docs/extensions/mask-errors.md
MaskErrorsThis extension hides error messages from the client to prevent exposing sensitive details. By default it masks all errors raised in any field resolver.
import strawberry
from strawberry.extensions import MaskErrors
@strawberry.type
class Query:
@strawberry.field
def hidden_error(self) -> str:
raise KeyError("This error will not be visible")
schema = strawberry.Schema(
Query,
extensions=[
MaskErrors(),
],
)
class MaskErrors(
should_mask_error=default_should_mask_error, error_message="Unexpected error."
): ...
should_mask_error: Callable[[GraphQLError], bool] = default_should_mask_errorPredicate function to check if a GraphQLError should be masked or not. Use the
original_error attribute to access the original error that was raised in the
resolver.
The default_should_mask_error function always returns True.
error_message: str = "Unexpected error."The error message to display to the client when there is an error.
import strawberry
from strawberry.extensions import MaskErrors
from graphql.error import GraphQLError
class VisibleError(Exception):
pass
@strawberry.type
class Query:
@strawberry.field
def visible_error(self) -> str:
raise VisibleError("This error will be visible")
def should_mask_error(error: GraphQLError) -> bool:
original_error = error.original_error
if original_error and isinstance(original_error, VisibleError):
return False
return True
schema = strawberry.Schema(
Query,
extensions=[
MaskErrors(should_mask_error=should_mask_error),
],
)
import strawberry
from strawberry.extensions import MaskErrors
@strawberry.type
class Query:
@strawberry.field
def hidden_error(self) -> str:
raise KeyError("This error will not be visible")
schema = strawberry.Schema(
Query,
extensions=[
MaskErrors(error_message="Oh no! An error occured. Very sorry about that."),
],
)