rspec/rules/S2230/java/rule.adoc

== Why is this an issue?

Marking a non-`public` method `@Transactional` is both useless and misleading because Spring does not recognize non-`public` methods, and so makes no provision for their proper invocation.
Nor does Spring make provision for the methods invoked by the method it called.


Therefore marking a `private` method, for instance, `@Transactional` can only result in a runtime error or exception if the method is annotated as `@Transactional`.

== How to fix it
Make the method public or remove the `@Transactional` annotation.

=== Code examples
==== Noncompliant code example

[source,java,diff-id=1,diff-type=noncompliant]
----
@Transactional  // Noncompliant
void doTheThing(ArgClass arg) {
  // ...
}

@Transactional  // Noncompliant
private void doTheOtherThing(ArgClass arg) {
  // ...
}
----

==== Compliant solution

[source,java,diff-id=1,diff-type=compliant]
----
@Transactional
public void doTheThing(ArgClass arg) {
  // ...
}

private void doTheOtherThing(ArgClass arg) {
  // ...
}
----


ifdef::env-github,rspecator-view[]

'''
== Implementation Specification
(visible only on this page)

=== Message

Make this method "public" or remove the "@Transactional" annotation


'''
== Comments And Links
(visible only on this page)

=== on 21 Nov 2014, 12:28:29 Freddy Mallet wrote:
Two questions/remarks:

* Are we talking about private methods or about non-public methods ? If my feeling is correct this rule should only target private methods
* I would tag the rule with the label "spring"
* As this rule is associated to the Reliability characteristic, I think the default severity should be "Critical"

=== on 21 Nov 2014, 13:28:08 Ann Campbell wrote:
The Spring docs are pretty clear that only `public` method can actually be `@Transactional`

=== on 21 Nov 2014, 14:14:44 Freddy Mallet wrote:
Ok Ann, so I would replace :


"Therefore marking a private method"


by


"Therefore marking for instance a private method"


to prevent any misunderstanding

=== on 27 Nov 2018, 13:06:43 Semyon Danilov wrote:
\[~ann.campbell.2] Actually, any method can be Transactional if you're using AspectJ compiler, it's stated in the docs https://docs.spring.io/spring/docs/4.2.x/spring-framework-reference/html/transaction.html[here]. The excerpt:


----
Method visibility and @Transactional

When using proxies, you should apply the @Transactional annotation only to methods with public visibility. If you do annotate protected, private or package-visible methods with the @Transactional annotation, no error is raised, but the annotated method does not exhibit the configured transactional settings. Consider the use of AspectJ (see below) if you need to annotate non-public methods.
----

=== on 27 Nov 2018, 13:33:30 Ann Campbell wrote:
FYI [~alexandre.gigleux] ^

endif::env-github,rspecator-view[]
migrate rule descriptions to new education format 2023-05-03 11:06:20 +02:00			`== Why is this an issue?`

Modify rule S2230: LaYC review [SONARJAVA-4490] (#2547) Co-authored-by: Marco Kaufmann <83189575+kaufco@users.noreply.github.com> 2023-07-20 15:12:52 +02:00			Marking a non-`public` method `@Transactional` is both useless and misleading because Spring does not recognize non-`public` methods, and so makes no provision for their proper invocation.
			`Nor does Spring make provision for the methods invoked by the method it called.`
Restructure one-lang rspecs 2021-04-28 16:49:39 +02:00

Modify rule S2230: LaYC review [SONARJAVA-4490] (#2547) Co-authored-by: Marco Kaufmann <83189575+kaufco@users.noreply.github.com> 2023-07-20 15:12:52 +02:00			Therefore marking a `private` method, for instance, `@Transactional` can only result in a runtime error or exception if the method is annotated as `@Transactional`.
Restructure one-lang rspecs 2021-04-28 16:49:39 +02:00
Modify rule S2230: LaYC review [SONARJAVA-4490] (#2547) Co-authored-by: Marco Kaufmann <83189575+kaufco@users.noreply.github.com> 2023-07-20 15:12:52 +02:00			`== How to fix it`
			Make the method public or remove the `@Transactional` annotation.
Fix the missing default metadata fields 2021-04-28 18:08:03 +02:00
Modify rule S2230: LaYC review [SONARJAVA-4490] (#2547) Co-authored-by: Marco Kaufmann <83189575+kaufco@users.noreply.github.com> 2023-07-20 15:12:52 +02:00			`=== Code examples`
			`==== Noncompliant code example`
Restructure one-lang rspecs 2021-04-28 16:49:39 +02:00
Diff blocks: fix some incorrect use for java (#2801) 2023-08-10 17:12:37 +02:00			`[source,java,diff-id=1,diff-type=noncompliant]`
Restructure one-lang rspecs 2021-04-28 16:49:39 +02:00			`----`
			`@Transactional // Noncompliant`
Modify rule S2230: LaYC review [SONARJAVA-4490] (#2547) Co-authored-by: Marco Kaufmann <83189575+kaufco@users.noreply.github.com> 2023-07-20 15:12:52 +02:00			`void doTheThing(ArgClass arg) {`
			`// ...`
			`}`

			`@Transactional // Noncompliant`
			`private void doTheOtherThing(ArgClass arg) {`
			`// ...`
			`}`
			`----`

			`==== Compliant solution`

Diff blocks: fix some incorrect use for java (#2801) 2023-08-10 17:12:37 +02:00			`[source,java,diff-id=1,diff-type=compliant]`
Modify rule S2230: LaYC review [SONARJAVA-4490] (#2547) Co-authored-by: Marco Kaufmann <83189575+kaufco@users.noreply.github.com> 2023-07-20 15:12:52 +02:00			`----`
			`@Transactional`
			`public void doTheThing(ArgClass arg) {`
			`// ...`
			`}`

			`private void doTheOtherThing(ArgClass arg) {`
Restructure one-lang rspecs 2021-04-28 16:49:39 +02:00			`// ...`
			`}`
			`----`
Fix the missing default metadata fields 2021-04-28 18:08:03 +02:00
Export comments and rspec-to-rspec links from jira 2021-06-02 20:44:38 +02:00
Fix the comment display: rule-id, timestamp, GH visibility, link direction 2021-06-03 09:05:38 +02:00			`ifdef::env-github,rspecator-view[]`
RULEAPI-666: Migrate the "List of parameters", "Highlighting" and "Message" fields from jira RSPEC (#346) 2021-09-20 15:38:42 +02:00
			`'''`
			`== Implementation Specification`
			`(visible only on this page)`

Inline adoc when include has no additional value (#1940) Inline adoc files when they are included exactly once. Also fix language tags because this inlining gives us better information on what language the code is written in. 2023-05-25 14:18:12 +02:00			`=== Message`

			`Make this method "public" or remove the "@Transactional" annotation`

RULEAPI-666: Migrate the "List of parameters", "Highlighting" and "Message" fields from jira RSPEC (#346) 2021-09-20 15:38:42 +02:00
RULEAPI-576: add a horizontal rule between rule description and comments 2021-06-08 15:52:13 +02:00			`'''`
Export comments and rspec-to-rspec links from jira 2021-06-02 20:44:38 +02:00			`== Comments And Links`
			`(visible only on this page)`

Inline adoc when include has no additional value (#1940) Inline adoc files when they are included exactly once. Also fix language tags because this inlining gives us better information on what language the code is written in. 2023-05-25 14:18:12 +02:00			`=== on 21 Nov 2014, 12:28:29 Freddy Mallet wrote:`
			`Two questions/remarks:`

			`* Are we talking about private methods or about non-public methods ? If my feeling is correct this rule should only target private methods`
			`* I would tag the rule with the label "spring"`
			`* As this rule is associated to the Reliability characteristic, I think the default severity should be "Critical"`

			`=== on 21 Nov 2014, 13:28:08 Ann Campbell wrote:`
Modify rule S2230: LaYC review [SONARJAVA-4490] (#2547) Co-authored-by: Marco Kaufmann <83189575+kaufco@users.noreply.github.com> 2023-07-20 15:12:52 +02:00			The Spring docs are pretty clear that only `public` method can actually be `@Transactional`
Inline adoc when include has no additional value (#1940) Inline adoc files when they are included exactly once. Also fix language tags because this inlining gives us better information on what language the code is written in. 2023-05-25 14:18:12 +02:00
			`=== on 21 Nov 2014, 14:14:44 Freddy Mallet wrote:`
			`Ok Ann, so I would replace :`


			`"Therefore marking a private method"`


Diff blocks: fix some incorrect use for java (#2801) 2023-08-10 17:12:37 +02:00			`by`
Inline adoc when include has no additional value (#1940) Inline adoc files when they are included exactly once. Also fix language tags because this inlining gives us better information on what language the code is written in. 2023-05-25 14:18:12 +02:00

			`"Therefore marking for instance a private method"`


			`to prevent any misunderstanding`

			`=== on 27 Nov 2018, 13:06:43 Semyon Danilov wrote:`
			`\[~ann.campbell.2] Actually, any method can be Transactional if you're using AspectJ compiler, it's stated in the docs https://docs.spring.io/spring/docs/4.2.x/spring-framework-reference/html/transaction.html[here]. The excerpt:`


			`----`
			`Method visibility and @Transactional`

			`When using proxies, you should apply the @Transactional annotation only to methods with public visibility. If you do annotate protected, private or package-visible methods with the @Transactional annotation, no error is raised, but the annotated method does not exhibit the configured transactional settings. Consider the use of AspectJ (see below) if you need to annotate non-public methods.`
			`----`

			`=== on 27 Nov 2018, 13:33:30 Ann Campbell wrote:`
			`FYI [~alexandre.gigleux] ^`

Fix the comment display: rule-id, timestamp, GH visibility, link direction 2021-06-03 09:05:38 +02:00			`endif::env-github,rspecator-view[]`