error-handling.md

---

⚠️ Best Practices for Error Handling in Spring Boot

Error handling is a crucial aspect of building robust and user-friendly Spring Boot applications. Proper error handling ensures that your application can gracefully handle unexpected situations, provide meaningful feedback to users, and maintain a clean and maintainable codebase.

🎯 Why Error Handling Matters

• Improved User Experience: Providing clear and helpful error messages improves the overall user experience.
• Maintainability: Centralized error handling simplifies maintenance and reduces code duplication.
• Security: Proper error handling helps avoid leaking sensitive information that could be exploited by attackers.
• Debugging and Monitoring: Well-structured error messages and logging make it easier to diagnose and fix issues.

🛠️ Implementing Error Handling in Spring Boot

1. Global Exception Handling with @ControllerAdvice

Spring Boot provides the @ControllerAdvice annotation, which allows you to handle exceptions across the whole application in one global handling component.

Example:

package com.example.demo.exception;

import org.springframework.http.HttpStatus;
import org.springframework.http.ResponseEntity;
import org.springframework.web.bind.annotation.ControllerAdvice;
import org.springframework.web.bind.annotation.ExceptionHandler;
import org.springframework.web.context.request.WebRequest;

@ControllerAdvice
public class GlobalExceptionHandler {

    @ExceptionHandler(ResourceNotFoundException.class)
    public ResponseEntity<?> resourceNotFoundException(ResourceNotFoundException ex, WebRequest request) {
        ErrorDetails errorDetails = new ErrorDetails(new Date(), ex.getMessage(), request.getDescription(false));
        return new ResponseEntity<>(errorDetails, HttpStatus.NOT_FOUND);
    }

    @ExceptionHandler(Exception.class)
    public ResponseEntity<?> globalExceptionHandler(Exception ex, WebRequest request) {
        ErrorDetails errorDetails = new ErrorDetails(new Date(), ex.getMessage(), request.getDescription(false));
        return new ResponseEntity<>(errorDetails, HttpStatus.INTERNAL_SERVER_ERROR);
    }
}

2. Custom Exception Classes

Create custom exception classes to represent specific error conditions in your application. This approach allows you to differentiate between different types of errors and handle them appropriately.

Example:

package com.example.demo.exception;

public class ResourceNotFoundException extends RuntimeException {
    public ResourceNotFoundException(String message) {
        super(message);
    }
}

3. Error Details Class

Define a standard structure for error responses. This structure can include fields such as a timestamp, an error message, and additional details.

Example:

package com.example.demo.exception;

import java.util.Date;

public class ErrorDetails {
    private Date timestamp;
    private String message;
    private String details;

    public ErrorDetails(Date timestamp, String message, String details) {
        this.timestamp = timestamp;
        this.message = message;
        this.details = details;
    }

    // Getters and setters
}

4. Handling Validation Errors

Spring Boot provides built-in support for handling validation errors using @Valid and BindingResult. Customize the error response for validation failures to provide detailed feedback to the client.

Example:

package com.example.demo.controller;

import org.springframework.http.HttpStatus;
import org.springframework.http.ResponseEntity;
import org.springframework.validation.BindingResult;
import org.springframework.web.bind.annotation.ExceptionHandler;
import org.springframework.web.bind.annotation.RestControllerAdvice;

import java.util.HashMap;
import java.util.Map;

@RestControllerAdvice
public class ValidationExceptionHandler {

    @ExceptionHandler(MethodArgumentNotValidException.class)
    public ResponseEntity<Map<String, String>> handleValidationExceptions(MethodArgumentNotValidException ex) {
        BindingResult bindingResult = ex.getBindingResult();
        Map<String, String> errors = new HashMap<>();
        bindingResult.getFieldErrors().forEach(error -> errors.put(error.getField(), error.getDefaultMessage()));
        return new ResponseEntity<>(errors, HttpStatus.BAD_REQUEST);
    }
}

5. Returning Meaningful HTTP Status Codes

Ensure that your API returns appropriate HTTP status codes that correspond to the type of error encountered (e.g., 404 Not Found for missing resources, 400 Bad Request for validation errors, 500 Internal Server Error for unexpected conditions).

Example:

@ExceptionHandler(ResourceNotFoundException.class)
public ResponseEntity<?> handleResourceNotFoundException(ResourceNotFoundException ex, WebRequest request) {
    ErrorDetails errorDetails = new ErrorDetails(new Date(), ex.getMessage(), request.getDescription(false));
    return new ResponseEntity<>(errorDetails, HttpStatus.NOT_FOUND);
}

6. Custom Error Pages

For web applications, you can create custom error pages to provide a better user experience when an error occurs.

Example:

1. Create custom error pages (error/404.html, error/500.html) in the src/main/resources/templates/ directory.

2. Configure the error pages in your application.properties:

   server.error.whitelabel.enabled=false

7. Logging Errors

Integrate logging into your error handling strategy to capture detailed information about errors as they occur. Use a logging framework like SLF4J with Logback or Log4j2.

Example:

import org.slf4j.Logger;
import org.slf4j.LoggerFactory;

@ExceptionHandler(Exception.class)
public ResponseEntity<?> handleGlobalException(Exception ex, WebRequest request) {
    logger.error("Exception occurred: ", ex);
    ErrorDetails errorDetails = new ErrorDetails(new Date(), ex.getMessage(), request.getDescription(false));
    return new ResponseEntity<>(errorDetails, HttpStatus.INTERNAL_SERVER_ERROR);
}

8. Securing Error Messages

Avoid exposing sensitive information in error messages. Customize error responses to provide only the necessary details, while logging the full stack trace for internal analysis.

Example:

@ExceptionHandler(Exception.class)
public ResponseEntity<?> handleGlobalException(Exception ex, WebRequest request) {
    logger.error("Exception occurred: ", ex);
    ErrorDetails errorDetails = new ErrorDetails(new Date(), "An unexpected error occurred", request.getDescription(false));
    return new ResponseEntity<>(errorDetails, HttpStatus.INTERNAL_SERVER_ERROR);
}

🔑 Best Practices Summary

• Centralize Error Handling: Use @ControllerAdvice to handle exceptions across your application in a centralized manner.
• Create Custom Exceptions: Define custom exception classes to represent specific error conditions in your application.
• Provide Clear Error Messages: Ensure that error messages are clear, concise, and provide enough context for the client to understand the issue.
• Use Appropriate HTTP Status Codes: Map exceptions to the correct HTTP status codes to align with RESTful best practices.
• Secure Error Handling: Avoid exposing sensitive information in error responses; log detailed errors internally for debugging.
• Log Errors: Integrate logging into your error handling to capture detailed information about issues for troubleshooting.
• Test Error Handling: Ensure that your error handling is tested and behaves as expected in different scenarios.

📚 Further Reading

• Spring Boot Documentation on Error Handling
• Effective Java by Joshua Bloch
• Clean Code by Robert C. Martin
• Spring Boot Best Practices Guide

---