zammad/app/controllers/application_controller/handles_errors.rb

# Copyright (C) 2012-2026 Zammad Foundation, https://zammad-foundation.org/

module ApplicationController::HandlesErrors
  extend ActiveSupport::Concern

  included do
    rescue_from StandardError, with: :internal_server_error
    rescue_from 'ExecJS::RuntimeError', with: :internal_server_error
    rescue_from ActiveRecord::RecordNotFound, with: :not_found
    rescue_from ActiveRecord::StatementInvalid, with: :unprocessable_content
    rescue_from ActiveRecord::RecordInvalid, with: :unprocessable_content
    rescue_from ActiveRecord::DeleteRestrictionError, with: :unprocessable_content
    rescue_from ArgumentError, with: :unprocessable_content
    rescue_from Exceptions::UnprocessableContent, with: :unprocessable_content
    rescue_from Exceptions::NotAuthorized, with: :unauthorized
    rescue_from Exceptions::Forbidden, with: :forbidden
    rescue_from Pundit::NotAuthorizedError, with: :pundit_not_authorized_error
    rescue_from 'Store::Provider::S3::Error', with: :unprocessable_content
    rescue_from Exceptions::MissingAttribute, Exceptions::InvalidAttribute, ActionController::ParameterMissing, with: :unprocessable_content
  end

  def not_found(e)
    logger.error e
    respond_to_exception(e, :not_found)
    http_log
  end

  def unprocessable_content(e)
    logger.error e
    respond_to_exception(e, :unprocessable_content)
    http_log
  end

  def internal_server_error(e)
    logger.error e
    respond_to_exception(e, :internal_server_error)
    http_log
  end

  def unauthorized(e)
    logger.info { e }
    error = humanize_error(e)
    response.headers['X-Failure'] = error.fetch(:error_human, error[:error])
    respond_to_exception(e, :unauthorized)
    http_log
  end

  def forbidden(e)
    logger.info { e }
    error = humanize_error(e)
    response.headers['X-Failure'] = error.fetch(:error_human, error[:error])
    respond_to_exception(e, :forbidden)
    http_log
  end

  def pundit_not_authorized_error(e)
    logger.info { e }
    # check if a special authorization_error should be shown in the result payload
    # which was raised in one of the policies. Fall back to a simple "Not authorized"
    # error to hide actual cause for security reasons.
    exception = e.policy&.custom_exception || Exceptions::Forbidden.new(__('Not authorized'))

    case exception
    when ActiveRecord::RecordNotFound
      not_found(exception)
    when Exceptions::UnprocessableContent
      unprocessable_content(exception)
    else
      forbidden(exception)
    end
  end

  private

  def respond_to_exception(e, status)
    status_code = Rack::Utils.status_code(status)

    respond_to do |format|
      format.json { render json: humanize_error(e), status: status }
      format.any do
        errors = humanize_error(e)
        @exception = e
        @message = errors[:error_human] || errors[:error] || param[:message]
        @traceback = !Rails.env.production?
        file = Rails.public_path.join("#{status_code}#{'-mobile' if params[:controller] == 'mobile'}.html").open('r')
        render inline: file.read, status: status, content_type: 'text/html' # rubocop:disable Rails/RenderInline
      end
    end
  end

  def humanize_error(e)
    data = { error: e.message }

    if (base_error = e.try(:record)&.errors&.messages&.find { |key, _| key.match? %r{[\w+.]?base} }&.last&.last)
      data[:error_human] = base_error
    elsif (first_error = e.try(:record)&.errors&.full_messages&.first)
      data[:error_human] = first_error
    elsif e.message.match?(%r{(already exists|duplicate key|duplicate entry)}i)
      data[:error_human] = __('This object already exists.')
    elsif e.message =~ %r{null value in column "(.+?)" violates not-null constraint}i || e.message =~ %r{Field '(.+?)' doesn't have a default value}i
      data[:error_human] = "Attribute '#{$1}' required!"
    elsif e.message == 'Exceptions::Forbidden'
      data[:error]       = __('Not authorized')
      data[:error_human] = data[:error]
    elsif e.message == 'Exceptions::NotAuthorized'
      data[:error]       = __('Authorization failed')
      data[:error_human] = data[:error]
    elsif e.instance_of?(Exceptions::InvalidAttribute)
      data[:invalid_attribute] = { e.attribute => data[:error] }
    elsif e.is_a?(Exceptions::UnprocessableContent)
      data[:error_human] = data[:error]
      data[:unprocessable_content] = e.content
    elsif e.is_a?(Exceptions::InvalidCSRFToken)
      data[:error_human] = data[:error]
      data[:invalid_csrf_token] = true
    elsif [ActionController::RoutingError, ActiveRecord::RecordNotFound, Exceptions::NotAuthorized, Exceptions::Forbidden, Store::Provider::S3::Error, Authorization::Provider::AccountError, Exceptions::MissingAttribute, ActionController::ParameterMissing].include?(e.class)
      data[:error_human] = data[:error]
    end

    if data[:error_human].present?
      data[:error] = data[:error_human]
    elsif !policy(Exceptions).view_details?
      error_code_prefix = "Error ID #{SecureRandom.urlsafe_base64(6)}:"
      Rails.logger.error "#{error_code_prefix} #{data[:error]}"
      data[:error] = "#{error_code_prefix} Please contact your administrator."
    end

    data
  end
end
Maintenance: Update copyright information. 2026-01-02 13:41:09 +00:00			`# Copyright (C) 2012-2026 Zammad Foundation, https://zammad-foundation.org/`
Maintenance: Update copyright information and add a new rubocop cop to watch over it. 2021-06-01 12:20:20 +00:00
Refactoring: Splitted ApplicationController functionality into separat modules and concerns. 2017-03-09 11:44:51 +00:00			`module ApplicationController::HandlesErrors`
Application controller refactoring: Moving error methods to proper concern. 2017-01-20 09:45:19 +00:00			`extend ActiveSupport::Concern`

			`included do`
			`rescue_from StandardError, with: :internal_server_error`
Maintenance: Load asset processing gems only at build time. 2021-07-12 09:46:57 +00:00			`rescue_from 'ExecJS::RuntimeError', with: :internal_server_error`
Application controller refactoring: Moving error methods to proper concern. 2017-01-20 09:45:19 +00:00			`rescue_from ActiveRecord::RecordNotFound, with: :not_found`
Maintenance: Renames 422 HTTP response code from unprocessable_entity to unprocessable_content due to RFC update 2026-04-22 15:23:21 +00:00			`rescue_from ActiveRecord::StatementInvalid, with: :unprocessable_content`
			`rescue_from ActiveRecord::RecordInvalid, with: :unprocessable_content`
			`rescue_from ActiveRecord::DeleteRestrictionError, with: :unprocessable_content`
			`rescue_from ArgumentError, with: :unprocessable_content`
			`rescue_from Exceptions::UnprocessableContent, with: :unprocessable_content`
Application controller refactoring: Moving error methods to proper concern. 2017-01-20 09:45:19 +00:00			`rescue_from Exceptions::NotAuthorized, with: :unauthorized`
Fixes issue #2983 - HTTP 401 responses causing issues with Basic Authentication. 2021-02-04 08:28:41 +00:00			`rescue_from Exceptions::Forbidden, with: :forbidden`
Refactoring: Replaced home-rolled authorization logic in Controllers with Pundit. 2020-03-19 09:39:51 +00:00			`rescue_from Pundit::NotAuthorizedError, with: :pundit_not_authorized_error`
Maintenance: Renames 422 HTTP response code from unprocessable_entity to unprocessable_content due to RFC update 2026-04-22 15:23:21 +00:00			`rescue_from 'Store::Provider::S3::Error', with: :unprocessable_content`
			`rescue_from Exceptions::MissingAttribute, Exceptions::InvalidAttribute, ActionController::ParameterMissing, with: :unprocessable_content`
Application controller refactoring: Moving error methods to proper concern. 2017-01-20 09:45:19 +00:00			`end`

			`def not_found(e)`
Initial version of LDAP user sync support. 2017-04-19 10:09:54 +00:00			`logger.error e`
Application controller refactoring: Moving error methods to proper concern. 2017-01-20 09:45:19 +00:00			`respond_to_exception(e, :not_found)`
Initial Check_MK integration. 2017-08-21 23:13:19 +00:00			`http_log`
Application controller refactoring: Moving error methods to proper concern. 2017-01-20 09:45:19 +00:00			`end`

Maintenance: Renames 422 HTTP response code from unprocessable_entity to unprocessable_content due to RFC update 2026-04-22 15:23:21 +00:00			`def unprocessable_content(e)`
Initial version of LDAP user sync support. 2017-04-19 10:09:54 +00:00			`logger.error e`
Maintenance: Renames 422 HTTP response code from unprocessable_entity to unprocessable_content due to RFC update 2026-04-22 15:23:21 +00:00			`respond_to_exception(e, :unprocessable_content)`
Initial Check_MK integration. 2017-08-21 23:13:19 +00:00			`http_log`
Application controller refactoring: Moving error methods to proper concern. 2017-01-20 09:45:19 +00:00			`end`

			`def internal_server_error(e)`
Initial version of LDAP user sync support. 2017-04-19 10:09:54 +00:00			`logger.error e`
Application controller refactoring: Moving error methods to proper concern. 2017-01-20 09:45:19 +00:00			`respond_to_exception(e, :internal_server_error)`
Initial Check_MK integration. 2017-08-21 23:13:19 +00:00			`http_log`
Application controller refactoring: Moving error methods to proper concern. 2017-01-20 09:45:19 +00:00			`end`

			`def unauthorized(e)`
Refactoring: Replaced home-rolled authorization logic in Controllers with Pundit. 2020-03-19 09:39:51 +00:00			`logger.info { e }`
Follow up - bca16dee1685797eec5836f129b7e096774c9e9c - Enhancement: Provide unique error code for technical errors to make it easy to find them in the logs. - Show all error messages if `current_user` has `admin` permission(s) right away. - Pass messages of `ActionController::RoutingError`, `ActiveRecord::RecordNotFound`, `Exceptions::UnprocessableEntity` and `Exceptions::NotAuthorized` exceptions to user. - Fix regression: 'Not authorized' errors lack of cause. - Remove diverged behavior for different environments. 2020-03-06 14:31:43 +00:00			`error = humanize_error(e)`
Application controller refactoring: Moving error methods to proper concern. 2017-01-20 09:45:19 +00:00			`response.headers['X-Failure'] = error.fetch(:error_human, error[:error])`
			`respond_to_exception(e, :unauthorized)`
Initial Check_MK integration. 2017-08-21 23:13:19 +00:00			`http_log`
Application controller refactoring: Moving error methods to proper concern. 2017-01-20 09:45:19 +00:00			`end`

Fixes issue #2983 - HTTP 401 responses causing issues with Basic Authentication. 2021-02-04 08:28:41 +00:00			`def forbidden(e)`
			`logger.info { e }`
			`error = humanize_error(e)`
			`response.headers['X-Failure'] = error.fetch(:error_human, error[:error])`
			`respond_to_exception(e, :forbidden)`
			`http_log`
			`end`

Refactoring: Replaced home-rolled authorization logic in Controllers with Pundit. 2020-03-19 09:39:51 +00:00			`def pundit_not_authorized_error(e)`
			`logger.info { e }`
			`# check if a special authorization_error should be shown in the result payload`
			`# which was raised in one of the policies. Fall back to a simple "Not authorized"`
			`# error to hide actual cause for security reasons.`
Maintenance: Refactored attachment handling 2022-06-29 06:13:09 +00:00			`exception = e.policy&.custom_exception \|\| Exceptions::Forbidden.new(__('Not authorized'))`

			`case exception`
			`when ActiveRecord::RecordNotFound`
			`not_found(exception)`
Maintenance: Renames 422 HTTP response code from unprocessable_entity to unprocessable_content due to RFC update 2026-04-22 15:23:21 +00:00			`when Exceptions::UnprocessableContent`
			`unprocessable_content(exception)`
Maintenance: Refactored attachment handling 2022-06-29 06:13:09 +00:00			`else`
			`forbidden(exception)`
			`end`
Refactoring: Replaced home-rolled authorization logic in Controllers with Pundit. 2020-03-19 09:39:51 +00:00			`end`

Application controller refactoring: Moving error methods to proper concern. 2017-01-20 09:45:19 +00:00			`private`

			`def respond_to_exception(e, status)`
			`status_code = Rack::Utils.status_code(status)`

			`respond_to do \|format\|`
Follow up - bca16dee1685797eec5836f129b7e096774c9e9c - Enhancement: Provide unique error code for technical errors to make it easy to find them in the logs. - Show all error messages if `current_user` has `admin` permission(s) right away. - Pass messages of `ActionController::RoutingError`, `ActiveRecord::RecordNotFound`, `Exceptions::UnprocessableEntity` and `Exceptions::NotAuthorized` exceptions to user. - Fix regression: 'Not authorized' errors lack of cause. - Remove diverged behavior for different environments. 2020-03-06 14:31:43 +00:00			`format.json { render json: humanize_error(e), status: status }`
Applied RuboCop Style/BlockDelimiters to improve readability. 2017-10-01 12:25:52 +00:00			`format.any do`
Follow up - bca16dee1685797eec5836f129b7e096774c9e9c - Enhancement: Provide unique error code for technical errors to make it easy to find them in the logs. - Show all error messages if `current_user` has `admin` permission(s) right away. - Pass messages of `ActionController::RoutingError`, `ActiveRecord::RecordNotFound`, `Exceptions::UnprocessableEntity` and `Exceptions::NotAuthorized` exceptions to user. - Fix regression: 'Not authorized' errors lack of cause. - Remove diverged behavior for different environments. 2020-03-06 14:31:43 +00:00			`errors = humanize_error(e)`
Application controller refactoring: Moving error methods to proper concern. 2017-01-20 09:45:19 +00:00			`@exception = e`
Fixed issue #2128 - Route for /auth/failure is missing to show login failure messages form oauth provider (if request was technical ok - only login was not possible by oauth provider). 2018-07-17 08:35:51 +00:00			`@message = errors[:error_human] \|\| errors[:error] \|\| param[:message]`
Application controller refactoring: Moving error methods to proper concern. 2017-01-20 09:45:19 +00:00			`@traceback = !Rails.env.production?`
Maintenance: Update dependency rubocop to v1.76.0 2025-06-10 07:53:01 +00:00			`file = Rails.public_path.join("#{status_code}#{'-mobile' if params[:controller] == 'mobile'}.html").open('r')`
Maintenance: Ensure Content-Type 'text/html' for error pages. 2021-04-27 08:54:37 +00:00			`render inline: file.read, status: status, content_type: 'text/html' # rubocop:disable Rails/RenderInline`
Applied RuboCop Style/BlockDelimiters to improve readability. 2017-10-01 12:25:52 +00:00			`end`
Application controller refactoring: Moving error methods to proper concern. 2017-01-20 09:45:19 +00:00			`end`
			`end`

Follow up - bca16dee1685797eec5836f129b7e096774c9e9c - Enhancement: Provide unique error code for technical errors to make it easy to find them in the logs. - Show all error messages if `current_user` has `admin` permission(s) right away. - Pass messages of `ActionController::RoutingError`, `ActiveRecord::RecordNotFound`, `Exceptions::UnprocessableEntity` and `Exceptions::NotAuthorized` exceptions to user. - Fix regression: 'Not authorized' errors lack of cause. - Remove diverged behavior for different environments. 2020-03-06 14:31:43 +00:00			`def humanize_error(e)`
Fixes #4857 - Function test when saving the S3 backend in the admin interface is missing. Fixes #4873 - S3: Lack of error and status messages. Co-authored-by: Dominik Klein <dk@zammad.com> Co-authored-by: Florian Liebe <fl@zammad.com> Co-authored-by: Tobias Schäfer <ts@zammad.com> 2023-11-08 09:38:22 +00:00			`data = { error: e.message }`
Application controller refactoring: Moving error methods to proper concern. 2017-01-20 09:45:19 +00:00
Fixes #3997 - KB: granular permissions misconfiguration is allowed by UI 2022-03-04 22:51:19 +00:00			`if (base_error = e.try(:record)&.errors&.messages&.find { \|key, _\| key.match? %r{[\w+.]?base} }&.last&.last)`
			`data[:error_human] = base_error`
			`elsif (first_error = e.try(:record)&.errors&.full_messages&.first)`
			`data[:error_human] = first_error`
Maintenance: Rubocop enforces %r{} regular expression style 2021-05-12 11:37:44 +00:00			`elsif e.message.match?(%r{(already exists\|duplicate key\|duplicate entry)}i)`
Maintenance: Make it possible to translate Rails error messages. 2022-10-25 13:35:13 +00:00			`data[:error_human] = __('This object already exists.')`
Maintenance: Rubocop enforces %r{} regular expression style 2021-05-12 11:37:44 +00:00			`elsif e.message =~ %r{null value in column "(.+?)" violates not-null constraint}i \|\| e.message =~ %r{Field '(.+?)' doesn't have a default value}i`
Application controller refactoring: Moving error methods to proper concern. 2017-01-20 09:45:19 +00:00			`data[:error_human] = "Attribute '#{$1}' required!"`
Fixes issue #2983 - HTTP 401 responses causing issues with Basic Authentication. 2021-02-04 08:28:41 +00:00			`elsif e.message == 'Exceptions::Forbidden'`
Fixes #2709, fixes #2666, fixes #2665, fixes #556, fixes #3275 - Refactoring: Implement new translation toolchain based on gettext. - Translations are no longer fetched from the cloud. - Instead, they are extracted from the codebase and stored in i18n/zammad.pot. - Translations will be managed via a public Weblate instance soon. - The translated .po files are fed to the database as before. - It is now possible to change "translation" strings for en-us locally via the admin GUI. - It is no longer possible to submit local changes. 2021-11-15 15:58:19 +00:00			`data[:error] = __('Not authorized')`
Application controller refactoring: Moving error methods to proper concern. 2017-01-20 09:45:19 +00:00			`data[:error_human] = data[:error]`
Fixes issue #2983 - HTTP 401 responses causing issues with Basic Authentication. 2021-02-04 08:28:41 +00:00			`elsif e.message == 'Exceptions::NotAuthorized'`
Fixes #2709, fixes #2666, fixes #2665, fixes #556, fixes #3275 - Refactoring: Implement new translation toolchain based on gettext. - Translations are no longer fetched from the cloud. - Instead, they are extracted from the codebase and stored in i18n/zammad.pot. - Translations will be managed via a public Weblate instance soon. - The translated .po files are fed to the database as before. - It is now possible to change "translation" strings for en-us locally via the admin GUI. - It is no longer possible to submit local changes. 2021-11-15 15:58:19 +00:00			`data[:error] = __('Authorization failed')`
Fixes issue #2983 - HTTP 401 responses causing issues with Basic Authentication. 2021-02-04 08:28:41 +00:00			`data[:error_human] = data[:error]`
Fixes #5586 - Invalid object selector conditions with faulty error highlighting. Co-authored-by: Rolf Schmidt <rolf.schmidt@zammad.com> Co-authored-by: Dusan Vuckovic <dv@zammad.com> 2025-05-14 09:25:37 +00:00			`elsif e.instance_of?(Exceptions::InvalidAttribute)`
			`data[:invalid_attribute] = { e.attribute => data[:error] }`
Maintenance: Renames 422 HTTP response code from unprocessable_entity to unprocessable_content due to RFC update 2026-04-22 15:23:21 +00:00			`elsif e.is_a?(Exceptions::UnprocessableContent)`
Fixes #5619 - Deleting a webhook which is still referenced in trigger: untranslated error message and UX issue. 2025-05-14 16:55:17 +00:00			`data[:error_human] = data[:error]`
Maintenance: Renames 422 HTTP response code from unprocessable_entity to unprocessable_content due to RFC update 2026-04-22 15:23:21 +00:00			`data[:unprocessable_content] = e.content`
Fixes #5949 - CSRF token verification failed. 2026-02-17 11:54:08 +00:00			`elsif e.is_a?(Exceptions::InvalidCSRFToken)`
			`data[:error_human] = data[:error]`
			`data[:invalid_csrf_token] = true`
Fixes #5619 - Deleting a webhook which is still referenced in trigger: untranslated error message and UX issue. 2025-05-14 16:55:17 +00:00			`elsif [ActionController::RoutingError, ActiveRecord::RecordNotFound, Exceptions::NotAuthorized, Exceptions::Forbidden, Store::Provider::S3::Error, Authorization::Provider::AccountError, Exceptions::MissingAttribute, ActionController::ParameterMissing].include?(e.class)`
Follow up - bca16dee1685797eec5836f129b7e096774c9e9c - Enhancement: Provide unique error code for technical errors to make it easy to find them in the logs. - Show all error messages if `current_user` has `admin` permission(s) right away. - Pass messages of `ActionController::RoutingError`, `ActiveRecord::RecordNotFound`, `Exceptions::UnprocessableEntity` and `Exceptions::NotAuthorized` exceptions to user. - Fix regression: 'Not authorized' errors lack of cause. - Remove diverged behavior for different environments. 2020-03-06 14:31:43 +00:00			`data[:error_human] = data[:error]`
Application controller refactoring: Moving error methods to proper concern. 2017-01-20 09:45:19 +00:00			`end`

Follow up - bca16dee1685797eec5836f129b7e096774c9e9c - Enhancement: Provide unique error code for technical errors to make it easy to find them in the logs. - Show all error messages if `current_user` has `admin` permission(s) right away. - Pass messages of `ActionController::RoutingError`, `ActiveRecord::RecordNotFound`, `Exceptions::UnprocessableEntity` and `Exceptions::NotAuthorized` exceptions to user. - Fix regression: 'Not authorized' errors lack of cause. - Remove diverged behavior for different environments. 2020-03-06 14:31:43 +00:00			`if data[:error_human].present?`
			`data[:error] = data[:error_human]`
Refactoring: Migrate user permission handling to Pundit policies. 2021-07-23 13:07:16 +00:00			`elsif !policy(Exceptions).view_details?`
Follow up - bca16dee1685797eec5836f129b7e096774c9e9c - Enhancement: Provide unique error code for technical errors to make it easy to find them in the logs. - Show all error messages if `current_user` has `admin` permission(s) right away. - Pass messages of `ActionController::RoutingError`, `ActiveRecord::RecordNotFound`, `Exceptions::UnprocessableEntity` and `Exceptions::NotAuthorized` exceptions to user. - Fix regression: 'Not authorized' errors lack of cause. - Remove diverged behavior for different environments. 2020-03-06 14:31:43 +00:00			`error_code_prefix = "Error ID #{SecureRandom.urlsafe_base64(6)}:"`
			`Rails.logger.error "#{error_code_prefix} #{data[:error]}"`
			`data[:error] = "#{error_code_prefix} Please contact your administrator."`
Application controller refactoring: Moving error methods to proper concern. 2017-01-20 09:45:19 +00:00			`end`
Follow up - bca16dee1685797eec5836f129b7e096774c9e9c - Enhancement: Provide unique error code for technical errors to make it easy to find them in the logs. - Show all error messages if `current_user` has `admin` permission(s) right away. - Pass messages of `ActionController::RoutingError`, `ActiveRecord::RecordNotFound`, `Exceptions::UnprocessableEntity` and `Exceptions::NotAuthorized` exceptions to user. - Fix regression: 'Not authorized' errors lack of cause. - Remove diverged behavior for different environments. 2020-03-06 14:31:43 +00:00
Application controller refactoring: Moving error methods to proper concern. 2017-01-20 09:45:19 +00:00			`data`
			`end`
			`end`