⚡ Claude Code Daily Daily tips for devs
← All tips

Payment API Resilience with Polly Half-Open Monitoring

May 26, 2026

dotnet csharp devtools
🤖

Curated by Jepoy  ·  AI-Generated Content

This article was autonomously generated by an AI pipeline designed and built by Jepoy. The author created the system, prompts, and infrastructure that produces this content — not the article itself. Content is intended for educational purposes and may contain inaccuracies. Always verify technical details before applying in production.

Payment API Resilience with Polly Half-Open Monitoring

As a .NET developer integrating with critical external services like payment gateways, you’ve undoubtedly faced the chaos of intermittent failures. A momentary network blip or a brief surge in traffic on the payment provider’s end can cascade into widespread checkout failures, eroding customer trust and revenue. While simple retry policies are a good first step, they can inadvertently exacerbate the problem by bombarding an already struggling service. This is precisely where Polly’s circuit breaker pattern, and its often-overlooked half-open state monitoring, becomes a cornerstone of robust, resilient .NET applications.

Polly, the resilience library for .NET, empowers you to gracefully handle transient failures. Beyond basic retries, its circuit breaker pattern acts as an intelligent switch. When a service consistently fails, the circuit breaker “trips,” immediately halting further requests for a configured duration. This prevents overwhelming the failing service and gives it time to recover. Crucially, Polly’s “half-open” state offers a more nuanced approach to recovery than a simple timeout. After the breaker trips, it periodically allows a single request to pass through. If this probe succeeds, the circuit resets, resuming normal operation and restoring service much faster when the underlying issue is resolved. If the probe fails, the circuit immediately re-trips, continuing to protect your application and the external service. This controlled “probing” is key to dynamic resilience.

Implementing this requires the Polly NuGet package. You’ll define an AsyncCircuitBreakerPolicy, specifically configuring its CircuitState to leverage the HalfOpen behavior. This involves specifying which exceptions should trigger a re-trip in the half-open state and defining actions, such as logging or notifications, to execute when the circuit enters this transitional state. Consider the following practical example for a hypothetical IPaymentApiClient:

using Polly;
using Polly.CircuitBreaker;
using System;
using System.Net.Http;
using System.Threading.Tasks;

public interface IPaymentApiClient
{
    Task MakePaymentAsync(decimal amount, string cardDetails);
}

public class PaymentApiClient : IPaymentApiClient
{
    private readonly HttpClient _httpClient;
    private readonly AsyncCircuitBreakerPolicy _circuitBreakerPolicy;

    public PaymentApiClient(HttpClient httpClient)
    {
        _httpClient = httpClient;

        _circuitBreakerPolicy = Policy
            .Handle<HttpRequestException>() // Target specific exceptions from HttpClient
            .CircuitBreakerAsync(
                exceptionsAllowedBeforeBreaking: 3, // Tolerates up to 3 consecutive exceptions
                durationOfBreak: TimeSpan.FromSeconds(30), // Stays broken for 30 seconds
                onBreak: (exception, breakDelay) =>
                {
                    // Log the break event, providing context
                    Console.WriteLine($"Payment API circuit broken due to {exception.GetType().Name}. Resting for {breakDelay.TotalSeconds}s.");
                },
                onReset: () =>
                {
                    // Signal that the service is available again
                    Console.WriteLine("Payment API circuit reset. Service is available.");
                },
                onHalfOpen: () =>
                {
                    // Indicate that a probe attempt is being made
                    Console.WriteLine("Payment API circuit half-open: Probing for recovery.");
                }
            );
    }

    public async Task MakePaymentAsync(decimal amount, string cardDetails)
    {
        // Execute the payment request within the circuit breaker's protection
        await _circuitBreakerPolicy.ExecuteAsync(async () =>
        {
            // In a real-world scenario, this would be your actual HttpClient call
            // to the payment gateway. The following line simulates potential failures.
            if (new Random().Next(0, 5) == 0) // Simulates a 20% failure rate
            {
                throw new HttpRequestException("Simulated payment API network error.");
            }
            Console.WriteLine($"Payment of {amount} processed successfully.");
            // Actual call: await _httpClient.PostAsJsonAsync("https://api.paymentgateway.com/v1/payments", new { Amount = amount, Card = cardDetails });
        });
    }
}

A critical nuance to understand about the half-open state is its reliance on a single successful execution to transition back to a closed state. If the underlying intermittent issue is still flaring up, and that sole probing call happens to land on another temporary outage, the circuit breaker will immediately re-trip. This can lead to a prolonged disruption, even when the service is mostly functional. Therefore, carefully tune exceptionsAllowedBeforeBreaking and durationOfBreak based on the observed failure patterns and your business’s tolerance for service unavailability. Enhance your onBreak, onReset, and onHalfOpen callbacks with detailed logging to provide actionable insights into your payment API’s resilience.