Implement catching the authorisation error (#37)

MattyTheHacker · codecov-ai[bot] · web-flow · commit 837331be3fac · 2025-06-14T15:20:01.000+01:00
* Implement catching the authorisation error

* Improve check

* Add Tests for PR#37

* Add tests

---------

Co-authored-by: codecov-ai[bot] &lt;156709835+codecov-ai[bot]@users.noreply.github.com&gt;
diff --git a/src/autoupdater.ts b/src/autoupdater.ts
@@ -465,10 +465,18 @@ export class AutoUpdater {
         break;
       } catch (e: unknown) {
         if (e instanceof Error) {
-          /**
-           * If this update was against a fork and we got a 403 then it's
-           * probably because we don't have access to it.
-           */
+          if (
+            isRequestError(e) &&
+            e.message.includes('Parameter token or opts.auth is required')
+          ) {
+            ghCore.error(
+              `Could not update pull request #${prNumber} due to an authorisation error. Error was: ${e.message}. Please confirm you are using the correct token and it has the correct authorisation scopes.`,
+            );
+
+            setOutputFn(Output.Conflicted, false);
+
+            return false;
+          }
           if (
             isRequestError(e) &&
             e.status === 403 &&
diff --git a/test/autoupdate.test.ts b/test/autoupdate.test.ts
@@ -17,6 +17,7 @@ import {
 } from '@octokit/webhooks-types/schema';
 import * as core from '@actions/core';
 import { Output } from '../src/Output';
+import * as isRequestErrorModule from '../src/helpers/isRequestError';
 
 type PullRequestResponse =
   Endpoints['GET /repos/{owner}/{repo}/pulls/{pull_number}']['response'];
@@ -1090,6 +1091,28 @@ describe('test `update`', () => {
     expect(setOutputMock).toHaveBeenCalledWith(Output.Conflicted, false);
   });
 
+  test('merge: returns false and sets output if authorization error with token message', async () => {
+    const updater = new AutoUpdater(config, emptyEvent);
+    const error = new Error('Parameter token or opts.auth is required');
+    (error as any).status = 401;
+    Object.getPrototypeOf(updater.octokit.rest.repos).merge = jest
+      .fn()
+      .mockRejectedValue(error);
+    const setOutputMock = jest.fn();
+    const errorSpy = jest.spyOn(core, 'error').mockImplementation(() => {});
+    const result = await updater.merge(
+      owner,
+      1,
+      { owner, repo, base, head } as any,
+      setOutputMock,
+    );
+    expect(result).toBe(false);
+    expect(setOutputMock).toHaveBeenCalledWith(Output.Conflicted, false);
+    expect(errorSpy).toHaveBeenCalledWith(
+      'Could not update pull request #1 due to an authorisation error. Error was: Parameter token or opts.auth is required. Please confirm you are using the correct token and it has the correct authorisation scopes.',
+    );
+  });
+
   test('merge: retries if error and retries < retryCount', async () => {
     const updater = new AutoUpdater(config, emptyEvent);
     const error = new Error('retry me');
@@ -1390,3 +1413,37 @@ describe('merge() doMerge and merge conflict label/branches', () => {
     infoSpy.mockRestore();
   });
 });
+
+describe('AutoUpdater.merge authorisation error handling', () => {
+  test('handles missing token or opts.auth error', async () => {
+    const updater = new AutoUpdater(config, emptyEvent);
+    const mergeOpts = { owner, repo, base, head };
+    // Create an Error instance and add status property
+    const error: Error & { status?: number } = new Error(
+      'Parameter token or opts.auth is required',
+    );
+    error.status = 401;
+    // Mock octokit.rest.repos.merge to throw the specific error
+    Object.getPrototypeOf(updater.octokit.rest.repos).merge = jest
+      .fn()
+      .mockRejectedValue(error);
+    // Mock isRequestError to return true
+    jest.spyOn(isRequestErrorModule, 'isRequestError').mockReturnValue(true);
+    const errorSpy = jest.spyOn(core, 'error').mockImplementation(() => {});
+    const setOutputMock = jest.fn();
+    const result = await updater.merge(
+      owner,
+      123,
+      mergeOpts as any,
+      setOutputMock,
+    );
+    expect(errorSpy).toHaveBeenCalledWith(
+      expect.stringContaining(
+        'Could not update pull request #123 due to an authorisation error. Error was: Parameter token or opts.auth is required.',
+      ),
+    );
+    expect(setOutputMock).toHaveBeenCalledWith(Output.Conflicted, false);
+    expect(result).toBe(false);
+    errorSpy.mockRestore();
+  });
+});
