Stuck on an issue?
Lightrun Answers was designed to reduce the constant googling that comes with debugging 3rd party libraries. It collects links to all the places you might be looking at while hunting down a tough bug.
And, if you’re still stuck at the end, we’re happy to hop on a call to see how we can help out.
Non-2xx HTTP response code emits a `DANGER` validation error
See original GitHub issueThe spec for the @http trait states that for the code:
The provided value SHOULD be between 100 and 599, and it MUST be between 100 and 999.
However, when providing a non-2xx value for code, such as 418 (why not?), the Smithy validation emits a DANGER message:
[DANGER] aws.protocoltests.misc#ResponseCodeRequiredOperation: Expected an `http` code in the 2xx range, but found 418 | HttpResponseCodeSemantics
Which is correct? The spec or the error?
Issue Analytics
- State:
- Created a year ago
- Comments:8 (4 by maintainers)
Top Results From Across the Web
Should I monitor for non-2xx network requests to identify issues?
TLDR: no, an http request with a non-2xx response does not necessarily indicate a problem. Our SDKs have mechanisms to notify you of...
Read more >Which status code should I use for failed validations or invalid ...
I recommend using 422 UNPROCESSABLE ENTITY for validation errors. ... It is wrong to mix HTTP status codes and REST status codes.
Read more >I've been abusing HTTP Status Codes in my APIs for years
In case of REST the main idea is that if you try to GET a resource by ID then you assume that the...
Read more >Voice Browser Call Control: CCXML Version 1.0 - W3C
The numeric HTTP status code (eg 404,500 etc) of the failed HTTP request. uri, true, string, The URI of the resource that was...
Read more >Webhooks - Socotra documentation
If the external service responds with a non-2xx HTTP response, or does not respond with 120 ... Specific 400 or 500 error codes...
Read more >
Top Related Medium Post
No results found
Top Related StackOverflow Question
No results found
Troubleshoot Live Code
Lightrun enables developers to add logs, metrics and snapshots to live code - no restarts or redeploys required.
Start Free
Top Related Reddit Thread
No results found
Top Related Hackernoon Post
No results found
Top Related Tweet
No results found
Top Related Dev.to Post
No results found
Top Related Hashnode Post
No results found
I’m curious about how the redirect-based SAML flow is typically documented with Smithy. For example as shown here:
https://en.wikipedia.org/wiki/SAML_2.0#/media/File:Saml2-browser-sso-redirect-post.png
Let’s say a service has a /login endpoint that uses SAML with an an external identity provider. The service provider, or application that the user is interacting with, will redirect the user several times to the identity provider, and also maintain an endpoint to handle call backs from the identity provider.
Are there examples of using the auth trait to abstract over this?
We don’t have documentation specifically for that. I would not try to model those redirects in a Smithy model. They aren’t something your users call directly or should have to contend with. It’s something generated clients should handle on their behalf. It would be an implementation detail of a hypothetical SAML SSO redirect auth trait.
Putting the developer experience aside – you could try to model these things if you wanted to, you just need to suppress the validation. It’s not a blocker, but a nudge. If someone were trying to model SAML or something directly, and they had to stop and think about whether they should because of the validation, then I think the validator is working as intended.