Changing response code on request param validation failure with Swagger 2.0

Question

I'm using Apigee 127 on top of swagger to create a REST API.

This is the head of the configuration file swagger.yaml:

swagger: 2.0
info:
  version: "0.0.1"
  title: LMS API Gateway
# during dev, should point to your local machine
host: localhost
# basePath prefixes all resource paths 
basePath: /
# 
schemes:
  # tip: remove http to make production-grade
  - http
  - https
# format of bodies a client can send (Content-Type)
consumes:
  - application/json
# format of the responses to the client (Accepts)
produces:
  - application/json
x-a127-config: {}
x-volos-resources: {}
paths:
  /lms/oauth2/token:
    # binds a127 app logic to a route
    x-swagger-router-controller: authentication
    x-volos-authorizations: {}
    x-volos-apply: {}
    post:
      description: Authenticates a user
      operationId: authenticate
      parameters:
        - name: body
          in: body
          description: The JSON request body
          required: true
          schema: 
            $ref: AuthenticationRequest
      responses:
        "200":
          description: Success
          schema:
            $ref: AuthenticationResponseSuccess
        default:
          description: Error
          schema:
            $ref: AuthenticationResponseError

Then I have this AuthenticationRequest Schema Object that describes how the request body for authentication should be. So far so good.

When I make a valid request, It's working fine, but when I make an invalid one, I get the following response:

HTTP/1.1 500 Internal Server Error
X-Powered-By: Express
X-Content-Type-Options: nosniff
Content-Type: text/html; charset=utf-8
Content-Length: 60
Date: Mon, 06 Oct 2014 16:31:08 GMT
Connection: keep-alive

Parameter (body) is not a valid AuthenticationRequest model

There would be no problem with that if my API spec did not specify that I MUST return a 400 Bad Request response code for an invalid request (which by the way makes more sense).

So the problem is that I couldn't find a way to change this behaviour in Swagger docs.

Anyone?

score 2 · Accepted Answer · answered Oct 06 '14 at 20:38

2

It's working as designed right now. The way swagger-validator works is it will just pass the error down to the next middleware, in which case if there is no middleware to handle this you get a 500. (See swagger-validator.js#L119) The reason it happens this way is to allow the application author to intercept this if need be. This was done on purpose but I can see how someone might want to have the middleware send the response but doing that properly could be a pain when it comes to content types (JSON vs. XML vs. HTML vs. ..) and structure (What is the valid structure of an error?).

To get things working like you want, you need to add an error handler middleware that will format the response, and its status code, appropriately. Depending on your server (connect, express, etc.) how you do this might change a little.

If you feel swagger-tools should provide facilities for this, feel free to file an issue with as much information as you can with regard to how you want this to work.

answered Oct 06 '14 at 20:38

Jeremy Whitlock

3,808
26
16

1

Thank's, I've opened an issue on swagger-tools. – Henrique Barcelos Oct 09 '14 at 16:55
2

Thanks Henrique. I'm posting the link to the issue here for posterity: https://github.com/apigee-127/swagger-tools/issues/37 – Jeremy Whitlock Oct 09 '14 at 16:59
1

This has been fixed in swagger-tools@0.6.0. For those of you wanting to know how this was fixed without breaking Node.js middleware protocol, view the issue linked to above. – Jeremy Whitlock Oct 09 '14 at 18:57
`swagger-tools@0.6.0` fixed the problem. Thank you, @Jeremy Withlock – Henrique Barcelos Oct 09 '14 at 20:13
You got it, glad I was able to help. – Jeremy Whitlock Oct 20 '14 at 23:07

Changing response code on request param validation failure with Swagger 2.0

1 Answers1