An opinionated RESTful HTTP error handler intended for use in Express.
The primary role of an API is to ensure developer success. Therefore, we must provide an API that's easy to digest and provides appropriate guidance. RESTful APIs in particular must return errors must provide ample information to the developer so they can resolve their issue without having to read documentation or source code. Every error returned by a RESTful API should have the following properties:
- A unique error code that can be pasted into any search engine and results can be found on StackOverflow or in documentation/wikis/forums.
- A plain-english message for the developer.
- A plain-english message for the end-user (if possible).
- A link to a wiki/forum where information can be found about the error and a discussion can be had on it's solution. This has the added benefit of showing you where your errors are lacking information and will help you improve later versions. This also provides a direct conduit to support your users without them having to email or call.
- A status code that makes sense for the kind of error returned. 4XX error codes are user error, 5XX error codes are server error. Custom status codes are unnecessary, you should always defer to the the HTTP spec for status codes.
When a required input is missing:
400 Bad Request
Content-Type: "application/json"
{
"errorCode": "missing_input",
"errorMessage": "A required input is missing. See more information in errorDetails.",
"errorDetails": {
"param": "catName",
"expected": {
"type": "cat"
}
},
"moreInfo": "https://wiki.example.org/api/missing_input-catName"
}
When the application's database returns an unexpected error:
500 Internal Server Error
Content-Type: "application/json"
{
"errorCode": "database_error",
"errorMessage": "The database encountered an unexpected error and the request could not be completed.",
"moreInfo": "https://wiki.example.org/api/database_error"
}
When your application is provided as a SaaS offering, you should also append a unique identifier to every error code to simplify your error investigation. With sufficient logging, this unique ID will allow you to find specific customer issues in a matter of seconds.
Providing a unique identifier:
500 Internal Server Error
Content-Type: "application/json"
{
"errorCode": "service_timeout",
"errorMessage": "A service did not respond to the request in time. See more information in errorDetails.",
"errorDetails": {
"service": "cart-service",
"timeout": 25000,
"payload": {
"sku": "YmFuYW5h",
"qty": 2
}
},
"moreInfo": "https://wiki.example.org/api/service_timeout",
"requestId": "ZG9uJ3QgZGVjb2RlIHRoaXM"
}
The source is available for download from GitHub. Alternatively, you can install using npm:
npm install --save http-error
You can then require()
http-error:
const { HTTPError, errorHandler } = require('http-error');
TODO
TODO