com.palantir.conjure.java.undertow.runtime.ConjureExceptions Maven / Gradle / Ivy
/*
* (c) Copyright 2019 Palantir Technologies Inc. All rights reserved.
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
package com.palantir.conjure.java.undertow.runtime;
import com.google.common.util.concurrent.RateLimiter;
import com.palantir.conjure.java.api.errors.CheckedServiceException;
import com.palantir.conjure.java.api.errors.ErrorType;
import com.palantir.conjure.java.api.errors.QosException;
import com.palantir.conjure.java.api.errors.QosReasons;
import com.palantir.conjure.java.api.errors.QosReasons.QosResponseEncodingAdapter;
import com.palantir.conjure.java.api.errors.RemoteException;
import com.palantir.conjure.java.api.errors.ServiceException;
import com.palantir.conjure.java.undertow.lib.ExceptionHandler;
import com.palantir.conjure.java.undertow.lib.Serializer;
import com.palantir.conjure.java.undertow.lib.TypeMarker;
import com.palantir.logsafe.SafeArg;
import com.palantir.logsafe.logger.SafeLogger;
import com.palantir.logsafe.logger.SafeLoggerFactory;
import io.undertow.io.UndertowOutputStream;
import io.undertow.server.HttpServerExchange;
import io.undertow.util.Headers;
import io.undertow.util.HttpString;
import java.io.IOException;
import java.io.OutputStream;
import java.time.temporal.ChronoUnit;
import java.util.Collections;
import java.util.Optional;
import java.util.function.Consumer;
import org.xnio.IoUtils;
/**
* Maps caught {@link Throwable} instances into HTTP responses. The result is written into the
* {@link HttpServerExchange exchange's} response, and an appropriate HTTP status code is set.
*/
public enum ConjureExceptions implements ExceptionHandler {
INSTANCE;
private static final SafeLogger log = SafeLoggerFactory.get(ConjureExceptions.class);
// Exceptions should always be serialized using JSON
private static final Serializer serializer =
new ConjureBodySerDe(Collections.singletonList(Encodings.json())).serializer(new TypeMarker<>() {});
// Log at most once every second
private static final RateLimiter qosLoggingRateLimiter = RateLimiter.create(1);
@Override
public void handle(HttpServerExchange exchange, Throwable throwable) {
setFailure(exchange, throwable);
if (throwable instanceof CheckedServiceException checkedServiceException) {
checkedServiceException(exchange, checkedServiceException);
} else if (throwable instanceof ServiceException) {
serviceException(exchange, (ServiceException) throwable);
} else if (throwable instanceof QosException) {
qosException(exchange, (QosException) throwable);
} else if (throwable instanceof RemoteException) {
remoteException(exchange, (RemoteException) throwable);
} else if (throwable instanceof IllegalArgumentException) {
illegalArgumentException(exchange, throwable);
} else if (throwable instanceof FrameworkException) {
frameworkException(exchange, (FrameworkException) throwable);
} else if (throwable instanceof Error) {
error(exchange, (Error) throwable);
} else if (throwable instanceof IOException && !exchange.getConnection().isOpen()) {
log.info(
"I/O exception from a closed connection. The request may have been aborted by the client",
throwable);
} else {
ServiceException exception = new ServiceException(ErrorType.INTERNAL, throwable);
log(exception, throwable);
writeResponse(
exchange,
Optional.of(ConjureError.fromServiceException(exception)),
exception.getErrorType().httpErrorCode());
}
}
private static void checkedServiceException(HttpServerExchange exchange, CheckedServiceException exception) {
log(exception);
writeResponse(
exchange,
Optional.of(ConjureError.fromCheckedServiceException(exception)),
exception.getErrorType().httpErrorCode());
}
private static void serviceException(HttpServerExchange exchange, ServiceException exception) {
log(exception);
writeResponse(
exchange,
Optional.of(ConjureError.fromServiceException(exception)),
exception.getErrorType().httpErrorCode());
}
private static void qosException(HttpServerExchange exchange, QosException qosException) {
qosException.accept(QOS_EXCEPTION_HEADERS).accept(exchange);
QosReasons.encodeToResponse(qosException.getReason(), exchange, UndertowQosResponseEncodingAdapter.INSTANCE);
if (log.isDebugEnabled()) {
log.debug("Quality-of-Service error handling request", qosException);
} else if (qosExceptionHasAdditionalMetadata(qosException) || qosLoggingRateLimiter.tryAcquire()) {
log.info("Quality-of-Service error handling request", qosException);
}
writeResponse(exchange, Optional.empty(), qosException.accept(QOS_EXCEPTION_STATUS_CODE));
}
/** Returns true if {@link QosException} provides additional metadata and should be logged at {@code info}. */
private static boolean qosExceptionHasAdditionalMetadata(QosException qosException) {
try {
if (qosException.getCause() != null) {
return true;
}
Throwable[] suppressed = qosException.getSuppressed();
return suppressed != null && suppressed.length > 1;
} catch (Throwable t) {
// Fallback in case of unexpected bytecode manipulation (getCause or getSuppressed throws due to
// poor instrumentation/mocks)
return true;
}
}
// RemoteExceptions are thrown by Conjure clients to indicate a remote/service-side problem.
// We forward these exceptions, but change the ErrorType to INTERNAL unless it was a 401 or 403, i.e.,
// the problem is now considered internal to *this* service rather than the originating service.
// This means in particular that Conjure errors are defined only local to a given service and these
// error types don't propagate through other services.
private static void remoteException(HttpServerExchange exchange, RemoteException remoteException) {
if (remoteException.getStatus() == 401 || remoteException.getStatus() == 403) {
log.info(
"Encountered a remote exception",
SafeArg.of("errorInstanceId", remoteException.getError().errorInstanceId()),
SafeArg.of("errorName", remoteException.getError().errorName()),
SafeArg.of("statusCode", remoteException.getStatus()),
remoteException);
writeResponse(
exchange,
Optional.of(ConjureError.fromRemoteException(remoteException)),
remoteException.getStatus());
} else {
// log at WARN instead of ERROR because this indicates an issue in a remote server
log.warn(
"Encountered a remote exception. Mapping to an internal error before propagating",
SafeArg.of("errorInstanceId", remoteException.getError().errorInstanceId()),
SafeArg.of("errorName", remoteException.getError().errorName()),
SafeArg.of("statusCode", remoteException.getStatus()),
remoteException);
ServiceException exception = new ServiceException(ErrorType.INTERNAL, remoteException);
writeResponse(
exchange,
Optional.of(ConjureError.fromServiceException(exception)),
exception.getErrorType().httpErrorCode());
}
}
private static void illegalArgumentException(HttpServerExchange exchange, Throwable throwable) {
ServiceException exception = new ServiceException(ErrorType.INVALID_ARGUMENT, throwable);
log(exception, throwable);
writeResponse(
exchange,
Optional.of(ConjureError.fromServiceException(exception)),
exception.getErrorType().httpErrorCode());
}
private static void frameworkException(HttpServerExchange exchange, FrameworkException frameworkException) {
int statusCode = frameworkException.getStatusCode();
ServiceException exception = new ServiceException(frameworkException.getErrorType(), frameworkException);
log(exception, frameworkException);
writeResponse(exchange, Optional.of(ConjureError.fromServiceException(exception)), statusCode);
}
private static void error(HttpServerExchange exchange, Error error) {
// log errors in order to associate the log line with the correct traceId but
// avoid doing work beyond setting a 500 response code, no response body is sent.
log.error("Error handling request", error);
// The writeResponse method terminates responses if data has already been sent to clients
// do not interpret partial data as a full response.
writeResponse(exchange, Optional.empty(), ErrorType.INTERNAL.httpErrorCode());
}
private static void writeResponse(HttpServerExchange exchange, Optional maybeBody, int statusCode) {
// Do not attempt to write the failure if data has already been written
if (!isResponseStarted(exchange)) {
exchange.setStatusCode(statusCode);
if (maybeBody.isPresent()) {
try {
serializer.serialize(maybeBody.get(), exchange);
} catch (IOException | RuntimeException e) {
log.info("Failed to write error response", e);
}
}
} else {
// This prevents the server from sending the final null chunk, alerting
// clients that the response was terminated prior to receiving full contents.
// Note that in the case of http/2 this does not close a connection, which
// would break other active requests, only resets the stream.
log.warn("Closing the connection to alert the client of an error");
IoUtils.safeClose(exchange.getConnection());
}
}
private static boolean isResponseStarted(HttpServerExchange exchange) {
if (exchange.isResponseStarted()) {
return true;
}
// The blocking exchange output stream may have un-committed data buffered.
// In this case we can clear the buffer allowing us to send a serializable error.
OutputStream outputStream = exchange.getOutputStream();
if (outputStream instanceof UndertowOutputStream) {
((UndertowOutputStream) outputStream).resetBuffer();
}
return false;
}
private static void log(ServiceException serviceException, Throwable exceptionForLogging) {
if (serviceException.getErrorType().httpErrorCode() / 100 == 4 /* client error */) {
log.info(
"Error handling request",
SafeArg.of("errorInstanceId", serviceException.getErrorInstanceId()),
SafeArg.of("errorName", serviceException.getErrorType().name()),
exceptionForLogging);
} else {
log.error(
"Error handling request",
SafeArg.of("errorInstanceId", serviceException.getErrorInstanceId()),
SafeArg.of("errorName", serviceException.getErrorType().name()),
exceptionForLogging);
}
}
private static void log(CheckedServiceException checkedServiceException) {
if (checkedServiceException.getErrorType().httpErrorCode() / 100 == 4 /* client error */) {
log.info(
"Error handling request",
SafeArg.of("errorInstanceId", checkedServiceException.getErrorInstanceId()),
SafeArg.of(
"errorName", checkedServiceException.getErrorType().name()),
checkedServiceException);
} else {
log.error(
"Error handling request",
SafeArg.of("errorInstanceId", checkedServiceException.getErrorInstanceId()),
SafeArg.of(
"errorName", checkedServiceException.getErrorType().name()),
checkedServiceException);
}
}
private static void log(ServiceException exception) {
log(exception, exception);
}
private static void setFailure(HttpServerExchange exchange, Throwable failure) {
// Optimistically set the value, and revert in the unlikely case it has already been set.
Throwable previous = exchange.putAttachment(Attachments.FAILURE, failure);
if (previous != null) {
exchange.putAttachment(Attachments.FAILURE, previous);
log.info(
"Failure has already been set to a {} and will not be updated to the following",
SafeArg.of("existingFailureType", previous.getClass()),
failure);
}
}
private static final QosException.Visitor QOS_EXCEPTION_STATUS_CODE = new QosException.Visitor() {
@Override
public Integer visit(QosException.Throttle _exception) {
return 429;
}
@Override
public Integer visit(QosException.RetryOther _exception) {
return 308;
}
@Override
public Integer visit(QosException.Unavailable _exception) {
return 503;
}
};
private static final QosException.Visitor> QOS_EXCEPTION_HEADERS =
new QosException.Visitor>() {
@Override
public Consumer visit(QosException.Throttle exception) {
return exchange -> exception.getRetryAfter().ifPresent(duration -> {
exchange.getResponseHeaders()
.put(Headers.RETRY_AFTER, Long.toString(duration.get(ChronoUnit.SECONDS)));
});
}
@Override
public Consumer visit(QosException.RetryOther exception) {
return exchange -> exchange.getResponseHeaders()
.put(Headers.LOCATION, exception.getRedirectTo().toString());
}
@Override
public Consumer visit(QosException.Unavailable _exception) {
return _exchange -> {};
}
};
private enum UndertowQosResponseEncodingAdapter implements QosResponseEncodingAdapter {
INSTANCE;
@Override
public void setHeader(HttpServerExchange exchange, String headerName, String headerValue) {
exchange.getResponseHeaders().put(HttpString.tryFromString(headerName), headerValue);
}
}
}
© 2015 - 2025 Weber Informatics LLC | Privacy Policy