[jira] [Commented] (OFBIZ-13278) Repeated REST API exception results in generic 500 error instead of specific response

Mon, 18 Aug 2025 06:54:39 -0700 


    [ 
https://issues.apache.org/jira/browse/OFBIZ-13278?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=18014615#comment-18014615
 ] 

Jacques Le Roux commented on OFBIZ-13278:
-----------------------------------------

Also I did not reproduce using CURL:

Jacques@LDLC MINGW64 /c/projectsASF/Git/ofbiz-framework (release24.09)
$ curl -k -X GET 
"https://localhost:8443/rest/services/findProductById?inParams=%7B%22idToFind%22:%22GZ-1001%22%7D";
 -H "Content-Type: application/json" -H "Authorization: Bearer 
eyJhbGciOiJIUzUxMiIsInR5cCI6IkpXVCJ9.eyJpYXQiOjE3NTU1MjM4NTMsImV4cCI6MTc1NTUyNTY1MywiaXNzIjoiQXBhY2hlT0ZCaXoiLCJ1c2VyTG9naW5JZCI6ImFkbWluIn0.SZN3cXpNGr2LcZ6eLF7FC0pvYOlEWBlvyLxFsV1xitwKAExNoZOtipcC0Jn9AS3TW
> "
  % Total    % Received % Xferd  Average Speed   Time    Time     Time  Current
                                 Dload  Upload   Total   Spent    Left  Speed
100   189  100   189    0     0   7518      0 --:--:-- --:--:-- --:--:--  7560{
  "statusCode" : 401,
  "statusDescription" : "Unauthorized",
  "errorMessage" : "Unauthorized: The Token's Signature resulted invalid when 
verified using the Algorithm: HmacSHA512"
}

Jacques@LDLC MINGW64 /c/projectsASF/Git/ofbiz-framework (release24.09)
$ curl -k -X GET 
"https://localhost:8443/rest/services/findProductById?inParams=%7B%22idToFind%22:%22GZ-1001%22%7D";
 -H "Content-Type: application/json" -H "Authorization: Bearer 
eyJhbGciOiJIUzUxMiIsInR5cCI6IkpXVCJ9.eyJpYXQiOjE3NTU1MjM4NTMsImV4cCI6MTc1NTUyNTY1MywiaXNzIjoiQXBhY2hlT0ZCaXoiLCJ1c2VyTG9naW5JZCI6ImFkbWluIn0.SZN3cXpNGr2LcZ6eLF7FC0pvYOlEWBlvyLxFsV1xitwKAExNoZOtipcC0Jn9AS3TW
"
  % Total    % Received % Xferd  Average Speed   Time    Time     Time  Current
                                 Dload  Upload   Total   Spent    Left  Speed
100   189  100   189    0     0   9856      0 --:--:-- --:--:-- --:--:--  9947{
  "statusCode" : 401,
  "statusDescription" : "Unauthorized",
  "errorMessage" : "Unauthorized: The Token's Signature resulted invalid when 
verified using the Algorithm: HmacSHA512"
}

Jacques@LDLC MINGW64 /c/projectsASF/Git/ofbiz-framework (release24.09)


> Repeated REST API exception results in generic 500 error instead of specific 
> response
> -------------------------------------------------------------------------------------
>
>                 Key: OFBIZ-13278
>                 URL: https://issues.apache.org/jira/browse/OFBIZ-13278
>             Project: OFBiz
>          Issue Type: Bug
>          Components: rest-api
>    Affects Versions: 24.09.02
>            Reporter: Arashpreet Singh
>            Priority: Major
>
> When a REST API exposed via the {{rest-api}} module is called and an 
> exception occurs during execution, OFBiz initially returns an appropriate 
> error response. However, if the same API is called again and the exception 
> persists, OFBiz returns a generic HTTP 500 Internal Server Error without 
> providing the specific error message or exception details that were returned 
> on the first call.
> *Steps to Reproduce:*
>  # Call a REST API (e.g., {{{}/rest/some-endpoint{}}}) that is expected to 
> raise an exception due to missing input, business logic failure, or invalid 
> state.
>  # Observe the first response – it contains a descriptive error message.
>  # Without fixing the root cause, call the same API again.
>  # The second response returns HTTP 500 Internal Server Error without the 
> original error message.
> *Expected Behavior:*
>  * The API should return a consistent and descriptive error response each 
> time the same exception occurs, not a generic 500 error.



--
This message was sent by Atlassian Jira
(v8.20.10#820010)

Reply via email to