Moving exceptions to UserAuthFinders

author: Francisco Lopez <fjlopez@gitlab.com> 2017-11-16 15:39:30 +0100
committer: Francisco Lopez <fjlopez@gitlab.com> 2017-11-17 10:02:11 +0100
commit: aa84ef1e1af0bac40279e02e4ce889cb660ed9d0 (patch)
tree: 3fe0bd2c53236abd49f017c7711decd1980900b5 /lib/api/api_guard.rb
parent: 98f7982ceccd6f7996774911632943e9f43df6e3 (diff)
download: gitlab-ce-aa84ef1e1af0bac40279e02e4ce889cb660ed9d0.tar.gz
1 files changed, 10 insertions, 25 deletions
diff --git a/lib/api/api_guard.rb b/lib/api/api_guard.rb
index 0caf2aa25bc..a07015406b1 100644
--- a/lib/api/api_guard.rb
+++ b/lib/api/api_guard.rb
@@ -93,8 +93,11 @@ module API
       private
 
       def install_error_responders(base)
-        error_classes = [MissingTokenError, TokenNotFoundError,
-                         ExpiredError, RevokedError, InsufficientScopeError]
+        error_classes = [Gitlab::Auth::UserAuthFinders::MissingTokenError,
+                         Gitlab::Auth::UserAuthFinders::TokenNotFoundError,
+                         Gitlab::Auth::UserAuthFinders::ExpiredError,
+                         Gitlab::Auth::UserAuthFinders::RevokedError,
+                         Gitlab::Auth::UserAuthFinders::InsufficientScopeError]
 
         base.__send__(:rescue_from, *error_classes, oauth2_bearer_token_error_handler) # rubocop:disable GitlabSecurity/PublicSend
       end
@@ -103,25 +106,25 @@ module API
         proc do |e|
           response =
             case e
-            when MissingTokenError
+            when Gitlab::Auth::UserAuthFinders::MissingTokenError
               Rack::OAuth2::Server::Resource::Bearer::Unauthorized.new
 
-            when TokenNotFoundError
+            when Gitlab::Auth::UserAuthFinders::TokenNotFoundError
               Rack::OAuth2::Server::Resource::Bearer::Unauthorized.new(
                 :invalid_token,
                 "Bad Access Token.")
 
-            when ExpiredError
+            when Gitlab::Auth::UserAuthFinders::ExpiredError
               Rack::OAuth2::Server::Resource::Bearer::Unauthorized.new(
                 :invalid_token,
                 "Token is expired. You can either do re-authorization or token refresh.")
 
-            when RevokedError
+            when Gitlab::Auth::UserAuthFinders::RevokedError
               Rack::OAuth2::Server::Resource::Bearer::Unauthorized.new(
                 :invalid_token,
                 "Token was revoked. You have to re-authorize from the user.")
 
-            when InsufficientScopeError
+            when Gitlab::Auth::UserAuthFinders::InsufficientScopeError
               # FIXME: ForbiddenError (inherited from Bearer::Forbidden of Rack::Oauth2)
               # does not include WWW-Authenticate header, which breaks the standard.
               Rack::OAuth2::Server::Resource::Bearer::Forbidden.new(
@@ -134,23 +137,5 @@ module API
         end
       end
     end
-
-    #
-    # Exceptions
-    #
-
-    AuthenticationException = Class.new(StandardError)
-    MissingTokenError = Class.new(AuthenticationException)
-    TokenNotFoundError = Class.new(AuthenticationException)
-    ExpiredError = Class.new(AuthenticationException)
-    RevokedError = Class.new(AuthenticationException)
-    UnauthorizedError = Class.new(AuthenticationException)
-
-    class InsufficientScopeError < AuthenticationException
-      attr_reader :scopes
-      def initialize(scopes)
-        @scopes = scopes.map { |s| s.try(:name) || s }
-      end
-    end
   end
 end
author	Francisco Lopez <fjlopez@gitlab.com>	2017-11-16 15:39:30 +0100
committer	Francisco Lopez <fjlopez@gitlab.com>	2017-11-17 10:02:11 +0100
commit	aa84ef1e1af0bac40279e02e4ce889cb660ed9d0 (patch)
tree	3fe0bd2c53236abd49f017c7711decd1980900b5 /lib/api/api_guard.rb
parent	98f7982ceccd6f7996774911632943e9f43df6e3 (diff)
download	gitlab-ce-aa84ef1e1af0bac40279e02e4ce889cb660ed9d0.tar.gz