PageRenderTime 57ms CodeModel.GetById 24ms RepoModel.GetById 1ms app.codeStats 0ms

/lib/Dancer2/Core/Error.pm

https://github.com/mickeyn/Dancer2
Perl | 579 lines | 484 code | 83 blank | 12 comment | 18 complexity | 483988c44a628a573f07b9e52b0a91db MD5 | raw file
    

  1. # ABSTRACT: Class representing fatal errors
    2. 

  2. 

  3. package Dancer2::Core::Error;
    4. 

  4. use Moo;
    5. 

  5. use Carp;
    6. 

  6. use Dancer2::Core::Types;
    7. 

  7. use Dancer2::Core::HTTP;
    8. 

  8. use Data::Dumper;
    9. 

  9. use Dancer2::FileUtils 'path';
    10. 

  10. 

  11. =head1 SYNOPSIS
    12. 

  12. 

  13.     # taken from send_file:
    14. 

  14.     use Dancer2::Core::Error;
    15. 

  15. 

  16.     my $error = Dancer2::Core::Error->new(
    17. 

  17.         status    => 404,
    18. 

  18.         message => "No such file: `$path'"
    19. 

  19.     );
    20. 

  20. 

  21.     Dancer2::Core::Response->set($error->render);
    22. 

  22. 

  23. =head1 DESCRIPTION
    24. 

  24. 

  25. With Dancer2::Core::Error you can throw reasonable-looking errors to the user
    26. 

  26. instead of crashing the application and filling up the logs.
    27. 

  27. 

  28. This is usually used in debugging environments, and it's what Dancer2 uses as
    29. 

  29. well under debugging to catch errors and show them on screen.
    30. 

  30. 

  31. 

  32. =method my $error=new Dancer2::Core::Error(status    => 404, message => "No such file: `$path'");
    33. 

  33. 

  34. Create a new Dancer2::Core::Error object. For available arguments see ATTRIBUTES.
    35. 

  35. 

  36. =cut
    37. 

  37. 

  38. =method supported_hooks ();
    39. 

  39. 

  40. =cut
    41. 

  41. 

  42. =attr show_errors
    43. 

  43. 

  44. =cut
    45. 

  45. 

  46. has show_errors => (
    47. 

  47.     is      => 'ro',
    48. 

  48.     isa     => Bool,
    49. 

  49.     default => sub {
    50. 

  50.         $_[0]->context->app->setting('show_errors') if $_[0]->has_context;
    51. 

  51.     },
    52. 

  52. );
    53. 

  53. 

  54. =attr charset
    55. 

  55. =cut
    56. 

  56. 

  57. has charset => (
    58. 

  58.     is      => 'ro',
    59. 

  59.     isa     => Str,
    60. 

  60.     default => sub {'UTF-8'},
    61. 

  61. );
    62. 

  62. 

  63. =attr type
    64. 

  64. 

  65. The error type.
    66. 

  66. 

  67. =cut
    68. 

  68. 

  69. has type => (
    70. 

  70.     is      => 'ro',
    71. 

  71.     isa     => Str,
    72. 

  72.     default => sub {'Runtime Error'},
    73. 

  73. );
    74. 

  74. 

  75. =attr title
    76. 

  76. 

  77. The title of the error page.
    78. 

  78. 

  79. This is only an attribute getter, you'll have to set it at C<new>.
    80. 

    81. 

  81. =cut
    82. 

  82. 

  83. has title => (
    84. 

  84.     is      => 'ro',
    85. 

  85.     isa     => Str,
    86. 

  86.     lazy    => 1,
    87. 

  87.     builder => '_build_title',
    88. 

  88. );
    89. 

  89. 

  90. sub _build_title {
    91. 

  91.     my ($self) = @_;
    92. 

  92.     my $title = 'Error ' . $self->status;
    93. 

  93.     if ( my $msg = Dancer2::Core::HTTP->status_message($self->status) ) {
    94. 

  94.         $title .= ' - ' . $msg;
    95. 

  95.     }
    96. 

  96. 

  97.     return $title;
    98. 

  98. }
    99. 

  99. 

  100. has template => (
    101. 

  101.     is => 'ro',
    102. 

  102. 

  103. #    isa => sub { ref($_[0]) eq 'SCALAR' || ReadableFilePath->(@_) },
    104. 

  104.     lazy    => 1,
    105. 

  105.     builder => '_build_error_template',
    106. 

  106. );
    107. 

  107. 

  108. sub _build_error_template {
    109. 

  109.     my ($self) = @_;
    110. 

  110. 

  111.     # look for a template named after the status number.
    112. 

  112.     # E.g.: views/404.tt  for a TT template
    113. 

  113.     return $self->status
    114. 

  114.       if -f $self->context->app->engine('template')
    115. 

  115.           ->view_pathname( $self->status );
    116. 

  116. 

  117.     return undef;
    118. 

  118. }
    119. 

  119. 

  120. has static_page => (
    121. 

  121.     is      => 'ro',
    122. 

  122.     lazy    => 1,
    123. 

  123.     builder => '_build_static_page',
    124. 

  124. );
    125. 

  125. 

  126. sub _build_static_page {
    127. 

  127.     my ($self) = @_;
    128. 

  128. 

  129.     # TODO there must be a better way to get it
    130. 

  130.     my $public_dir = $ENV{DANCER_PUBLIC}
    131. 

  131.       || ( $self->has_context
    132. 

  132.         && path( $self->context->app->config_location, 'public' ) );
    133. 

  133. 

  134.     my $filename = sprintf "%s/%d.html", $public_dir, $self->status;
    135. 

  135. 

  136.     open my $fh, $filename or return undef;
    137. 

  137. 

  138.     local $/ = undef;    # slurp time
    139. 

  139. 

  140.     return <$fh>;
    141. 

  141. }
    142. 

  142. 

  143. 

  144. sub default_error_page {
    145. 

  145.     my $self = shift;
    146. 

  146. 

  147.     require Template::Tiny;
    148. 

  148. 

  149.     my $uri_base = $self->has_context ?
    150. 

  150.         $self->context->request->uri_base : '';
    151. 

  151.     my $opts = {
    152. 

  152.         title    => $self->title,
    153. 

  153.         charset  => $self->charset,
    154. 

  154.         content  => $self->message,
    155. 

  155.         version  => Dancer2->VERSION,
    156. 

  156.         uri_base => $uri_base,
    157. 

  157.     };
    158. 

  158. 

  159.     Template::Tiny->new->process( \<<"END_TEMPLATE", $opts, \my $output );
    160. 

  160. <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
    161. 

  161. <html>
    162. 

  162. <head>
    163. 

  163. <title>[% title %]</title>
    164. 

  164. <link rel="stylesheet" href="[% uri_base %]/css/error.css" />
    165. 

  165. <meta http-equiv="Content-type" content="text/html; charset='[% charset %]'" />
    166. 

  166. </head>
    167. 

  167. <body>
    168. 

  168. <h1>[% title %]</h1>
    169. 

  169. <div id="content">
    170. 

  170. [% content %]
    171. 

  171. </div>
    172. 

  172. <div id="footer">
    173. 

  173. Powered by <a href="http://perldancer.org/">Dancer2</a> [% version %]
    174. 

  174. </div>
    175. 

  175. </body>
    176. 

  176. </html>
    177. 

  177. END_TEMPLATE
    178. 

  178. 

  179.     return $output;
    180. 

  180. }
    181. 

  181. 

  182. 

  183. =attr status
    184. 

  184. 

  185. The status that caused the error.
    186. 

  186. 

  187. This is only an attribute getter, you'll have to set it at C<new>.
    188. 

    189. 

  189. =cut
    190. 

  190. 

  191. has status => (
    192. 

  192.     is      => 'ro',
    193. 

  193.     default => sub {500},
    194. 

  194.     isa     => Num,
    195. 

  195. );
    196. 

  196. 

  197. =attr message
    198. 

  198. 

  199. The message of the error page.
    200. 

  200. 

  201. =cut
    202. 

  202. 

  203. has message => (
    204. 

  204.     is  => 'ro',
    205. 

  205.     isa => Str,
    206. 

  206. );
    207. 

  207. 

  208. sub full_message {
    209. 

  209.     my ($self) = @_;
    210. 

  210.     my $html_output = "<h2>" . $self->type . "</h2>";
    211. 

  211.     $html_output .= $self->backtrace;
    212. 

  212.     $html_output .= $self->environment;
    213. 

  213.     return $html_output;
    214. 

  214. }
    215. 

  215. 

  216. has serializer => (
    217. 

  217.     is        => 'ro',
    218. 

  218.     isa       => ConsumerOf ['Dancer2::Core::Role::Serializer'],
    219. 

  219.     predicate => 1,
    220. 

  220. );
    221. 

  221. 

  222. has session => (
    223. 

  223.     is  => 'ro',
    224. 

  224.     isa => ConsumerOf ['Dancer2::Core::Role::Session'],
    225. 

  225. );
    226. 

  226. 

  227. has context => (
    228. 

  228.     is        => 'ro',
    229. 

  229.     isa       => InstanceOf ['Dancer2::Core::Context'],
    230. 

  230.     predicate => 1,
    231. 

  231. );
    232. 

  232. 

  233. sub BUILD {
    234. 

  234.     my ($self) = @_;
    235. 

  235. 

  236.     $self->has_context &&
    237. 

  237.       $self->context->app->execute_hook( 'core.error.init', $self );
    238. 

  238. }
    239. 

  239. 

  240. has exception => (
    241. 

  241.     is        => 'ro',
    242. 

  242.     isa       => Str,
    243. 

  243.     predicate => 1,
    244. 

  244. );
    245. 

  245. 

  246. has response => (
    247. 

  247.     is      => 'rw',
    248. 

  248.     lazy    => 1,
    249. 

  249.     default => sub {
    250. 

  250.         $_[0]->has_context
    251. 

  251.           ? $_[0]->context->response
    252. 

  252.           : Dancer2::Core::Response->new;
    253. 

  253.     },
    254. 

  254. );
    255. 

  255. 

  256. has content_type => (
    257. 

  257.     is      => 'ro',
    258. 

  258.     lazy    => 1,
    259. 

  259.     default => sub {
    260. 

  260.         my $self = shift;
    261. 

  261.         $self->has_serializer
    262. 

  262.             ? $self->serializer->content_type
    263. 

  263.             : 'text/html'
    264. 

  264.     },
    265. 

  265. );
    266. 

  266. 

  267. has content => (
    268. 

  268.     is      => 'ro',
    269. 

  269.     lazy    => 1,
    270. 

  270.     default => sub {
    271. 

  271.         my $self = shift;
    272. 

  272. 

  273.         # Apply serializer
    274. 

  274.         if ( $self->has_serializer ) {
    275. 

  275.             my $content = {
    276. 

  276.                 message => $self->message,
    277. 

  277.                 title   => $self->title,
    278. 

  278.                 status  => $self->status,
    279. 

  279.             };
    280. 

  280.             $content->{exception} = $self->exception
    281. 

  281.               if $self->has_exception;
    282. 

  282.             return $self->serializer->serialize($content);
    283. 

  283.         }
    284. 

  284. 

  285.         # Otherwise we check for a template, for a static file and,
    286. 

  286.         # if all else fail, the default error page
    287. 

  287. 

  288.         if ( $self->has_context and $self->template ) {
    289. 

  289.             return $self->context->app->template(
    290. 

  290.                 $self->template,
    291. 

  291.                 {   title     => $self->title,
    292. 

  292.                     content   => $self->message,
    293. 

  293.                     exception => $self->exception,
    294. 

  294.                     status    => $self->status,
    295. 

  295.                 }
    296. 

  296.             );
    297. 

  297.         }
    298. 

  298. 

  299.         if ( my $content = $self->static_page ) {
    300. 

  300.             return $content;
    301. 

  301.         }
    302. 

  302. 

  303.         return $self->default_error_page;
    304. 

  304.     },
    305. 

  305. );
    306. 

  306. 

  307. =method throw($response)
    308. 

  308. 

  309. Populates the content of the response with the error's information.
    310. 

  310. If I<$response> is not given, acts on the I<context>
    311. 

  311. attribute's response.
    312. 

    313. 

  313. =cut
    314. 

  314. 

  315. sub throw {
    316. 

  316.     my $self = shift;
    317. 

  317.     $self->response(shift) if @_;
    318. 

  318. 

  319.     croak "error has no response to throw at" unless $self->response;
    320. 

  320. 

  321.     $self->has_context &&
    322. 

  322.         $self->context->app->execute_hook( 'core.error.before', $self );
    323. 

  323. 

  324.     my $message = $self->content;
    325. 

  325.     $message .= "\n\n" . $self->exception
    326. 

  326.       if $self->show_errors && defined $self->exception;
    327. 

  327. 

  328.     $self->response->status( $self->status );
    329. 

  329.     $self->response->content_type( $self->content_type );
    330. 

  330.     $self->response->content($message);
    331. 

  331. 

  332.     $self->has_context &&
    333. 

  333.         $self->context->app->execute_hook('core.error.after', $self->response);
    334. 

  334. 

  335.     $self->response->halt(1);
    336. 

  336.     return $self->response;
    337. 

  337. }
    338. 

  338. 

  339. =method backtrace
    340. 

  340. 

  341. Create a backtrace of the code where the error is caused.
    342. 

  342. 

  343. This method tries to find out where the error appeared according to the actual
    344. 

  344. error message (using the C<message> attribute) and tries to parse it (supporting
    345. 

  345. the regular/default Perl warning or error pattern and the L<Devel::SimpleTrace>
    346. 

  346. output) and then returns an error-highlighted C<message>.
    347. 

  347. 

  348. =cut
    349. 

  349. 

  350. sub backtrace {
    351. 

  351.     my ($self) = @_;
    352. 

  352. 

  353.     my $message =
    354. 

  354.       qq|<pre class="error">| . _html_encode( $self->message ) . "</pre>";
    355. 

  355. 

  356.     # the default perl warning/error pattern
    357. 

  357.     my ( $file, $line ) = ( $message =~ /at (\S+) line (\d+)/ );
    358. 

  358. 

  359.     # the Devel::SimpleTrace pattern
    360. 

  360.     ( $file, $line ) = ( $message =~ /at.*\((\S+):(\d+)\)/ )
    361. 

  361.       unless $file and $line;
    362. 

  362. 

  363.     # no file/line found, cannot open a file for context
    364. 

  364.     return $message unless ( $file and $line );
    365. 

  365. 

  366.     # file and line are located, let's read the source Luke!
    367. 

  367.     my $fh = open_file( '<', $file ) or return $message;
    368. 

  368.     my @lines = <$fh>;
    369. 

  369.     close $fh;
    370. 

  370. 

  371.     my $backtrace = $message;
    372. 

  372. 

  373.     $backtrace
    374. 

  374.       .= qq|<div class="title">| . "$file around line $line" . "</div>";
    375. 

  375. 

  376.     $backtrace .= qq|<pre class="content">|;
    377. 

  377. 

  378.     $line--;
    379. 

  379.     my $start = ( ( $line - 3 ) >= 0 ) ? ( $line - 3 ) : 0;
    380. 

  380.     my $stop =
    381. 

  381.       ( ( $line + 3 ) < scalar(@lines) ) ? ( $line + 3 ) : scalar(@lines);
    382. 

  382. 

  383.     for ( my $l = $start; $l <= $stop; $l++ ) {
    384. 

  384.         chomp $lines[$l];
    385. 

  385. 

  386.         if ( $l == $line ) {
    387. 

  387.             $backtrace
    388. 

  388.               .= qq|<span class="nu">|
    389. 

  389.               . tabulate( $l + 1, $stop + 1 )
    390. 

  390.               . qq|</span> <span style="color: red;">|
    391. 

  391.               . _html_encode( $lines[$l] )
    392. 

  392.               . "</span>\n";
    393. 

  393.         }
    394. 

  394.         else {
    395. 

  395.             $backtrace
    396. 

  396.               .= qq|<span class="nu">|
    397. 

  397.               . tabulate( $l + 1, $stop + 1 )
    398. 

  398.               . "</span> "
    399. 

  399.               . _html_encode( $lines[$l] ) . "\n";
    400. 

  400.         }
    401. 

  401.     }
    402. 

  402.     $backtrace .= "</pre>";
    403. 

  403. 

  404. 

  405.     return $backtrace;
    406. 

  406. }
    407. 

  407. 

  408. 

  409. =method tabulate
    410. 

  410. 

  411. Small subroutine to help output nicer.
    412. 

  412. 

  413. =cut
    414. 

  414. 

  415. sub tabulate {
    416. 

  416.     my ( $number, $max ) = @_;
    417. 

  417.     my $len = length($max);
    418. 

  418.     return $number if length($number) == $len;
    419. 

  419.     return " $number";
    420. 

  420. }
    421. 

  421. 

  422. =head2 dumper
    423. 

  423. 

  424. This uses L<Data::Dumper> to create nice content output with a few predefined
    425. 

  425. options.
    426. 

  426. 

  427. =cut
    428. 

  428. 

  429. sub dumper {
    430. 

  430.     my $obj = shift;
    431. 

  431. 

  432.     # Take a copy of the data, so we can mask sensitive-looking stuff:
    433. 

  433.     my %data     = %$obj;
    434. 

  434.     my $censored = _censor( \%data );
    435. 

  435. 

  436.     #use Data::Dumper;
    437. 

  437.     my $dd = Data::Dumper->new( [ \%data ] );
    438. 

  438.     $dd->Terse(1)->Quotekeys(0)->Indent(1);
    439. 

  439.     my $content = $dd->Dump();
    440. 

  440.     $content =~ s{(\s*)(\S+)(\s*)=>}{$1<span class="key">$2</span>$3 =&gt;}g;
    441. 

  441.     if ($censored) {
    442. 

  442.         $content
    443. 

  443.           .= "\n\nNote: Values of $censored sensitive-looking keys hidden\n";
    444. 

  444.     }
    445. 

  445.     return $content;
    446. 

  446. }
    447. 

  447. 

  448. 

  449. =method environment
    450. 

  450. 

  451. A main function to render environment information: the caller (using
    452. 

  452. C<get_caller>), the settings and environment (using C<dumper>) and more.
    453. 

  453. 

  454. =cut
    455. 

  455. 

  456. sub environment {
    457. 

  457.     my ($self) = @_;
    458. 

  458. 

  459.     my $request = $self->has_context ? $self->context->request : 'TODO';
    460. 

  460.     my $r_env = {};
    461. 

  461.     $r_env = $request->env if defined $request;
    462. 

  462. 

  463.     my $env =
    464. 

  464.         qq|<div class="title">Environment</div><pre class="content">|
    465. 

  465.       . dumper($r_env)
    466. 

  466.       . "</pre>";
    467. 

  467.     my $settings =
    468. 

  468.         qq|<div class="title">Settings</div><pre class="content">|
    469. 

  469.       . dumper( $self->app->settings )
    470. 

  470.       . "</pre>";
    471. 

  471.     my $source =
    472. 

  472.         qq|<div class="title">Stack</div><pre class="content">|
    473. 

  473.       . $self->get_caller
    474. 

  474.       . "</pre>";
    475. 

  475.     my $session = "";
    476. 

  476. 

  477.     if ( $self->session ) {
    478. 

  478.         $session =
    479. 

  479.             qq[<div class="title">Session</div><pre class="content">]
    480. 

  480.           . dumper( $self->session->data )
    481. 

  481.           . "</pre>";
    482. 

  482.     }
    483. 

  483.     return "$source $settings $session $env";
    484. 

  484. }
    485. 

  485. 

  486. 

  487. =method get_caller
    488. 

  488. 

  489. Creates a stack trace of callers.
    490. 

  490. 

  491. =cut
    492. 

  492. 

  493. sub get_caller {
    494. 

  494.     my ($self) = @_;
    495. 

  495.     my @stack;
    496. 

  496. 

  497.     my $deepness = 0;
    498. 

  498.     while ( my ( $package, $file, $line ) = caller( $deepness++ ) ) {
    499. 

  499.         push @stack, "$package in $file l. $line";
    500. 

  500.     }
    501. 

  501. 

  502.     return join( "\n", reverse(@stack) );
    503. 

  503. }
    504. 

  504. 

  505. # private
    506. 

  506. 

  507. # Given a hashref, censor anything that looks sensitive.  Returns number of
    508. 

  508. # items which were "censored".
    509. 

  509. 

  510. =func _censor
    511. 

  511. 

  512. An private function that tries to censor out content which should be protected.
    513. 

  513. 

  514. C<dumper> calls this method to censor things like passwords and such.
    515. 

  515. 

  516. =cut
    517. 

  517. 

  518. sub _censor {
    519. 

  519.     my $hash = shift;
    520. 

  520.     if ( !$hash || ref $hash ne 'HASH' ) {
    521. 

  521.         carp "_censor given incorrect input: $hash";
    522. 

  522.         return;
    523. 

  523.     }
    524. 

  524. 

  525.     my $censored = 0;
    526. 

  526.     for my $key ( keys %$hash ) {
    527. 

  527.         if ( ref $hash->{$key} eq 'HASH' ) {
    528. 

  528.             $censored += _censor( $hash->{$key} );
    529. 

  529.         }
    530. 

  530.         elsif ( $key =~ /(pass|card?num|pan|secret)/i ) {
    531. 

  531.             $hash->{$key} = "Hidden (looks potentially sensitive)";
    532. 

  532.             $censored++;
    533. 

  533.         }
    534. 

  534.     }
    535. 

  535. 

  536.     return $censored;
    537. 

  537. }
    538. 

  538. 

  539. =func my $string=_html_encode ($string);
    540. 

  540. 

  541. Private function that replaces illegal entities in (X)HTML with their
    542. 

  542. escaped representations.
    543. 

  543. 

  544. html_encode() doesn't do any UTF black magic.
    545. 

    546. 

  546. =cut
    547. 

  547. 

  548. # Replaces the entities that are illegal in (X)HTML.
    549. 

  549. sub _html_encode {
    550. 

  550.     my $value = shift;
    551. 

  551. 

  552.     $value =~ s/&/&amp;/g;
    553. 

  553.     $value =~ s/</&lt;/g;
    554. 

  554.     $value =~ s/>/&gt;/g;
    555. 

  555.     $value =~ s/'/&#39;/g;
    556. 

  556.     $value =~ s/"/&quot;/g;
    557. 

    558. 

  558.     return $value;
    559. 

  559. }
    560. 

  560. 

  561. sub _render_html {
    562. 

  562.     my $self = shift;
    563. 

  563. 

  564.     # error_template defaults to something, always
    565. 

  565.     my $template_name = $self->error_template;
    566. 

  566. 

  567.     my $ops = {
    568. 

  568.         title   => $self->title,
    569. 

  569.         content => $self->message,
    570. 

  570.         status  => $self->status,
    571. 

  571.         defined $self->exception ? ( exception => $self->exception ) : (),
    572. 

  572.     };
    573. 

  573.     my $content = $self->template->apply_renderer( $template_name, $ops );
    574. 

  574.     $self->response->status( $self->status );
    575. 

  575.     $self->response->header( 'Content-Type' => 'text/html' );
    576. 

  576.     return $content;
    577. 

  577. }
    578. 

  578. 

  579. 1;
    580. 

  580.