viscous/espocrm
1
0
Fork 0
mirror of https://github.com/espocrm/espocrm.git synced 2026-06-29 07:26:05 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
2c9a6aa45632371c8fc23e1be7003eef7fec54fe
espocrm/application/Espo/Core/Api/ErrorOutput.php
Yuri Kuznetsov 2c9a6aa456 fix exception
2020-09-04 12:50:18 +03:00

232 lines
6.6 KiB
PHP
Raw Blame History

<?php
/************************************************************************
* This file is part of EspoCRM.
*
* EspoCRM - Open Source CRM application.
* Copyright (C) 2014-2020 Yuri Kuznetsov, Taras Machyshyn, Oleksiy Avramenko
* Website: https://www.espocrm.com
*
* EspoCRM is free software: you can redistribute it and/or modify
* it under the terms of the GNU General Public License as published by
* the Free Software Foundation, either version 3 of the License, or
* (at your option) any later version.
*
* EspoCRM is distributed in the hope that it will be useful,
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
* GNU General Public License for more details.
*
* You should have received a copy of the GNU General Public License
* along with EspoCRM. If not, see http://www.gnu.org/licenses/.
*
* The interactive user interfaces in modified source and object code versions
* of this program must display Appropriate Legal Notices, as required under
* Section 5 of the GNU General Public License version 3.
*
* In accordance with Section 7(b) of the GNU General Public License version 3,
* these Appropriate Legal Notices must retain the display of the "EspoCRM" word.
************************************************************************/
namespace Espo\Core\Api;
use Espo\Core\{
Api\Request,
Api\Response,
Exceptions\Conflict,
Exceptions\Error,
};
use Throwable;
/**
* Processes an error output. If an exception occured, it will be passed to here.
*/
class ErrorOutput
{
protected $errorDescriptions = [
400 => 'Bad Request',
401 => 'Unauthorized',
403 => 'Forbidden',
404 => 'Page Not Found',
409 => 'Conflict',
500 => 'Internal Server Error',
];
protected $allowedStatusCodeList = [
200, 201, 400, 401, 403, 404, 409, 500,
];
protected $ignorePrintXStatusReasonExceptionClassNameList = [
'PDOException',
];
protected $request;
public function __construct(Request $request)
{
$this->request = $request;
}
public function process(
Response $response,
Throwable $exception,
bool $toPrintBody = false,
?array $route = null,
?array $routeParams = null
) {
$message = $exception->getMessage() ?? '';
$statusCode = $exception->getCode();
if ($route) {
$requestBodyString = $this->request->getBodyContents();
$requestBodyString = $this->clearPasswords($requestBodyString);
$routePattern = $route['route'];
$routeParams = $routeParams ?? [];
$logMessage = "API ($statusCode) ";
$logMessageItemList = [];
if ($message) {
$logMessageItemList[] = $message;
}
$logMessageItemList[] .= $this->request->getMethod() . ' ' . $this->request->getResourcePath();
if ($requestBodyString) {
$logMessageItemList[] = "Input data: " . $requestBodyString;
}
if ($routePattern) {
$logMessageItemList[] = "Route pattern: ". $routePattern;
}
if (!empty($routeParams)) {
$logMessageItemList[] = "Route params: ". print_r($routeParams, true);
}
$logMessage .= implode("; ", $logMessageItemList);
$GLOBALS['log']->log('debug', $logMessage);
}
$logLevel = 'error';
$messageLineFile = null;
if ($exception) {
$messageLineFile = 'line: ' . $exception->getLine() . ', file: ' . $exception->getFile();
}
if ($exception && !empty($exception->logLevel)) {
$logLevel = $exception->logLevel;
}
$logMessageItemList = [];
if ($message) {
$logMessageItemList[] = "{$message}";
}
$logMessageItemList[] = $this->request->getMethod() . ' ' . $this->request->getResourcePath();
if ($messageLineFile) {
$logMessageItemList[] = $messageLineFile;
}
$logMessage = "($statusCode) " . implode("; ", $logMessageItemList);
$GLOBALS['log']->log($logLevel, $logMessage);
$toPrintBodyXStatusReason = true;
if (
$exception &&
in_array(
get_class($exception), $this->ignorePrintXStatusReasonExceptionClassNameList
)
) {
$toPrintBodyXStatusReason = false;
}
if (!in_array($statusCode, $this->allowedStatusCodeList)) {
$statusCode = 500;
}
$response->setStatus($statusCode);
if ($toPrintBodyXStatusReason) {
$response->setHeader('X-Status-Reason', $this->stripInvalidCharactersFromHeaderValue($message));
}
if ($this->doesExceptionHaveBody($exception)) {
$response->writeBody($exception->getBody());
$toPrintBody = false;
}
if ($toPrintBody) {
$statusText = $this->getCodeDescription($statusCode);
$statusText = isset($statusText) ?
$statusCode . ' '. $statusText :
'HTTP ' . $statusCode;
if ($message) {
$message = htmlspecialchars($message);
}
$response->writeBody(self::generateErrorBody($statusText, $message));
}
}
protected function doesExceptionHaveBody(Throwable $exception) : bool
{
if (
! $exception instanceof Error
&&
! $exception instanceof Conflict
) {
return false;
}
$exceptionBody = null;
if (method_exists($exception, 'getBody')) {
$exceptionBody = $exception->getBody();
}
return $exceptionBody !== null;
}
protected function getCodeDescription(int $statusCode) : ?string
{
if (isset($this->errorDescriptions[$statusCode])) {
return $this->errorDescriptions[$statusCode];
}
return null;
}
protected function clearPasswords(string $string) : string
{
return preg_replace('/"(.*?password.*?)":".*?"/i', '"$1":"*****"', $string);
}
protected static function generateErrorBody(string $header, string $text) : string
{
$body = "<h1>" . $header . "</h1>";
$body .= $text;
return $body;
}
protected function stripInvalidCharactersFromHeaderValue(string $value) : string
{
$pattern = "/[^ \t\x21-\x7E\x80-\xFF]/";
$value = preg_replace($pattern, ' ', $value);
return $value;
}
}
Reference in New Issue View Git Blame Copy Permalink