Skip to content

added invalid request on invalid payload deserialization #310

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
ammokhov merged 3 commits into from
Sep 16, 2020
Merged

added invalid request on invalid payload deserialization #310

ammokhov merged 3 commits into from
Sep 16, 2020

Conversation

@ammokhov
Copy link
Contributor

@ammokhov ammokhov commented Sep 15, 2020

Issue #, if available:

Description of changes:

Currently, when we hit MismatchedInputException on payload deserialization we get InternalFailure, which is not surfacing real issue to the customer; Alternatively we could put model validation upfront but then we will have strict validation on stringification; this is a good alternative as customers can see that the input is actually invalid

By submitting this pull request, I confirm that my contribution is made under the terms of the Apache 2.0 license.

sungkkim
sungkkim reviewed Sep 15, 2020
View reviewed changes
wbingli
wbingli reviewed Sep 15, 2020
View reviewed changes
...st/java/software/amazon/cloudformation/data/create.request.with-extraneous-model-object.json Outdated
"resourceProperties": {
"property1": "abc",
"property2": 123,
"fieldCausesValidationError": {
Copy link

@wbingli wbingli Sep 15, 2020

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

So the deserialization will fail if nested properties? But how the validation can successful? There is additionalProperties: false for the schema, so additional property should fail on validation.

@ammokhov ammokhov force-pushed the invalid-nested-request branch from e71b145 to 330f0c4 Compare September 16, 2020 07:20
@ammokhov ammokhov force-pushed the invalid-nested-request branch from 330f0c4 to 12435c5 Compare September 16, 2020 07:22
wbingli
wbingli approved these changes Sep 16, 2020
View reviewed changes
Copy link

@wbingli wbingli left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM. Better to update the error message as it will be customer visible.

src/main/java/software/amazon/cloudformation/LambdaWrapper.java Outdated
this.validator.validateObject(rawModelObject, resourceSchemaJSONObject);

handlerResponse = ProgressEvent.defaultFailureHandler(
new CfnInvalidRequestException("Model validation failed caused by invalid input provided", e),
Copy link

@wbingli wbingli Sep 16, 2020

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This message will be customer visible. Maybe better wording as "Resource properties validation failed with invalid configuration".

src/test/resources/software/amazon/cloudformation/wrapper-override.json
"definitions": {
"subProperty": {
"type": "object",
"properties": {
Copy link

@wbingli wbingli Sep 16, 2020

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

All right, I think the whole problem is that the schema doesn't define "additionalProperties": false for the nest property. In such way, the deserialization to POJO fails due to this mismatch. However, validation pass as "additionalProperties": false is missing and validation will skip this additional properties.

The resource should fix the schema in such cases. But of course, this fix is still valuable.

@ammokhov ammokhov merged commit 81b08b6 into aws-cloudformation:master Sep 16, 2020
@ammokhov ammokhov deleted the invalid-nested-request branch September 16, 2020 17:19
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

2 more reviewers

@wbingli wbingli wbingli approved these changes

@sungkkim sungkkim sungkkim approved these changes

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@ammokhov @wbingli @sungkkim