Akram Ben Aissi 31f85076ad feat: enhance AccessDeniedError with detailed context and improve exception handling ... • Enhanced AccessDeniedError class to include user, action, and resource context - Added constructor parameters for action, resource, and user - Generate detailed error messages showing user principal, attributes, and attempted resource - Backward compatible with existing usage (falls back to generic message) • Updated exception handling in server.py - Import AccessDeniedError from access_control module - Return proper 403 status codes with detailed error messages - Separate handling for PermissionError (generic) vs AccessDeniedError (detailed) • Enhanced error context at raise sites - Updated routing_tables/common.py to pass action, resource, and user context - Updated agents persistence to include context in access denied errors - Provides better debugging information for access control issues • Added comprehensive unit tests - Created tests/unit/server/test_server.py with 13 test cases - Covers AccessDeniedError with and without context - Tests all exception types (ValidationError, BadRequestError, AuthenticationRequiredError, etc.) - Validates proper HTTP status codes and error message formats Resolves access control error visibility issues where 500 errors were returned instead of proper 403 responses with actionable error messages. Signed-off-by: Akram Ben Aissi <<akram.benaissi@gmail.com>>		2025-07-03 15:36:55 +02:00
..
__init__.py	API Updates (#73)	2024-09-17 19:51:35 -07:00
auth.py	feat: fine grained access control policy (#2264)	2025-06-03 14:51:12 -07:00
auth_providers.py	feat: drop python 3.10 support (#2469)	2025-06-19 12:07:14 +05:30
quota.py	feat: drop python 3.10 support (#2469)	2025-06-19 12:07:14 +05:30
routes.py	chore: use starlette built-in Route class (#2267)	2025-05-28 09:53:33 -07:00
server.py	feat: enhance AccessDeniedError with detailed context and improve exception handling	2025-07-03 15:36:55 +02:00