Error Status
Introduction
When deploying large-scale microservices in an organization, monitoring and alerting are very important for the operation team. The traditional way to monitor monolithic application logs to find potential error status is not feasible anymore. When all service logs are aggregated to the ELK or Splunk, we have a big melting pot of logging statements from different services. To dig useful information from it and identify problematic service instances is not an easy job. It is much simpler to monitor some severe error codes extracted from the logs, and most modern log aggregation tools support that. We need to design and allocate unique error codes for each error status across all services in the organization.
Features
Uniqueness across the entire organization. It allows us to identify the component or service with the error code only.
Defines application-specified error.
Selectively shows “description”, “message”, “metadata” for different environments due to security restriction. Please check Status Configuration.
Enough context info like message type and description in the dev environment to assist with testing and debugging.
Logs message and description on all environments, including production for support and diagnostic when receiving consumers’ calls.
Support translation between the open-source status.yml error code to an organization-specific error code to hide the real error code from the user. Please check Customize Status
Customers can provide their implementations to add more context metadata in the status response.
For small organizations, each service will have an error code range pre-allocated to ensure uniqueness.
For medium or large organizations, Light Portal provides error code registration and query with scenarios and resolutions.
Design
In the scenario that an error happens on the server, a Status object is designed to encapsulate standard HTTP response 4xx and 5xx as well as application-specific error code ERRXXXXX (prefixed with ERR with another five digits) and error message.
Additionally, a description of the error will be available for more info about the error.
The error code is prefixed with ERR with another 5 digits so that it can be easily scanned in log files. Certain error code can be used to trigger an alert such as email or pager notification on system wide issues.
Since we support customized error code per organization, it is good to use your company name acronym for the prefix and translate the light-platform error codes to it. For example, if your company is Example Inc., you can design your error code with EXP00001. The error code’s length can be adjusted based on the company size or the number of services expecting to deploy.
Data Elements
Here are the four fields in the Status object.
int statusCode;
String code;
String severity;
String message;
String description;
Map<String, Object> metadata;
The response will look like:
{
"statusCode": 400,
"code": "ERR11000",
"message": "VALIDATOR_REQUEST_PARAMETER_QUERY_MISSING",
"description": "Query parameter parameter name is required on path original url but not found in request.",
"metadata": {
"metaKey": {
"nestedKey": "nestedValue"
}
},
"severity": "ERROR"
}
For users who want to add more context info in the development environment, a map of metadata can be added to support some key/value pairs.
Construct the object from status.yml
status.yml is a configuration file that contains all the status error defined for the application and it has the structure like this.
ERR10000:
statusCode: 401
code: ERR10000
message: INVALID_AUTH_TOKEN
description: Incorrect signature or malformed token in authorization header
ERR10001:
statusCode: 401
code: ERR10001
message: AUTH_TOKEN_EXPIRED
description: Jwt token in authorization header expired
ERR10005:
statusCode: 403
code: ERR10005
message: AUTH_TOKEN_SCOPE_MISMATCH
description: Scopes %s in authorization token and specification scopes %s are not matched
.
.
.
}
To construct the object from this config
static final String STATUS_METHOD_NOT_ALLOWED = "ERR10008";
.
.
.
Status status = new Status(STATUS_METHOD_NOT_ALLOWED);
To construct the object with arguments to have a description with context information.
return new Status("ERR11000", queryParameter.getName(), swaggerOperation.getPathString().original());
Please note that you need to design your description to accept the argument if you want to pass some context info. Take a look at the description of ERR10005, for example.
To add metadata
With constructor.
return new Status("ERR11000", Map.of("key", "value"), queryParameter.getName(), swaggerOperation.getPathString().original());
With setter
Status status = new Status(STATUS_METHOD_NOT_ALLOWED);
Map<String, Object> metadata = Map.of("key", "value");
status.setMetadata(metadata);
With put method
Status status = new Status(STATUS_METHOD_NOT_ALLOWED);
status.put("key", "value");
Convert to JSON response
There are several ways to serialize the object to JSON in response. And string concatenation is almost ten times faster than Jackson ObjectMapper. For one million objects:
Jackson Perf 503
ToString Perf 65
Customize Status JSON format
The default format is a flattened JSON that contains these properties in the status object. If you want to change the format or adding more fields into it, please refer to [customize status format][]
Error code range allocation
The error code prefixed with ERR with another 5 digits so that it can be easily scanned in log files. Also, certain error code can be used to trigger an alert such as email or pager notification on system wide issues.
In order to make sure there is no conflict for error code allocation between teams, here is the rule.
10000-19999 reserved for the framework/system.
10000-10099 security
11000-11999 validation
12000-12999 light-oauth2
20000-29999 common error codes within your business domain. 90000-99999 customize error code that cannot be found in common range.
Send the JSON as response
Status status = new Status(STATUS_METHOD_NOT_ALLOWED);
exchange.setStatusCode(status.getStatusCode());
exchange.getResponseSender().send(status.toString());
# rstoreeturn; # return if there are other code below.
The above code will terminate the exchange if this is the last line of code in the handler. Otherwise, you need to add a return statement.
Alternatively in a handler that implements LightHttpHandler, you can use the following to achieve the same result:
setExchangeStatus(exchange, "ERR10059");
Stack trace a status
In some cases we need to track where the status has been set when there is not enough logging info provided in the code. To enable the feature, there are some conditions that have to be met:
- Must use the default method setExchangeStatus(HttpServerExchange exchange, Status status) which provided by LightHttpHandler
- Logging level for LightHttpHandler must be set to TRACE level
Then whenever a response is sent by setExchangeStatus, the logger will trace the call stack no matter if there is actually an error or not. To change logging level dynamically, please also see Light Portal
Status for business
The framework has a status.yml defines all the errors within the framework. Once a company is using this framework, it might have a list of standard errors within the organization. Also, each line of business might have its own error code definitions. In addition, each individual API/service might have its API specific errors. As you can see, the errors are in a hierarchical structure and the final one for a particular API needs to be merged from all levels.
Three ways can be chosen to merge status:
Merging manually and put the final status.yml into your service src/main/resources/config folder or externalized config folder.
Merging automatically by configuring app-status.yml. The contents in app-status.yml are automatically merged with the framework’s status.yml when the server starts. However, it should be noted that you should not use the status code that already exists in the status.yml in the app-status.yml, or it will cause an exception.
Using light-config-server which can automatically merge status error codes from multiple levels.
Status Configuration
In status.yml, there is a section to control displaying metadata, description and message selectively.
# To control show or hide message field in the following error. Some organizations do not want to expose
# the error message to allow the hackers to guess how the server is doing with invalid requests.
showMessage: ${status.showMessage:true}
# To control show or hide description field in the following error. Some organizations do not want to expose
# the error description to allow the hackers to guess how the server is doing with invalid requests.
showDescription: ${status.showDescription:true}
# To control show or hide metadata field in the error. Light-4j default status code does not have metadata
# defined as below. However, user defined error could have metadata that is a JSON object. If you do not want
# to expose the error metadata to allow the hackers to guess how the server is doing with invalid requests, you
# can turn it off with is flag. Here is an example of metadata in YAML format
# ERR10000:
# statusCode: 401
# code: ERR10000
# message: INVALID_AUTH_TOKEN
# description: Incorrect signature or malformed token in authorization header
# metadata:
# link: https://lightapi.net/error/ERR10000
showMetadata: ${status.showMetadata:true}
By default, all three properties are true. You can turn off them in values.yml
values.yml
status.showMessage: false
Customize Status
In 1.6.30, the framework supports users defining their own customized status by creating a custom StatusWrapper which implements StatusWrapper interface, defining it in service.yml.
In StatusWrapper.wrap() method, it wraps a com.networknt.status.Status in order to add customized info. The wrapper takes HttpServerExchange as an argument, so the info contained by request can be used in customized status.
Whenever calling setExchangeStatus(), the StatusWrapper.wrap() will be called.
- sample implementation
package com.networknt.status; import io.undertow.server.HttpServerExchange; public class CustomStatusWrapper implements StatusWrapper { @Override public Status wrap(Status status, HttpServerExchange exchange) { return new CustomStatus(status, exchange); } private class CustomStatus extends Status { private String customInfo; public CustomStatus(Status status, HttpServerExchange exchange) { this.setStatusCode(status.getStatusCode()); this.setCode(status.getCode()); this.setDescription(status.getDescription()); this.setMessage(status.getMessage()); this.setSeverity(status.getSeverity()); this.setCustomInfo("custom_info"); } public String getCustomInfo() { return customInfo; } public void setCustomInfo(String customInfo) { this.customInfo = customInfo; } @Override public String toString() { String message = "{\"error\":" + "{\"statusCode\":" + getStatusCode() + ",\"code\":\"" + getCode() + "\",\"message\":\"" + getMessage() + "\",\"description\":\"" + getDescription() + "\",\"customInfo\":\"" + getCustomInfo() + "\",\"severity\":\"" + getSeverity() + "\"}" + "}"; return message; } } } - Sample configuration
singletons: - com.networknt.status.StatusWrapper: - org.package.CustomStatusWrapper - Sample response
{"error":{"statusCode":401,"code":"ERR10001","message":"AUTH_TOKEN_EXPIRED","description":"Jwt token in authorization header expired","customInfo":"custom_info","severity":"ERROR"}}
It should be noted that the feature is different from StatusSerializer. StatusSerializer only supports changes to the Status Json format. For more information about StatusSerializer, please check customize status format.