crates/server: enhance auth middleware and error responses

Signed-off-by: NotAShelf <raf@notashelf.dev> Change-Id: I48a780779d884c4a7730347f920b91216a6a6964
2026-02-02 01:26:17 +03:00 · 2026-02-02 01:26:17 +03:00 · 92153bf9aa
commit 92153bf9aa
parent 000fb8994f
8 changed files with 272 additions and 99 deletions
--- a/crates/server/src/error.rs
+++ b/crates/server/src/error.rs
@ -22,18 +22,60 @@ impl IntoResponse for ApiError {
            CiError::Timeout(msg) => (StatusCode::REQUEST_TIMEOUT, "TIMEOUT", msg.clone()),
            CiError::Unauthorized(msg) => (StatusCode::UNAUTHORIZED, "UNAUTHORIZED", msg.clone()),
            CiError::Forbidden(msg) => (StatusCode::FORBIDDEN, "FORBIDDEN", msg.clone()),
-            CiError::Database(_) => (
-                StatusCode::INTERNAL_SERVER_ERROR,
-                "DATABASE_ERROR",
-                "Internal database error".to_string(),
+            CiError::NixEval(msg) => (
+                StatusCode::UNPROCESSABLE_ENTITY,
+                "NIX_EVAL_ERROR",
+                msg.clone(),
            ),
-            _ => (
+            CiError::Build(msg) => (StatusCode::UNPROCESSABLE_ENTITY, "BUILD_ERROR", msg.clone()),
+            CiError::Config(msg) => (
                StatusCode::INTERNAL_SERVER_ERROR,
-                "INTERNAL_ERROR",
-                "Internal server error".to_string(),
+                "CONFIG_ERROR",
+                msg.clone(),
            ),
+            CiError::Database(e) => {
+                tracing::error!(error = %e, "Database error in API handler");
+                (
+                    StatusCode::INTERNAL_SERVER_ERROR,
+                    "DATABASE_ERROR",
+                    "Internal database error".to_string(),
+                )
+            }
+            CiError::Git(e) => {
+                tracing::error!(error = %e, "Git error in API handler");
+                (
+                    StatusCode::INTERNAL_SERVER_ERROR,
+                    "GIT_ERROR",
+                    format!("Git operation failed: {e}"),
+                )
+            }
+            CiError::Serialization(e) => {
+                tracing::error!(error = %e, "Serialization error in API handler");
+                (
+                    StatusCode::INTERNAL_SERVER_ERROR,
+                    "SERIALIZATION_ERROR",
+                    format!("Data serialization error: {e}"),
+                )
+            }
+            CiError::Io(e) => {
+                tracing::error!(error = %e, "IO error in API handler");
+                (
+                    StatusCode::INTERNAL_SERVER_ERROR,
+                    "IO_ERROR",
+                    format!("IO error: {e}"),
+                )
+            }
        };

+        if status.is_server_error() {
+            tracing::warn!(
+                status = %status,
+                code = code,
+                "API error response: {}",
+                message
+            );
+        }
+
        let body = axum::Json(json!({ "error": message, "error_code": code }));
        (status, body).into_response()
    }