Return 400 for malformed referral JSON by rissrice2105-agent · Pull Request #467 · profullstack/ugig.net

rissrice2105-agent · 2026-06-14T00:15:27Z

Fixes #466.

Changes

parse referral POST bodies safely
return a 400 response for malformed or non-object JSON
add an executable regression test that verifies no referral side effects run

Verification

corepack pnpm vitest run src/app/api/referrals/route.invalid-json.test.ts
corepack pnpm tsc --noEmit

greptile-apps · 2026-06-14T00:17:33Z

Greptile Summary

This PR fixes a bug where malformed or non-object JSON in the referral POST body would fall through to the outer catch and return a 500 instead of a client-appropriate 400. A new readJsonObject helper safely parses the body and gates all downstream side effects (DB queries, email sends) behind a 400 guard.

Adds readJsonObject() to route.ts that returns null for both JSON parse failures and valid-but-non-object payloads (arrays, null, primitives), short-circuiting with 400 before any Supabase or email calls.
Adds a focused regression test confirming the 400 response and that createServiceClient and sendEmail are never invoked on bad input.

Confidence Score: 4/5

Safe to merge — the change is narrowly scoped to early-exit on bad input and does not affect the happy path.

The fix is straightforward and well-tested for the malformed-JSON case. The only gaps are a slightly misleading error message when valid-but-non-object JSON is submitted, and a missing test case for that second branch of the guard.

Both changed files are low-risk; the test file could benefit from an additional case covering a valid JSON array or null body.

Important Files Changed

Filename	Overview
src/app/api/referrals/route.ts	Adds readJsonObject() helper to safely parse POST body; returns 400 for malformed or non-object JSON before any DB/email side effects run.
src/app/api/referrals/route.invalid-json.test.ts	Regression test verifying 400 response and no side effects for malformed JSON; covers only the parse-failure path, not the valid-but-non-object path.

Sequence Diagram

sequenceDiagram
    participant Client
    participant POST as POST /api/referrals
    participant Auth as getAuthContext
    participant readJsonObject
    participant DB as Supabase / Email

    Client->>POST: POST with body
    POST->>Auth: getAuthContext(request)
    Auth-->>POST: "null (Unauthorized) OR {user, supabase}"
    alt Unauthorized
        POST-->>Client: 401 Unauthorized
    else Authorized
        POST->>readJsonObject: request.json()
        alt Malformed JSON or non-object
            readJsonObject-->>POST: null
            POST-->>Client: 400 Invalid JSON body
        else Valid JSON object
            readJsonObject-->>POST: "Record<string, unknown>"
            POST->>DB: Rate-limit checks, DB insert, sendEmail
            DB-->>POST: result
            POST-->>Client: 200 / 4xx / 5xx
        end
    end

_{Reviews (1): Last reviewed commit: "Handle malformed referral JSON" | Re-trigger Greptile}

greptile-apps · 2026-06-14T00:17:37Z

+async function readJsonObject(request: NextRequest) {
+  try {
+    const body = await request.json();
+    if (!body || typeof body !== "object" || Array.isArray(body)) {
+      return null;
+    }
+    return body as Record<string, unknown>;
+  } catch {
+    return null;
+  }
+}


The error message "Invalid JSON body" is returned for two distinct cases: a parse failure (truly malformed JSON) and a successful parse that yields a non-object (e.g. a JSON array or null). Clients who send ["email@example.com"] will get "Invalid JSON body" even though their JSON is perfectly valid — which can make debugging confusing. Distinguishing the two cases gives callers a clearer signal.

Suggested change

async function readJsonObject(request: NextRequest) {

try {

const body = await request.json();

if (!body || typeof body !== "object" || Array.isArray(body)) {

return null;

}

return body as Record<string, unknown>;

} catch {

return null;

}

}

type JsonObjectResult =

| { ok: true; body: Record<string, unknown> }

| { ok: false; reason: "malformed" | "not-object" };

async function readJsonObject(request: NextRequest): Promise<JsonObjectResult> {

let parsed: unknown;

try {

parsed = await request.json();

} catch {

return { ok: false, reason: "malformed" };

}

if (!parsed || typeof parsed !== "object" || Array.isArray(parsed)) {

return { ok: false, reason: "not-object" };

}

return { ok: true, body: parsed as Record<string, unknown> };

}

greptile-apps · 2026-06-14T00:17:38Z

+describe("POST /api/referrals invalid JSON handling", () => {
+  beforeEach(() => {
+    vi.clearAllMocks();
+    mocks.mockGetAuthContext.mockResolvedValue({
+      user: { id: "user1" },
+      supabase: { from: vi.fn() },
+    });
+  });
+
+  it("returns 400 for malformed JSON before referral side effects", async () => {
+    const res = await POST(makeRawPostRequest("{not valid json"));
+    const body = await res.json();
+
+    expect(res.status).toBe(400);
+    expect(body.error).toBe("Invalid JSON body");
+    expect(mocks.mockCreateServiceClient).not.toHaveBeenCalled();
+    expect(mocks.mockSendEmail).not.toHaveBeenCalled();
+  });


Test covers only the parse-failure path

readJsonObject has two distinct rejection branches — a JSON.parse throw (malformed input) and a type check (valid JSON that isn't a plain object, e.g. arrays, null, or primitives). The test exercises only the first branch. Sending "[]" or "null" as the body would exercise the second branch and confirm both are mapped to 400 correctly.

Note: If this suggestion doesn't match your team's coding style, reply to this and let me know. I'll remember it for next time!

rissrice2105-agent · 2026-06-14T00:18:15Z

CI is green for PR #467.

Verification:

corepack pnpm vitest run src/app/api/referrals/route.invalid-json.test.ts
corepack pnpm tsc --noEmit

uGig invoice evidence has been sent for this PR.

Handle malformed referral JSON

c793406

greptile-apps Bot reviewed Jun 14, 2026

View reviewed changes

ralyodio merged commit b93c15e into profullstack:master Jun 14, 2026
6 checks passed

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Return 400 for malformed referral JSON#467

Return 400 for malformed referral JSON#467
ralyodio merged 1 commit into
profullstack:masterfrom
rissrice2105-agent:codex/referrals-invalid-json

rissrice2105-agent commented Jun 14, 2026

Uh oh!

greptile-apps Bot commented Jun 14, 2026

Uh oh!

greptile-apps Bot Jun 14, 2026

Uh oh!

greptile-apps Bot Jun 14, 2026

Uh oh!

rissrice2105-agent commented Jun 14, 2026

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

2 participants

-async function readJsonObject(request: NextRequest) {
-  try {
-    const body = await request.json();
-    if (!body || typeof body !== "object" || Array.isArray(body)) {
-      return null;
-    }
-    return body as Record<string, unknown>;
-  } catch {
-    return null;
-  }
-}
+type JsonObjectResult =
+  | { ok: true; body: Record<string, unknown> }
+  | { ok: false; reason: "malformed" | "not-object" };
+async function readJsonObject(request: NextRequest): Promise<JsonObjectResult> {
+  let parsed: unknown;
+  try {
+    parsed = await request.json();
+  } catch {
+    return { ok: false, reason: "malformed" };
+  }
+  if (!parsed || typeof parsed !== "object" || Array.isArray(parsed)) {
+    return { ok: false, reason: "not-object" };
+  }
+  return { ok: true, body: parsed as Record<string, unknown> };
+}

Conversation

rissrice2105-agent commented Jun 14, 2026

Changes

Verification

Uh oh!

greptile-apps Bot commented Jun 14, 2026

Greptile Summary

Confidence Score: 4/5

Important Files Changed

Sequence Diagram

Uh oh!

greptile-apps Bot Jun 14, 2026

Choose a reason for hiding this comment

Uh oh!

greptile-apps Bot Jun 14, 2026

Choose a reason for hiding this comment

Uh oh!

rissrice2105-agent commented Jun 14, 2026

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

2 participants