Error UX: friendly 403/404/429 messages + stable exit codes per failure class #134

New issue

Closed

opened 2026-06-11 00:57:41 +00:00 by stephen · 0 comments

stephen commented 2026-06-11 00:57:41 +00:00

Owner

Copy link

Task

Make failure reporting scriptable on two axes: stop leaking the internal /api/v1 URL, and give failure classes stable exit codes.

• Give 403/404/429 the same .context(...) treatment 401 already gets in ensure_success (src/client/mod.rs:573): a short human sentence ("not found: /", "forbidden: token lacks scope / no access", "rate limited, retry after N s"), keeping the raw ApiError (with the URL) as the caused by: source line main.rs:56-60 already prints, so --debug detail survives without leading with /api/v1/.
• Map error classes to stable exit codes in run_cli (src/main.rs:54-62): downcast anyhow::Error to ApiError and return distinct codes (e.g. 3 not-found, 4 auth/forbidden, 5 rate-limit/transient), keeping 1 as the generic fallback. Document them once.
• Prefer echoing what the user typed (owner/name, #number) over the resolved URL in the headline.

Source: rasterstate/fj#123.

Priority

p1. Distinct exit codes are the foundation of every "view the PR; if it doesn't exist, create it" agent pattern. Without them a script must capture stderr and string-match 404/couldn't be found, brittle across locales and server wording. There is no fallback that recovers a reliable failure-kind signal, which is what makes this a blocker rather than an ergonomics gap.

Reason

ensure_success forks on exactly one status: 401 gets a friendly hint, every other non-2xx is a raw ApiError dump whose Display is HTTP {status} from {url}: {message} with url the raw REST endpoint (src/client/error.rs:6-13). So a typo'd repo surfaces HTTP 404 Not Found from https://.../api/v1/repos/..., leaking plumbing the CLI otherwise hides and reading as "fj broke." Separately, main.rs maps any Err to ExitCode::from(1) (:54-62), so not-found, auth, rate-limit, and transport failures are indistinguishable. The existing 401 branch proves the maintainers already value a friendly hint; 404/403/429 just never got the same treatment.

Acceptance

• 403/404/429 produce a short human headline; the raw ApiError (URL included) survives as the caused by: source line under --debug.
• Stable, documented exit codes for not-found / auth-forbidden / rate-limit-transient, with 1 as the generic fallback; clap usage errors keep clap's code.
• User-addressable failures echo the typed owner/name / #number, not the resolved /api/v1 URL.
• Wiremock coverage in src/client/integration_tests.rs asserting headline text and exit-code class per status.
• Exit-code contract documented (e.g. in docs/), so scripts can rely on it.
• cargo fmt --check, cargo clippy --all-targets --all-features -- -D warnings, and cargo test --all pass.

Dependencies

None. Distinct from rasterstate/fj#125, which is about a successful command observing a failed run (this is about failed API calls). Touches the single ensure_success / main.rs error path; no parallel code path.

Size

M

## Task Make failure reporting scriptable on two axes: stop leaking the internal `/api/v1` URL, and give failure classes stable exit codes. - Give 403/404/429 the same `.context(...)` treatment 401 already gets in `ensure_success` (`src/client/mod.rs:573`): a short human sentence ("not found: <owner>/<name>", "forbidden: token lacks scope / no access", "rate limited, retry after N s"), keeping the raw `ApiError` (with the URL) as the `caused by:` source line `main.rs:56-60` already prints, so `--debug` detail survives without leading with `/api/v1/`. - Map error classes to stable exit codes in `run_cli` (`src/main.rs:54-62`): downcast `anyhow::Error` to `ApiError` and return distinct codes (e.g. 3 not-found, 4 auth/forbidden, 5 rate-limit/transient), keeping `1` as the generic fallback. Document them once. - Prefer echoing what the user typed (`owner/name`, `#number`) over the resolved URL in the headline. Source: rasterstate/fj#123. ## Priority p1. Distinct exit codes are the foundation of every "view the PR; if it doesn't exist, create it" agent pattern. Without them a script must capture stderr and string-match `404`/`couldn't be found`, brittle across locales and server wording. There is no fallback that recovers a reliable failure-kind signal, which is what makes this a blocker rather than an ergonomics gap. ## Reason `ensure_success` forks on exactly one status: `401` gets a friendly hint, every other non-2xx is a raw `ApiError` dump whose `Display` is `HTTP {status} from {url}: {message}` with `url` the raw REST endpoint (`src/client/error.rs:6-13`). So a typo'd repo surfaces `HTTP 404 Not Found from https://.../api/v1/repos/...`, leaking plumbing the CLI otherwise hides and reading as "fj broke." Separately, `main.rs` maps any `Err` to `ExitCode::from(1)` (`:54-62`), so not-found, auth, rate-limit, and transport failures are indistinguishable. The existing 401 branch proves the maintainers already value a friendly hint; 404/403/429 just never got the same treatment. ## Acceptance - [ ] 403/404/429 produce a short human headline; the raw `ApiError` (URL included) survives as the `caused by:` source line under `--debug`. - [ ] Stable, documented exit codes for not-found / auth-forbidden / rate-limit-transient, with `1` as the generic fallback; clap usage errors keep clap's code. - [ ] User-addressable failures echo the typed `owner/name` / `#number`, not the resolved `/api/v1` URL. - [ ] Wiremock coverage in `src/client/integration_tests.rs` asserting headline text and exit-code class per status. - [ ] Exit-code contract documented (e.g. in `docs/`), so scripts can rely on it. - [ ] `cargo fmt --check`, `cargo clippy --all-targets --all-features -- -D warnings`, and `cargo test --all` pass. ## Dependencies None. Distinct from rasterstate/fj#125, which is about a successful command observing a failed run (this is about failed API calls). Touches the single `ensure_success` / `main.rs` error path; no parallel code path. ## Size M

stephen added the

backlog

p1

labels 2026-06-11 00:58:25 +00:00

stephen referenced this issue 2026-06-11 00:58:37 +00:00

4xx errors leak the raw /api/v1 URL and every failure exits 1, so scripts cannot branch on failure kind #123

stephen referenced this issue from a pull request that will close it, 2026-06-11 01:09:42 +00:00

Improve API error UX and exit codes #142

stephen closed this issue 2026-06-11 01:35:55 +00:00

Sign in to join this conversation.

No Branch/Tag specified

Branches Tags

main

wip/claude-1/rasterstate-fj

feat/166-lock-unlock

wip/codex-4/rasterstate-fj

feat/168-rerun-failed

feat/169-repo-collaborator

feat/172-create-template

feat/164-pr-merge-auto

wip/claude-2/rasterstate-fj

feat/170-list-filters

feat/171-color-control

feat/165-pr-create-fill

feat/165-pr-create-fill-codex

wip/claude-3/rasterstate-fj

wip/codex-2/rasterstate-fj

fix/123-extend-friendly-errors-409-422

fix/159-merge-reason

wip/claude-4/rasterstate-fj

fix/158-issue-add-assignee-endpoint

fix/147b-keychain-noentry-fallback

feat/147-file-token-store

feat/133-release-scripting

feat/139-workflow-run-handle

feat/140-body-file

fix/pr-comment-test-green

wip/codex-3/rasterstate-fj

feat/137-org-secrets-vars

feat/132-tag-branch-refs

feat/138-run-list-filters

feat/131-pr-comment-edit

feat/134-error-ux-exit-codes

feat/136-api-body-input

feat/135-run-exit-status

feat/113-pr-list-filters

fix/111-list-paginate

fix/112-json-readonly

feat/114-pr-labels

fix/115-version-pipe

fix/91-runlog-auth-error

feat/98-issue-edit-labels

fix/96-keychain-fallback

feat/97-issue-create-labels

fix/99-readme-json-global

fix/alias-quoted-args

fix/remote-scp-colon-owner

harden/hostname-validation

fix/json-path-numeric-object-keys

fix/debug-body-preview-utf8-panic

wip/codex-1/rasterstate-fj

readme-drop-github

feat/stack-review-enriched

feat/stack-sync

feat/stack-new-real

feat/work-context-enriched

feat/agent-review-impl

feat/agent-explain-impl

feat/agent-provider

feat/stack-review

feat/stack-new

feat/work-continue

feat/work-resume-session

feat/work-context-impl

feat/work-stack-agent-commands

adopt-fjord-actions

ci/coverage-strict-gate

refactor/coverage-region-exclude

refactor/converge-json-path

refactor/split-client-resolve

test/api-coverage-round4

test/api-coverage-round3

test/cov-ignore-drift-guard

test/e2e-smoke-coverage

test/command-tree-guard

refactor/split-workflow-artifacts

chore/coverage-intent-config

test/api-label-milestone-hook

test/output-and-repo-core

refactor/split-issue-comments

refactor/split-repo-social

refactor/split-pr-module

test/api-wiremock

test/backfill-pure-helpers

cleanup/hoist-truncate-human-size

feat/run-download-and-workflow-list

feat/parity-followups

feat/actions-logs-and-gh-parity

sso-pat-guidance

test/observability-smoke

v0.2.0

v0.1.3

v0.1.2

v0.1.1

v0.1.0

Labels

Clear labels   

backlog

Accepted but not scheduled

  

blocked

Blocked or stalled waiting on external progress

  

converted

Converted into tracked work

  

opportunity

Potential product or business opportunity

  

p1

Priority 1

  

p2

Priority 2

  

p3

Priority 3

  

parked

Paused intentionally until later

No labels

backlog

blocked

converted

opportunity

p1

p2

p3

parked

Milestone

Clear milestone

No items

No milestone

Projects

Clear projects

No items

No project

Assignees

Clear assignees

No assignees

1 participant

Notifications

Subscribe

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference

rasterstate/fj#134

No description provided.