> For the complete documentation index, see [llms.txt](https://docs.fortifiedid.se/httpclient/llms.txt). Markdown versions of documentation pages are available by appending `.md` to page URLs; this page is available as [Markdown](https://docs.fortifiedid.se/httpclient/httpclient.md). # HttpClient ## Introduction Platform module for application outbound HTTP requests. This module is used by other modules to perform outbound HTTP request. Multiple instances of the module can be configured to support outbound request with different properties, like timeouts, proxies or SSL/TLS settings. Callers targets the requested instance by its name which must be configuration unique. ## Configuration {% hint style="info" %} **Module name:** `HttpClient` {% endhint %} {% tabs %} {% tab title="Properties" %}
NameDescriptionDefaultMandatory
nameConfiguration unique instance name."default"false
follow_redirectsTurn on/off HTTP redirect support. By default redirects are NOT followed, instead the redirect response is returned to caller.falsefalse
enable_user_agentEnables the User-Agent request header.falsefalse
user_agentCustom User-Agent request header value."Fortified-HttpClient"false
enable_keep_aliveEnable HTTP keep-alive.falsefalse
enable_sslEnable support for SSL. If not enabled HTTPS connections will fail.truefalse
enable_alpnEnable support for ALPN (Application Layer Protocol Negotiation), required for using HTTP/2 over SSL/TLS.falsefalse
request_timeout_msRequest timeout in ms. If a request takes longer than this amount it is aborted. 0 means no timeout.2000false
connect_timeout_msConnection timeout in ms. If a connection takes longer than this amount to connect it is aborted. 0 means no timeout. Note that if this value is larger than request_timeout_ms, request timeout will occur first.1000false
idle_timeout_msConnection idle timeout in ms. A connection that has been idle for more than this amount of ms is closed. 0 means no timeout.1000false
ssl_truststoreConfiguration truststore object for SSL/TLS.false
ssl_truststore_pathPath to truststore in PKCS12 or JKS format.false
ssl_truststore_passwordTruststore password.false
ssl_keystoreConfiguration keystore object for SSL/TLS.false
ssl_key_aliasAlias of key to use. If NOT specified, the first alias of the key is used.false
ssl_key_passwordKey password. If NOT specified, ssl_keystore_password will be used.false
ssl_keystore_pathPath to SSL/TLS keystore in PKCS12 or JKS format.false
ssl_keystore_passwordKeystore password.false
ssl_keystore_aliasAlias of key to use. Note: this property must be used for alias in combination with ssl_keystore_path.false
ssl_trust_allFlag to enable trust for all server certs - use only for test.falsefalse
ssl_verify_hostFlag to disable certificate hostname verification. Setting this flag to false means that client will accept server certificates with non-matching host/dns-name(s). Use only for test.truefalse
non_proxy_hostsList of hosts that should bypass proxy settings.false
use_proxyFlag turning on/off use of proxyfalsefalse
proxyProxy configuration object.false
proxy.hostHostname or IP of proxy to use."localhost"false
proxy.portProxy port.3128false
proxy.usernameProxy username (optional, use only if required by proxy).false
proxy.passwordProxy password (optional, use only if required by proxy).false
circuit_breakerCircuit breaker configuration.false
{% endtab %} {% tab title="Example" %} ```json { "name": "HttpClient", "enabled": true, "config": { "name": "http01", "enable_ssl": true, "ssl_truststore_path": "", "ssl_truststore_password": "password" "use_proxy": true, "non_proxy_hosts": "10.1.10.10,10.1.10.11", "proxy": { "host": "10.1.1.1", "port": 8080 }, "circuit_breaker": { "enabled": true, "default_config": { "maxFailures": 10, "timeout": 1900, "resetTimeout": 8000 } } } } ``` {% endtab %} {% endtabs %} ## Metrics This module produces metrics for each request. {% tabs %} {% tab title="Naming" %}
namefortified.internal.httpclient_<metric-name>
tagsname=<instance-name>
{% endtab %} {% tab title="Metrics" %}
NameTypeDescription
pendinggaugeNumber of pending requests
successcounterNumber of successful request
failurecounterNumber of failed request
requesttimerRequest time in ms
{% endtab %} {% tab title="JMX example" %} ``` // JMX name for HttpClient request failure counter on // module instance "default" metrics:name=fortifiedInternalHttpclient_failure.name.default,type=meters ``` {% endtab %} {% endtabs %} See separate metrics documentation on how metrics work and how to consume metric data. ## Circuit breaker This module has support for circuit breaker. The circuit breaker monitor requests and keeps track of the time and the number of failures and opens the circuit when a configurable threshold is reached, resulting in instant failure (i.e no wait for request timeout etc) for a better end user experience and for off-loading the application by reducing resources waiting for a likely timeout. The circuit breaker does not prevent failures by performing retries etc. {% tabs %} {% tab title="Properties" %}
NameDescriptionDefaultMandatory
enabledFlag turning on/off circuit breaker.truefalse
default_config.maxFailuresFailure threshold. When the number of failures reaches this value, the circuit is opened and new request will instantly fail.5false
default_config.timeoutTimeout in ms. If a request takes longer then this value it is considered a failure. 2000false
default_config.resetTimeoutTime in ms before the circuit is reset/closed. When this time is reached the circuit will be closed to test if problem still remains. If test is successful, circuit is closed, otherwise it will be opened again.10000false
{% endtab %} {% tab title="Example" %} ```json { "circuit_breaker": { "enabled": true, "default_config": { "maxFailures": 10, "timeout": 1900, "resetTimeout": 8000 } } } ``` {% endtab %} {% endtabs %} ## Troubleshooting ### Keystore errors Path to keystore is invalid/not found: ``` Invalid keystore path: ``` Path to truststore is invalid/not found: ``` Invalid truststore path: ``` Incorrect keystore/truststore password: ``` Failed to load keystore: Keystore was tampered with, or password was incorrect ``` Unknown keystore alias: ``` Failed to get entry '' from keystore: Entry not found: ``` Incorrect key password: ``` Failed to get entry '' from keystore: Cannot recover key ``` ### Timeout getting response ("response timeout") Request did not return within the specified `request_timeout_ms` period: ``` The timeout period of ms has been exceeded while executing / for server : ``` ### Timeout establishing a connection ("connect timeout") Connect timeout occurs when establishing a connection takes too long. Two errors are possible depending on how timeouts are configured. If `request_timeout_ms` is shorter than `connect_timeout_ms`: ``` The timeout of ms has been exceeded when getting a connection to : ``` If connect`_timeout_ms` is shorter than `request_timeout_ms`: ``` connection timed out: /: ``` --- # Agent Instructions This documentation is published with GitBook. GitBook is the documentation platform designed so that both humans and AI agents can read, navigate, and reason over technical content effectively. Learn more at gitbook.com. ## Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://docs.fortifiedid.se/httpclient/httpclient.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.