masterror 0.27.3

Application error types and response mapping
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157

// SPDX-FileCopyrightText: 2025 RAprogramm <andrey.rozanov.vl@gmail.com>
//
// SPDX-License-Identifier: MIT

//! Actix Web integration: `ResponseError` for [`AppError`] and RFC7807 payload.
//!
//! Enabled with the `actix` feature flag.
//!
//! ## What it does
//! - Implements `actix_web::ResponseError` for [`AppError`].
//!   - This lets you `return AppResult<_>` from Actix handlers.
//!   - On error, Actix automatically builds an `HttpResponse` with the right
//!     status code and RFC7807 JSON body (when the `serde_json` feature is
//!     enabled).
//! - Provides stable mapping from [`AppErrorKind`] to
//!   `actix_web::http::StatusCode`.
//! - Ensures that only safe, public-facing fields are returned to the client
//!   (`type`, `title`, `status`, `detail?`, `metadata?`).
//!
//! ## Wire payload
//!
//! When the `serde_json` feature is enabled, the body is [`ProblemJson`] with:
//! - `type`: canonical URI describing the problem class
//! - `title`: short summary derived from [`AppErrorKind`]
//! - `status`: numeric HTTP status (e.g. 404, 422, 500)
//! - `detail?`: public message (redacted when the error is private)
//! - `metadata?`: sanitized structured fields carried from
//!   [`Metadata`](crate::Metadata)
//! - `grpc?`: optional gRPC mapping for multi-protocol clients
//!
//! Without `serde_json`, Actix still returns a response with the correct status
//! but with an empty body.
//!
//! ## Example
//!
//! ```rust,ignore
//! use actix_web::{get, App, HttpServer};
//! use masterror::{AppError, AppErrorKind, AppResult};
//!
//! #[get("/forbidden")]
//! async fn forbidden() -> AppResult<&'static str> {
//!     Err(AppError::new(AppErrorKind::Forbidden, "no access"))
//! }
//!
//! use std::io::Error;
//!
//! #[actix_web::main]
//! async fn main() -> AppResult<(), Error> {
//!     HttpServer::new(|| App::new().service(forbidden))
//!         .bind(("127.0.0.1", 8080))?
//!         .run()
//!         .await
//! }
//! ```
//!
//! The client will get a `403 Forbidden` response with a JSON body like:
//!
//! ```json
//! {
//!   "type":"https://errors.masterror.rs/forbidden",
//!   "title":"Forbidden",
//!   "status":403,
//!   "detail":"no access",
//!   "code":"FORBIDDEN"
//! }
//! ```
//!
//! ## Notes
//!
//! - Do not duplicate this `ResponseError` implementation elsewhere.
//! - Internal error sources (`std::error::Error` chain) are logged only; they
//!   are never leaked to the HTTP response.
//! - You typically want both `actix` and `serde_json` features enabled for
//!   proper JSON payloads.
//!
//! See also: Axum integration in [`convert::axum`].

#[cfg(feature = "actix")]
use actix_web::{HttpResponse, ResponseError, http::StatusCode as ActixStatus};

#[cfg(feature = "actix")]
use crate::response::actix_impl::respond_with_problem_json;
#[cfg(feature = "actix")]
use crate::{AppError, ProblemJson};

#[cfg(feature = "actix")]
impl ResponseError for AppError {
    /// Map to Actix `StatusCode` using the stable `AppErrorKind` → HTTP
    /// mapping.
    fn status_code(&self) -> ActixStatus {
        ActixStatus::from_u16(self.kind.http_status())
            .unwrap_or(ActixStatus::INTERNAL_SERVER_ERROR)
    }

    /// Produce JSON body with [`ProblemJson`]. Does not leak sources.
    fn error_response(&self) -> HttpResponse {
        self.emit_telemetry();
        let problem = ProblemJson::from_ref(self);
        respond_with_problem_json(problem)
    }
}

#[cfg(all(test, feature = "actix"))]
mod actix_tests {
    use std::str::FromStr;

    use actix_web::{
        ResponseError,
        body::to_bytes,
        http::header::{RETRY_AFTER, WWW_AUTHENTICATE}
    };

    use crate::{AppCode, AppError, AppErrorKind, AppResult};

    #[test]
    fn maps_status_consistently() {
        let e = AppError::new(AppErrorKind::Validation, "bad");
        assert_eq!(e.status_code().as_u16(), 422);
    }

    #[actix_web::test]
    async fn error_response_sets_body_and_headers() -> AppResult<(), Box<dyn std::error::Error>> {
        let err = AppError::unauthorized("no token")
            .with_retry_after_secs(7)
            .with_www_authenticate("Bearer");
        let resp = err.error_response();
        assert_eq!(resp.status().as_u16(), 401);
        let headers = resp.headers().clone();
        assert_eq!(
            headers.get(RETRY_AFTER).and_then(|v| v.to_str().ok()),
            Some("7")
        );
        assert_eq!(
            headers.get(WWW_AUTHENTICATE).and_then(|v| v.to_str().ok()),
            Some("Bearer")
        );
        let bytes = to_bytes(resp.into_body()).await?;
        let body: serde_json::Value = serde_json::from_slice(&bytes)?;
        assert_eq!(
            body.get("status").and_then(|value| value.as_u64()),
            Some(401)
        );
        assert_eq!(
            body.get("code")
                .and_then(|value| value.as_str())
                .map(AppCode::from_str)
                .transpose()
                .expect("parse app code"),
            Some(AppCode::Unauthorized)
        );
        assert_eq!(
            body.get("detail").and_then(|value| value.as_str()),
            Some("no token")
        );
        Ok(())
    }
}