---

# 🚦 FastAPI — HTTPException & Status

### 🎯 Intent

Return **clear HTTP errors and success codes** in FastAPI using `HTTPException`, `Response`, and `status` constants for predictable API behavior.

---

### 🧩 Core Components

1. **❗ `HTTPException`**

   * Raise to abort with an error.
   * Supports `status_code`, `detail`, `headers`.

2. **🏷️ `status` Module**

   * Use constants (`status.HTTP_404_NOT_FOUND`) for clarity and consistency.

3. **📤 Success Codes**

   * Set with `status_code=...` per route.
   * Example: `201 CREATED` for POST, `204 NO CONTENT` for DELETE.

4. **🧾 Validation vs Business Errors**

   * Validation errors → automatic `422` (Pydantic).
   * Business errors → raise `HTTPException` (400, 401, 403, 409).

5. **🔄 Custom Error Shapes**

   * Exception handlers/middleware can format responses (e.g., `{"error": {"message": ...}}`).

6. **🪪 Auth-Specific Headers**

   * `WWW-Authenticate` for 401 responses.
   * `Retry-After` for rate limits (429).

7. **🧰 `Response` for Manual Control**

   * Return `Response(status_code=204)` when no content.

8. **⚔️ Conflict & Idempotency**

   * `409 CONFLICT` → duplicates or version errors.
   * `404` → not found.
   * `401` → unauthenticated.
   * `403` → forbidden.

9. **🧪 Testing**

   * Assert status code and error JSON shape in tests.

10. **🛡️ Security**

* Don’t leak internals (stack traces, SQL).
* Keep client messages concise; log details internally.

---
