Mask error messages
wlachs opened this issue · comments
László Borbély commented
Internal error messages, such as DB errors, shouldn't be sent to the front-end when they occur. They might reveal sensitive information about the architecture and therefore pose a security threat.
If such errors occur, they should be caught in the application and only a generic message should be sent to the front-end. The exact details of the error can be still found in the logs.