Merge: Dev to Qa (25/04/2024) #1195
Merged
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
![github-advanced-security[bot]](https://avatars.githubusercontent.com/in/57789?s=60&v=4){kind=small}
| .status(error.statusCode || HttpStatus.INTERNAL_SERVER_ERROR) | ||
| .header('Content-Type', 'application/json') | ||
| .header('Content-Disposition', '') | ||
| .send(error); |
Check warning
Code scanning / CodeQL
Information exposure through a stack trace Medium
Show autofix suggestion
Hide autofix suggestion
Copilot Autofix
AI 15 days ago
To fix the issue, we need to ensure that sensitive information, such as stack traces or internal error details, is not exposed to the client. Instead, we should log the full error details on the server for debugging purposes and send a generic error message to the client. This can be achieved by:
- Logging the full error details (including the stack trace) using a logging mechanism such as
Logger.error. - Sending a generic error message to the client, such as "An internal server error occurred."
The changes will be made in the catch block of the downloadBulkIssuanceCSVTemplate method, specifically replacing the res.send(error) call with logging and a generic response.
Suggested changeset
1
apps/api-gateway/src/issuance/issuance.controller.ts
| @@ -292,2 +292,3 @@ | ||
| } catch (error) { | ||
| Logger.error('Error occurred in downloadBulkIssuanceCSVTemplate', error.stack || error.message); | ||
| return res | ||
| @@ -296,3 +297,3 @@ | ||
| .header('Content-Disposition', '') | ||
| .send(error); | ||
| .send({ message: 'An internal server error occurred' }); | ||
| } |
Copilot is powered by AI and may make mistakes. Always verify output.
There was a problem hiding this comment.
@bhavanakarwade have a look at this, as we don't want to give the completed stack trace to user as an error message.
So instead of sending error we can log the error and send something went wrong. It's okay if we don't undertake it in this PR. Maybe we can create an issue for this.
bhavanakarwade
requested review from
ankita-p17,
shitrerohit,
RinkalBhojani,
GHkrishna and
tipusinghaw
and removed request for
shitrerohit
Signed-off-by: Sai Ranjit Tummalapalli <sairanjit.tummalapalli@ayanworks.com> Signed-off-by: Sahil Kamble <sahil.kamble@ayanworks.com>
Signed-off-by: bhavanakarwade <bhavana.karwade@ayanworks.com> Signed-off-by: Sahil Kamble <sahil.kamble@ayanworks.com>
* fix: added api param validations Signed-off-by: bhavanakarwade <bhavana.karwade@ayanworks.com> * fix: removed unnecessary validations Signed-off-by: bhavanakarwade <bhavana.karwade@ayanworks.com> * fix:resolved validations issue Signed-off-by: bhavanakarwade <bhavana.karwade@ayanworks.com> * added comment on function for understanding Signed-off-by: bhavanakarwade <bhavana.karwade@ayanworks.com> * fix: resolve orgid validations Signed-off-by: bhavanakarwade <bhavana.karwade@ayanworks.com> * fix: added response message Signed-off-by: bhavanakarwade <bhavana.karwade@ayanworks.com> * fix: added space in response messages Signed-off-by: bhavanakarwade <bhavana.karwade@ayanworks.com> --------- Signed-off-by: bhavanakarwade <bhavana.karwade@ayanworks.com> Signed-off-by: Sahil Kamble <sahil.kamble@ayanworks.com>
Signed-off-by: pallavighule <pallavi.ghule@ayanworks.com> Signed-off-by: Sahil Kamble <sahil.kamble@ayanworks.com>
* fix: removed prisma commands in build stage Signed-off-by: sahil.kamble@ayanworks.com <sahil.kamble@ayanworks.com> * feat: create yml file for all services Signed-off-by: sahil.kamble@ayanworks.com <sahil.kamble@ayanworks.com> * Updated Dockerfiles Signed-off-by: sahil.kamble@ayanworks.com <sahil.kamble@ayanworks.com> * Updated yml to push docker images Signed-off-by: sahil.kamble@ayanworks.com <sahil.kamble@ayanworks.com> * updated yml files Signed-off-by: sahil.kamble@ayanworks.com <sahil.kamble@ayanworks.com> --------- Signed-off-by: sahil.kamble@ayanworks.com <sahil.kamble@ayanworks.com> Signed-off-by: Sahil Kamble <sahil.kamble@ayanworks.com>
* fix: used single yml file using matrix instead of multiple files Signed-off-by: sahil.kamble@ayanworks.com <sahil.kamble@ayanworks.com> * fix: renamed yml file to cicd.yml Signed-off-by: sahil.kamble@ayanworks.com <sahil.kamble@ayanworks.com> * fix: renamed yml file Signed-off-by: sahil.kamble@ayanworks.com <sahil.kamble@ayanworks.com> * fix: renamed yml file Signed-off-by: sahil.kamble@ayanworks.com <sahil.kamble@ayanworks.com> * chore: removed id-token and attestations Signed-off-by: sahil.kamble@ayanworks.com <sahil.kamble@ayanworks.com> --------- Signed-off-by: sahil.kamble@ayanworks.com <sahil.kamble@ayanworks.com> Signed-off-by: Sahil Kamble <sahil.kamble@ayanworks.com>
* chore: add aws into monorepo Signed-off-by: Sai Ranjit Tummalapalli <sairanjit.tummalapalli@ayanworks.com> * chore: update tsconfig Signed-off-by: Sai Ranjit Tummalapalli <sairanjit.tummalapalli@ayanworks.com> * refactor:tsconfig.build.json file Signed-off-by: Tipu_Singh <tipu.singh@ayanworks.com> * refactor: remove redundant .nvmrc file Signed-off-by: Sai Ranjit Tummalapalli <sairanjit.tummalapalli@ayanworks.com> --------- Signed-off-by: Sai Ranjit Tummalapalli <sairanjit.tummalapalli@ayanworks.com> Signed-off-by: Tipu_Singh <tipu.singh@ayanworks.com> Co-authored-by: Tipu_Singh <tipu.singh@ayanworks.com> Signed-off-by: Sahil Kamble <sahil.kamble@ayanworks.com>
Signed-off-by: Sahil Kamble <sahil.kamble@ayanworks.com>
Signed-off-by: Sai Ranjit Tummalapalli <sairanjit.tummalapalli@ayanworks.com> Signed-off-by: Sahil Kamble <sahil.kamble@ayanworks.com>
* refactor: merge nats-interceptor into common Signed-off-by: Sai Ranjit Tummalapalli <sairanjit.tummalapalli@ayanworks.com> * refactor: merge repsonses lib into common Signed-off-by: Sai Ranjit Tummalapalli <sairanjit.tummalapalli@ayanworks.com> * refactor: create common function to handle errors Signed-off-by: Sai Ranjit Tummalapalli <sairanjit.tummalapalli@ayanworks.com> * chore: add todo Signed-off-by: Sai Ranjit Tummalapalli <sairanjit.tummalapalli@ayanworks.com> * fix: remove missed image service Signed-off-by: Sai Ranjit Tummalapalli <sairanjit.tummalapalli@ayanworks.com> * fix: create separate function to handle common error Signed-off-by: Sai Ranjit Tummalapalli <sairanjit.tummalapalli@ayanworks.com> * chore: add comment for the purpose of the functions Signed-off-by: Sai Ranjit Tummalapalli <sairanjit.tummalapalli@ayanworks.com> * chore: update function comments Signed-off-by: Sai Ranjit Tummalapalli <sairanjit.tummalapalli@ayanworks.com> --------- Signed-off-by: Sai Ranjit Tummalapalli <sairanjit.tummalapalli@ayanworks.com> Signed-off-by: Sahil Kamble <sahil.kamble@ayanworks.com>
* refactor: merge nats-interceptor into common Signed-off-by: Sai Ranjit Tummalapalli <sairanjit.tummalapalli@ayanworks.com> * refactor: merge repsonses lib into common Signed-off-by: Sai Ranjit Tummalapalli <sairanjit.tummalapalli@ayanworks.com> * refactor: create common function to handle errors Signed-off-by: Sai Ranjit Tummalapalli <sairanjit.tummalapalli@ayanworks.com> * chore: add todo Signed-off-by: Sai Ranjit Tummalapalli <sairanjit.tummalapalli@ayanworks.com> * refactor: create common package in libs Signed-off-by: Sai Ranjit Tummalapalli <sairanjit.tummalapalli@ayanworks.com> * fix: remove missed image service Signed-off-by: Sai Ranjit Tummalapalli <sairanjit.tummalapalli@ayanworks.com> * refactor: common service Signed-off-by: Sai Ranjit Tummalapalli <sairanjit.tummalapalli@ayanworks.com> --------- Signed-off-by: Sai Ranjit Tummalapalli <sairanjit.tummalapalli@ayanworks.com> Signed-off-by: Sahil Kamble <sahil.kamble@ayanworks.com>
* wip: support nested attributes while creating schema Signed-off-by: bhavanakarwade <bhavana.karwade@ayanworks.com> * wip: aligned issuance functionality with nested attributes structure Signed-off-by: bhavanakarwade <bhavana.karwade@ayanworks.com> * refactor: modify csv to json function Signed-off-by: bhavanakarwade <bhavana.karwade@ayanworks.com> * fix: formatting changes Signed-off-by: bhavanakarwade <bhavana.karwade@ayanworks.com> * fix: resolved sonar cloud issue Signed-off-by: bhavanakarwade <bhavana.karwade@ayanworks.com> * fix: security hotspot issue Signed-off-by: bhavanakarwade <bhavana.karwade@ayanworks.com> * feat: added schema builder function Signed-off-by: bhavanakarwade <bhavana.karwade@ayanworks.com> * fix: resolved issue Signed-off-by: bhavanakarwade <bhavana.karwade@ayanworks.com> * refactor: modify extract attributes function Signed-off-by: bhavanakarwade <bhavana.karwade@ayanworks.com> * fix: destructured objects Signed-off-by: bhavanakarwade <bhavana.karwade@ayanworks.com> * feat: added description property Signed-off-by: bhavanakarwade <bhavana.karwade@ayanworks.com> --------- Signed-off-by: bhavanakarwade <bhavana.karwade@ayanworks.com> Signed-off-by: Sahil Kamble <sahil.kamble@ayanworks.com>
* wip: support nested attributes while creating schema Signed-off-by: bhavanakarwade <bhavana.karwade@ayanworks.com> * wip: aligned issuance functionality with nested attributes structure Signed-off-by: bhavanakarwade <bhavana.karwade@ayanworks.com> * refactor: modify csv to json function Signed-off-by: bhavanakarwade <bhavana.karwade@ayanworks.com> * fix: formatting changes Signed-off-by: bhavanakarwade <bhavana.karwade@ayanworks.com> * fix: resolved sonar cloud issue Signed-off-by: bhavanakarwade <bhavana.karwade@ayanworks.com> * fix: security hotspot issue Signed-off-by: bhavanakarwade <bhavana.karwade@ayanworks.com> * feat: added schema builder function Signed-off-by: bhavanakarwade <bhavana.karwade@ayanworks.com> * fix: resolved issue Signed-off-by: bhavanakarwade <bhavana.karwade@ayanworks.com> * refactor: modify extract attributes function Signed-off-by: bhavanakarwade <bhavana.karwade@ayanworks.com> * fix: destructured objects Signed-off-by: bhavanakarwade <bhavana.karwade@ayanworks.com> * feat: added description property Signed-off-by: bhavanakarwade <bhavana.karwade@ayanworks.com> * fix: added validations for schema type Signed-off-by: bhavanakarwade <bhavana.karwade@ayanworks.com> * formatted enum file Signed-off-by: bhavanakarwade <bhavana.karwade@ayanworks.com> * chore: added enum for indy schema data type Signed-off-by: bhavanakarwade <bhavana.karwade@ayanworks.com> --------- Signed-off-by: bhavanakarwade <bhavana.karwade@ayanworks.com> Signed-off-by: Sahil Kamble <sahil.kamble@ayanworks.com>
…te and city (#1180) * refactor: update organization API to support updation of country, state and city Signed-off-by: pranalidhanavade <pranali.dhanavade@ayanworks.com> * resolved sonarlint issues Signed-off-by: pranalidhanavade <pranali.dhanavade@ayanworks.com> * resolved sonarlint issues Signed-off-by: pranalidhanavade <pranali.dhanavade@ayanworks.com> --------- Signed-off-by: pranalidhanavade <pranali.dhanavade@ayanworks.com> Signed-off-by: Sahil Kamble <sahil.kamble@ayanworks.com>
* wip: support nested attributes while creating schema Signed-off-by: bhavanakarwade <bhavana.karwade@ayanworks.com> * wip: aligned issuance functionality with nested attributes structure Signed-off-by: bhavanakarwade <bhavana.karwade@ayanworks.com> * refactor: modify csv to json function Signed-off-by: bhavanakarwade <bhavana.karwade@ayanworks.com> * fix: formatting changes Signed-off-by: bhavanakarwade <bhavana.karwade@ayanworks.com> * fix: resolved sonar cloud issue Signed-off-by: bhavanakarwade <bhavana.karwade@ayanworks.com> * fix: security hotspot issue Signed-off-by: bhavanakarwade <bhavana.karwade@ayanworks.com> * feat: added schema builder function Signed-off-by: bhavanakarwade <bhavana.karwade@ayanworks.com> * fix: resolved issue Signed-off-by: bhavanakarwade <bhavana.karwade@ayanworks.com> * refactor: modify extract attributes function Signed-off-by: bhavanakarwade <bhavana.karwade@ayanworks.com> * fix: destructured objects Signed-off-by: bhavanakarwade <bhavana.karwade@ayanworks.com> * feat: added description property Signed-off-by: bhavanakarwade <bhavana.karwade@ayanworks.com> * fix: added validations for schema type Signed-off-by: bhavanakarwade <bhavana.karwade@ayanworks.com> * formatted enum file Signed-off-by: bhavanakarwade <bhavana.karwade@ayanworks.com> * chore: added enum for indy schema data type Signed-off-by: bhavanakarwade <bhavana.karwade@ayanworks.com> * chore: refactor validations Signed-off-by: bhavanakarwade <bhavana.karwade@ayanworks.com> --------- Signed-off-by: bhavanakarwade <bhavana.karwade@ayanworks.com> Signed-off-by: Sahil Kamble <sahil.kamble@ayanworks.com>
Signed-off-by: bhavanakarwade <bhavana.karwade@ayanworks.com> Signed-off-by: Sahil Kamble <sahil.kamble@ayanworks.com>
* Update start_agent.sh Signed-off-by: Krishna Waske <krishna.waske@ayanworks.com> * Update .env.demo fix: correct script for local build Signed-off-by: Krishna Waske <krishna.waske@ayanworks.com> --------- Signed-off-by: Krishna Waske <krishna.waske@ayanworks.com> Signed-off-by: Sahil Kamble <sahil.kamble@ayanworks.com>
* fix: issues related nested attributes in issuance process Signed-off-by: bhavanakarwade <bhavana.karwade@ayanworks.com> * fix: added statuscode Signed-off-by: bhavanakarwade <bhavana.karwade@ayanworks.com> * fix: required field validation for request id field Signed-off-by: bhavanakarwade <bhavana.karwade@ayanworks.com> --------- Signed-off-by: bhavanakarwade <bhavana.karwade@ayanworks.com> Signed-off-by: Sahil Kamble <sahil.kamble@ayanworks.com>
GHkrishna
approved these changes
Apr 25, 2025
RinkalBhojani
approved these changes
Apr 25, 2025
shitrerohit
approved these changes
Apr 25, 2025
Signed-off-by: Sahil Kamble <sahil.kamble@ayanworks.com>
|
ankita-p17
approved these changes
Apr 25, 2025
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
What?