Java Design Patterns — A Field Guide for Working Backend Engineers
Which Gang-of-Four pattern to reach for, when, and when to skip patterns entirely. A practical reference for Java backend services.
Architecture
REST API — Layered Backend
Why this matters
Partitions, ordering, and the painful trade-off
More partitions mean more parallelism but also weaker ordering guarantees. Most teams pick a partition count once and never touch it again, then run into ordering bugs eighteen months later. This article frames the decision up front so it doesn't become technical debt.
The Over-Abstraction Trap: Patterns as Chains
The most common failure mode in modern Java backend engineering isn't a lack of design patterns; it's the recursive application of them until the intent is buried under five layers of indirection. We’ve all seen the AbstractTransactionalBaseProxyFactory that exists solely to instantiate a single service.
In a distributed system, every abstraction adds a cognitive tax. If a developer has to open four files to understand how a single POST request is processed, the architecture has failed. We use patterns to manage complexity, not to signal that we’ve read a textbook. When p99 latency spikes because of a bottleneck in a reflection-heavy DynamicProxy, no amount of "clean code" justification matters.
The Strategy Pattern vs. The Branching Hellscape
Consider a payment processing gateway. The naive approach—and the one that inevitably leads to a 2,000-line service class—is the nested if-else or switch block.
// THE WRONG WAY: The God-Method Switch
public void processPayment(PaymentRequest req) {
if (req.getGateway().equals("STRIPE")) {
// 50 lines of Stripe-specific SDK logic
} else if (req.getGateway().equals("ADYEN")) {
// 50 lines of Adyen-specific logic
} else if (req.getGateway().equals("PAYPAL")) {
// 50 lines of PayPal-specific logic
}
}
This violates the Open/Closed Principle. Adding a new provider requires modifying a core service, increasing the risk of regression in unrelated payment flows.
The Strategy Pattern is the antidote, but it’s often over-engineered with manual registries. In a modern Spring-based Java environment, we can leverage dependency injection to build a clean, scalable registry.
```java
// THE RIGHT WAY: Polymorphic Strategy Registry
public interface PaymentProvider {
boolean supports(GatewayType type);
PaymentResponse execute(PaymentRequest request);
}@Service @RequiredArgsConstructor public class StripeProvider implements PaymentProvider { @Override public boolean supports(GatewayType type) { return type == GatewayType.STRIPE; }
@Override public PaymentResponse execute(PaymentRequest request) { // Isolated Stripe logic } }
@Service @RequiredArgsConstructor public class PaymentService { private final List<PaymentProvider> providers;
public PaymentResponse process(PaymentRequest request) { return providers.stream() .filter(p -> p.supports(request.getGateway())) .findFirst() .orElseThrow(() -> new UnsupportedOperationException("No gateway found")) .execute(request); } } ```
By using a List<PaymentProvider> injection, the PaymentService never needs to change. New providers are simply discovered at runtime. This reduced our deployment risk in one project from a "scary core change" to a "sidecar addition," dropping our QA cycle for new integrations from three days to four hours.
Decorator Patterns vs. The Interceptor Bloat
When engineers want to add logging, caching, or rate limiting to a service, they often default to Aspect-Oriented Programming (AOP) with custom annotations like @LogExecutionTime. While AOP is powerful, it creates "magic" behavior that is difficult to debug and invisible to static analysis.
The "wrong" way is hiding critical business side-effects in an @Around advice that developers forget exists. If the caching logic fails, the stack trace becomes a nightmare of Proxies and Interceptors.
Instead, use the Decorator Pattern to wrap core logic. This makes the execution chain explicit.
[ Controller ]
|
[ RateLimitingDecorator ] <-- Check headers/IP
|
[ CachingDecorator ] <-- Check Redis
|
[ ActualServiceImplementation ] <-- The "Real" Work
The implementation relies on the fact that the decorator implements the same interface as the service it wraps.
```java
public class CachingOrderService implements OrderService {
private final OrderService delegate;
private final CacheManager cache;@Override public Order findById(Long id) { return cache.get(id, () -> delegate.findById(id)); } } ```
This is superior to AOP for one primary reason: Unit Testing. You can test the cache logic by passing a mock OrderService to the decorator without spinning up a full Spring Context or dealing with ByteBuddy-generated proxies.
The Builder Pattern: Beyond Lombok’s `@Builder`
We use the Builder pattern to avoid "Telescoping Constructors" (User(id), User(id, name), User(id, name, email)...). However, the common anti-pattern is using a Builder that allows the creation of inconsistent objects. If your Builder allows me to call .build() without a mandatory email field, the pattern is just a glorified setter-collection.
A truly robust Builder uses a Fluent Step Interface to enforce mandatory fields at compile time.
```java
// THE WRONG WAY: Permissive Builder
User u = User.builder().name("John").build(); // Missing required Email!// THE RIGHT WAY: Static Type-Safe Stepper public class User { private final String name; private final String email;
private User(String name, String email) { this.name = name; this.email = email; }
public static NameStep builder() { return new Builder(); }
public interface NameStep { EmailStep withName(String name); } public interface EmailStep { User withEmail(String email); }
private static class Builder implements NameStep, EmailStep { private String name; @Override public EmailStep withName(String name) { this.name = name; return this; }
@Override public User withEmail(String email) { return new User(this.name, email); } } }
// Usage (Compiler enforced): User u = User.builder() .withName("John") .withEmail("john@example.com"); // build() isn't even selectable until email is provided ```
This prevents the "Incomplete Object" runtime errors that often plague large-scale Java batch processors. In a high-throughput system handling 10k events/sec, catching a missing field at compile time vs. seeing it bubble up as a NullPointerException inside a deep persistence layer saves hours of log diving.
The Singleton vs. The Scoped Component
The public static final Singleton INSTANCE is the most abused pattern in Java. In a multi-threaded backend, singletons often become contention points.
The anti-pattern is the "Global State Singleton." I once audited a system where a ConfigurationManager singleton held a HashMap of settings. Under heavy load (2,000 concurrent requests), the synchronized keyword on the get() method caused p99 latency to explode from 40ms to 900ms. The threads were simply waiting in line for a lock on a map that rarely changed.
In modern Java, you should almost never write your own Singleton. Let the IoC container (Spring/Guice) manage the lifecycle. If you need global state, use Immutable data structures or ConcurrentHashMap with computeIfAbsent to avoid lock contention.
Hard Lesson: Replacing a synchronized Singleton with a volatile reference to an immutable Configuration object dropped our lock wait time to zero and halved our CPU usage on the API gateway layer.
The Observer Pattern and the Eventual Consistency Lie
The Observer pattern is often implemented synchronously: when A happens, call B, C, and D in the same thread.
// THE WRONG WAY: Synchronous Observer
public void completeOrder(Order o) {
db.save(o);
emailService.send(o); // What if SMTP is slow?
inventoryService.update(o); // What if this fails?
}
This transforms a simple database write into a distributed transaction nightmare. If inventoryService fails, do you roll back the DB? Does the user get an error for an order that actually saved?
The correct "Backend" version of the Observer pattern is Asynchronous Event Driven Architecture. In Java, this means using an ApplicationEventMulticaster or an external message broker like RabbitMQ or Kafka.
```java
// THE RIGHT WAY: Decoupled Events
@Transactional
public void completeOrder(Order o) {
db.save(o);
eventPublisher.publishEvent(new OrderCompletedEvent(o));
}@Async @EventListener public void handleEmail(OrderCompletedEvent event) { // Retries can happen here without blocking the user } ```
The critical detail here is the @TransactionalEventListener. It ensures the observer only triggers if the database transaction actually commits. Running this asynchronously decoupled our order ingestion from our third-party integrations, ensuring that a 500ms lag from a transactional email provider didn't impact our order success rate.
State Pattern vs. Enum Flag Hell
If your object has a status field and your methods are littered with if (status == PENDING && action == CANCEL), you are living in "State Hell." It’s brittle and impossible to visualize.
The State Pattern moves the logic into state-specific classes. This is particularly vital for long-running workflows like insurance claims or CI/CD pipelines.
```java
public interface OrderState {
void transitionToNext(OrderContext ctx);
}public class PaidState implements OrderState { @Override public void transitionToNext(OrderContext ctx) { ctx.setState(new ShippedState()); // Trigger logistics logic } } ```
Instead of a monolithic OrderProcessor containing all logic for every possible state, each state class handles its own transitions. This isolation makes the code "locally readable"—which is the only kind of readability that matters in a codebase with 100k+ lines of code.
The Factory Pattern and the Reflexive Instantiation Bug
Factory patterns are often used to hide the complexity of object creation. The anti-pattern is the "String-based Dynamic Factory" using Class.forName().
// THE WRONG WAY: Reflection Factory
public Worker getWorker(String type) {
return (Worker) Class.forName("com.app.workers." + type + "Worker").newInstance();
}
This is a security risk (injection), a performance hit (reflection), and it breaks ProGuard/GraalVM native image obfuscation.
In a modern Java backend, the Static Factory Method or a Type-Mapped Supplier Factory is the standard. Use an EnumMap<WorkerType, Supplier<Worker>> to map types to constructors. It is type-safe, allows for pre-instantiation or lazy loading, and is roughly 20x faster than reflection-based instancing in high-frequency loops.
Pruning the Pattern Index
Design patterns are not Lego bricks; they are more like surgical tools. You don't use a scalpel to open a cardboard box.
The biggest indicator of seniority in a backend engineer isn't knowing how to implement a Visitor pattern; it's knowing when a simple for-each loop is better. We reached a point in one of our core services where we deleted a complex Command pattern implementation and replaced it with a simple Map<String, Consumer<Request>>. The result? The code shrunk by 400 lines, the memory footprint decreased because we weren't creating thousands of short-lived Command objects, and the "On-boarding time" for new hires dropped because they didn't have to learn a custom DSL just to add a new API endpoint.
If your pattern requires a README to explain why it exists, it might be the wrong pattern. The best architectures use patterns that are so intuitive they feel like a natural extension of the language, not a layer of bureaucracy on top of it. Choose patterns that make the code self-documenting at the call site, not the implementation site.
What this guide consolidates
The classic Gang-of-Four patterns each had a short page. They have been merged into this single field guide so you can compare them — most real codebases use two or three of these together, rarely just one.
Singleton Pattern in Java
Definition
Ensure a class has exactly one instance with a global access point.
Naive (broken)
public class Cache {
private static Cache INSTANCE;
public static Cache get() {
if (INSTANCE == null) INSTANCE = new Cache();
return INSTANCE;
}
}
Two threads can both see null.
Thread-safe with double-checked locking
public class Cache {
private static volatile Cache INSTANCE;
public static Cache get() {
Cache local = INSTANCE;
if (local == null) {
synchronized (Cache.class) {
local = INSTANCE;
if (local == null) INSTANCE = local = new Cache();
}
}
return local;
}
}
Cleanest: enum
public enum Cache {
INSTANCE;
public void put(String k, Object v) { /* ... */ }
}
JVM guarantees a single instance, serialization-safe.
When NOT to use
- Introduces global state.
- In Spring, beans are singletons by default — use them.
Related tutorials
Factory Pattern Explained with Real Examples
Definition
Move the decision of which concrete class to instantiate out of the caller.
Problem
Notification n = switch (type) {
case EMAIL -> new EmailNotification(smtpHost, port);
case SMS -> new SmsNotification(twilioKey);
case PUSH -> new PushNotification(fcmKey);
};
With a factory
```java
interface NotificationFactory { Notification create(Type type); }class DefaultNotificationFactory implements NotificationFactory { private final Config cfg; DefaultNotificationFactory(Config cfg) { this.cfg = cfg; } public Notification create(Type type) { return switch (type) { case EMAIL -> new EmailNotification(cfg.smtpHost, cfg.smtpPort); case SMS -> new SmsNotification(cfg.twilioKey); case PUSH -> new PushNotification(cfg.fcmKey); }; } } ```
Variants
- Simple Factory — one method picks a class.
- Factory Method — subclasses override to choose the type.
- Abstract Factory — factory of factories, creates families.
Real Java examples
- Calendar.getInstance()
- Logger.getLogger(name)
- Executors.newFixedThreadPool(n)
Related tutorials
Builder Pattern for Clean Object Creation
Definition
Separate construction from representation.
Problem: telescoping constructors
new Pizza(12, true, false, true, true, false, "thin");
Builder solution
```java
public class Pizza {
private final int size;
private final boolean cheese, pepperoni, mushrooms;private Pizza(Builder b) { this.size = b.size; this.cheese = b.cheese; this.pepperoni = b.pepperoni; this.mushrooms = b.mushrooms; }
public static class Builder { private final int size; private boolean cheese, pepperoni, mushrooms; public Builder(int size) { this.size = size; } public Builder cheese() { this.cheese = true; return this; } public Builder pepperoni() { this.pepperoni = true; return this; } public Builder mushrooms() { this.mushrooms = true; return this; } public Pizza build() { return new Pizza(this); } } }
Pizza p = new Pizza.Builder(12).cheese().pepperoni().build(); ```
With Lombok
@Value @Builder
public class Pizza { int size; boolean cheese; boolean pepperoni; boolean mushrooms; }
When to use
- ≥3-4 fields, many optional.
- Want immutability.
Related tutorials
Strategy Pattern for Flexible Business Logic
Definition
Define a family of interchangeable algorithms; let the client choose.
Without Strategy
double shippingCost(Order o, String mode) {
return switch (mode) {
case "STANDARD" -> o.weight() * 0.5;
case "EXPRESS" -> o.weight() * 1.5 + 10;
case "PICKUP" -> 0;
default -> throw new IllegalArgumentException();
};
}
With Strategy
```java
interface ShippingStrategy { double cost(Order o); }class Standard implements ShippingStrategy { public double cost(Order o){return o.weight()*0.5;} } class Express implements ShippingStrategy { public double cost(Order o){return o.weight()*1.5+10;} }
class Checkout { private final ShippingStrategy strategy; Checkout(ShippingStrategy s) { this.strategy = s; } double shipping(Order o) { return strategy.cost(o); } } ```
In Spring Boot
@Service
class ShippingService {
private final Map<String, ShippingStrategy> strategies;
ShippingService(List<ShippingStrategy> all) {
this.strategies = all.stream().collect(toMap(s -> s.getClass().getSimpleName(), s -> s));
}
}
Strategy vs State vs Command
- Strategy — choose how to do something.
- State — behavior based on what the object is.
- Command — encapsulate a request as an object.
Related tutorials
Observer Pattern in Event-Driven Systems
Definition
One-to-many dependency: when one object changes state, observers are notified.
Plain Java
```java
interface OrderObserver { void onPlaced(Order o); }class OrderService { private final List<OrderObserver> observers = new ArrayList<>(); void subscribe(OrderObserver o) { observers.add(o); } void place(Order o) { observers.forEach(obs -> obs.onPlaced(o)); } } ```
With Spring's events
```java
@Service
@RequiredArgsConstructor
class OrderService {
private final ApplicationEventPublisher events;
public void place(Order o) {
events.publishEvent(new OrderPlacedEvent(o));
}
}@Component class EmailListener { @EventListener void on(OrderPlacedEvent e) { /* send confirmation */ } } ```
Adding a new reaction = new EventListener. Zero changes to OrderService.
Async
@Async
@EventListener
void on(OrderPlacedEvent e) { /* runs on a task executor */ }
Pitfalls
- Hidden control flow.
- For cross-process events, use a real broker (Kafka, RabbitMQ).
Related tutorials
Decorator Pattern Explained Simply
Definition
Wrap an object to add behavior while keeping the same interface. Stack decorators to compose features.
Example
```java
interface Greeter { String greet(String name); }class PlainGreeter implements Greeter { public String greet(String name) { return "Hello, " + name; } }
class ShoutingDecorator implements Greeter { private final Greeter inner; ShoutingDecorator(Greeter g) { this.inner = g; } public String greet(String name) { return inner.greet(name).toUpperCase() + "!"; } }
class TimingDecorator implements Greeter { private final Greeter inner; TimingDecorator(Greeter g) { this.inner = g; } public String greet(String name) { long t = System.nanoTime(); try { return inner.greet(name); } finally { System.out.println("took " + (System.nanoTime()-t) + "ns"); } } }
Greeter g = new TimingDecorator(new ShoutingDecorator(new PlainGreeter())); ```
Real-world examples
- java.io streams: new BufferedReader(new InputStreamReader(System.in))
- HTTP clients with logging / retry / metrics interceptors
- Spring AOP (Cacheable, Transactional, Retryable)
When to use
- Add orthogonal features.
- Composable in any order.
Related tutorials
Adapter Pattern in Spring Boot
Definition
Wrap an existing class with a new interface so it can work with code that expects something different.
Example
Your interface:
public interface Notifier { void send(String to, String message); }
Third-party SDK:
public class TwilioSdk {
public void dispatchSms(SmsPayload p) { /* ... */ }
}
Adapter:
@Component
public class TwilioNotifier implements Notifier {
private final TwilioSdk sdk;
public TwilioNotifier(TwilioSdk sdk) { this.sdk = sdk; }
@Override
public void send(String to, String message) {
var payload = new SmsPayload();
payload.setTo(to); payload.setBody(message);
sdk.dispatchSms(payload);
}
}
Benefits
- Third-party API isolated to one file.
- Easier tests.
- Honors DIP.
Adapter vs Decorator vs Facade
- Adapter — same behavior, different interface.
- Decorator — same interface, added behavior.
- Facade — simpler interface in front of a set of classes.
Related tutorials
In production
Where this shows up in the real world
Built Kafka and runs it at trillions of messages per day. The partition design, consumer-group sizing and lag-monitoring patterns covered here are derived from how LinkedIn operates Kafka publicly.
Uber
Routes much of its real-time event traffic through Kafka. The exactly-once semantics and idempotent-consumer patterns in this article are the same ones they describe in their engineering posts.
Uses Kafka for clickstream and recommendation pipelines. The schema-evolution and consumer-rebalance discussion here mirrors the trade-offs they've written about.
Confluent customers
Across financial services and retail, the patterns in this article are the default playbook for getting Kafka into production without dropping or duplicating messages.
Run it fast
Performance considerations
Latency budgets
Define a p95/p99 budget per endpoint before optimizing. For most Software Design & Architecture services, 100–300 ms p95 is a reasonable starting point — measure first, tune after.
CPU & memory
Profile before scaling. A single mis-sized JVM heap or N+1 query usually beats any horizontal scaling gain. Use flame graphs and slow-query logs, not guesses.
Caching
Add caching at the layer with the highest hit ratio (read-through cache for hot reads, edge cache for static responses). Always design the invalidation strategy before the cache itself.
Concurrency
Bound every thread pool, connection pool and queue. Unbounded concurrency is the most common cause of production outages — saturate gracefully, never silently.
Scalability
Prefer horizontal scaling with stateless instances. Push session, cache and coordination state to external systems (Redis, the database, a message broker).
Ship it safely
Security considerations
Authentication
Use proven libraries (Spring Security, Authlib, Passport) and short-lived tokens. Never roll your own JWT parser or password hash function.
Authorization
Default-deny. Express authorization as policies, not scattered if-statements, and test them like business logic.
Secrets management
Keep secrets out of source and out of container images. Use a vault (AWS Secrets Manager, HashiCorp Vault, Doppler) and rotate on a schedule.
Input validation
Validate every external input at the edge (DTOs, schemas, Zod/Pydantic). Treat any data crossing a trust boundary as hostile until proven otherwise.
Rate limiting
Protect public endpoints with per-IP and per-user limits. Pair with structured abuse logging so you can spot patterns, not just block them.
Encryption in transit & at rest
TLS everywhere, including service-to-service. Encrypt sensitive columns/files at rest, and verify your backups are encrypted too.
TL;DR
Key takeaways
- Kafka is at-least-once by default. Idempotent consumers and the transactional outbox are how you get to effectively exactly-once.
- Partitions are a capacity decision and an ordering decision at the same time. Pick the key carefully — it's the hardest thing to change later.
- Consumer lag is the operational metric that matters. Alert on it, budget for it, and make sure your handler can be parallelised.
- Schema evolution is part of the design, not a future task. Use a registry and make backward-compatibility a hard CI check.
Avoid these
Common mistakes
1. auto.offset.reset=latest in production
On a fresh consumer group this silently skips every existing message. Use earliest unless you have a specific reason not to, and make the choice explicit.
2. Consumer that commits before processing
Auto-commit before the handler finishes means a crash loses messages. Either disable auto-commit and commit manually after the work succeeds, or accept and design for at-least-once.
3. Single partition for ordering
Forcing one partition for ordering caps the throughput at what one consumer can do. Use a key-based partitioning strategy so ordering holds per key and parallelism stays.
4. Forgetting to set min.insync.replicas
Default replication won't prevent data loss on broker failure. min.insync.replicas=2 with acks=all is the safe starting point for any data you care about.
Questions
Frequently asked questions
Is this tutorial up to date?
Yes. This tutorial was last reviewed and updated on September 12, 2025. We revisit popular Software Design & Architecture tutorials regularly to keep them aligned with current best practices.
What level is this tutorial aimed at?
It is written for working developers with some backend experience. Beginners can still follow along, and senior engineers will find production-grade patterns and trade-off discussions.
Do I need to follow every step in order?
The walkthrough is sequential because each step depends on the previous one. If you only need a specific concept, the table of contents at the top of the article lets you jump straight to that section.
Where can I find the source code?
Code samples are inlined in the tutorial. When a companion repository is published it will be linked at the top of this page.
Where this fits
When to reach for this — and when not to
use it when
You're designing a system and need a clear mental model of the trade-offs before writing code.
avoid it when
Your current system is small enough that the patterns here are overkill. Optimise for clarity first.
learn next
You've reached the end of this path. Explore a related cluster from the list above.
Go deeper
Further reading
Stay in the Loop
Get the next tutorial in your inbox
Continue reading in Software Design & Architecture →
Essential Software Design Principles Every Developer Should Know
A practical overview of the design principles that separate junior and senior engineers — DRY, KISS, YAGNI, SOLID, separation of concerns and more.
Related tutorials
Essential Software Design Principles Every Developer Should Know
A practical overview of the design principles that separate junior and senior engineers — DRY, KISS, YAGNI, SOLID, separation of concerns and more.
Modular Monolith Architecture in Spring Boot — The Right Way to Scale a Monolith
Why modern teams are returning to modular monoliths — module boundaries, package-by-feature, internal events and a clean migration path to microservices in Spring Boot.
Hexagonal Architecture with Spring Boot — Build Clean, Maintainable Applications
A practical guide to Ports and Adapters (Hexagonal Architecture) in Spring Boot — isolate your domain, make your code testable, and keep infrastructure swappable.