fix(event-handler): default error handler returns a web Response correctly (#5024)

nateiler · dreamorosi · web-flow · commit f8100e88fdfb · 2026-02-18T00:55:01.000Z
Co-authored-by: Andrea Amorosi &lt;dreamorosi@gmail.com&gt;
diff --git a/packages/event-handler/src/http/Router.ts b/packages/event-handler/src/http/Router.ts
@@ -489,10 +489,7 @@ class Router {
     }
 
     if (error instanceof HttpError) {
-      return new Response(JSON.stringify(error.toJSON()), {
-        status: error.statusCode,
-        headers: { 'Content-Type': 'application/json' },
-      });
+      return error.toWebResponse();
     }
 
     return this.#defaultErrorHandler(error);
diff --git a/packages/event-handler/src/http/errors.ts b/packages/event-handler/src/http/errors.ts
@@ -1,5 +1,5 @@
 import type { JSONValue } from '@aws-lambda-powertools/commons/types';
-import type { HandlerResponse, HttpStatusCode } from '../types/http.js';
+import type { HttpStatusCode } from '../types/http.js';
 import { HttpStatusCodes } from './constants.js';
 
 class RouteMatchingError extends Error {
@@ -35,7 +35,7 @@ abstract class HttpError extends Error {
     this.details = details;
   }
 
-  toJSON(): HandlerResponse {
+  toJSON(): JSONValue {
     return {
       statusCode: this.statusCode,
       error: this.errorType,
@@ -45,6 +45,12 @@ abstract class HttpError extends Error {
       }),
     };
   }
+
+  toWebResponse(): Response {
+    return Response.json(this.toJSON(), {
+      status: this.statusCode,
+    });
+  }
 }
 
 class BadRequestError extends HttpError {
diff --git a/packages/event-handler/tests/unit/http/errors.test.ts b/packages/event-handler/tests/unit/http/errors.test.ts
@@ -68,15 +68,17 @@ describe('HTTP Error Classes', () => {
       statusCode: HttpStatusCodes.SERVICE_UNAVAILABLE,
       customMessage: 'Maintenance mode',
     },
-  ])(
-    '$errorType uses custom message when provided',
-    ({ ErrorClass, errorType, statusCode, customMessage }) => {
-      const error = new ErrorClass(customMessage);
-      expect(error.message).toBe(customMessage);
-      expect(error.statusCode).toBe(statusCode);
-      expect(error.errorType).toBe(errorType);
-    }
-  );
+  ])('$errorType uses custom message when provided', ({
+    ErrorClass,
+    errorType,
+    statusCode,
+    customMessage,
+  }) => {
+    const error = new ErrorClass(customMessage);
+    expect(error.message).toBe(customMessage);
+    expect(error.statusCode).toBe(statusCode);
+    expect(error.errorType).toBe(errorType);
+  });
 
   describe('toJSON', () => {
     it.each([
@@ -134,19 +136,21 @@ describe('HTTP Error Classes', () => {
         statusCode: HttpStatusCodes.SERVICE_UNAVAILABLE,
         message: 'Maintenance mode',
       },
-    ])(
-      '$errorType serializes to JSON format',
-      ({ ErrorClass, errorType, statusCode, message }) => {
-        const error = new ErrorClass(message);
-        const json = error.toJSON();
+    ])('$errorType serializes to JSON format', ({
+      ErrorClass,
+      errorType,
+      statusCode,
+      message,
+    }) => {
+      const error = new ErrorClass(message);
+      const json = error.toJSON();
 
-        expect(json).toEqual({
-          statusCode,
-          error: errorType,
-          message,
-        });
-      }
-    );
+      expect(json).toEqual({
+        statusCode,
+        error: errorType,
+        message,
+      });
+    });
 
     it('includes details in JSON when provided', () => {
       const details = { field: 'value', code: 'VALIDATION_ERROR' };
@@ -174,6 +178,111 @@ describe('HTTP Error Classes', () => {
     });
   });
 
+  describe('toWebResponse', () => {
+    it.each([
+      {
+        ErrorClass: BadRequestError,
+        errorType: 'BadRequestError',
+        statusCode: HttpStatusCodes.BAD_REQUEST,
+        message: 'Invalid input',
+      },
+      {
+        ErrorClass: UnauthorizedError,
+        errorType: 'UnauthorizedError',
+        statusCode: HttpStatusCodes.UNAUTHORIZED,
+        message: 'Token expired',
+      },
+      {
+        ErrorClass: ForbiddenError,
+        errorType: 'ForbiddenError',
+        statusCode: HttpStatusCodes.FORBIDDEN,
+        message: 'Access denied',
+      },
+      {
+        ErrorClass: NotFoundError,
+        errorType: 'NotFoundError',
+        statusCode: HttpStatusCodes.NOT_FOUND,
+        message: 'Resource not found',
+      },
+      {
+        ErrorClass: MethodNotAllowedError,
+        errorType: 'MethodNotAllowedError',
+        statusCode: HttpStatusCodes.METHOD_NOT_ALLOWED,
+        message: 'POST not allowed',
+      },
+      {
+        ErrorClass: RequestTimeoutError,
+        errorType: 'RequestTimeoutError',
+        statusCode: HttpStatusCodes.REQUEST_TIMEOUT,
+        message: 'Operation timed out',
+      },
+      {
+        ErrorClass: RequestEntityTooLargeError,
+        errorType: 'RequestEntityTooLargeError',
+        statusCode: HttpStatusCodes.REQUEST_ENTITY_TOO_LARGE,
+        message: 'File too large',
+      },
+      {
+        ErrorClass: InternalServerError,
+        errorType: 'InternalServerError',
+        statusCode: HttpStatusCodes.INTERNAL_SERVER_ERROR,
+        message: 'Database connection failed',
+      },
+      {
+        ErrorClass: ServiceUnavailableError,
+        errorType: 'ServiceUnavailableError',
+        statusCode: HttpStatusCodes.SERVICE_UNAVAILABLE,
+        message: 'Maintenance mode',
+      },
+    ])('$errorType creates Response object', async ({
+      ErrorClass,
+      errorType,
+      statusCode,
+      message,
+    }) => {
+      const error = new ErrorClass(message);
+      const response = error.toWebResponse();
+
+      expect(response.status).toEqual(statusCode);
+      expect(response.headers.get('Content-Type')).toEqual('application/json');
+
+      await expect(response.json()).resolves.toEqual({
+        statusCode,
+        error: errorType,
+        message,
+      });
+    });
+
+    it('includes details in Response body when provided', async () => {
+      const details = { field: 'value', code: 'VALIDATION_ERROR' };
+      const error = new BadRequestError('Invalid input', undefined, details);
+      const response = error.toWebResponse();
+
+      expect(response.status).toEqual(HttpStatusCodes.BAD_REQUEST);
+
+      await expect(response.json()).resolves.toEqual({
+        statusCode: HttpStatusCodes.BAD_REQUEST,
+        error: 'BadRequestError',
+        message: 'Invalid input',
+        details,
+      });
+    });
+
+    it('excludes details from JSON when not provided', async () => {
+      const error = new BadRequestError('Invalid input');
+      const response = error.toWebResponse();
+
+      expect(response.status).toEqual(HttpStatusCodes.BAD_REQUEST);
+
+      await expect(response.json()).resolves.toEqual({
+        statusCode: HttpStatusCodes.BAD_REQUEST,
+        error: 'BadRequestError',
+        message: 'Invalid input',
+      });
+      expect(response).not.toHaveProperty('details');
+    });
+  });
+
   it('passes options to Error superclass', () => {
     const cause = new Error('Root cause');
     const error = new BadRequestError('Invalid input', { cause });

Original file line number	Diff line number	Diff line change
`@@ -489,10 +489,7 @@ class Router {`
`489`	`489`	`}`
`490`	`490`
`491`	`491`	`if (error instanceof HttpError) {`
`492`		`- return new Response(JSON.stringify(error.toJSON()), {`
`493`		`- status: error.statusCode,`
`494`		`- headers: { 'Content-Type': 'application/json' },`
`495`		`- });`
	`492`	`+ return error.toWebResponse();`
`496`	`493`	`}`
`497`	`494`
`498`	`495`	`return this.#defaultErrorHandler(error);`