From edb3f08ec0f5e787225251689c27f1d9fb27686b Mon Sep 17 00:00:00 2001
From: Brian Kennedy <briankennedy@google.com>
Date: Tue, 15 Jun 2021 13:38:01 -0700
Subject: [PATCH] Improve error message for askpass.

When endpoint returns non-200 status, include the body in the error
message since it can contain useful information for debugging.  Also
defer closing the response body ReadCloser as this may have leaked in
the past.
---
 cmd/git-sync/main.go | 10 ++++++++--
 1 file changed, 8 insertions(+), 2 deletions(-)

diff --git a/cmd/git-sync/main.go b/cmd/git-sync/main.go
index fc0741e..e581c30 100644
--- a/cmd/git-sync/main.go
+++ b/cmd/git-sync/main.go
@@ -1136,11 +1136,17 @@ func callGitAskPassURL(ctx context.Context, url string) error {
 	if err != nil {
 		return fmt.Errorf("can't access auth URL: %w", err)
 	}
+	defer func() {
+		_ = resp.Body.Close()
+	}()
 	if resp.StatusCode != 200 {
-		return fmt.Errorf("auth URL returned status %d", resp.StatusCode)
+		errMessage, err := ioutil.ReadAll(resp.Body)
+		if err != nil {
+			return fmt.Errorf("auth URL returned status %d, failed to read body: %w", resp.StatusCode, err)
+		}
+		return fmt.Errorf("auth URL returned status %d, body: %q", resp.StatusCode, string(errMessage))
 	}
 	authData, err := ioutil.ReadAll(resp.Body)
-	resp.Body.Close()
 	if err != nil {
 		return fmt.Errorf("can't read auth response: %w", err)
 	}