Dockery/Trilium
1
0
Fork 0
mirror of https://github.com/zadam/trilium.git synced 2025-11-03 20:06:08 +01:00
Code Issues Packages Projects Releases Activity

refactor(error_handlers): use newly added ForbiddenError class

Browse Source
This commit is contained in:
Panagiotis Papadopoulos
2025-03-07 23:29:35 +01:00
parent 2c91f6e7bc
commit 0c8df7f885
2 changed files with 14 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

12
src/errors/forbidden_error.ts Normal file
View File

@@ -0,0 +1,12 @@
import HttpError from "./http_error.js";
class ForbiddenError extends HttpError {
constructor(message: string) {
super(message, 403);
this.name = "ForbiddenError";
}
}
export default ForbiddenError;

6
src/routes/error_handlers.ts
View File

@@ -1,6 +1,7 @@
import type { Application, NextFunction, Request, Response } from "express";
import log from "../services/log.js";
import NotFoundError from "../errors/not_found_error.js";
import ForbiddenError from "../errors/forbidden_error.js";
function register(app: Application) {
app.use((err: any, req: Request, res: Response, next: NextFunction) => {
@@ -9,10 +10,7 @@ function register(app: Application) {
}
log.error(`Invalid CSRF token: ${req.headers["x-csrf-token"]}, secret: ${req.cookies["_csrf"]}`);
err = new Error("Invalid CSRF token");
err.status = 403;
next(err);
next(new ForbiddenError("Invalid CSRF token"));
});
// catch 404 and forward to error handler