Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Return 400 on auth failure #35

Merged
merged 3 commits into from
Nov 29, 2024
Merged

Return 400 on auth failure #35

merged 3 commits into from
Nov 29, 2024

Conversation

CahidArda
Copy link
Collaborator

We now return status: 400 in response to auth failures. The text of the message reads:

Failed to authenticate Workflow request. If this is unexpected, see the caveat https://upstash.com/docs/workflow/basics/caveats#avoid-non-deterministic-code-outside-context-run

The caveat is being updated with upstash/docs#336. See the preview

Also did the following in the CI:

  • added an endpoint which returns a json in context.call
  • added workflowStarts so that we can disable checking worklfow start in auth/fail endpoint

fahreddinozcan
fahreddinozcan reviewed Nov 29, 2024
View reviewed changes
src/serve/options.ts
new Response(JSON.stringify({ workflowRunId }), {
onStepFinish: (workflowRunId: string, finishCondition: FinishCondition) => {
if (finishCondition === "auth-fail") {
console.error(AUTH_FAIL_MESSAGE);
Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Maybe we can log with debug?.log

Copy link
Collaborator Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

How about we have both? If we only have debug, then the user won't understand what's happening if they get this error uninentionally

Copy link
Collaborator Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

debug.log is async. onStepFinish would have to be async. it's a breaking change. I think we should do it later.

@CahidArda CahidArda mentioned this pull request Nov 29, 2024
Merged
fahreddinozcan
fahreddinozcan reviewed Nov 29, 2024
View reviewed changes
examples/ci/app/ci/utils.ts

const { messageId } = await qstash.startWorkflow({ route, headers, payload }, randomTestId)

// sleep for 4 secs and check that message is delivered
await new Promise(r => setTimeout(r, 4000));

await qstash.checkWorkflowStart(messageId)
try {
await qstash.checkWorkflowStart(messageId);
Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

what about the case shouldWorkflowStart is false, but the workflow starts?

Copy link
Collaborator Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I did check this case today, and realised that checkWorkflowStart doesn't work as I expect at all :D

I will remove it altogether in #32 after we merge this. I didn't want to cause conflicts.

@CahidArda CahidArda merged commit 55fb82e into main Nov 29, 2024
17 checks passed
@CahidArda CahidArda deleted the return-400-on-auth-fail branch November 29, 2024 14:37
@CahidArda CahidArda changed the title Return 400 open auth failure Return 400 on auth failure Dec 4, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@joschan21 joschan21 joschan21 left review comments

@fahreddinozcan fahreddinozcan fahreddinozcan approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@CahidArda @fahreddinozcan @joschan21