refactor: improve error handling for gateway connection in LDAP functions

2026-01-10 07:58:15 -05:00 · 2025-11-17 09:36:57 -03:00
parent 34d92f9080
commit 84d505bbb0
1 changed files with 38 additions and 36 deletions
--- a/backend/src/services/app-connection/ldap/ldap-connection-fns.ts
+++ b/backend/src/services/app-connection/ldap/ldap-connection-fns.ts
@@ -124,43 +124,45 @@ export const executeWithPotentialGateway = async <T>(
      targetPort: port
    });

-    if (platformConnectionDetails) {
-      return withGatewayV2Proxy(
-        async (proxyPort) => {
-          const proxyUrl = constructLdapUrl(protocol, "localhost", proxyPort);
-          const isSSL = protocol === "ldaps";
-
-          const client = ldap.createClient({
-            url: proxyUrl,
-            timeout: LDAP_TIMEOUT,
-            connectTimeout: LDAP_TIMEOUT,
-            tlsOptions: isSSL
-              ? {
-                  rejectUnauthorized: config.credentials.sslRejectUnauthorized,
-                  ca: config.credentials.sslCertificate ? [config.credentials.sslCertificate] : undefined,
-                  servername: host,
-                  // bypass hostname verification for development
-                  ...(appCfg.isDevelopmentMode ? { checkServerIdentity: () => undefined } : {})
-                }
-              : undefined
-          });
-
-          return setupLdapClientHandlers<T>(client, credentials.dn, credentials.password, async (ldapClient) => {
-            try {
-              return await operation(ldapClient);
-            } finally {
-              ldapClient.destroy();
-            }
-          });
-        },
-        {
-          protocol: GatewayProxyProtocol.Tcp,
-          relayHost: platformConnectionDetails.relayHost,
-          gateway: platformConnectionDetails.gateway,
-          relay: platformConnectionDetails.relay
-        }
-      );
+    if (!platformConnectionDetails) {
+      throw new BadRequestError({ message: "Unable to connect to gateway, no platform connection details found" });
    }
+
+    return withGatewayV2Proxy(
+      async (proxyPort) => {
+        const proxyUrl = constructLdapUrl(protocol, "localhost", proxyPort);
+        const isSSL = protocol === "ldaps";
+
+        const client = ldap.createClient({
+          url: proxyUrl,
+          timeout: LDAP_TIMEOUT,
+          connectTimeout: LDAP_TIMEOUT,
+          tlsOptions: isSSL
+            ? {
+                rejectUnauthorized: config.credentials.sslRejectUnauthorized,
+                ca: config.credentials.sslCertificate ? [config.credentials.sslCertificate] : undefined,
+                servername: host,
+                // bypass hostname verification for development
+                ...(appCfg.isDevelopmentMode ? { checkServerIdentity: () => undefined } : {})
+              }
+            : undefined
+        });
+
+        return setupLdapClientHandlers<T>(client, credentials.dn, credentials.password, async (ldapClient) => {
+          try {
+            return await operation(ldapClient);
+          } finally {
+            ldapClient.destroy();
+          }
+        });
+      },
+      {
+        protocol: GatewayProxyProtocol.Tcp,
+        relayHost: platformConnectionDetails.relayHost,
+        gateway: platformConnectionDetails.gateway,
+        relay: platformConnectionDetails.relay
+      }
+    );
  }

  // Non-gateway path - calls getLdapConnectionClient which has validation