Comments (4)
Am working on plans for this =) We'll get something in place soon. I've been trying to figure out a good way to handle this stuff.
from express-stormpath.
I'm a complete novice so this is probably way off base...
Could you just return an error rather than rendering a view at this level and then intercept this elsewhere and return the error in the right format for the client. A bit like the example [here]...(http://runnable.com/UTlPPV-f2W1TAAEf/custom-error-pages-in-express-for-node-js) but in this case obviously for errors other than the 404?
Would save repeating if (req.accepts(['html', 'json']) === 'html')
etc... for all calls.
from express-stormpath.
Oh right -- I think the main issue is this though: coming up with a way to list all possible errors / exceptions, and let a user define values for them to override the defaults.
Right now the errors are (for the most part) returned properly based on the type of middleware (eg: stormpath.groupsRequired
is meant for web users, not API stuff, which is why it's returning HTML). HOWEVER, I'd love to find a clean and sane way to let users overwrite the content of every single message in a single location.
I've been thinking about this for a while, and I have a few ideas:
- Provide a huge JSON object that holds every possible error, something like:
{
"loginAttemptBadPasswordProvided": {
"html": "Invalid username or password.",
"json": {
"code": 400,
"message": "Invalid username or password."
}
}
}
- Force users to listen for errors and handle them on their own, eg:
app.get('stormpathApplication.').on('loginAttemptBadPasswordProvided', function(req, res) {
res.json({ code: 400, message: 'Invalid username or password." });
});
Something like those is the best I've come up with so far :(
from express-stormpath.
Not easy I know, much prefer the first solution personally.
In the meantime an API equivalent of stormpath.groupsRequired similar to the authenticationRequired middleware that was added would be nice. I’d have thought this was pretty important functionality for a lot of use cases.
Cheers
from express-stormpath.
Related Issues (20)
- Okta Migration HOT 4
- type Array in SDK to supprt custom data in Okta HOT 4
- Local oauth/token not working in RC3 HOT 1
- 400 error with okta-test-data.js HOT 1
- Cannot read property "access_token" of undefined HOT 3
- stormpathApplication.getAccounts() HOT 2
- Okta Group Expansion HOT 3
- Okta rc4- password reset of super admin
- Changing a user's password doesn't work HOT 5
- Okta expand apiKeys HOT 1
- groupsRequired Middleware iterator not firing HOT 3
- changePassword autoLogin: true doesn't work
- Optionally include offline_access scope HOT 1
- User creation could use some TLC
- Updating data in Okta portal is overwritten if user is logged in
- Cannot change password through custom page
- user email verfication
- No reset email was received except Super Admin User HOT 3
- Okta TLS 1.2
- Game Over?
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from express-stormpath.