yorkie-team · devleejb · Aug 3, 2024 · Aug 2, 2024 · Aug 2, 2024 · Aug 2, 2024
diff --git a/backend/src/auth/jwt.guard.ts b/backend/src/auth/jwt.guard.ts
@@ -1,11 +1,21 @@
-import { ExecutionContext, Injectable } from "@nestjs/common";
+import {
+	ExecutionContext,
+	ForbiddenException,
+	Injectable,
+	UnauthorizedException,
+} from "@nestjs/common";
 import { Reflector } from "@nestjs/core";
 import { AuthGuard } from "@nestjs/passport";
 import { IS_PUBLIC_PATH } from "src/utils/decorators/auth.decorator";
+import * as jwt from "jsonwebtoken";
+import { ConfigService } from "@nestjs/config";
 
 @Injectable()
 export class JwtAuthGuard extends AuthGuard("jwt") {
-	constructor(private reflector: Reflector) {
+	constructor(
+		private reflector: Reflector,
+		private configService: ConfigService
+	) {
 		super();
 	}
 
@@ -17,6 +27,38 @@ export class JwtAuthGuard extends AuthGuard("jwt") {
 		if (isPublic) {
 			return true;
 		}
-		return super.canActivate(context);
+
+		try {
+			const request = context.switchToHttp().getRequest();
+			const token = request.headers.authorization?.split(" ")[1];
+			if (!token) {
+				throw new UnauthorizedException("Unauthorized", {
+					cause: new Error(),
+					description: "Token not found",
+				});
+			}
+
+			const secretKey = this.configService.get<string>("JWT_AUTH_SECRET");
+			const decoded = jwt.verify(token, secretKey);
+			request.user = decoded;
+			return super.canActivate(context);
+		} catch (e) {
+			if (e.name === "TokenExpiredError") {
+				throw new UnauthorizedException("Unauthorized", {
+					cause: new Error(),
+					description: "Token has expired.",
+				});
+			} else if (e.name === "JsonWebTokenError") {
+				throw new UnauthorizedException("Unauthorized", {
+					cause: new Error(),
+					description: "Invalid token",
+				});
+			} else {
+				throw new ForbiddenException("Forbidden", {
+					cause: new Error(),
+					description: "Access denied",
+				});
+			}
+		}
 	}
 }
diff --git a/backend/src/documents/documents.service.ts b/backend/src/documents/documents.service.ts
@@ -31,7 +31,10 @@ export class DocumentsService {
 				throw new Error();
 			}
 		} catch (e) {
-			throw new UnauthorizedException("Invalid sharing token");
+			throw new UnauthorizedException("Unauthorized", {
+				cause: new Error(),
+				description: "Invalid sharing token",
+			});
 		}
 
 		let document: Document;
@@ -43,7 +46,10 @@ export class DocumentsService {
 				},
 			});
 		} catch (e) {
-			throw new NotFoundException();
+			throw new NotFoundException("Not found", {
+				cause: new Error(),
+				description: "Document not found",
+			});
 		}
 
 		return {

diff --git a/backend/src/files/files.service.ts b/backend/src/files/files.service.ts
@@ -46,11 +46,17 @@ export class FilesService {
 				},
 			});
 		} catch (e) {
-			throw new UnauthorizedException();
+			throw new UnauthorizedException("Unauthorized", {
+				cause: new Error(),
+				description: "Client unauthorized.",
+			});
 		}
 
 		if (contentLength > 10_000_000) {
-			throw new UnprocessableEntityException();
+			throw new UnprocessableEntityException("Unprocessable Entity", {
+				cause: new Error(),
+				description: "Content length too long.",
+			});
 		}
 
 		const fileKey = `${workspace.slug}-${generateRandomKey()}.${contentType.split("/")[1]}`;
@@ -75,7 +81,10 @@ export class FilesService {
 			});
 			return getSignedUrl(this.s3Client, command, { expiresIn: 3600 });
 		} catch (e) {
-			throw new NotFoundException();
+			throw new NotFoundException("Not found", {
+				cause: new Error(),
+				description: "File not found.",
+			});
 		}
 	}
 
@@ -92,7 +101,10 @@ export class FilesService {
 			case "pdf":
 				return this.exportToPdf(content, fileName);
 			default:
-				throw new BadRequestException("Invalid export type");
+				throw new BadRequestException("Bad request", {
+					cause: new Error(),
+					description: "Invalid export type",
+				});
 		}
 	}
 

diff --git a/backend/src/intelligence/intelligence.service.ts b/backend/src/intelligence/intelligence.service.ts
@@ -25,7 +25,11 @@ export class IntelligenceService {
 		};
 		const selectedPrompt = promptTemplates[feature];
 
-		if (!selectedPrompt) throw new NotFoundException();
+		if (!selectedPrompt)
+			throw new NotFoundException("Not found", {
+				cause: new Error(),
+				description: "Feature not found",
+			});
 
 		return selectedPrompt;
 	}

diff --git a/backend/src/users/users.service.ts b/backend/src/users/users.service.ts
@@ -74,7 +74,10 @@ export class UsersService {
 		const { conflict } = await this.checkService.checkNameConflict(nickname);
 
 		if (conflict) {
-			throw new ConflictException();
+			throw new ConflictException("Conflict", {
+				cause: new Error(),
+				description: "The nickname conflicts.",
+			});
 		}
 
 		await this.prismaService.user.update({

diff --git a/backend/src/workspace-documents/workspace-documents.service.ts b/backend/src/workspace-documents/workspace-documents.service.ts
@@ -26,7 +26,11 @@ export class WorkspaceDocumentsService {
 				},
 			});
 		} catch (e) {
-			throw new NotFoundException();
+			throw new NotFoundException("Not found", {
+				cause: new Error(),
+				description:
+					"The workspace does not exist, or the user lacks the appropriate permissions.",
+			});
 		}
 
 		return this.prismaService.document.create({
@@ -52,7 +56,11 @@ export class WorkspaceDocumentsService {
 				},
 			});
 		} catch (e) {
-			throw new NotFoundException();
+			throw new NotFoundException("Not found", {
+				cause: new Error(),
+				description:
+					"The workspace does not exist, or the user lacks the appropriate permissions.",
+			});
 		}
 
 		const additionalOptions: Prisma.DocumentFindManyArgs = {};
@@ -111,14 +119,18 @@ export class WorkspaceDocumentsService {
 					workspaceId,
 				},
 			});
-
-			return this.prismaService.document.findUniqueOrThrow({
+			const document = await this.prismaService.document.findUniqueOrThrow({
 				where: {
 					id: documentId,
 				},
 			});
+			return document;
 		} catch (e) {
-			throw new NotFoundException();
+			throw new NotFoundException("Not found", {
+				cause: new Error(),
+				description:
+					"The workspace or document does not exist, or the user lacks the appropriate permissions.",
+			});
 		}
 	}
 
@@ -146,7 +158,11 @@ export class WorkspaceDocumentsService {
 				},
 			});
 		} catch (e) {
-			throw new NotFoundException();
+			throw new NotFoundException("Not found", {
+				cause: new Error(),
+				description:
+					"The workspace or document does not exist, or the user lacks the appropriate permissions.",
+			});
 		}
 
 		const token = generateRandomKey();

diff --git a/backend/src/workspace-users/workspace-users.service.ts b/backend/src/workspace-users/workspace-users.service.ts
@@ -21,7 +21,11 @@ export class WorkspaceUsersService {
 				},
 			});
 		} catch (e) {
-			throw new NotFoundException();
+			throw new NotFoundException("Not found", {
+				cause: new Error(),
+				description:
+					"The workspace does not exist, or the user lacks the appropriate permissions.",
+			});
 		}
 
 		const additionalOptions: Prisma.UserFindManyArgs = {};

diff --git a/backend/src/workspaces/workspaces.service.ts b/backend/src/workspaces/workspaces.service.ts
@@ -25,7 +25,10 @@ export class WorkspacesService {
 		const { conflict } = await this.checkService.checkNameConflict(title);
 
 		if (conflict) {
-			throw new ConflictException();
+			throw new ConflictException("Conflict", {
+				cause: new Error(),
+				description: "Workspace title is already in use.",
+			});
 		}
 
 		const workspace = await this.prismaService.workspace.create({
@@ -63,7 +66,10 @@ export class WorkspacesService {
 
 			return foundWorkspace;
 		} catch (e) {
-			throw new NotFoundException();
+			throw new NotFoundException("Not found", {
+				cause: new Error(),
+				description: "Workspace not found, or the user lacks the appropriate permissions.",
+			});
 		}
 	}
 
@@ -114,7 +120,11 @@ export class WorkspacesService {
 				},
 			});
 		} catch (e) {
-			throw new NotFoundException();
+			throw new NotFoundException("Not found", {
+				cause: new Error(),
+				description:
+					"Worksapce does not exist, or the user lacks the appropriate permissions.",
+			});
 		}
 
 		const token = generateRandomKey();
@@ -152,7 +162,10 @@ export class WorkspacesService {
 				throw new Error();
 			}
 		} catch (err) {
-			throw new UnauthorizedException("Invitation token is invalid or expired.");
+			throw new UnauthorizedException("Unauthorized", {
+				cause: new Error(),
+				description: "Invitation token is invalid or expired.",
+			});
 		}
 
 		try {
@@ -162,7 +175,10 @@ export class WorkspacesService {
 				},
 			});
 		} catch (e) {
-			throw new NotFoundException("The workspace is deleted.");
+			throw new NotFoundException("Not found", {
+				cause: new Error(),
+				description: "The workspace is deleted.",
+			});
 		}
 
 		const userWorkspace = await this.prismaService.userWorkspace.findFirst({

diff --git a/frontend/src/hooks/useErrorHandler.ts b/frontend/src/hooks/useErrorHandler.ts
@@ -1,11 +1,24 @@
 import { useSnackbar } from "notistack";
 import { useCallback } from "react";
 
+interface CustomError extends Error {
+	response?: {
+		data: {
+			error?: string;
+			message: string;
+			statusCode: number;
+		};
+	};
+}
+
 export function useErrorHandler() {
 	const { enqueueSnackbar } = useSnackbar();
 	const handleError = useCallback(
-		(error: Error) => {
-			enqueueSnackbar(error.message || "Something went wrong...", { variant: "error" });
+		(error: CustomError) => {
+			enqueueSnackbar(
+				error.response?.data.error || error.message || "Something went wrong...",
+				{ variant: "error" }
+			);
 		},
 		[enqueueSnackbar]
 	);