence?

[hajoseng]

As I'm just working with this PAIA driver I'm going to have a look at it; but no promisses.

[Hirnfiedler]

Sorry,
we are still implementing our own PAIA service. So we can't test your merge.
Uwe

[demiankatz]

Thanks, @hajoseng -- even if there are parts of this that you think are worth merging, I'm happy to move some parts over to master to reduce the complexity of the remaining diffs on this side. It also looks like in some cases there are unnecessary try..catch blocks here that can be removed (catching and rethrowing an \Exception object without doing any additional work seems pointless). In any case, as a start, there were some simplifications to the test class that I've merged over to master to make the diffs here a little shorter.

[ndege]

Hi Demian, I add some minor AuthException handling fixes of Sebastian for avoid misleading error messages by invalid credentials at patronLogin and changePassword action. Hope it will be fine to integrate it.

Indeed, some exceptions seems to be useless and comparing to our original a few seems to be removed. I would like to analyse and review this in detail if I had have a good bunch of plenty time.

For new content at PAIA specification we've already implemented I think me or any team member can place a new pull-request in the near future.

[demiankatz]

Thanks, @ndege, this is great! What do you think is the best way to move forward? I imagine it will be easier for your team to open new pull requests if we first get this work merged. There are also two changes I would like to make, but I want to be sure that making these adjustments will not make things harder for you:

1.) I'd like to remove the unnecessary try..catch blocks we discussed.

2.) I'd like to rename all the paia_missing_scope_* language strings to access_denied_* -- these are not really PAIA-specific messages, and giving them more generic names will make it less confusing if we reuse them in other drivers in the future.

[ndege]

Thanks @demiankatz! I agree with all your points and haven't any objections so far. If this merge will be finished we put a new pull-request with additions of PAIA driver we've already implemented.

[demiankatz]

Thanks, @ndege. I'm on vacation this week but will take care of this when I return to the office.

[demiankatz]

Superseded by #1319.