Comments (1)
bajtos
commented on May 27, 2024
If the request is missing a required field (userId in your example), then your application should respond with an error code in 4xx range (400 Bad Request, 422 Unprocessable Entity), in which case strong-error-handler includes some level of details in the error response.
If the request was valid, but there is a bug in the server application, then there is nothing the client can do even with the additional information from the assertion message. What's worse, your assertion message may leak sensitive details in expected and actual fields, thus compromising the security of your system. That's why we are not going to treat AssertionError differently from other server-side (5xx) errors.
from strong-error-handler.
Related Issues (20)
- Dependency Dashboard
- Extra files in node_modules HOT 5
- Safefields doesn't work with "array of errors" HOT 4
- Incorrect comment for negotiateContentProducer HOT 2
- debug false not working in middleware HOT 2
- "Unhandled Error" for errors that have been handled properly. HOT 11
- Allow error 2xx transmission HOT 5
- Add config option to log errors on a single line HOT 1
- 404 Not found XSS (Cross Site Scripting Issue) HOT 19
- Use template-literal instead of EJS HOT 2
- issue with deploying to heroku HOT 1
- Safe fields can overwrite status code property HOT 1
- New release HOT 2
- Support `expose` property of http-errors
- Duplicate fields status and statusCode on error json payload HOT 1
- Security Vulnerability in Strong-Globalize HOT 4
- Customize XML response HOT 1
- TypeError: Converting circular structure to JSON HOT 1
- How can i get an single error message from loopback error body HOT 1
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from strong-error-handler.