add a more specific message if the user is authenticated

laravel · Apr 3, 2024 · d31af36 · d31af36
1 parent cb40d37
commit d31af36
Show file tree

Hide file tree

Showing 3 changed files with 18 additions and 2 deletions.
diff --git a/src/Illuminate/Routing/Exceptions/InvalidNamedRateLimiterException.php b/src/Illuminate/Routing/Exceptions/InvalidNamedRateLimiterException.php
@@ -16,4 +16,16 @@ public static function forLimiter(string $limiter)
     {
         return new static("Named rate limiter [{$limiter}] is not defined.");
     }
+
+    /**
+     * Create a new exception for an invalid rate limiter based on a model property.
+     *
+     * @param  string $limiter
+     * @param  class-string $model
+     * @return static
+     */
+    public static function forLimiterAndUser(string $limiter, string $model)
+    {
+        return new static("Named rate limiter [{$model}::{$limiter}] is not defined.");
+    }
 }
diff --git a/src/Illuminate/Routing/Middleware/ThrottleRequests.php b/src/Illuminate/Routing/Middleware/ThrottleRequests.php
@@ -196,7 +196,11 @@ protected function resolveMaxAttempts($request, $maxAttempts)
         // If by this time we still don't have a numeric value, it means there was no matching rate limiter,
         // and that the attribute in the authenticated model either did not exist or was invalid.
         if (! is_numeric($maxAttempts)) {
-            throw InvalidNamedRateLimiterException::forLimiter($maxAttempts);
+            if (is_null($request->user())) {
+                throw InvalidNamedRateLimiterException::forLimiter($maxAttempts);
+            }
+
+            throw InvalidNamedRateLimiterException::forLimiterAndUser($maxAttempts, get_class($request->user()));
         }
 
         return (int) $maxAttempts;

diff --git a/tests/Integration/Http/ThrottleRequestsTest.php b/tests/Integration/Http/ThrottleRequestsTest.php
@@ -255,7 +255,7 @@ public function testItFailsIfNamedLimiterDoesNotExist()
     public function testItFailsIfNamedLimiterDoesNotExistAndAuthenticatedUserDoesNotHaveFallbackProperty()
     {
         $this->expectException(InvalidNamedRateLimiterException::class);
-        $this->expectExceptionMessage('Named rate limiter [rateLimiting] is not defined.');
+        $this->expectExceptionMessage('Named rate limiter [' . User::class . '::rateLimiting] is not defined.');
 
         Route::get('/', fn () => 'ok')->middleware(['auth', ThrottleRequests::using('rateLimiting')]);