Back to list
500

Internal Server Error

5xx Server Error

.md

ELI5

Something broke on our end! It's not your fault - our server had a problem and couldn't handle your request.

Server perspective

Use 500 when an unexpected server-side fault prevents the request from being fulfilled and no more specific 5xx status applies.

When to use

  • Return 500 for unhandled exceptions, broken dependencies inside the server, or unexpected runtime failures
  • Use it as a fallback for server faults that are not planned maintenance, upstream gateway errors, or unsupported functionality
  • Unhandled exceptions in server code
  • Database connection failures
  • Configuration errors preventing processing
  • Unexpected system failures

How to respond

  • Log the exception with a request or correlation ID before returning the response
  • Return a stable machine-readable error code and a safe message without leaking stack traces or secrets

Headers to consider

  • No status-specific header is required; include a request ID or tracing header when your API supports incident debugging

Response body

  • Include a concise generic error payload with a stable error code and correlation ID when available

Server-side pitfalls

  • Use a more specific status such as 502, 503, or 504 when the failure mode is known and actionable
  • Do not expose internal exception messages, stack traces, SQL errors, or secret configuration in the response body
  • Client request errors (use 4xx codes)
  • Unsupported functionality or methods (use 501 Not Implemented)
  • Known service unavailability (use 503 Service Unavailable)
  • Bad gateway from upstream (use 502 Bad Gateway)
  • Planned maintenance (use 503 with Retry-After)

Examples

Database connection failure

Request:GET https://api.example.test/api/users
Response:500 Internal Server Error # Headers Content-Type: application/json # Body { "error": "internal_server_error" }

The server failed processing the request and returned a stable error payload. Including a correlation ID in the body helps operators trace the incident in server logs.

References

Related Status Codes

501

Not Implemented

Our server doesn't know how to do what you asked. This feature hasn't been built yet.

502

Bad Gateway

I'm a middleman server, and the server I was trying to talk to gave me a bad or broken response.

503

Service Unavailable

Our service is temporarily down for maintenance or overloaded. Please try again later.

504

Gateway Timeout

I'm a middleman server, and the server I was trying to talk to took too long to respond, so I gave up waiting.