Acme HTTP Errors

Question

Acme HTTP Errors

barryvdh opened this issue 9 years ago · 9 comments

The Acme service can return certain error codes, as described here: https://letsencrypt.github.io/acme-spec/#rfc.section.5.4

Currently, HTTP errors will be thrown with the response body as plain text in the message.

It would be more useful to create a AcmeHttpException which can be constructed using the response object and provides an actual useful message?

Invalid response code: 400 {"type":"urn:acme:error:badNonce","detail":"Unable to read/verify body :: JWS has invalid anti-replay nonce","status":400}

Could be:

Invalid Acme HTTP Response: badNonce (code 400). Unable to read/verify body :: JWS has invalid anti-replay nonce.

Answer 1 · 2015-12-15T13:38:17.000Z

BadCsrException, BadNonceException, ConnectException, DnssecException, MalformedRequestException, InternalServerException, TlsException, UnauthorizedException, UnknownHostException.

I'm not happy with some of these names, do you have suggestions?

Answer 2 · 2015-12-15T13:40:42.000Z

Another alternative would be to return the type in AcmeException::getCode.

Answer 3 · 2015-12-15T13:41:19.000Z

I agree that all of those errors should be represented by 1 class (not 1 each) which then provides a method to further determine the underlying error

Answer 4 · 2015-12-15T14:34:47.000Z

I have improved the error messages, please review d3805a6.

Answer 5 · 2015-12-16T12:58:17.000Z

What about doing the type/detail handling inside the exception?

You can change the Exception constructor when extending, for example to typehint a Response object. You can then apply the same logic in your Eception.
You could also create a static factory for your AcmeException, to create on from a Response.

class AcmeException extends Exception {
    public function __construct($message, Response $response = null, Exception $previous = null)
    {
        parent::__construct($message, 0, $previous);

        if ($response) {
            $info = json_decode($response->getBody(), true);

            if ($info && isset($info['type'], $info['detail'])) {
                $this->code = $info['type'];
                $this->message .= ' ' . $info['detail'];
            }
        }

    }
}

https://3v4l.org/WgOnF

Answer 6 · 2015-12-16T13:40:35.000Z

Should the default error code be internal, generic, general or unknown?

Answer 7 · 2015-12-16T13:42:13.000Z

Don't know, could just leave it 0, the Exception default.

Answer 8 · 2015-12-20T15:31:53.000Z

Can I close this?

Answer 9 · 2016-01-07T10:27:45.000Z

Hmm, using a string as code might give unexpected results when stacking exceptions, see: zenire/da-letsencrypt#40
Testcase: https://3v4l.org/ObN47