canic_core/dto/

error.rs

use crate::{InternalError, access::AccessError, dto::prelude::*};
use std::fmt::{self, Display};

//
// Error
//
// Public API error payload.
//

#[derive(CandidType, Clone, Debug, Deserialize, Eq, PartialEq, Serialize)]
pub struct Error {
    pub code: ErrorCode,
    pub message: String,
}

impl Error {
    #[must_use]
    pub const fn new(code: ErrorCode, message: String) -> Self {
        Self { code, message }
    }

    // 409 – Conflict with existing state or resource.
    pub fn conflict(message: impl Into<String>) -> Self {
        Self::new(ErrorCode::Conflict, message.into())
    }

    // 409 – Policy violation with a stable policy-specific code.
    pub fn policy(code: ErrorCode, message: impl Into<String>) -> Self {
        Self::new(code, message.into())
    }

    // 403 – Authenticated caller is not permitted to perform this action.
    pub fn forbidden(message: impl Into<String>) -> Self {
        Self::new(ErrorCode::Forbidden, message.into())
    }

    // 500 – Internal or unexpected failure.
    pub fn internal(message: impl Into<String>) -> Self {
        Self::new(ErrorCode::Internal, message.into())
    }

    // 400 – Invalid input or malformed request.
    pub fn invalid(message: impl Into<String>) -> Self {
        Self::new(ErrorCode::InvalidInput, message.into())
    }

    // 400 – Replay-sensitive command omitted its client operation ID.
    #[must_use]
    pub fn operation_id_required() -> Self {
        Self::new(
            ErrorCode::OperationIdRequired,
            "operation_id is required for this command".to_string(),
        )
    }

    // 500 – Broken invariant or impossible internal state.
    pub fn invariant(message: impl Into<String>) -> Self {
        Self::new(ErrorCode::InvariantViolation, message.into())
    }

    // 429 / 507 – Resource, quota, or capacity exhaustion.
    pub fn exhausted(message: impl Into<String>) -> Self {
        Self::new(ErrorCode::ResourceExhausted, message.into())
    }

    // 404 – Requested resource was not found.
    pub fn not_found(message: impl Into<String>) -> Self {
        Self::new(ErrorCode::NotFound, message.into())
    }

    // 401 – Caller is unauthenticated or has an invalid identity.
    pub fn unauthorized(message: impl Into<String>) -> Self {
        Self::new(ErrorCode::Unauthorized, message.into())
    }

    // 503 – Service is temporarily unavailable due to runtime controls.
    pub fn unavailable(message: impl Into<String>) -> Self {
        Self::new(ErrorCode::Unavailable, message.into())
    }

    // 503 – Root proof retrieval was not run in a direct root query context.
    #[must_use]
    pub fn root_data_certificate_unavailable() -> Self {
        Self::new(
            ErrorCode::RootDataCertificateUnavailable,
            "root data certificate unavailable for delegation proof retrieval".to_string(),
        )
    }
}

impl Display for Error {
    fn fmt(&self, f: &mut fmt::Formatter<'_>) -> fmt::Result {
        write!(f, "[{:?}] {}", self.code, self.message)
    }
}

impl From<AccessError> for Error {
    fn from(err: AccessError) -> Self {
        Self::from(InternalError::from(err))
    }
}

//
// ErrorCode
//
// Stable public error codes.
//

#[derive(CandidType, Clone, Copy, Debug, Deserialize, Eq, PartialEq, Serialize)]
#[non_exhaustive]
#[remain::sorted]
pub enum ErrorCode {
    AuthMaterialStale,
    AuthProofExpired,
    Conflict,
    Forbidden,
    Internal,
    InternalRpcMalformed,
    InvalidInput,
    InvariantViolation,
    NotFound,
    OperationIdRequired,
    PolicyInstanceRequiresSingletonWithDirectory,
    PolicyReplicaRequiresSingletonWithScaling,
    PolicyRoleAlreadyRegistered,
    PolicyShardRequiresSingletonWithSharding,
    PolicySingletonAlreadyRegisteredUnderParent,
    ResourceExhausted,
    RootDataCertificateUnavailable,
    Unauthorized,
    Unavailable,
}