Handling Error Conditions Using a State Machine
In this tutorial, you create an AWS Step Functions state machine with a Catch field
which uses an AWS Lambda function to respond with conditional logic based on error
message
type, a method called function error handling. For more information,
see Function Error Handling in the AWS Lambda Developer Guide.
Note
You can also create state machines that Retry on timeouts or those that
use Catch to transition to a specific state when an error or timeout
occurs. For examples of these error handling techniques, see Examples Using Retry and Using
Catch.
Topics
Step 1: Creating an IAM Role for Lambda
Both Lambda and Step Functions can execute code and access AWS resources (for example, data stored in Amazon S3 buckets). To maintain security, you must grant Lambda and Step Functions access to these resources.
Lambda requires you to assign an IAM role when you create a Lambda function in the same way Step Functions requires you to assign an IAM role when you create a state machine.
To create a role for Lambda
-
Sign in to the IAM console and choose Roles, Create role.
-
On the Select type of trusted entity page, under AWS service, select Lambda from the list, and then choose Next: Permissions.
Note
The role is automatically provided with a trust relationship that allows Lambda to use the role.
-
On the Attach permissions policy page, choose Next: Review.
-
On the Review page, type
MyLambdaRolefor Role Name, and then choose Create role.
The IAM role appears in the list of roles.
Step 2: Creating a Lambda Function That Fails
Use a Lambda function to simulate an error condition.
Important
Ensure that your Lambda function is under the same AWS account and region as your state machine.
To create a Lambda function that fails
-
Log in to the Lambda console and choose Create a function.
-
In the Blueprints section, type
step-functionsinto the filter, and then choose the step-functions-error blueprint. -
In the Basic information section, configure your Lambda function:
-
For Name, type
FailFunction. -
For Role, select Choose an existing role.
-
For Existing role, select the Lambda role that you created earlier.
Note
If the IAM role that you created doesn't appear in the list, the role might still need a few minutes to propagate to Lambda.
-
-
The following code is displayed in the Lambda function code pane:
'use strict'; exports.handler = (event, context, callback) => { function CustomError(message) { this.name = 'CustomError'; this.message = message; } CustomError.prototype = new Error(); const error = new CustomError('This is a custom error!'); callback(error); };The
contextobject returns the error messageThis is a custom error!. -
Choose Create function.
When your Lambda function is created, note its Amazon Resource Name (ARN) in the upper-right corner of the page. For example:
arn:aws:lambda:us-east-1:123456789012:function:FailFunction
Step 3: Testing the Lambda Function
Test your Lambda function to see it in operation.
To test your Lambda function
-
On the
FailFunctionpage, choose Test. -
On the Configure test event dialog box, type
FailFunctionfor Event name, and then choose Create. -
On the
FailFunctionpage, Test your Lambda function.The results of the test (the simulated error) are displayed at the bottom of the page.
Step 4: Creating a State
Machine with a Catch Field
Use the Step Functions console to create a state machine that uses a Task state
with a Catch field. Add a reference to your Lambda function in the
Task state. The Lambda function is invoked and fails during execution.
Step Functions retries the function twice using exponential backoff between retries.
To create the state machine
-
Log in to the Step Functions console and choose Create state machine.
-
On the Create a state machine page, select Templates and choose Catch failure.
-
Name your state machine, for example
CatchStateMachineNote
State machine names must be 1–80 characters in length, must be unique for your account and region, and must not contain any of the following:
-
Whitespace
-
Wildcard characters (
? *) -
Bracket characters (
< > { } [ ]) -
Special characters (
: ; , \ | ^ ~ $ # % & ` ") -
Control characters (
\\u0000-\\u001for\\u007f-\\u009f).
Step Functions allows you to create state machine, execution, and activity names that contain non-ASCII characters. These non-ASCII names don't work with Amazon CloudWatch. To ensure that you can track CloudWatch metrics, choose a name that uses only ASCII characters.
-
-
Create or enter an IAM role.
-
To create a new IAM role for Step Functions, choose Create a role for me, and then choose I acknowledge that Step Functions will create an IAM role which allows access to my Lambda functions.
-
If you have previously created an IAM role for Step Functions, choose I will provide an IAM role ARN and enter your existing IAM role ARN.
Note
If you delete the IAM role that Step Functions creates, Step Functions can't recreate it later. Similarly, if you modify the role (for example, by removing Step Functions from the principals in the IAM policy), Step Functions can't restore its original settings later.
-
-
In the Code pane, add the ARN of the Lambda function that you created earlier to the
Resourcefield, for example:{ "Comment": "A Catch example of the Amazon States Language using an AWS Lambda function", "StartAt": "CreateAccount", "States": { "CreateAccount": { "Type": "Task", "Resource": "arn:aws:lambda:us-east-1:123456789012:function:FailFunction", "Catch": [ { "ErrorEquals": ["CustomError"], "Next": "CustomErrorFallback" }, { "ErrorEquals": ["States.TaskFailed"], "Next": "ReservedTypeFallback" }, { "ErrorEquals": ["States.ALL"], "Next": "CatchAllFallback" } ], "End": true }, "CustomErrorFallback": { "Type": "Pass", "Result": "This is a fallback from a custom Lambda function exception", "End": true }, "ReservedTypeFallback": { "Type": "Pass", "Result": "This is a fallback from a reserved error code", "End": true }, "CatchAllFallback": { "Type": "Pass", "Result": "This is a fallback from any error code", "End": true } } }This is a description of your state machine using the Amazon States Language. It defines a single
Taskstate namedCreateAccount. For more information, see State Machine Structure.For more information about the syntax of the
Retryfield, see Retrying After an Error.Note
Unhandled errors in Lambda are reported as
Lambda.Unknownin the error output. These include out-of-memory errors, function timeouts, and hitting the concurrent Lambda invoke limit. You can match onLambda.Unknown,States.ALL, orStates.TaskFailedto handle these errors. For more information about LambdaHandledandUnhandlederrors, seeFunctionErrorin the AWS Lambda Developer Guide. -
Use the graph in the Visual Workflow pane to check that your Amazon States Language code describes your state machine correctly.
If you don't see the graph, choose
in the Visual
Workflow pane.
-
Choose Create State Machine.
Step 5: Starting a New Execution
After you create your state machine, you can start an execution.
To start a new execution
-
On the
CatchStateMachinepage, choose New execution.The New execution page is displayed.
-
(Optional) To help identify your execution, you can specify an ID for it in the Enter an execution name box. If you don't enter an ID, Step Functions generates a unique ID automatically.
Note
Step Functions allows you to create state machine, execution, and activity names that contain non-ASCII characters. These non-ASCII names don't work with Amazon CloudWatch. To ensure that you can track CloudWatch metrics, choose a name that uses only ASCII characters.
-
Choose Start Execution.
A new execution of your state machine starts, and a new page showing your running execution is displayed.
-
In the Execution Details section, expand the Output section to view the output of your workflow.
-
To view your custom error message, select
CreateAccountin the Visual workflow and expand the Output section.
