Create UnauthorizedError

Author: groenroos

core/loadPermissions.js

@@ -9,6 +9,7 @@ import path from 'node:path';
 import { console } from '../lib/Cluster.js';
 import Response from '../lib/Response.js';
 import SaplingError from '../lib/SaplingError.js';
+import UnauthorizedError from '../lib/UnauthorizedError.js';
 
 
 /**
@@ -96,7 +97,7 @@ export default async function loadPermissions(next) {
 				if (request.permission.redirect) {
 					response.redirect(request.permission.redirect);
 				} else {
-					return new Response(this, request, response, new SaplingError('You do not have permission to complete this action.'));
+					return new Response(this, request, response, new UnauthorizedError());
 				}
 			} else {
 				next();

lib/Response.js

@@ -13,6 +13,7 @@ import { console } from './Cluster.js';
 import Redirect from './Redirect.js';
 import Templating from './Templating.js';
 import Utils from './Utils.js';
+import UnauthorizedError from './UnauthorizedError.js';
 
 
 /**
@@ -43,7 +44,11 @@ export default class Response {
 		/* Respond based on the given parameters */
 		if (this.response) {
 			if (this.error) {
-				this.errorResponse();
+				if (this.error instanceof UnauthorizedError) {
+					this.notFoundResponse();
+				} else {
+					this.errorResponse();
+				}
 			} else if (content === false) {
 				this.notFoundResponse();
 			} else if (typeof content === 'string') {
@@ -239,7 +244,11 @@ export default class Response {
 	*/
 	async notFoundResponse() {
 		/* Log to the server */
-		console.error('Not Found:', this.request.method && this.request.method.toUpperCase(), this.request.url);
+		if (this.error instanceof UnauthorizedError) {
+			console.error('Not Authorized:', this.request.method && this.request.method.toUpperCase(), this.request.url);
+		} else {
+			console.error('Not Found:', this.request.method && this.request.method.toUpperCase(), this.request.url);
+		}
 
 		/* Respond with the error */
 		if (this.ajax === false) {

lib/UnauthorizedError.js

@@ -0,0 +1,31 @@
+/**
+ * SaplingError
+ *
+ * Uniform error handling
+ */
+
+import SaplingError from './SaplingError.js';
+
+
+/**
+ * The UnauthorizedError class
+ */
+export default class UnauthorizedError extends SaplingError {
+	/**
+	 * Initialise the UnauthorizedError class
+	 */
+	constructor(...parameters) {
+		super(...parameters);
+
+		this.name = 'UnauthorizedError';
+
+		/* Create empty error structure */
+		this.json = {
+			errors: [
+				{
+					title: 'Unauthorized',
+				},
+			],
+		};
+	}
+}

test/core/loadPermissions.test.js

@@ -7,6 +7,7 @@ import Request from '../../lib/Request.js';
 import Response from '../../lib/Response.js';
 import SaplingError from '../../lib/SaplingError.js';
 import Storage from '../../lib/Storage.js';
+import UnauthorizedError from '../../lib/UnauthorizedError.js';
 import User from '../../lib/User.js';
 import parseMethodRouteKey from '../../core/parseMethodRouteKey.js';
 
@@ -101,7 +102,7 @@ test.serial('creates middleware', async t => {
 			const response = handler.call(t.context.app, t.context.request, t.context.response, () => true);
 
 			t.true(response instanceof Response);
-			t.is(response.error.message, 'You do not have permission to complete this action.');
+			t.true(response.error instanceof UnauthorizedError);
 		},
 
 		/* Creates post middleware that allows it continue when authorised */