shaunrd0/musicseerr
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
Files
eed1ce700dccb6c2f9457d36a102697c77116392
musicseerr/backend/tests/test_error_leakage.py
T

75 lines
2.6 KiB
Python
Raw Blame History

"""Tests that exception handlers do not leak internal details."""
import pytest
from fastapi import FastAPI
import httpx
from core.exceptions import ExternalServiceError
from core.exception_handlers import (
external_service_error_handler,
circuit_open_error_handler,
general_exception_handler,
)
from infrastructure.resilience.retry import CircuitOpenError
def _build_app() -> FastAPI:
app = FastAPI()
@app.get("/raise-general")
async def raise_general():
raise RuntimeError("secret internal path /app/main.py")
@app.get("/raise-external")
async def raise_external():
raise ExternalServiceError("connection to 10.0.0.5:8096 refused")
@app.get("/raise-circuit")
async def raise_circuit():
raise CircuitOpenError("JellyfinRepository after 5 failures")
app.add_exception_handler(ExternalServiceError, external_service_error_handler)
app.add_exception_handler(CircuitOpenError, circuit_open_error_handler)
app.add_exception_handler(Exception, general_exception_handler)
return app
@pytest.mark.asyncio
async def test_general_exception_handler_hides_details():
app = _build_app()
transport = httpx.ASGITransport(app=app, raise_app_exceptions=False)
async with httpx.AsyncClient(transport=transport, base_url="http://test") as client:
resp = await client.get("/raise-general")
body = resp.json()
assert resp.status_code == 500
assert body["error"]["message"] == "Internal server error"
assert "/app/main.py" not in resp.text
@pytest.mark.asyncio
async def test_external_service_error_hides_details():
app = _build_app()
transport = httpx.ASGITransport(app=app, raise_app_exceptions=False)
async with httpx.AsyncClient(transport=transport, base_url="http://test") as client:
resp = await client.get("/raise-external")
body = resp.json()
assert resp.status_code == 503
assert body["error"]["message"] == "External service unavailable"
assert "10.0.0.5" not in resp.text
@pytest.mark.asyncio
async def test_circuit_open_error_hides_details():
app = _build_app()
transport = httpx.ASGITransport(app=app, raise_app_exceptions=False)
async with httpx.AsyncClient(transport=transport, base_url="http://test") as client:
resp = await client.get("/raise-circuit")
body = resp.json()
assert resp.status_code == 503
assert body["error"]["message"] == "Service temporarily unavailable due to repeated connection failures. Check your settings or wait for the service to recover."
assert "JellyfinRepository" not in resp.text
Reference in New Issue View Git Blame Copy Permalink