H2 Console configuration:


RestApi Basics :

Annotations :

  1. @SpringBootApplication
  2. @RestController
  3. @AutoWired
  4. @RequestBody
  5. @PathVariable
  6. @ControllerAdvice
  7. @ExceptionHandler
  8. @Valid
  9. @Past
  10. @GeneratedValue

Basic Questions

  1. How are our request is handled? Dispatcher servlet - It handles root path and based on the mapping requested by browser it provides the requested link. AutoConfiguration (DispatcherServletAutoConfiguration)

  2. How does bean got converted to JSON? @ResponseBody + JacksonHTTPSMessageConverter AutoConfiguration(JacksonHttpsMessageConverter)

  3. Who is configuring Error Mapping? AutoConfiguration(ErrorMvcAutoConfiguration)

  4. How are all the jars available? When we create starter project then we can choose what all things we want(Spring boot starter web, tomcat, jackson)

  5. How exceptions are handled? ResponseEntityExceptionHandler is the class which handles the exception.

Path Parameters

public SomeClassName function(@PathVariable("id") long id)

Request Methods

  1. GetMapping - Retrieve Details of resources
  2. PostMapping - create a new resources
  3. PutMapping - update a exisiting resources
  4. PatchMapping - update a part of resources
  5. DeleteMapping - Delete a resources

PostMapping example

public ResponseEntity<User> addUser(@RequestBody User user)

Reponse Status for RestAPI

  1. 200 - success
  2. 201 - created
  3. 204 - No content
  4. 401 - Unauthorized
  5. 400 - Bad Request
  6. 404 - Resource Not Found
  7. 500 - Server Error


return new ResponseEntity(Object,HttpStatus.INTERNAL_SERVER_ERROR);

Exception Handling

1. orElse() - If data is not found then we can return other.
2. if(user==null){
      throw new UserNotFoundException("id:"+id);
   class UserNotFoundException extends RuntimeException{
      public UserNotFoundException(String message){

Custom Exception Structure

 class UserNotFoundException extends RuntimeException{
   public UserNotFoundException(String message){
 public class ErrorDetails{
   private LocalDate timestamp;
   private String message;
   private String details;

   // generate getter, setters, and constructor
 public class CustomizedExceptionHandler extends ResponseEntityExceptionHandler{
   public final ResponseEntity<ErrorDetails> handleAllException(Exception ex,WebRequest request){
      ErrorDetails errorDetails = new ErrorDetails(LocalDate.now(),ex.getMessage(),request.getDescription(false));
      return new ResponseEntity<ErrorDetails>(errorDetails,HttpStatus.INTERNAL_SERVER_ERROR);
   public final ResponseEntity<ErrorDetails> handleUserNotFoundException(Exception ex,WebRequest request){
      ErrorDetails errorDetails = new ErrorDetails(LocalDate.now(),ex.getMessage(),request.getDescription(false));
      return new ResponseEntity<ErrorDetails>(errorDetails,HttpStatus.NOT_FOUND);

DeleteMapping example :

public void deleteById(@PathVariable("id") Long id) {




Valid Annotation Example

public ResponseEntity<User> addUser(@Valid @RequestBody User user){
      return new ResponseEntity<User>(user,HttpStatus.OK)

Note - We have to update our User Bean and add constraints to the fields


@Size(min=2,message="Name should be atleast 2 characters")
String name;

@Past(message="Birth date should be in past")
LocalDate date;

Advanced API Rest Features

Rest API Documentation

  1. Manually maintain documentation
  2. Generate documentation from code

Swagger and Open API

  1. Open API - Standard language Agnostic interface, Discover and Understand Rest API
  2. Swagger - Visualize and Interact with your Rest API.

Library to automate the generation of API Documentation for Spring Boot Rest API:

<!-- https://mvnrepository.com/artifact/org.springdoc/springdoc-openapi-ui -->

Content Negotitation

  1. Same Resource and Same URI have different Representations.
  2. Different Content Type - XML or JSON...
  3. Different Language - English or Dutch...
  4. We can accept head to know what kind of data user expects.
  5. Accept Lanugage Header, Accept MIME Header etc...

With the help of "FasterXML Jackson DataFormat" we can handle Content Negotiation.

<!-- https://mvnrepository.com/artifact/com.fasterxml.jackson.dataformat/jackson-dataformat-xml -->

Add header : accept - application/xml or application/json

Internationalization (I18N)


good.morning.message = Good Morning


good.morning.message = Good Morning in Dutch

Example :

public String helloWordInternationalisation() {
      Locale locale = LocaleContextHolder.getLocale();
      return messageSource.getMessage("good.morning.message",null,"Default Message", locale);


  1. We can implement versioning by creating two paths ex : /v1/student and /v2/student
  2. We can also implement versioning with the help of params ex : /student?version=1 and /student?version=2
// Using different path

public Student version1Student() {
      return new Student1("Bob Charlie");

public Student version2Student() {
      return new Student2("Bob","Charlie");

// Using different Parameters (/student?version=1)

public Student version1Student() {
      return new Student1("Bob Charlie");

public Student version2Student() {
      return new Student2("Bob","Charlie");

// Using different Header

@GetMapping(path="/student",headers ="X-API-VERSION=1")
public Student version1Student() {
	return new Student("Bob Charlie");

@GetMapping(path="/student",headers ="X-API-VERSION=2")
public Student version2Student() {
	return new Student("Bob","Charlie");


How to perform subsequent actions?

  • We will provide data and links to perform subsequent action with the help of hateoas.

Implmentation option:

  1. We need to create bean with custom format and implement them.
  2. Use standard Implementation - HAL or Spring HATEOAS

Import the class and its static methods:

import org.springframework.hateoas.server.mvc.WebMvcLinkBuilder;
import static org.springframework.hateoas.server.mvc.WebMvcLinkBuilder.*;

Implementation of Hateoas

public List<UserEntity> retrieveAllUsers(){
	return userServiceImpl.getAll();

public EntityModel<UserEntity> hateoasGetByID(@PathVariable("id") Long id) {
	UserEntity user = userServiceImpl.getById(id).orElse(null);
	EntityModel<UserEntity> entityModel = EntityModel.of(user);
	WebMvcLinkBuilder link = linkTo(methodOn(this.getClass()).retrieveAllUsers());
	return entityModel;

Customizing the Response

  1. Change fields name - @JsonProperty("user_name")
private String name;
  1. Filtering
    • Static Filtering - @JsonIgnore, @JsonIgnoreProperties (It will be added in all the URI)
    private String password;
    or on class level also we can use
    class UserEntity{
    	// class implementation
    • Dynamic Filtering - MappingJacksonValue, @JsonFilter with FilterProvider

Spring Boot Actuator

  • Monitoring API with Actuator

application.properties :



http://localhost:8080/actuator/beans http://localhost:8080/actuator/env http://localhost:8080/actuator/metrics http://localhost:8080/actuator/metrics/http.server.request http://localhost:8080/actuator/mappings

HAL Explorer

To exlore the api we can use HAL Explorer


How to use foreign key:

public class Post {
	int id;
	String content;
	@ManyToOne(fetch = FetchType.LAZY)
	UserEntity userEntity;
	// create getter, setters, equals and hashcode methods

public class UserEntity {
	private Long id;
	private String name;
	private String date;
	List<Post> posts;
	// create getter, setter, equals and hashcode methods

Spring Security




Spring Security with the help of Pop Up security form:

package com.ImplementAll.security;

import org.springframework.context.annotation.Bean;
import org.springframework.context.annotation.Configuration;
import org.springframework.security.config.annotation.web.builders.HttpSecurity;
import org.springframework.security.web.SecurityFilterChain;

import static org.springframework.security.config.Customizer.withDefaults;

public class SpringSecurityConfiguration {
	public SecurityFilterChain filterChain(HttpSecurity httpSecurity) throws Exception{
		// 1. All request should be authenticated
		httpSecurity.authorizeHttpRequests(auth -> auth.anyRequest().authenticated());
		// 2. If a request is not authenticated, a web page is shown
		// 3. Disable CSRF -> POST, PUT
		return httpSecurity.build();

Custom Annotations

  1. Marker interface
  2. Single Valued
  3. Multi valued

Element Type - TYPE(class), METHOD(functions), FIELDS


@Target({ElementType.TYPE, ElementType.FIELDS}) 
@interface MyAnno {
	// methods
	int myValue() default 0; 

@MyAnno(myValue = 347)
public class Demo{