fix(): application/json content type for error responses

Author: fredmaggiowski

CHANGELOG.md

@@ -11,6 +11,10 @@ and this project adheres to [Semantic Versioning](http://semver.org/spec/v2.0.0.
 
 - [JAF-278](https://makeitapp.atlassian.net/browse/JAF-278): optimized query evaluation with precomputed evaluators
 
+### Fixed
+
+- provide `application/json` Content-Type header when sending error responses
+
 ## 0.5.0 - 07/02/2022
 
 ### Added

LICENSE

@@ -186,7 +186,7 @@
       same "printed page" as the copyright notice for easier
       identification within third-party archives.
 
-   Copyright [2021] [Mia-Platform]
+   Copyright 2021 Mia-Platform
 
    Licensed under the Apache License, Version 2.0 (the "License");
    you may not use this file except in compliance with the License.

handler.go

@@ -88,6 +88,7 @@ func EvaluateRequest(req *http.Request, env config.EnvironmentVariables, w http.
 	if err != nil {
 		if errors.Is(err, opatranslator.ErrEmptyQuery) && hasApplicationJSONContentType(req.Header) {
 			w.WriteHeader(http.StatusOK)
+			w.Header().Set(ContentTypeHeaderKey, JSONContentTypeHeader)
 			w.Write([]byte("[]"))
 			return err
 		}

handler_test.go

@@ -164,7 +164,7 @@ func TestDirectProxyHandler(t *testing.T) {
 
 		r, err := http.NewRequestWithContext(ctx, "GET", "http://www.example.com:8080/api", body)
 		assert.Equal(t, err, nil, "Unexpected error")
-		r.Header.Set("Content-Type", "text/plain")
+		r.Header.Set(ContentTypeHeaderKey, "text/plain")
 		w := httptest.NewRecorder()
 
 		rbacHandler(w, r)
@@ -211,7 +211,7 @@ func TestDirectProxyHandler(t *testing.T) {
 		)
 
 		r, err := http.NewRequestWithContext(ctx, http.MethodPost, "http://www.example.com:8080/api", body)
-		r.Header.Set("content-type", "application/json")
+		r.Header.Set(ContentTypeHeaderKey, "application/json")
 		assert.Equal(t, err, nil, "Unexpected error")
 		w := httptest.NewRecorder()
 
@@ -294,7 +294,7 @@ allow {
 		assert.Equal(t, err, nil, "Unexpected error")
 		r.Header.Set("miauserproperties", `{"name":"gianni"}`)
 		r.Header.Set("examplekey", "value")
-		r.Header.Set("Content-Type", "text/plain")
+		r.Header.Set(ContentTypeHeaderKey, "text/plain")
 		w := httptest.NewRecorder()
 
 		rbacHandler(w, r)
@@ -372,7 +372,7 @@ allow {
 		assert.Equal(t, err, nil, "Unexpected error")
 		r.Header.Set("miauserproperties", `{"name":"gianni"}`)
 		r.Header.Set("examplekey", "value")
-		r.Header.Set("Content-Type", "text/plain")
+		r.Header.Set(ContentTypeHeaderKey, "text/plain")
 		w := httptest.NewRecorder()
 
 		rbacHandler(w, r)
@@ -427,12 +427,13 @@ allow {
 
 		r, err := http.NewRequestWithContext(ctx, "GET", "http://www.example.com:8080/api", body)
 		assert.Equal(t, err, nil, "Unexpected error")
-		r.Header.Set("Content-Type", "application/json")
+		r.Header.Set(ContentTypeHeaderKey, "application/json")
 		w := httptest.NewRecorder()
 
 		rbacHandler(w, r)
 
 		assert.Equal(t, w.Code, http.StatusOK, "Unexpected status code.")
+		assert.Equal(t, w.Header().Get(ContentTypeHeaderKey), JSONContentTypeHeader, "Unexpected content type header")
 		buf, err := ioutil.ReadAll(w.Body)
 		assert.Equal(t, err, nil, "Unexpected error to read body response")
 		assert.Equal(t, string(buf), "[]", "Unexpected body response")
@@ -482,7 +483,7 @@ allow {
 
 		r, err := http.NewRequestWithContext(ctx, "GET", "http://www.example.com:8080/api", body)
 		assert.Equal(t, err, nil, "Unexpected error")
-		r.Header.Set("Content-Type", "text/plain")
+		r.Header.Set(ContentTypeHeaderKey, "text/plain")
 		w := httptest.NewRecorder()
 
 		rbacHandler(w, r)
@@ -561,7 +562,7 @@ allow {
 		assert.Equal(t, err, nil, "Unexpected error")
 		r.Header.Set("miauserproperties", `{"name":"gianni"}`)
 		r.Header.Set("examplekey", "value")
-		r.Header.Set("Content-Type", "text/plain")
+		r.Header.Set(ContentTypeHeaderKey, "text/plain")
 		w := httptest.NewRecorder()
 
 		rbacHandler(w, r)

main_test.go

@@ -571,7 +571,7 @@ func TestEntryPoint(t *testing.T) {
 			req, err := http.NewRequest("GET", "http://localhost:3003/users/", nil)
 			req.Header.Set("miauserid", "user1")
 			req.Header.Set("miausergroups", "user1,user2")
-			req.Header.Set("Content-type", "application/json")
+			req.Header.Set(ContentTypeHeaderKey, "application/json")
 			client := &http.Client{}
 			resp, err := client.Do(req)
 			require.Equal(t, "user1", resp.Header.Get("someuserheader"))
@@ -615,7 +615,7 @@ func TestEntryPoint(t *testing.T) {
 			req, err := http.NewRequest("GET", "http://localhost:3003/with-mongo-find-one/some-project", nil)
 			req.Header.Set("miauserid", "user1")
 			req.Header.Set("miausergroups", "user1,user2")
-			req.Header.Set("Content-type", "application/json")
+			req.Header.Set(ContentTypeHeaderKey, "application/json")
 			client := &http.Client{}
 			resp, err := client.Do(req)
 
@@ -650,7 +650,7 @@ func TestEntryPoint(t *testing.T) {
 			req, err := http.NewRequest("GET", "http://localhost:3003/with-mongo-find-many/some-project", nil)
 			req.Header.Set("miauserid", "user1")
 			req.Header.Set("miausergroups", "user1,user2")
-			req.Header.Set("Content-type", "application/json")
+			req.Header.Set(ContentTypeHeaderKey, "application/json")
 			client := &http.Client{}
 			resp, err := client.Do(req)
 

opa_transport.go

@@ -45,7 +45,7 @@ func (t *OPATransport) RoundTrip(req *http.Request) (resp *http.Response, err er
 	}
 
 	if !hasApplicationJSONContentType(resp.Header) {
-		t.logger.WithField("foundContentType", resp.Header.Get("content-type")).Debug("found content type")
+		t.logger.WithField("foundContentType", resp.Header.Get(ContentTypeHeaderKey)).Debug("found content type")
 		t.responseWithError(resp, fmt.Errorf("Content-type is not application/json"), http.StatusInternalServerError)
 		return resp, nil
 	}

opaevaluator_test.go

@@ -58,7 +58,7 @@ func TestCreateRegoInput(t *testing.T) {
 
 		t.Run("ignore nil body on method POST", func(t *testing.T) {
 			req := httptest.NewRequest(http.MethodPost, "/", nil)
-			req.Header.Set("Content-Type", "application/json")
+			req.Header.Set(ContentTypeHeaderKey, "application/json")
 
 			inputBytes, err := createRegoQueryInput(req, env, user, nil)
 			require.Nil(t, err, "Unexpected error")
@@ -70,7 +70,7 @@ func TestCreateRegoInput(t *testing.T) {
 
 			for _, method := range acceptedMethods {
 				req := httptest.NewRequest(method, "/", bytes.NewReader(reqBodyBytes))
-				req.Header.Set("Content-Type", "application/json")
+				req.Header.Set(ContentTypeHeaderKey, "application/json")
 				inputBytes, err := createRegoQueryInput(req, env, user, nil)
 				require.Nil(t, err, "Unexpected error")
 
@@ -80,7 +80,7 @@ func TestCreateRegoInput(t *testing.T) {
 
 		t.Run("added with content-type specifying charset", func(t *testing.T) {
 			req := httptest.NewRequest(http.MethodPost, "/", bytes.NewReader(reqBodyBytes))
-			req.Header.Set("Content-Type", "application/json;charset=UTF-8")
+			req.Header.Set(ContentTypeHeaderKey, "application/json;charset=UTF-8")
 			inputBytes, err := createRegoQueryInput(req, env, user, nil)
 			require.Nil(t, err, "Unexpected error")
 
@@ -89,14 +89,14 @@ func TestCreateRegoInput(t *testing.T) {
 
 		t.Run("reject on method POST but with invalid body", func(t *testing.T) {
 			req := httptest.NewRequest(http.MethodPost, "/", bytes.NewReader([]byte("{notajson}")))
-			req.Header.Set("Content-Type", "application/json")
+			req.Header.Set(ContentTypeHeaderKey, "application/json")
 			_, err := createRegoQueryInput(req, env, user, nil)
 			require.True(t, err != nil)
 		})
 
 		t.Run("ignore body on method POST but with another content type", func(t *testing.T) {
 			req := httptest.NewRequest(http.MethodPost, "/", bytes.NewReader([]byte("{notajson}")))
-			req.Header.Set("Content-Type", "multipart/form-data")
+			req.Header.Set(ContentTypeHeaderKey, "multipart/form-data")
 
 			inputBytes, err := createRegoQueryInput(req, env, user, nil)
 			require.Nil(t, err, "Unexpected error")

statusroutes.go

@@ -31,7 +31,7 @@ type StatusResponse struct {
 }
 
 func handleStatusRoutes(w http.ResponseWriter, serviceName, serviceVersion string) (*StatusResponse, []byte) {
-	w.Header().Add("Content-Type", "application/json")
+	w.Header().Add(ContentTypeHeaderKey, "application/json")
 	status := StatusResponse{
 		Status:  "OK",
 		Name:    serviceName,

utilities.go

@@ -8,10 +8,11 @@ import (
 	"git.tools.mia-platform.eu/platform/core/rbac-service/internal/types"
 )
 
+const ContentTypeHeaderKey = "content-type"
 const JSONContentTypeHeader = "application/json"
 
 func hasApplicationJSONContentType(headers http.Header) bool {
-	return strings.HasPrefix(headers.Get("content-type"), JSONContentTypeHeader)
+	return strings.HasPrefix(headers.Get(ContentTypeHeaderKey), JSONContentTypeHeader)
 }
 
 func failResponse(w http.ResponseWriter, technicalError, businessError string) {
@@ -28,6 +29,8 @@ func failResponseWithCode(w http.ResponseWriter, statusCode int, technicalError,
 	if err != nil {
 		return
 	}
+
+	w.Header().Set(ContentTypeHeaderKey, JSONContentTypeHeader)
 	w.Write(content)
 }
 

utilities_test.go

@@ -2,51 +2,75 @@ package main
 
 import (
 	"encoding/json"
+	"io/ioutil"
 	"net/http"
+	"net/http/httptest"
 	"testing"
 
+	"git.tools.mia-platform.eu/platform/core/rbac-service/internal/types"
+
 	"gotest.tools/v3/assert"
 )
 
-func TestUtilities(t *testing.T) {
-	t.Run("TestUnmarshalHeader", func(t *testing.T) {
-		userPropertiesHeaderKey := "miauserproperties"
-		mockedUserProperties := map[string]interface{}{
-			"my":  "other",
-			"key": []string{"is", "not"},
-		}
-		mockedUserPropertiesStringified, err := json.Marshal(mockedUserProperties)
-		assert.NilError(t, err)
-
-		t.Run("header not exists", func(t *testing.T) {
-			headers := http.Header{}
-			var userProperties map[string]interface{}
-
-			ok, err := unmarshalHeader(headers, userPropertiesHeaderKey, &userProperties)
-
-			assert.Assert(t, !ok, "Unmarshal not existing header")
-			assert.NilError(t, err, "Unexpected error if doesn't exist header")
-		})
-
-		t.Run("header exists but the unmarshalling fails", func(t *testing.T) {
-			headers := http.Header{}
-			headers.Set(userPropertiesHeaderKey, string(mockedUserPropertiesStringified))
-			var userProperties string
-
-			ok, err := unmarshalHeader(headers, userPropertiesHeaderKey, &userProperties)
-
-			assert.Assert(t, !ok, "Unexpected success during unmarshalling")
-			assert.ErrorType(t, err, &json.UnmarshalTypeError{}, "Unexpected error on unmarshalling")
-		})
-
-		t.Run("header exists and unmarshalling finishes correctly", func(t *testing.T) {
-			headers := http.Header{}
-			headers.Set(userPropertiesHeaderKey, string(mockedUserPropertiesStringified))
-			var userProperties map[string]interface{}
-
-			ok, err := unmarshalHeader(headers, userPropertiesHeaderKey, &userProperties)
-			assert.Assert(t, ok, "Unexpected failure")
-			assert.NilError(t, err, "Unexpected error")
-		})
+func TestUnmarshalHeader(t *testing.T) {
+	userPropertiesHeaderKey := "miauserproperties"
+	mockedUserProperties := map[string]interface{}{
+		"my":  "other",
+		"key": []string{"is", "not"},
+	}
+	mockedUserPropertiesStringified, err := json.Marshal(mockedUserProperties)
+	assert.NilError(t, err)
+
+	t.Run("header not exists", func(t *testing.T) {
+		headers := http.Header{}
+		var userProperties map[string]interface{}
+
+		ok, err := unmarshalHeader(headers, userPropertiesHeaderKey, &userProperties)
+
+		assert.Assert(t, !ok, "Unmarshal not existing header")
+		assert.NilError(t, err, "Unexpected error if doesn't exist header")
+	})
+
+	t.Run("header exists but the unmarshalling fails", func(t *testing.T) {
+		headers := http.Header{}
+		headers.Set(userPropertiesHeaderKey, string(mockedUserPropertiesStringified))
+		var userProperties string
+
+		ok, err := unmarshalHeader(headers, userPropertiesHeaderKey, &userProperties)
+
+		assert.Assert(t, !ok, "Unexpected success during unmarshalling")
+		assert.ErrorType(t, err, &json.UnmarshalTypeError{}, "Unexpected error on unmarshalling")
+	})
+
+	t.Run("header exists and unmarshalling finishes correctly", func(t *testing.T) {
+		headers := http.Header{}
+		headers.Set(userPropertiesHeaderKey, string(mockedUserPropertiesStringified))
+		var userProperties map[string]interface{}
+
+		ok, err := unmarshalHeader(headers, userPropertiesHeaderKey, &userProperties)
+		assert.Assert(t, ok, "Unexpected failure")
+		assert.NilError(t, err, "Unexpected error")
+	})
+}
+
+func TestFailResponseWithCode(t *testing.T) {
+	w := httptest.NewRecorder()
+
+	failResponseWithCode(w, http.StatusInternalServerError, "The Error", "The Message")
+	assert.Equal(t, w.Code, http.StatusInternalServerError)
+
+	assert.Equal(t, w.Header().Get(ContentTypeHeaderKey), "application/json")
+
+	bodyBytes, err := ioutil.ReadAll(w.Body)
+	assert.NilError(t, err)
+
+	var response types.RequestError
+	err = json.Unmarshal(bodyBytes, &response)
+	assert.NilError(t, err)
+
+	assert.DeepEqual(t, response, types.RequestError{
+		StatusCode: http.StatusInternalServerError,
+		Error:      "The Error",
+		Message:    "The Message",
 	})
 }