fix: propagate errors in resolveOrgAllTarget and surface AuthError in findEventAcrossOrgs

BYK · BYK · commit 3ec5c956ca8e · 2026-02-23T23:45:04.000Z
- resolveOrgAllTarget: errors from resolveEventInOrg now propagate
  instead of falling back to resolveOrgAndProject. When the user
  provided an explicit org via URL, auth/network errors should be
  surfaced rather than silently resolving a different org.
- findEventAcrossOrgs: if any per-org call throws AuthError, propagate
  it immediately. Auth errors indicate a global problem (expired/missing
  token), not a per-org miss. Transient per-org failures (network, 5xx)
  are still swallowed since other orgs may succeed.
diff --git a/src/commands/event/view.ts b/src/commands/event/view.ts
@@ -207,31 +207,29 @@ export async function resolveEventTarget(
 
 /**
  * Resolve target when only an org is known (e.g., from a Sentry event URL).
- * Uses the eventids endpoint to find the project, falls back to auto-detect.
+ * Uses the eventids endpoint to find the project directly.
+ *
+ * Returns null if the event is not found in the given org.
+ * Propagates auth/network errors — if the user provided an explicit org
+ * via URL, errors should surface rather than silently resolving a different org.
  */
 /** @internal Exported for testing */
 export async function resolveOrgAllTarget(
   org: string,
   eventId: string,
-  cwd: string
+  _cwd: string
 ): Promise<ResolvedEventTarget | null> {
-  try {
-    const resolved = await resolveEventInOrg(org, eventId);
-    if (resolved) {
-      return {
-        org: resolved.org,
-        project: resolved.project,
-        orgDisplay: org,
-        projectDisplay: resolved.project,
-        prefetchedEvent: resolved.event,
-      };
-    }
-  } catch {
-    // Auth or network errors — fall through to auto-detect below
-    return resolveOrgAndProject({ cwd, usageHint: USAGE_HINT });
+  const resolved = await resolveEventInOrg(org, eventId);
+  if (!resolved) {
+    return null;
   }
-  // Event not found in the explicit org — don't silently switch orgs
-  return null;
+  return {
+    org: resolved.org,
+    project: resolved.project,
+    orgDisplay: org,
+    projectDisplay: resolved.project,
+    prefetchedEvent: resolved.event,
+  };
 }
 
 /**
diff --git a/src/lib/api-client.ts b/src/lib/api-client.ts
@@ -1274,6 +1274,13 @@ export async function findEventAcrossOrgs(
     if (result.status === "fulfilled" && result.value !== null) {
       return result.value;
     }
+    // Propagate auth errors immediately — they indicate a global problem
+    // (expired/missing token) rather than a per-org miss, so the user needs
+    // to know. Transient per-org failures (network, 5xx) are swallowed since
+    // other orgs may still succeed.
+    if (result.status === "rejected" && result.reason instanceof AuthError) {
+      throw result.reason;
+    }
   }
   return null;
 }
diff --git a/test/commands/event/view.test.ts b/test/commands/event/view.test.ts
@@ -520,16 +520,13 @@ describe("resolveEventTarget", () => {
 
 describe("resolveOrgAllTarget", () => {
   let resolveEventInOrgSpy: ReturnType<typeof spyOn>;
-  let resolveOrgAndProjectSpy: ReturnType<typeof spyOn>;
 
   beforeEach(() => {
     resolveEventInOrgSpy = spyOn(apiClient, "resolveEventInOrg");
-    resolveOrgAndProjectSpy = spyOn(resolveTarget, "resolveOrgAndProject");
   });
 
   afterEach(() => {
     resolveEventInOrgSpy.mockRestore();
-    resolveOrgAndProjectSpy.mockRestore();
   });
 
   test("returns resolved target when event found in org", async () => {
@@ -553,22 +550,13 @@ describe("resolveOrgAllTarget", () => {
     const result = await resolveOrgAllTarget("acme", "notfound", "/tmp");
 
     expect(result).toBeNull();
-    expect(resolveOrgAndProjectSpy).not.toHaveBeenCalled();
   });
 
-  test("falls back to auto-detect when resolveEventInOrg throws", async () => {
-    resolveEventInOrgSpy.mockRejectedValue(new Error("Auth failed"));
-    resolveOrgAndProjectSpy.mockResolvedValue({
-      org: "acme",
-      project: "cli",
-      orgDisplay: "acme",
-      projectDisplay: "cli",
-    });
-
-    const result = await resolveOrgAllTarget("acme", "abc123", "/tmp");
+  test("propagates errors from resolveEventInOrg", async () => {
+    const err = new Error("Auth failed");
+    resolveEventInOrgSpy.mockRejectedValue(err);
 
-    expect(result?.org).toBe("acme");
-    expect(resolveOrgAndProjectSpy).toHaveBeenCalled();
+    expect(resolveOrgAllTarget("acme", "abc123", "/tmp")).rejects.toBe(err);
   });
 });
 

Original file line number	Diff line number	Diff line change
`@@ -1274,6 +1274,13 @@ export async function findEventAcrossOrgs(`
`1274`	`1274`	`if (result.status === "fulfilled" && result.value !== null) {`
`1275`	`1275`	`return result.value;`
`1276`	`1276`	`}`
	`1277`	`+ // Propagate auth errors immediately — they indicate a global problem`
	`1278`	`+ // (expired/missing token) rather than a per-org miss, so the user needs`
	`1279`	`+ // to know. Transient per-org failures (network, 5xx) are swallowed since`
	`1280`	`+ // other orgs may still succeed.`
	`1281`	`+ if (result.status === "rejected" && result.reason instanceof AuthError) {`
	`1282`	`+ throw result.reason;`
	`1283`	`+ }`
`1277`	`1284`	`}`
`1278`	`1285`	`return null;`
`1279`	`1286`	`}`