microsoft · vladsud · Apr 6, 2020 · Apr 6, 2020 · arinwt · Apr 7, 2020
diff --git a/packages/drivers/replay-socket-storage/src/replayDocumentDeltaConnection.ts b/packages/drivers/replay-socket-storage/src/replayDocumentDeltaConnection.ts
@@ -20,6 +20,7 @@ import {
     ISignalMessage,
     ITokenClaims,
     IVersion,
+    ScopeType,
 } from "@microsoft/fluid-protocol-definitions";
 import { debug } from "./debug";
 import { ReplayController } from "./replayController";
@@ -230,7 +231,7 @@ export class ReplayDocumentDeltaConnection extends EventEmitter implements IDocu
 
     private static readonly claims: ITokenClaims = {
         documentId: ReplayDocumentId,
-        scopes: [],
+        scopes: [ScopeType.DocRead, ScopeType.DocWrite],
         tenantId: "",
         user: {
             id: "",

diff --git a/packages/loader/container-loader/src/deltaManager.ts b/packages/loader/container-loader/src/deltaManager.ts
@@ -36,7 +36,7 @@ import {
     MessageType,
     ScopeType,
 } from "@microsoft/fluid-protocol-definitions";
-import { createIError, createWriteError, createNetworkError } from "@microsoft/fluid-driver-utils";
+import { createIError, createWriteError, createNetworkError, createFatalError } from "@microsoft/fluid-driver-utils";
 import { ContentCache } from "./contentCache";
 import { debug } from "./debug";
 import { DeltaConnection } from "./deltaConnection";
@@ -812,6 +812,9 @@ export class DeltaManager extends EventEmitter implements IDeltaManager<ISequenc
             if (this.readonlyPermissions) {
                 this.close(createWriteError("WriteOnReadOnlyDocument"));
             }
+            if (this.connectionMode === "write") {
+                this.close(createFatalError("ServerRejectsWrites"));
+            }
             if (!this.autoReconnect) {
                 this.logger.sendErrorEvent({ eventName: "NackWithNoReconnect", target, mode: this.connectionMode });
             }

diff --git a/packages/loader/driver-definitions/src/error.ts b/packages/loader/driver-definitions/src/error.ts
@@ -5,14 +5,33 @@
 
 // tslint:disable: no-unsafe-any
 export enum ErrorType {
+    // Some error, most likely an exception caught by runtime and propagated to container as critical error
     generalError,
+
+    // Some non-categorized (below) networking error
     genericNetworkError,
+
+    // Access denied - user does not have enough privileges to open a file, or continue to operate on a file
     accessDeniedError,
+
+    // File not found, or file deleted during session
     fileNotFoundError,
+
+    // Throttling error from server. Server is busy and is asking not to reconnect for some time
     throttlingError,
+
+    // Service error. Not used
     serviceError,
+
+    // Summarizing error. Currently raised on summarizing container only.
+    // Work is planned to propagate these errors to main container.
     summarizingError,
+
+    // User does not have write permissions to a file, but is changing content of a file.
+    // That might be indication of some component error - components should not generate ops in readonly mode.
     writeError,
+
+    // Some fatal server error (usually 500).
     fatalError,
 }
 

diff --git a/packages/loader/driver-utils/src/network.ts b/packages/loader/driver-utils/src/network.ts
@@ -116,8 +116,6 @@ class WriteError extends ErrorWithProps implements IWriteError {
     }
 }
 
-export const createWriteError = (errorMessage: string) => (new WriteError(errorMessage) as IError);
-
 /**
  * Fatal error class - when the server encountered a fatal error
  */
@@ -151,3 +149,6 @@ export function createNetworkError(
     }
     return new GenericNetworkError(errorMessage, statusCode, canRetry, online);
 }
+
+export const createWriteError = (errorMessage: string) => (new WriteError(errorMessage) as IError);
+export const createFatalError = (errorMessage: string) => (new FatalError(errorMessage) as IError);