Standardized and easy-to-parse API error responses for Django REST Framework.
After reusing similar code in multiple projects, we realized this might actually help others. The problem we're trying to solve is that DRF exceptions tend to vary in format and therefore require complex parsing logic on the frontend, which generally needs to be implemented in more than one language or framework. This simple package standardizes the exception responses to simplify the parsing logic on the frontend and enable developers to provide clear errors to their users (instead of the cryptic or even shady-looking parsing errors). This package is inspired on the way Stripe API handles errors. See an example below.
You will get predictable responses like these:
// Example 1
{
"type": "validation_error",
"code": "required",
"detail": "This field is required.",
"attr": "name"
}
// Example 2
{
"type": "authentication_error",
"code": "permission_denied",
"detail": "You do not have permission to perform this operation.",
"attr": null
}
instead of these:
// Example 1
{
"name": ["This field is required."]
}
// Example 2
{
"detail": "You do not have permission to perform this operation."
}
Note: Currently we only support JSON responses. If you'd like us to support a different response format, please open an issue or a PR (see Contributing)
To start using DRF Exceptions Hog please follow these instructions:
Install the package with pip
pip install drf-exceptions-hog
Update your DRF configuration on your settings.py
.
REST_FRAMEWORK={
"EXCEPTION_HANDLER": "exceptions_hog.exception_handler",
}
Optionally set additional configuration for the package.
EXCEPTIONS_HOG = {
"EXCEPTION_REPORTING": "exceptions_hog.handler.exception_reporter",
"ENABLE_IN_DEBUG": False,
"NESTED_KEY_SEPARATOR": "__",
"SUPPORT_MULTIPLE_EXCEPTIONS": False,
}
EXCEPTION_REPORTING
: specify a method to call after an exception occurs. Particularly useful to report errors (e.g. through Sentry, NewRelic, ...). Default:exceptions_hog.handler.exception_reporter
ENABLE_IN_DEBUG
: whether exceptions-hog should run whenDEBUG = 1
. It's useful to turn this off in debugging to get full error stack traces when developing. Defaut:False
.NESTED_KEY_SEPARATOR
: customize the separator used for obtaining theattr
name if the exception comes from nested objects (e.g. nested serializers). Default:__
.SUPPORT_MULTIPLE_EXCEPTIONS
: whether exceptions-hog should return all exceptions in an error response. Useful particularly in form and serializer validation where multiple input exceptions can occur.
We're working on more comprehensive documentation. Feel free to open a PR to contribute to this. In the meantime, you will find the most relevant information for this package here.
All responses handled by DRF Exceptions Hog have the following format:
{
"type": "server_error",
"code": "server_error",
"detail": "Something went wrong.",
"attr": null,
"list": null
}
where:
type
entails the high-level grouping of the type error returned (See Error Types).code
is a machine-friendly error code specific for this type of error (e.g.permission_denied
,method_not_allowed
,required
)detail
will contain human-friendly information on the error (e.g. "This field is required.", "Authentication credentials were not provided.").- For security reasons (mainly to avoid leaking sensitive information) this attribute will return a generic error message for unhandled server exceptions, like an
ImportError
. - If you use Django localization, all our exception detail messages support using multiple languages.
- For security reasons (mainly to avoid leaking sensitive information) this attribute will return a generic error message for unhandled server exceptions, like an
attr
will contain the name of the attribute to which the exception is related. Relevant mostly forvalidation_error
s.list
will only be returned when multiple exceptions are enabled and the exception contains multiple exceptions (i.e.type = multiple
).extra
is an extra attribute you can set on an exception to pass through extra content, normally in dict form.
There are some cases when handling multiple exceptions in a single response can be helpful. For instance, if you have a form with multiple fields, each field can have their own validations, and a user could benefit from knowing everything that is wrong in a single pass. You can enable multiple exception support by setting the SUPPORT_MULTIPLE_EXCEPTIONS
setting to True
. When it's enabled, if multiple exceptions are raised (e.g. by a serializer), you will receive a response like this:
{
"type": "multiple",
"code": "multiple",
"detail": "Multiple exceptions ocurred. Please check list for details.",
"attr": null,
"list": [
{
"type": "validation_error",
"code": "required",
"detail": "This field is required.",
"attr": "email"
},
{
"type": "validation_error",
"code": "unsafe_password",
"detail": "This password is unsafe.",
"attr": "password"
}
]
}
Our package introduces the following general error types (but feel free to add custom ones):
authentication_error
indicates there is an authentication-related problem with the request (e.g. no authentication credentials provided, invalid or expired credentials provided, credentials have insufficient privileges, etc.)invalid_request
indicates a general issue with the request that must be fixed by the client, excluding validation errors (e.g. request has an invalid media type format, request is malformed, etc.)multiple
indicates multiple exceptions ocurred (only if enabled). See multiple exceptions for details.server_error
indicates a generic internal server error that needs to be addressed on the server.throttled_error
indicates the request is throttled or rate limited and must be retried by the client at a later time.validation_error
indicates the request has not passed validation and must be fixed by the client (e.g. a required attribute was not provided, an incorrect data type was passed for an attribute, etc.)
Want to help move this project forward? Read our CONTRIBUTING.md.
To run a local copy of the package for development, please follow these instructions:
-
Clone the repository.
-
[Optional]. Install and activate a virtual enviroment. Example:
python3 -m venv env && source env/bin/activate
-
Install the project dependencies and the test dependencies.
python setup.py develop pip install -r requirements-test.txt
-
Run the tests to make sure everything is working as expected.
python runtests.py
-
Start coding!
- This package requires at least Python 3.7 & Django 3.1
- Supported Python versions: 3.7.x, 3.8.x & 3.9.x
- Supported Django versions: 3.1.x & 3.2.x
We ♥ Open Source! This repository is MIT licensed by PostHog. Full license here.