代码拉取完成,页面将自动刷新
/*
Copyright IBM Corp. All Rights Reserved.
SPDX-License-Identifier: Apache-2.0
*/
package caerrors
import (
"encoding/json"
"fmt"
"net/http"
"reflect"
cfsslapi "gitee.com/hyperledger-fabric-gm/cfssl/api"
"gitee.com/hyperledger-fabric-gm/cfssl/log"
"github.com/pkg/errors"
)
// Error codes
const (
// Unknown error code
ErrUnknown = 0
// HTTP method not allowed
ErrMethodNotAllowed = 1
// No authorization header was found in request
ErrNoAuthHdr = 2
// Failed reading the HTTP request body
ErrReadingReqBody = 3
// HTTP request body was empty but should not have been
ErrEmptyReqBody = 4
// HTTP request body was of the wrong format
ErrBadReqBody = 5
// The token in the authorization header was invalid
ErrBadReqToken = 6
// The caller does not have the "hf.Revoker" attibute
ErrNotRevoker = 7
// Certificate to be revoked was not found
ErrRevCertNotFound = 8
// Certificate to be revoked is not owned by expected user
ErrCertWrongOwner = 9
// Identity of certificate to be revoked was not found
ErrRevokeIDNotFound = 10
// User info was not found for issuee of revoked certificate
ErrRevokeUserInfoNotFound = 11
// Certificate revocation failed for another reason
ErrRevokeFailure = 12
// Failed to update user info when revoking identity
ErrRevokeUpdateUser = 13
// Failed to revoke any certificates by identity
ErrNoCertsRevoked = 14
// Missing fields in the revocation request
ErrMissingRevokeArgs = 15
// Failed to get user's affiliation
ErrGettingAffiliation = 16
// Revoker's affiliation not equal to or above revokee's affiliation
ErrRevokerNotAffiliated = 17
// Failed to send an HTTP response
ErrSendingResponse = 18
// The CA (Certificate Authority) name was not found
ErrCANotFound = 19
// Authorization failure
ErrAuthenticationFailure = 20
// No username and password were in the authorization header
ErrNoUserPass = 21
// Enrollment is currently disabled for the server
ErrEnrollDisabled = 22
// Invalid user name
ErrInvalidUser = 23
// Invalid password
ErrInvalidPass = 24
// Invalid token in authorization header
ErrInvalidToken = 25
// Certificate was not issued by a trusted authority
ErrUntrustedCertificate = 26
// Certificate has expired
ErrCertExpired = 27
// Certificate has been revoked
ErrCertRevoked = 28
// Failed trying to check if certificate is revoked
ErrCertRevokeCheckFailure = 29
// Certificate was not found
ErrCertNotFound = 30
// Bad certificate signing request
ErrBadCSR = 31
// Failed to get identity's prekey
ErrNoPreKey = 32
// The caller was not authenticated
ErrCallerIsNotAuthenticated = 33
// Invalid configuration setting
ErrConfig = 34
// The caller does not have authority to generate a CRL
ErrNoGenCRLAuth = 35
// Invalid RevokedAfter value in the GenCRL request
ErrInvalidRevokedAfter = 36
// Invalid ExpiredAfter value in the GenCRL request
ErrInvalidExpiredAfter = 37
// Failed to get revoked certs from the database
ErrRevokedCertsFromDB = 38
// Failed to get CA cert
ErrGetCACert = 39
// Failed to get CA signer
ErrGetCASigner = 40
// Failed to generate CRL
ErrGenCRL = 41
// Registrar does not have the authority to register an attribute
ErrRegAttrAuth = 42
// Registrar does not own 'hf.Registrar.Attributes'
ErrMissingRegAttr = 43
// Caller does not have appropriate affiliation to perform requested action
ErrCallerNotAffiliated = 44
// Failed to verify if caller has appropriate type
ErrGettingType = 45
// CA cert does not have 'crl sign' usage
ErrNoCrlSignAuth = 46
// Incorrect level of database
ErrDBLevel = 47
// Incorrect level of configuration file
ErrConfigFileLevel = 48
// Failed to get user from database
ErrGettingUser = 49
// Error processing HTTP request
ErrHTTPRequest = 50
// Error connecting to database
ErrConnectingDB = 51
// Failed to add identity
ErrAddIdentity = 52
// Unauthorized to perform update action
ErrUpdateConfigAuth = 53
// Registrar not authorized to act on type
ErrRegistrarInvalidType = 54
// Registrar not authorized to act on affiliation
ErrRegistrarNotAffiliated = 55
// Failed to remove identity
ErrRemoveIdentity = 56
// Failed to get boolean query parameter
ErrGettingBoolQueryParm = 57
// Failed to modify identity
ErrModifyingIdentity = 58
// Caller does not have the appropriate role
ErrMissingRole = 59
// Failed to add new affiliation
ErrUpdateConfigAddAff = 60
// Failed to remove affiliation
ErrUpdateConfigRemoveAff = 61
// Error occured while removing affiliation in database
ErrRemoveAffDB = 62
// Error occured when making a Get request to database
ErrDBGet = 63
// Failed to modiy affiliation
ErrUpdateConfigModifyAff = 64
// Error occured while deleting user
ErrDBDeleteUser = 65
// Certificate that is being revoked has already been revoked
ErrCertAlreadyRevoked = 66
// Failed to get requested certificate(s)
ErrGettingCert = 67
// Error occurred parsing variable as an integer
ErrParsingIntEnvVar = 68
// CA certificate file is not found warning message
ErrCACertFileNotFound = 69
// Error occurs when invoking a request revoked enrollment ID
ErrRevokedID = 70
// Authorization failure
ErrAuthorizationFailure = 71
// Action is not allowed when using LDAP
ErrInvalidLDAPAction = 72
// Incorrect password limit reached
ErrPasswordAttempts = 73
)
// CreateHTTPErr constructs a new HTTP error.
func CreateHTTPErr(scode, code int, format string, args ...interface{}) *HTTPErr {
msg := fmt.Sprintf(format, args...)
return &HTTPErr{
scode: scode,
lcode: code,
lmsg: msg,
rcode: code,
rmsg: msg,
}
}
// NewHTTPErr constructs a new HTTP error wrappered with pkg/errors error.
func NewHTTPErr(scode, code int, format string, args ...interface{}) error {
return errors.Wrap(CreateHTTPErr(scode, code, format, args...), "")
}
// NewAuthenticationErr constructs an HTTP error specifically indicating an authentication failure.
// The local code and message is specific, but the remote code and message is generic
// for security reasons.
func NewAuthenticationErr(code int, format string, args ...interface{}) error {
he := CreateHTTPErr(401, code, format, args...)
he.Remote(ErrAuthenticationFailure, "Authentication failure")
return errors.Wrap(he, "")
}
// NewAuthorizationErr constructs an HTTP error specifically indicating an authorization failure.
// The local code and message is specific, but the remote code and message is generic
// for security reasons.
func NewAuthorizationErr(code int, format string, args ...interface{}) error {
he := CreateHTTPErr(403, code, format, args...)
he.Remote(ErrAuthorizationFailure, "Authorization failure")
return errors.Wrap(he, "")
}
// HTTPErr is an HTTP error.
// "local" refers to errors as logged in the server (local to the server).
// "remote" refers to errors as returned to the client (remote to the server).
// This allows us to log a more specific error in the server logs while
// returning a more generic error to the client, as is done for authorization
// failures.
type HTTPErr struct {
scode int // HTTP status code
lcode int // local error code
lmsg string // local error message
rcode int // remote error code
rmsg string // remote error message
}
// Error returns the string representation
func (he *HTTPErr) Error() string {
return he.String()
}
// String returns a string representation of this augmented error
func (he *HTTPErr) String() string {
if he.lcode == he.rcode && he.lmsg == he.rmsg {
return fmt.Sprintf("scode: %d, code: %d, msg: %s", he.scode, he.lcode, he.lmsg)
}
return fmt.Sprintf("scode: %d, local code: %d, local msg: %s, remote code: %d, remote msg: %s",
he.scode, he.lcode, he.lmsg, he.rcode, he.rmsg)
}
// Remote sets the remote code and message to something different from that of the local code and message
func (he *HTTPErr) Remote(code int, format string, args ...interface{}) *HTTPErr {
he.rcode = code
he.rmsg = fmt.Sprintf(format, args...)
return he
}
type errorWriter interface {
http.ResponseWriter
}
// Write the server's HTTP error response
func (he *HTTPErr) writeResponse(w errorWriter) error {
response := cfsslapi.NewErrorResponse(he.rmsg, he.rcode)
jsonMessage, err := json.Marshal(response)
if err != nil {
log.Errorf("Failed to marshal error to JSON: %v", err)
return err
}
msg := string(jsonMessage)
http.Error(w, msg, he.scode)
return nil
}
// GetRemoteCode returns the remote error code
func (he *HTTPErr) GetRemoteCode() int {
return he.rcode
}
// GetLocalCode returns the local error code
func (he *HTTPErr) GetLocalCode() int {
return he.lcode
}
// GetStatusCode returns the HTTP status code
func (he *HTTPErr) GetStatusCode() int {
return he.scode
}
// GetRemoteMsg returns the remote error message
func (he *HTTPErr) GetRemoteMsg() string {
return he.rmsg
}
// GetLocalMsg returns the remote error message
func (he *HTTPErr) GetLocalMsg() string {
return he.lmsg
}
// ServerErr contains error message with corresponding CA error code
type ServerErr struct {
code int
msg string
}
// FatalErr is a server error that is will prevent the server/CA from continuing to operate
type FatalErr struct {
ServerErr
}
// NewServerError constructs a server error
func NewServerError(code int, format string, args ...interface{}) *ServerErr {
msg := fmt.Sprintf(format, args...)
return &ServerErr{
code: code,
msg: msg,
}
}
// NewFatalError constructs a fatal error
func NewFatalError(code int, format string, args ...interface{}) *FatalErr {
msg := fmt.Sprintf(format, args...)
return &FatalErr{
ServerErr{
code: code,
msg: msg,
},
}
}
func (fe *FatalErr) Error() string {
return fe.String()
}
func (fe *FatalErr) String() string {
return fmt.Sprintf("Code: %d - %s", fe.code, fe.msg)
}
// IsFatalError return true if the error is of type 'FatalErr'
func IsFatalError(err error) bool {
causeErr := errors.Cause(err)
typ := reflect.TypeOf(causeErr)
// If a pointer to a struct is passe, get the type of the dereferenced object
if typ.Kind() == reflect.Ptr {
typ = typ.Elem()
}
if typ == reflect.TypeOf(FatalErr{}) {
return true
}
return false
}
此处可能存在不合适展示的内容,页面不予展示。您可通过相关编辑功能自查并修改。
如您确认内容无涉及 不当用语 / 纯广告导流 / 暴力 / 低俗色情 / 侵权 / 盗版 / 虚假 / 无价值内容或违法国家有关法律法规的内容,可点击提交进行申诉,我们将尽快为您处理。
马建仓 AI 助手