In this chapter, you will extend the e-commerce application by integrating it with external APIs for shipping and inventory. Learn to use Java's HttpClient to send and receive HTTP requests, and handle JSON data with Jackson for serialization and deserialization. Understand how to implement network timeouts and create robust systems that can handle API failures or unexpected changes.

Why the Store Can No Longer Operate in Isolation

EASY

So far, our e-commerce backend has operated independently, managing its own database and business logic. However, in the real world, systems rarely function in isolation. For example, to determine accurate delivery dates, our store must communicate with external shipping services like FedEx or UPS to get real-time shipping estimates.

This interaction between different systems is typically done over HTTP (Hypertext Transfer Protocol). When our Java server reaches out to a shipping provider's server, it acts as an HTTP Client, initiating a request and expecting a response.

Understanding how to make HTTP requests in Java is a crucial step in expanding your backend's capabilities. It allows your application to integrate with external services, transforming it from a standalone system into a connected part of a global network.

Incorporating external APIs into your backend not only enriches the functionality of your application but also enhances user experience by providing up-to-date and accurate information.

By mastering HTTP communication, you unlock the potential to leverage powerful third-party services, making your application more dynamic and responsive to user needs.

Modern applications rely on data from various external services.
HTTP is the standard protocol for server-to-server communication.
Our backend becomes an HTTP Client when accessing external APIs.
Integrating APIs enriches application functionality and user experience.
Mastering HTTP requests is key to building connected systems.


// Example of making an HTTP request in Java
HttpClient client = HttpClient.newHttpClient();
HttpRequest request = HttpRequest.newBuilder()
    .uri(URI.create("https://api.shippingprovider.com/estimate?zip=" + cart.getZipCode()))
    .build();

HttpResponse<String> response = client.send(request, HttpResponse.BodyHandlers.ofString());
ShippingEstimate estimate = parseEstimate(response.body());

Understanding HttpClient and the Request Lifecycle

EASY

In the past, making HTTP requests in Java was cumbersome and often required third-party libraries. With Java 11, the introduction of `java.net.http.HttpClient` changed that, offering a streamlined, built-in way to handle HTTP communication. This modern API supports HTTP/2 and aligns with current web standards, making it a go-to choice for network operations.

To initiate a request, start by creating an `HttpClient` instance. This client will manage the connection and communication with the server. Next, construct an `HttpRequest` object. This object specifies the URL you want to reach, the HTTP method (such as `GET` or `POST`), and any headers needed, like authentication tokens.

Once your request is ready, use the `HttpClient` to send it. The `send` method will block the current thread, waiting for a response. This blocking nature is due to the time it takes for data to travel over the network, which can be tens or hundreds of milliseconds.

Understanding this request-response lifecycle is crucial for integrating with APIs, as it represents the basic pattern of communicating with web services. As you get more comfortable, you'll explore asynchronous requests to improve performance.

In interviews, you might be asked about the advantages of using `HttpClient` over older methods or libraries. Highlight its modern features, such as HTTP/2 support and the fluent API design, which simplifies code readability and maintenance.

Java 11's HttpClient simplifies HTTP requests with a fluent API.
HttpClient supports modern web standards, including HTTP/2.
An HttpRequest specifies the URL, method, and headers.
The `send` method blocks the thread until a response is received.
Understanding the request lifecycle is key for API integration.


HttpClient client = HttpClient.newHttpClient();

HttpRequest request = HttpRequest.newBuilder()
    .uri(URI.create("https://api.shipping.com/v1/rates?zip=90210"))
    .header("Authorization", "Bearer my-api-key")
    .GET()
    .build();

HttpResponse<String> response = client.send(request, HttpResponse.BodyHandlers.ofString());
System.out.println("Response status: " + response.statusCode());

Parsing the Response: Understanding JSON

EASY

When your Java application communicates with a shipping API, it receives structured data, not plain text. This data includes details like delivery dates, carrier names, and costs. JSON, or JavaScript Object Notation, has become the standard for this structured data exchange over HTTP.

JSON is favored because it is lightweight and easy to read, using key-value pairs and arrays to represent complex data. This makes it ideal for transferring data over the web.

However, Java doesn't natively parse JSON strings. Attempting to manually extract data using string operations or regular expressions is risky. APIs can change, and such methods are brittle, leading to errors when the structure changes.

Instead, use a library to convert JSON into Java objects. Libraries like Jackson or Gson can map JSON data to Java classes, ensuring your code is robust and adaptable to changes in the API.

Understanding how to parse JSON effectively is crucial for working with modern web APIs. It ensures your application can handle data changes gracefully and maintain its functionality.

JSON is the standard format for exchanging data in web APIs.
It uses key-value pairs and arrays to represent complex data structures.
Java requires libraries like Jackson or Gson to parse JSON effectively.
Manual string manipulation of JSON is error-prone and should be avoided.
Using a library ensures your code remains stable even if the API changes.


/* Example JSON response from the shipping API:
{
  "carrier": "FastShip",
  "estimatedDays": 3,
  "costCents": 1250
}
*/

Mastering Serialization and Deserialization with Jackson

MID

Serialization is the process of converting Java objects into JSON strings, while deserialization is the reverse—turning JSON strings back into Java objects. These processes are crucial for interacting with web APIs, where JSON is the standard data format.

In Java, Jackson is a leading library for handling JSON. At its core is the `ObjectMapper`, a versatile tool that simplifies the conversion between JSON and Java objects. By using reflection, it maps JSON keys to Java fields automatically, making your code cleaner and less error-prone.

Consider a scenario where you're working with a `ShippingEstimate` record. The `ObjectMapper` can deserialize a JSON response from an API into this record with minimal setup. This automation is particularly useful when dealing with complex JSON structures.

To make your application robust against changes in external APIs, configure the `ObjectMapper` to ignore unknown properties. This way, if a new field like `"trackingUrl"` is added to the API response, your application won't break, even if your Java class doesn't have a corresponding field yet.

This flexibility is essential for maintaining stable applications in environments where APIs can evolve over time. Understanding how to effectively use Jackson can significantly enhance your ability to integrate with external services.

Serialization: Convert Java objects to JSON strings.
Deserialization: Transform JSON strings back into Java objects.
Jackson's `ObjectMapper` simplifies field mapping with reflection.
Configure Jackson to ignore unknown properties for API resilience.
Use `ObjectMapper` to handle complex JSON structures effortlessly.


ObjectMapper mapper = new ObjectMapper()
    .configure(DeserializationFeature.FAIL_ON_UNKNOWN_PROPERTIES, false);

// Deserializing the HTTP response body into a Java Record
ShippingEstimate estimate = mapper.readValue(response.body(), ShippingEstimate.class);
System.out.println("Shipping cost: " + estimate.costCents());

Handling Network Failures: Timeouts and Retries

MID

When your application communicates over a network, things can go wrong. Imagine your app tries to contact a shipping API, but the server is down. Without proper handling, your Java `HttpClient` might hang indefinitely, waiting for a response that never comes. This can lead to server overload as threads get stuck waiting.

To prevent this, always set timeouts. A connection timeout specifies how long your client should wait to establish a connection. A request timeout limits how long to wait for the server's response. These settings ensure your app doesn't hang indefinitely.

But what if the failure is just a temporary glitch? Network issues can be transient, like a brief router problem. Implementing retries allows your application to automatically attempt the request again, often resolving the issue without user intervention.

Retries should be used judiciously. They can help handle temporary issues, but excessive retries can cause further delays and load. Balance is key: set a reasonable number of retries and consider exponential backoff to space them out.

Network failures are inevitable; prepare with timeouts and retries.
Without timeouts, your server risks thread exhaustion.
Configure connection and request timeouts to prevent indefinite waits.
Retries can resolve transient network issues, but use them wisely.
Consider exponential backoff to manage retry timing effectively.


HttpClient safeClient = HttpClient.newBuilder()
    .connectTimeout(Duration.ofSeconds(2)) // Abort if connection takes > 2s
    .build();

HttpRequest request = HttpRequest.newBuilder()
    .uri(URI.create("https://api.shipping.com/rates"))
    .timeout(Duration.ofSeconds(3)) // Abort if response takes > 3s
    .build();

Asynchronous HTTP for Enhanced Performance

MID

Consider an e-commerce application that needs to verify stock levels from three different external warehouses. If you handle these requests one after the other, the total response time can add up quickly, leaving users waiting unnecessarily.

Java's `HttpClient` offers a more efficient approach with asynchronous requests using `sendAsync`. This method allows you to initiate a request without blocking the thread, returning a `CompletableFuture` immediately. This means you can send all three requests at once.

By executing these network calls in parallel, the overall wait time is reduced to the duration of the longest single request. For instance, if each warehouse takes 500ms to respond, the total wait time remains 500ms, not 1500ms.

Understanding asynchronous I/O is essential for optimizing performance, especially in microservice architectures where multiple services communicate frequently. It ensures that your application remains responsive and efficient.

When using `CompletableFuture`, you can also handle responses once all requests are completed, allowing you to process data collectively or handle errors more gracefully.

Synchronous HTTP calls block the application, waiting for each request to complete before starting the next.
Asynchronous HTTP requests with `sendAsync` free up threads immediately, improving resource utilization.
With `CompletableFuture`, you can run multiple requests in parallel and handle their results collectively.
Parallel execution significantly reduces wait times, crucial for responsive backend systems.
Mastering asynchronous I/O is vital for efficient microservice communication.


CompletableFuture<HttpResponse<String>> futureA = client.sendAsync(reqA, BodyHandlers.ofString());
CompletableFuture<HttpResponse<String>> futureB = client.sendAsync(reqB, BodyHandlers.ofString());
CompletableFuture<HttpResponse<String>> futureC = client.sendAsync(reqC, BodyHandlers.ofString());

// Wait for all concurrent requests to finish
CompletableFuture.allOf(futureA, futureB, futureC).join();
System.out.println("Warehouse A responded: " + futureA.get().statusCode());
System.out.println("Warehouse B responded: " + futureB.get().statusCode());
System.out.println("Warehouse C responded: " + futureC.get().statusCode());

Socket Programming: Understanding the Foundation of HTTP

ADVANCED

In the world of web APIs, `HttpClient` abstracts away the complexities of network communication. However, understanding the fundamentals of socket programming is crucial, especially in advanced interviews or when optimizing backend systems.

At the core of every HTTP request is a TCP Socket. This socket forms a continuous two-way communication channel between two IP addresses, enabling data exchange. When you use `java.net.Socket`, the client connects to a server's IP and port, establishing a handshake to initiate communication.

HTTP is essentially a protocol that formats text over this byte stream. It defines how requests and responses are structured, but the underlying data transmission occurs through these raw sockets.

One key reason for understanding raw sockets is connection efficiency. Opening a new TCP socket for each API call is costly due to the required TCP and TLS handshakes. This is where connection pooling comes into play—modern HTTP clients reuse existing sockets to minimize the overhead and improve performance.

By grasping socket programming, you gain insight into why certain optimizations, like connection pooling, are vital for high-performance network applications. This knowledge not only prepares you for technical interviews but also equips you to design more efficient systems.

HTTP requests are built on top of TCP Sockets, which handle the actual data transmission.
Raw sockets communicate through byte streams, not the structured data of HTTP headers or JSON.
Establishing a new TCP connection involves expensive handshakes, impacting performance.
Connection pooling reuses sockets to reduce the cost of establishing new connections.
Understanding sockets helps optimize network throughput and system efficiency.


try (Socket socket = new Socket("api.shipping.com", 80)) {
    PrintWriter out = new PrintWriter(socket.getOutputStream(), true);
    // Constructing an HTTP request manually over a TCP socket
    out.println("GET /rates HTTP/1.1");
    out.println("Host: api.shipping.com");
    out.println("");
}

API Versioning and Backward Compatibility

ADVANCED

APIs are the backbone of modern software systems, but they need to evolve without breaking existing clients. Imagine a shipping API changes a field name from `estimatedDays` to `transitHours`. Without precautions, this change can crash applications relying on the old field name.

Versioning is a key strategy in managing API evolution. Instead of a single endpoint that changes unpredictably, APIs can offer versioned paths like `/v1/rates` and later `/v2/rates`. This approach allows developers to maintain older versions for a transition period, giving clients time to adapt their code.

When designing your own APIs, treat your JSON responses as contracts. Additive changes, such as introducing new fields, are generally safe. However, renaming or removing fields, or altering data types, are considered breaking changes. These require a version increment to avoid breaking client applications.

Think of API versioning like database schema migrations. Just as you wouldn't alter a database schema without a migration plan, you shouldn't change an API without considering its impact on clients.

For Java developers, using a specific version in your HTTP requests ensures that your deserialization logic, such as with Jackson, remains stable. This practice prevents unexpected crashes due to unannounced API changes.

Unplanned JSON changes can break client applications instantly.
API versioning, using paths or headers, allows safe upgrades.
Adding fields is safe; renaming or removing fields requires versioning.
API contracts need the same care as database schemas.
Versioned APIs provide a buffer for client migration.


HttpRequest request = HttpRequest.newBuilder()
    // Requesting a specific version ensures the JSON shape remains strictly what our Jackson mapper expects
    .uri(URI.create("https://api.shipping.com/v2/rates"))
    .build();

Contract Design and Resilient Communication

ADVANCED

When integrating your e-commerce store with external services, you're stepping into the world of distributed systems. These systems include external APIs like shipping, inventory, and payment gateways, which are beyond your direct control.

In Java, resilient networking starts with a cautious approach to these network boundaries. Implement timeouts to avoid indefinite waits, and use libraries like Jackson to handle unexpected JSON formats gracefully. Design Data Transfer Objects (DTOs) to keep your internal logic separate from the web's data structures.

Consider using Circuit Breakers to detect when an external service is down. This pattern allows your system to 'fail fast', saving resources and maintaining overall system stability.

By mastering these strategies, you ensure that if the shipping API fails at 3:00 AM, your application can still function. It might display a message like "Live shipping estimates unavailable", but it won't crash or degrade the user experience.

Treat network boundaries with caution to handle distributed systems effectively.
Use timeouts and flexible JSON handling to prevent external failures from causing internal issues.
Circuit Breakers help detect and manage widespread outages efficiently.
Design DTOs to separate internal logic from external data formats.
Resilient networking is a key skill for senior system designers.


try {
    ShippingEstimate estimate = shippingClient.fetchWithTimeout(cart);
    return calculateTotal(cart, estimate);
} catch (HttpTimeoutException e) {
    // Graceful fallback when the external API fails
    return calculateTotal(cart, ShippingEstimate.fallback());
}

Chapter takeaway

Networking code can be unpredictable. Java developers must anticipate slow or failing APIs, using timeouts and clear JSON handling to ensure reliable and asynchronous communication.