SlideShare ist ein Scribd-Unternehmen logo

Come costruire apllicazioni "12-factor microservices" in AWS

Amazon Web Services
Amazon Web Services

"12-factor" è una metodologia per la creazione di microservizi scalabili, moderni e gestibili.

1 von 60
Downloaden Sie, um offline zu lesen
© 2019, Amazon Web Services, Inc. or its Affiliates. All rights reserved. Building "12-factor app" in AWS Piergiorgio Malusardi Solution Architect – Public Sector – Amazon Web Services 16 Ottobre 2019
Agenda Introduction to Microservices Microservices implementation on AWS API implementation Functions vs containers Container based microservices Serverless microservices (Lambda-based applications) Service discovery and service mesh Microservices communication Orchestration Data store and distributed data management Distribute monitoring and tracing Auditing
Introduction to Microservices
Microservices Architectural and Organizational approach to software development Software is composed of small services that communicate over well- defined APIs that can be deployed independently Services are owned by small autonomous teams Three common patterns: • API driven • Event driven • Data streaming
What microservices are not… Defined by the number of lines of code Services that only have subroutines (calculation or a validation) are functions, not a service Services that only expose CRUD operations are RPC call to a database, not a service REST / SOAP provide common interfaces for integration but don’t change the logical responsivity of the implementation
Microservices applications on AWS User interface Microservices Data store Amazon CloudFront Amazon S3 Application Load Balancing Elastic Container Service Amazon Aurora Amazon DynamoDB Amazon ElastiCache Amazon API Gateway AWS Lambda
API implementation
Challenges in API implementation • Architecting, deploying, monitoring, continuously improving, and maintaining an API is a time-consuming task • Different versions of APIs need to be run • Different stages of the development cycle • Authorization is a critical feature, but it is complex to build • Monetize the ecosystem of third-party developers utilizing the APIs
Amazon API Gateway Create a unified API frontend for multiple micro-services Authenticate and authorize requests to a backend DDoS protection and throttling for your backend Throttle, meter, and monetize API usage by 3rd party developers
Functions vs containers
Select … Containers When you need • Lower startup latency • Support for long running compute jobs (> 15 minutes) • Predictable, high traffic usage • Persistence of data When you want • Complete control of compute environment Serverless When you need • To trigger action on an event • Support for varying utilization • Ability to handle unknown demand When you want to • Quickly prove business value • Hand operational complexity (for example, patching, scaling) to AWS • Make fewer decisions
Comparison of operational responsibility AWS Lambda Serverless functions AWS Fargate Serverless containers ECS/EKS Container-management as a service EC2 Infrastructure-as-a-Service More opinionated Less opinionated AWS manages Customer manages • Data source integrations • Physical hardware, software, networking, and facilities • Provisioning • Application code • Container orchestration, provisioning • Cluster scaling • Physical hardware, host OS/kernel, networking, and facilities • Application code • Data source integrations • Security config and updates, network config, management tasks • Container orchestration control plane • Physical hardware software, networking, and facilities • Application code • Data source integrations • Work clusters • Security config and updates, network config, firewall, management tasks • Physical hardware software, networking, and facilities • Application code • Data source integrations • Scaling • Security config and updates, network config, management tasks • Provisioning, managing scaling and patching of servers
Runtime environment compatible with AWS Lambda? .NET Core, Go, Java, Python, or Node.js Unknown demand and below RPS breakeven Inter-container communication* or storage- intensive? Desire orchestration portability OR open source fan? Amazon EKS Are you comfortable managing your own infrastructure? Amazon ECSAWS Fargate Deployment Package size <= 50MB Desired Service runtime <= 15 minutes? AWS Lambda What if I can’t decide? Decision Tree…
Containers based microservices
MANAGED BY AWS No EC2 Instances to provision, scale or manage ELASTIC Scale up & down seamlessly. Pay only for what you use INTEGRATED with VPC Networking, Elastic Load Balancing, IAM Permissions, CloudWatch and more. AWS Fargate
Serverless microservices Lambda-based applications
AWS Lambda
AWS Lambda Bring your own code • Node.js • Java • Python • C# • Go Simple resource model • Select power rating from 128 MB to 3 GB • CPU and network allocated proportionately Stateless • Persist data using external storage • No affinity or access to underlying infrastructure Flexible use • Synchronous or asynchronous • Configurable Throttling
Service discovery and service mesh
Service discovery Challenges Controll application-level communication across : - Compute environments - Container orchestrators - Clusters Keep configuration synchronized with dynamic state as: - Communication circuits fail and recover - As replicas scale out and back under variable load End-to-end observability - Logs / metrics / distributed tracing Needs • Reliable communication between service nodes • Ability to control routing through policy • React autonomously and responsively to dynamically changing state • Uniform, dependable, noninvasive mechanism for observability • Decoupled from application code • Applied in a standardized, declarative, and reliable fashion
Service discovery patterns Server side service discovery - Connections are proxied - Discovery is abstracted away - Availability and capacity impact - Additional latency Client side service discovery - Clients connect directly to providers - Fewer components in the system - Clients must be registry-aware - Client-side load balancing
Service discovery ECS integrated service discovery • Creates / manages service names using the Route 53 Auto Naming API • Names are automatically mapped to a set of DNS records • Services can be referred by name • Health check conditions → only healthy service endpoints are returned Unified service discovery for services managed by Kubernetes: • AWS contributed to the External DNS project (Kubernetes incubator) Third-party software • HashiCorp Consul • Etcd • Netflix Eureka • ZooKeeper
Define convenient names for all cloud resources Discover resources with specific attributes Ensure only healthy resources are discovered Use highly available DNS and regional API
Cloud Map: attribute-based service discovery Version: 1.0 Version: 2.0 Ready: yes Stage: prod
Kubernetes ExternalDNS Connector frontend service frontend.app.com sync state publish updates
Service mesh
The sidecar proxy pattern All service-to-service traffic ("east-west") routed to out-of-process sidecar proxy Proxy Microservice All service ingress/egress traffic flows through the proxy Proxy Discovery Routing Monitoring Microservice App logic Task or pod
This is what App Mesh does OSS community project Wide community support, numerous integrations Stable and production-proven Graduated project in Cloud Native Computing Foundation Started at Lyft in 2016
AWS App Mesh and Cloud Map Service registry for AWS App Mesh AWS App Mesh discoverInstances AWS_INSTANCE_IPV4 AWS_INSTANCE_PORT AVAILABILITY_ZONE REGION ECS_SERVICE_NAME ECS_CLUSTER_NAME EC2_INSTANCE_ID ECS_TASK_DEFINITION_FAMILY
Microservices communication
Microservices communication In microservices the communication between different parts of the application must be implemented using network communication RESTful API • HTTP as a transport layer • Relies on • Stateless communication • Uniform interfaces • Standard methods • Amazon API Gateway as a “front door” • An API object is a group of resources and methods • A resource is a typed object within the domain of an API and may have associated a data model or relationships to other resource • Each resource can respond to one or more methods (GET, POST, PUT) • REST APIs can be deployed to different stages, and versioned Message passing • Services communicate by exchanging messages via a queue • Major benefits: • Service discovery is not necessary • Services are loosely couple • Different AWS services • Amazon Simple Queue Service and Amazon Simple Notification Service: • SQS uses custom API → code changes are necessary • Amazon MQ: if existing software is using open standard APIs and protocols for messaging (JMS, NMS, AMQP, STOMP, MQTT, and WebSocket)
Message passing AWS Lambda functions Amazon Elastic Container Service
Orchestration
Orchestration challenges • Microservices makes it challenging to orchestrate • Developers → add orchestration code into services directly • This should be avoided as it • Introduces tighter coupling • Makes it harder to quickly replace individual services • Use AWS Step Functions to build applications from individual components • Provides a state machine that hides the complexities of service orchestration (error handling, serialization/parallelization) • Uses the Amazon States Language (JSON based): https://states-language.net/spec.html
Orchestration with AWS Step Function
Data store and distributed data management
Centralized database – anti-pattern Monolithic applications typically have a monolithic data store: • Difficult to make schema changes • Technology lock-in • Vertical scaling • Single point of failure user-svc account-svccart-svc DB
Decentralized data stores • Each service chooses its data store technologies • Low impact schema changes • Independent scalability • Data is gated through the service API account-svccart-svc Dynam oDB RDS user-svc ElastiC ache RDS
Challenges Transactional integrity • Use a pessimistic model • Handle it in the client • Add a transaction manager / distributed locking service • Rethink your design • Use an optimistic model • Accept eventual consistency • Retry (if idempotent) • Fix it later • Write it off Aggregation • Pull: Make the data available via your service API • Push: To Amazon S3, Amazon CloudWatch, or another service you create • Pub/Sub: Via Amazon Kinesis or Amazon SQS
Transactional integrity Transactions span multiple microservices Cannot leverage a single ACID transaction  partial execution Control logic to redo already processed transactions  Saga pattern AWS Step Function to implement Saga execution coordinator
Challenges CAP Theorem In a distributed system, you can only have two out of the following three guarantees across a write/read pair: • Consistency - A read is guaranteed to return the most recent write for a given client • Availability - A non-failing node will return a reasonable response within a reasonable amount of time (no error or timeout) • Partition tolerance - The system will continue to function when network partitions occur Networks and parts of networks go down frequently and unexpectedly You must tolerate partitions in a distributed system, period
CAP Theorem Consistency/Partition tolerance • Wait for a response from the partitioned node • Could result in a timeout error • Choose Consistency when you needs to garantee atomic reads and writes Availability/Partition tolerance • Return the most recent version of the data • Writes can be processed later • Choose Availability when some flexibility on data synchronization is allowed • When the system needs to continue to work in presence of external errors
Distribute monitoring and tracing
Distributed monitoring • Use CloudWatch to gain system-wide visibility into: • resource utilization • application performance • operational health • Alternative option (especially for Amazon EKS): Prometheus • An open-source monitoring and alerting toolkit • Often used in combination with Grafana
Log analysis Log analysis with Amazon Elasticsearch Service and Kibana Log analysis with Amazon RedShift and Amazon QuickSight Log analysis on Amazon S3
Distributed tracing – AWS X-Ray • AWS X-Ray uses correlation IDs: unique identifiers attached to all requests and messages related to a specific event chain. • Trace ID is added to HTTP requests in headers named X-Amzn-Trace-Id • Via the X-Ray SDK, any microservice can read, add or update this header
Auditing
Auditing Challenges • Ensuring visibility of user actions on each service • Being able to get an overall view across all services at an organizational level • Audit both resource access as well as activities that lead to system changes • Changes: tracked at the individual service level, and across services running on the wider system. • Changes occur frequently in microservices  auditing changes is more important
AWS CloudTrail • Tracks changes in microservices • Enables all API calls made in the AWS Cloud to be logged and sent to either CloudWatch Logs (real time) or to Amazon S3 (several minutes)
Resource inventory and change management • CloudTrail and CloudWatch Events: building blocks to track and respond to infrastructure changes across microservices • AWS Config rules: to define security policies with specific rules to automatically detect, track, and alert you to policy violations
Thank you
© 2019, Amazon Web Services, Inc. or its Affiliates. All rights reserved. Demo session Simple Bookstore App
Simple Bookstore App The Bookstore App is built on-top of AWS Full-Stack Template, which provides: • Foundational services • Components • Plumbing needed to get basic web application up and running https://github.com/awslabs/aws-full-stack-template
Simple Bookstore App The app contains multiple services 1. Shopping cart 2. Product search 3. Recommendations 4. Top sellers list For each of these services, the app makes use of a purpose-built database.
Simple Bookstore App – used services
Simple Bookstore App - Architecture
Simple Bookstore – How it works
Simple Bookstore – CI/CD
Thank you

Empfohlen

Public Cloud Security Blueprint
Public Cloud Security BlueprintPublic Cloud Security Blueprint
Public Cloud Security BlueprintAmazon Web Services
 
AWSome Day Online 2020_โมดูล 4: การรักษาความปลอดภัยแอปพลิเคชันบนระบบคลาวด์ของคุณ
AWSome Day Online 2020_โมดูล 4: การรักษาความปลอดภัยแอปพลิเคชันบนระบบคลาวด์ของคุณAWSome Day Online 2020_โมดูล 4: การรักษาความปลอดภัยแอปพลิเคชันบนระบบคลาวด์ของคุณ
AWSome Day Online 2020_โมดูล 4: การรักษาความปลอดภัยแอปพลิเคชันบนระบบคลาวด์ของคุณAmazon Web Services
 
AWSome Day Online 2020_Module 4: Secure your cloud applications
AWSome Day Online 2020_Module 4: Secure your cloud applicationsAWSome Day Online 2020_Module 4: Secure your cloud applications
AWSome Day Online 2020_Module 4: Secure your cloud applicationsAmazon Web Services
 
AWS Technical Essentials Day
AWS Technical Essentials DayAWS Technical Essentials Day
AWS Technical Essentials DayAmazon Web Services
 
An Intro to Building and Optimizing a Hybrid Cloud on AWS
An Intro to Building and Optimizing a Hybrid Cloud on AWSAn Intro to Building and Optimizing a Hybrid Cloud on AWS
An Intro to Building and Optimizing a Hybrid Cloud on AWSAmazon Web Services
 
AWS 101
AWS 101AWS 101
AWS 101Amazon Web Services
 
The Future of Enterprise IT
The Future of Enterprise IT The Future of Enterprise IT
The Future of Enterprise IT Amazon Web Services
 
SAP Modernization with AWS
SAP Modernization with AWSSAP Modernization with AWS
SAP Modernization with AWSAmazon Web Services
 

Empfohlen

Public Cloud Security Blueprint
Public Cloud Security BlueprintPublic Cloud Security Blueprint
Public Cloud Security BlueprintAmazon Web Services
 
AWSome Day Online 2020_โมดูล 4: การรักษาความปลอดภัยแอปพลิเคชันบนระบบคลาวด์ของคุณ
AWSome Day Online 2020_โมดูล 4: การรักษาความปลอดภัยแอปพลิเคชันบนระบบคลาวด์ของคุณAWSome Day Online 2020_โมดูล 4: การรักษาความปลอดภัยแอปพลิเคชันบนระบบคลาวด์ของคุณ
AWSome Day Online 2020_โมดูล 4: การรักษาความปลอดภัยแอปพลิเคชันบนระบบคลาวด์ของคุณAmazon Web Services
 
AWSome Day Online 2020_Module 4: Secure your cloud applications
AWSome Day Online 2020_Module 4: Secure your cloud applicationsAWSome Day Online 2020_Module 4: Secure your cloud applications
AWSome Day Online 2020_Module 4: Secure your cloud applicationsAmazon Web Services
 
AWS Technical Essentials Day
AWS Technical Essentials DayAWS Technical Essentials Day
AWS Technical Essentials DayAmazon Web Services
 
An Intro to Building and Optimizing a Hybrid Cloud on AWS
An Intro to Building and Optimizing a Hybrid Cloud on AWSAn Intro to Building and Optimizing a Hybrid Cloud on AWS
An Intro to Building and Optimizing a Hybrid Cloud on AWSAmazon Web Services
 
AWS 101
AWS 101AWS 101
AWS 101Amazon Web Services
 
The Future of Enterprise IT
The Future of Enterprise IT The Future of Enterprise IT
The Future of Enterprise IT Amazon Web Services
 
SAP Modernization with AWS
SAP Modernization with AWSSAP Modernization with AWS
SAP Modernization with AWSAmazon Web Services
 
Protect your applications from DDoS/BOT & Advanced Attacks
Protect your applications from DDoS/BOT & Advanced AttacksProtect your applications from DDoS/BOT & Advanced Attacks
Protect your applications from DDoS/BOT & Advanced AttacksAmazon Web Services
 
Design, Deploy, & Optimize SQL Server Workloads
Design, Deploy, & Optimize SQL Server Workloads Design, Deploy, & Optimize SQL Server Workloads
Design, Deploy, & Optimize SQL Server Workloads Amazon Web Services
 
Hybrid Cloud on AWS - Introduction and Art of the Possible
Hybrid Cloud on AWS - Introduction and Art of the PossibleHybrid Cloud on AWS - Introduction and Art of the Possible
Hybrid Cloud on AWS - Introduction and Art of the PossibleTom Laszewski
 
AWS 資料數據與 IoT
AWS 資料數據與 IoTAWS 資料數據與 IoT
AWS 資料數據與 IoTAmazon Web Services
 
Aws Architecture Fundamentals
Aws Architecture FundamentalsAws Architecture Fundamentals
Aws Architecture Fundamentals2nd Watch
 
Introduction to AWS Workshop Series
Introduction to AWS Workshop SeriesIntroduction to AWS Workshop Series
Introduction to AWS Workshop SeriesAmazon Web Services
 
Introduzione a Amazon Elastic Container Service
Introduzione a Amazon Elastic Container ServiceIntroduzione a Amazon Elastic Container Service
Introduzione a Amazon Elastic Container ServiceAmazon Web Services
 
AWSome Day Online 2020_Modul 1: Pengenalan AWS Cloud
AWSome Day Online 2020_Modul 1: Pengenalan AWS CloudAWSome Day Online 2020_Modul 1: Pengenalan AWS Cloud
AWSome Day Online 2020_Modul 1: Pengenalan AWS CloudAmazon Web Services
 
Digital Transformation
Digital TransformationDigital Transformation
Digital TransformationAmazon Web Services
 
Security Innovations in the Cloud
Security Innovations in the CloudSecurity Innovations in the Cloud
Security Innovations in the CloudAmazon Web Services
 
Big Data per le Startup: come creare applicazioni Big Data in modalità Server...
Big Data per le Startup: come creare applicazioni Big Data in modalità Server...Big Data per le Startup: come creare applicazioni Big Data in modalità Server...
Big Data per le Startup: come creare applicazioni Big Data in modalità Server...Amazon Web Services
 
Data Migration to AWS with DataSync & Transfer for SFTP
Data Migration to AWS with DataSync & Transfer for SFTPData Migration to AWS with DataSync & Transfer for SFTP
Data Migration to AWS with DataSync & Transfer for SFTPAmazon Web Services
 
Simplify & Standardise Your Migration to AWS with a Migration Landing Zone
Simplify & Standardise Your Migration to AWS with a Migration Landing ZoneSimplify & Standardise Your Migration to AWS with a Migration Landing Zone
Simplify & Standardise Your Migration to AWS with a Migration Landing ZoneAmazon Web Services
 
Hybrid Cloud on AWS : Provisioning, Operations, Management, and Monitoring
Hybrid Cloud on AWS : Provisioning, Operations, Management, and Monitoring Hybrid Cloud on AWS : Provisioning, Operations, Management, and Monitoring
Hybrid Cloud on AWS : Provisioning, Operations, Management, and Monitoring Tom Laszewski
 
AWSome Day Madrid - March 2018
AWSome Day Madrid - March 2018AWSome Day Madrid - March 2018
AWSome Day Madrid - March 2018Amazon Web Services
 
Using AWS Purpose-Built Databases to Modernize your Applications
Using AWS Purpose-Built Databases to Modernize your ApplicationsUsing AWS Purpose-Built Databases to Modernize your Applications
Using AWS Purpose-Built Databases to Modernize your ApplicationsAmazon Web Services
 
AWS re:Invent recap
AWS re:Invent recapAWS re:Invent recap
AWS re:Invent recapAmazon Web Services LATAM
 
DEM09 [Repeat] Fearless: From Monolith to Serverless with Dynatrace
DEM09 [Repeat] Fearless: From Monolith to Serverless with DynatraceDEM09 [Repeat] Fearless: From Monolith to Serverless with Dynatrace
DEM09 [Repeat] Fearless: From Monolith to Serverless with DynatraceAmazon Web Services
 
AWS 101 - Tel Aviv Summit 2018
AWS 101 - Tel Aviv Summit 2018AWS 101 - Tel Aviv Summit 2018
AWS 101 - Tel Aviv Summit 2018Amazon Web Services
 
Enabling digital transformation of your business on AWS - DEM08-S - Mexico Ci...
Enabling digital transformation of your business on AWS - DEM08-S - Mexico Ci...Enabling digital transformation of your business on AWS - DEM08-S - Mexico Ci...
Enabling digital transformation of your business on AWS - DEM08-S - Mexico Ci...Amazon Web Services
 
Getting Started with AWS Lambda and the Serverless Cloud
Getting Started with AWS Lambda and the Serverless CloudGetting Started with AWS Lambda and the Serverless Cloud
Getting Started with AWS Lambda and the Serverless CloudAmazon Web Services
 
Getting Started with AWS Lambda and the Serverless Cloud - AWS Summit Cape T...
Getting Started with AWS Lambda and the Serverless Cloud - AWS Summit Cape T... Getting Started with AWS Lambda and the Serverless Cloud - AWS Summit Cape T...
Getting Started with AWS Lambda and the Serverless Cloud - AWS Summit Cape T...Amazon Web Services
 

Weitere ähnliche Inhalte

Was ist angesagt?

Protect your applications from DDoS/BOT & Advanced Attacks
Protect your applications from DDoS/BOT & Advanced AttacksProtect your applications from DDoS/BOT & Advanced Attacks
Protect your applications from DDoS/BOT & Advanced AttacksAmazon Web Services
 
Design, Deploy, & Optimize SQL Server Workloads
Design, Deploy, & Optimize SQL Server Workloads Design, Deploy, & Optimize SQL Server Workloads
Design, Deploy, & Optimize SQL Server Workloads Amazon Web Services
 
Hybrid Cloud on AWS - Introduction and Art of the Possible
Hybrid Cloud on AWS - Introduction and Art of the PossibleHybrid Cloud on AWS - Introduction and Art of the Possible
Hybrid Cloud on AWS - Introduction and Art of the PossibleTom Laszewski
 
Aws Architecture Fundamentals
Aws Architecture FundamentalsAws Architecture Fundamentals
Aws Architecture Fundamentals2nd Watch
 
Introduction to AWS Workshop Series
Introduction to AWS Workshop SeriesIntroduction to AWS Workshop Series
Introduction to AWS Workshop SeriesAmazon Web Services
 
Introduzione a Amazon Elastic Container Service
Introduzione a Amazon Elastic Container ServiceIntroduzione a Amazon Elastic Container Service
Introduzione a Amazon Elastic Container ServiceAmazon Web Services
 
AWSome Day Online 2020_Modul 1: Pengenalan AWS Cloud
AWSome Day Online 2020_Modul 1: Pengenalan AWS CloudAWSome Day Online 2020_Modul 1: Pengenalan AWS Cloud
AWSome Day Online 2020_Modul 1: Pengenalan AWS CloudAmazon Web Services
 
Security Innovations in the Cloud
Security Innovations in the CloudSecurity Innovations in the Cloud
Security Innovations in the CloudAmazon Web Services
 
Big Data per le Startup: come creare applicazioni Big Data in modalità Server...
Big Data per le Startup: come creare applicazioni Big Data in modalità Server...Big Data per le Startup: come creare applicazioni Big Data in modalità Server...
Big Data per le Startup: come creare applicazioni Big Data in modalità Server...Amazon Web Services
 
Data Migration to AWS with DataSync & Transfer for SFTP
Data Migration to AWS with DataSync & Transfer for SFTPData Migration to AWS with DataSync & Transfer for SFTP
Data Migration to AWS with DataSync & Transfer for SFTPAmazon Web Services
 
Simplify & Standardise Your Migration to AWS with a Migration Landing Zone
Simplify & Standardise Your Migration to AWS with a Migration Landing ZoneSimplify & Standardise Your Migration to AWS with a Migration Landing Zone
Simplify & Standardise Your Migration to AWS with a Migration Landing ZoneAmazon Web Services
 
Hybrid Cloud on AWS : Provisioning, Operations, Management, and Monitoring
Hybrid Cloud on AWS : Provisioning, Operations, Management, and Monitoring Hybrid Cloud on AWS : Provisioning, Operations, Management, and Monitoring
Hybrid Cloud on AWS : Provisioning, Operations, Management, and Monitoring Tom Laszewski
 
Using AWS Purpose-Built Databases to Modernize your Applications
Using AWS Purpose-Built Databases to Modernize your ApplicationsUsing AWS Purpose-Built Databases to Modernize your Applications
Using AWS Purpose-Built Databases to Modernize your ApplicationsAmazon Web Services
 
DEM09 [Repeat] Fearless: From Monolith to Serverless with Dynatrace
DEM09 [Repeat] Fearless: From Monolith to Serverless with DynatraceDEM09 [Repeat] Fearless: From Monolith to Serverless with Dynatrace
DEM09 [Repeat] Fearless: From Monolith to Serverless with DynatraceAmazon Web Services
 
Enabling digital transformation of your business on AWS - DEM08-S - Mexico Ci...
Enabling digital transformation of your business on AWS - DEM08-S - Mexico Ci...Enabling digital transformation of your business on AWS - DEM08-S - Mexico Ci...
Enabling digital transformation of your business on AWS - DEM08-S - Mexico Ci...Amazon Web Services
 

Was ist angesagt? (20)

Protect your applications from DDoS/BOT & Advanced Attacks
Protect your applications from DDoS/BOT & Advanced AttacksProtect your applications from DDoS/BOT & Advanced Attacks
Protect your applications from DDoS/BOT & Advanced Attacks
 
Design, Deploy, & Optimize SQL Server Workloads
Design, Deploy, & Optimize SQL Server Workloads Design, Deploy, & Optimize SQL Server Workloads
Design, Deploy, & Optimize SQL Server Workloads
 
Hybrid Cloud on AWS - Introduction and Art of the Possible
Hybrid Cloud on AWS - Introduction and Art of the PossibleHybrid Cloud on AWS - Introduction and Art of the Possible
Hybrid Cloud on AWS - Introduction and Art of the Possible
 
AWS 資料數據與 IoT
AWS 資料數據與 IoTAWS 資料數據與 IoT
AWS 資料數據與 IoT
 
Aws Architecture Fundamentals
Aws Architecture FundamentalsAws Architecture Fundamentals
Aws Architecture Fundamentals
 
Introduction to AWS Workshop Series
Introduction to AWS Workshop SeriesIntroduction to AWS Workshop Series
Introduction to AWS Workshop Series
 
Introduzione a Amazon Elastic Container Service
Introduzione a Amazon Elastic Container ServiceIntroduzione a Amazon Elastic Container Service
Introduzione a Amazon Elastic Container Service
 
AWSome Day Online 2020_Modul 1: Pengenalan AWS Cloud
AWSome Day Online 2020_Modul 1: Pengenalan AWS CloudAWSome Day Online 2020_Modul 1: Pengenalan AWS Cloud
AWSome Day Online 2020_Modul 1: Pengenalan AWS Cloud
 
Digital Transformation
Digital TransformationDigital Transformation
Digital Transformation
 
Security Innovations in the Cloud
Security Innovations in the CloudSecurity Innovations in the Cloud
Security Innovations in the Cloud
 
Big Data per le Startup: come creare applicazioni Big Data in modalità Server...
Big Data per le Startup: come creare applicazioni Big Data in modalità Server...Big Data per le Startup: come creare applicazioni Big Data in modalità Server...
Big Data per le Startup: come creare applicazioni Big Data in modalità Server...
 
Data Migration to AWS with DataSync & Transfer for SFTP
Data Migration to AWS with DataSync & Transfer for SFTPData Migration to AWS with DataSync & Transfer for SFTP
Data Migration to AWS with DataSync & Transfer for SFTP
 
Simplify & Standardise Your Migration to AWS with a Migration Landing Zone
Simplify & Standardise Your Migration to AWS with a Migration Landing ZoneSimplify & Standardise Your Migration to AWS with a Migration Landing Zone
Simplify & Standardise Your Migration to AWS with a Migration Landing Zone
 
Hybrid Cloud on AWS : Provisioning, Operations, Management, and Monitoring
Hybrid Cloud on AWS : Provisioning, Operations, Management, and Monitoring Hybrid Cloud on AWS : Provisioning, Operations, Management, and Monitoring
Hybrid Cloud on AWS : Provisioning, Operations, Management, and Monitoring
 
AWSome Day Madrid - March 2018
AWSome Day Madrid - March 2018AWSome Day Madrid - March 2018
AWSome Day Madrid - March 2018
 
Using AWS Purpose-Built Databases to Modernize your Applications
Using AWS Purpose-Built Databases to Modernize your ApplicationsUsing AWS Purpose-Built Databases to Modernize your Applications
Using AWS Purpose-Built Databases to Modernize your Applications
 
AWS re:Invent recap
AWS re:Invent recapAWS re:Invent recap
AWS re:Invent recap
 
DEM09 [Repeat] Fearless: From Monolith to Serverless with Dynatrace
DEM09 [Repeat] Fearless: From Monolith to Serverless with DynatraceDEM09 [Repeat] Fearless: From Monolith to Serverless with Dynatrace
DEM09 [Repeat] Fearless: From Monolith to Serverless with Dynatrace
 
AWS 101 - Tel Aviv Summit 2018
AWS 101 - Tel Aviv Summit 2018AWS 101 - Tel Aviv Summit 2018
AWS 101 - Tel Aviv Summit 2018
 
Enabling digital transformation of your business on AWS - DEM08-S - Mexico Ci...
Enabling digital transformation of your business on AWS - DEM08-S - Mexico Ci...Enabling digital transformation of your business on AWS - DEM08-S - Mexico Ci...
Enabling digital transformation of your business on AWS - DEM08-S - Mexico Ci...
 

Ähnlich wie Come costruire apllicazioni "12-factor microservices" in AWS

Getting Started with AWS Lambda and the Serverless Cloud
Getting Started with AWS Lambda and the Serverless CloudGetting Started with AWS Lambda and the Serverless Cloud
Getting Started with AWS Lambda and the Serverless CloudAmazon Web Services
 
Getting Started with AWS Lambda and the Serverless Cloud - AWS Summit Cape T...
Getting Started with AWS Lambda and the Serverless Cloud - AWS Summit Cape T... Getting Started with AWS Lambda and the Serverless Cloud - AWS Summit Cape T...
Getting Started with AWS Lambda and the Serverless Cloud - AWS Summit Cape T...Amazon Web Services
 
Getting Started with AWS Lambda and the Serverless Cloud
Getting Started with AWS Lambda and the Serverless CloudGetting Started with AWS Lambda and the Serverless Cloud
Getting Started with AWS Lambda and the Serverless CloudAmazon Web Services
 
Getting Started with AWS Lambda and Serverless Computing
Getting Started with AWS Lambda and Serverless ComputingGetting Started with AWS Lambda and Serverless Computing
Getting Started with AWS Lambda and Serverless ComputingAmazon Web Services
 
Getting Started with AWS Lambda and the Serverless Cloud by Jim Tran, Princip...
Getting Started with AWS Lambda and the Serverless Cloud by Jim Tran, Princip...Getting Started with AWS Lambda and the Serverless Cloud by Jim Tran, Princip...
Getting Started with AWS Lambda and the Serverless Cloud by Jim Tran, Princip...Amazon Web Services
 
Getting Started with AWS Lambda and the Serverless Cloud
Getting Started with AWS Lambda and the Serverless CloudGetting Started with AWS Lambda and the Serverless Cloud
Getting Started with AWS Lambda and the Serverless CloudAmazon Web Services
 
2016-06 - Design your api management strategy - AWS - Microservices on AWS
2016-06 - Design your api management strategy - AWS - Microservices on AWS2016-06 - Design your api management strategy - AWS - Microservices on AWS
2016-06 - Design your api management strategy - AWS - Microservices on AWSSmartWave
 
Getting Started with AWS Lambda and Serverless Computing
Getting Started with AWS Lambda and Serverless ComputingGetting Started with AWS Lambda and Serverless Computing
Getting Started with AWS Lambda and Serverless ComputingKristana Kane
 
Getting Started with AWS Lambda and the Serverless Cloud
Getting Started with AWS Lambda and the Serverless CloudGetting Started with AWS Lambda and the Serverless Cloud
Getting Started with AWS Lambda and the Serverless CloudAmazon Web Services
 
From Serverless to InterCloud
From Serverless to InterCloudFrom Serverless to InterCloud
From Serverless to InterCloudWayne Scarano
 
SRV203 Getting Started with AWS Lambda and the Serverless Cloud
SRV203 Getting Started with AWS Lambda and the Serverless CloudSRV203 Getting Started with AWS Lambda and the Serverless Cloud
SRV203 Getting Started with AWS Lambda and the Serverless CloudAmazon Web Services
 
HSBC and AWS Day - Microservices and Serverless
HSBC and AWS Day - Microservices and ServerlessHSBC and AWS Day - Microservices and Serverless
HSBC and AWS Day - Microservices and ServerlessAmazon Web Services
 
How to build and deploy serverless apps - AWS Summit Cape Town 2018
How to build and deploy serverless apps - AWS Summit Cape Town 2018How to build and deploy serverless apps - AWS Summit Cape Town 2018
How to build and deploy serverless apps - AWS Summit Cape Town 2018Amazon Web Services
 
AWS re:Invent 2016: Accenture Cloud Platform Serverless Journey (ARC202)
AWS re:Invent 2016: Accenture Cloud Platform Serverless Journey (ARC202)AWS re:Invent 2016: Accenture Cloud Platform Serverless Journey (ARC202)
AWS re:Invent 2016: Accenture Cloud Platform Serverless Journey (ARC202)Amazon Web Services
 
Deep Dive on Microservices and Docker
Deep Dive on Microservices and DockerDeep Dive on Microservices and Docker
Deep Dive on Microservices and DockerKristana Kane
 
Introduction to AWS & Cloud Services
Introduction to AWS & Cloud ServicesIntroduction to AWS & Cloud Services
Introduction to AWS & Cloud ServicesAnn Venkataraman
 
AWS Architecture Fundamentals - Houston
AWS Architecture Fundamentals - HoustonAWS Architecture Fundamentals - Houston
AWS Architecture Fundamentals - HoustonNicole Maus
 
SMC301 The State of Serverless Computing
SMC301 The State of Serverless ComputingSMC301 The State of Serverless Computing
SMC301 The State of Serverless ComputingAmazon Web Services
 
Getting Started with Serverless Architectures
Getting Started with Serverless ArchitecturesGetting Started with Serverless Architectures
Getting Started with Serverless ArchitecturesAmazon Web Services
 

Ähnlich wie Come costruire apllicazioni "12-factor microservices" in AWS (20)

Getting Started with AWS Lambda and the Serverless Cloud
Getting Started with AWS Lambda and the Serverless CloudGetting Started with AWS Lambda and the Serverless Cloud
Getting Started with AWS Lambda and the Serverless Cloud
 
Getting Started with AWS Lambda and the Serverless Cloud - AWS Summit Cape T...
Getting Started with AWS Lambda and the Serverless Cloud - AWS Summit Cape T... Getting Started with AWS Lambda and the Serverless Cloud - AWS Summit Cape T...
Getting Started with AWS Lambda and the Serverless Cloud - AWS Summit Cape T...
 
Getting Started with AWS Lambda and the Serverless Cloud
Getting Started with AWS Lambda and the Serverless CloudGetting Started with AWS Lambda and the Serverless Cloud
Getting Started with AWS Lambda and the Serverless Cloud
 
Getting Started with AWS Lambda and Serverless Computing
Getting Started with AWS Lambda and Serverless ComputingGetting Started with AWS Lambda and Serverless Computing
Getting Started with AWS Lambda and Serverless Computing
 
Getting Started with AWS Lambda and the Serverless Cloud by Jim Tran, Princip...
Getting Started with AWS Lambda and the Serverless Cloud by Jim Tran, Princip...Getting Started with AWS Lambda and the Serverless Cloud by Jim Tran, Princip...
Getting Started with AWS Lambda and the Serverless Cloud by Jim Tran, Princip...
 
Getting Started with AWS Lambda and the Serverless Cloud
Getting Started with AWS Lambda and the Serverless CloudGetting Started with AWS Lambda and the Serverless Cloud
Getting Started with AWS Lambda and the Serverless Cloud
 
2016-06 - Design your api management strategy - AWS - Microservices on AWS
2016-06 - Design your api management strategy - AWS - Microservices on AWS2016-06 - Design your api management strategy - AWS - Microservices on AWS
2016-06 - Design your api management strategy - AWS - Microservices on AWS
 
Getting Started with AWS Lambda and Serverless Computing
Getting Started with AWS Lambda and Serverless ComputingGetting Started with AWS Lambda and Serverless Computing
Getting Started with AWS Lambda and Serverless Computing
 
Getting Started with AWS Lambda and the Serverless Cloud
Getting Started with AWS Lambda and the Serverless CloudGetting Started with AWS Lambda and the Serverless Cloud
Getting Started with AWS Lambda and the Serverless Cloud
 
From Serverless to InterCloud
From Serverless to InterCloudFrom Serverless to InterCloud
From Serverless to InterCloud
 
SRV203 Getting Started with AWS Lambda and the Serverless Cloud
SRV203 Getting Started with AWS Lambda and the Serverless CloudSRV203 Getting Started with AWS Lambda and the Serverless Cloud
SRV203 Getting Started with AWS Lambda and the Serverless Cloud
 
HSBC and AWS Day - Microservices and Serverless
HSBC and AWS Day - Microservices and ServerlessHSBC and AWS Day - Microservices and Serverless
HSBC and AWS Day - Microservices and Serverless
 
How to build and deploy serverless apps - AWS Summit Cape Town 2018
How to build and deploy serverless apps - AWS Summit Cape Town 2018How to build and deploy serverless apps - AWS Summit Cape Town 2018
How to build and deploy serverless apps - AWS Summit Cape Town 2018
 
AWS re:Invent 2016: Accenture Cloud Platform Serverless Journey (ARC202)
AWS re:Invent 2016: Accenture Cloud Platform Serverless Journey (ARC202)AWS re:Invent 2016: Accenture Cloud Platform Serverless Journey (ARC202)
AWS re:Invent 2016: Accenture Cloud Platform Serverless Journey (ARC202)
 
Deep Dive on Microservices and Docker
Deep Dive on Microservices and DockerDeep Dive on Microservices and Docker
Deep Dive on Microservices and Docker
 
AWS Lambda and Serverless Cloud
AWS Lambda and Serverless CloudAWS Lambda and Serverless Cloud
AWS Lambda and Serverless Cloud
 
Introduction to AWS & Cloud Services
Introduction to AWS & Cloud ServicesIntroduction to AWS & Cloud Services
Introduction to AWS & Cloud Services
 
AWS Architecture Fundamentals - Houston
AWS Architecture Fundamentals - HoustonAWS Architecture Fundamentals - Houston
AWS Architecture Fundamentals - Houston
 
SMC301 The State of Serverless Computing
SMC301 The State of Serverless ComputingSMC301 The State of Serverless Computing
SMC301 The State of Serverless Computing
 
Getting Started with Serverless Architectures
Getting Started with Serverless ArchitecturesGetting Started with Serverless Architectures
Getting Started with Serverless Architectures
 

Mehr von Amazon Web Services

Come costruire servizi di Forecasting sfruttando algoritmi di ML e deep learn...
Come costruire servizi di Forecasting sfruttando algoritmi di ML e deep learn...Come costruire servizi di Forecasting sfruttando algoritmi di ML e deep learn...
Come costruire servizi di Forecasting sfruttando algoritmi di ML e deep learn...Amazon Web Services
 
Esegui pod serverless con Amazon EKS e AWS Fargate
Esegui pod serverless con Amazon EKS e AWS FargateEsegui pod serverless con Amazon EKS e AWS Fargate
Esegui pod serverless con Amazon EKS e AWS FargateAmazon Web Services
 
Costruire Applicazioni Moderne con AWS
Costruire Applicazioni Moderne con AWSCostruire Applicazioni Moderne con AWS
Costruire Applicazioni Moderne con AWSAmazon Web Services
 
Come spendere fino al 90% in meno con i container e le istanze spot
Come spendere fino al 90% in meno con i container e le istanze spot Come spendere fino al 90% in meno con i container e le istanze spot
Come spendere fino al 90% in meno con i container e le istanze spot Amazon Web Services
 
Rendi unica l’offerta della tua startup sul mercato con i servizi Machine Lea...
Rendi unica l’offerta della tua startup sul mercato con i servizi Machine Lea...Rendi unica l’offerta della tua startup sul mercato con i servizi Machine Lea...
Rendi unica l’offerta della tua startup sul mercato con i servizi Machine Lea...Amazon Web Services
 
OpsWorks Configuration Management: automatizza la gestione e i deployment del...
OpsWorks Configuration Management: automatizza la gestione e i deployment del...OpsWorks Configuration Management: automatizza la gestione e i deployment del...
OpsWorks Configuration Management: automatizza la gestione e i deployment del...Amazon Web Services
 
Microsoft Active Directory su AWS per supportare i tuoi Windows Workloads
Microsoft Active Directory su AWS per supportare i tuoi Windows WorkloadsMicrosoft Active Directory su AWS per supportare i tuoi Windows Workloads
Microsoft Active Directory su AWS per supportare i tuoi Windows WorkloadsAmazon Web Services
 
Database Oracle e VMware Cloud on AWS i miti da sfatare
Database Oracle e VMware Cloud on AWS i miti da sfatareDatabase Oracle e VMware Cloud on AWS i miti da sfatare
Database Oracle e VMware Cloud on AWS i miti da sfatareAmazon Web Services
 
Crea la tua prima serverless ledger-based app con QLDB e NodeJS
Crea la tua prima serverless ledger-based app con QLDB e NodeJSCrea la tua prima serverless ledger-based app con QLDB e NodeJS
Crea la tua prima serverless ledger-based app con QLDB e NodeJSAmazon Web Services
 
API moderne real-time per applicazioni mobili e web
API moderne real-time per applicazioni mobili e webAPI moderne real-time per applicazioni mobili e web
API moderne real-time per applicazioni mobili e webAmazon Web Services
 
Database Oracle e VMware Cloud™ on AWS: i miti da sfatare
Database Oracle e VMware Cloud™ on AWS: i miti da sfatareDatabase Oracle e VMware Cloud™ on AWS: i miti da sfatare
Database Oracle e VMware Cloud™ on AWS: i miti da sfatareAmazon Web Services
 
Tools for building your MVP on AWS
Tools for building your MVP on AWSTools for building your MVP on AWS
Tools for building your MVP on AWSAmazon Web Services
 
How to Build a Winning Pitch Deck
How to Build a Winning Pitch DeckHow to Build a Winning Pitch Deck
How to Build a Winning Pitch DeckAmazon Web Services
 
Building a web application without servers
Building a web application without serversBuilding a web application without servers
Building a web application without serversAmazon Web Services
 
AWS_HK_StartupDay_Building Interactive websites while automating for efficien...
AWS_HK_StartupDay_Building Interactive websites while automating for efficien...AWS_HK_StartupDay_Building Interactive websites while automating for efficien...
AWS_HK_StartupDay_Building Interactive websites while automating for efficien...Amazon Web Services
 
Come costruire un'architettura Serverless nel Cloud AWS
Come costruire un'architettura Serverless nel Cloud AWSCome costruire un'architettura Serverless nel Cloud AWS
Come costruire un'architettura Serverless nel Cloud AWSAmazon Web Services
 
AWS Serverless per startup: come innovare senza preoccuparsi dei server
AWS Serverless per startup: come innovare senza preoccuparsi dei serverAWS Serverless per startup: come innovare senza preoccuparsi dei server
AWS Serverless per startup: come innovare senza preoccuparsi dei serverAmazon Web Services
 

Mehr von Amazon Web Services (20)

Come costruire servizi di Forecasting sfruttando algoritmi di ML e deep learn...
Come costruire servizi di Forecasting sfruttando algoritmi di ML e deep learn...Come costruire servizi di Forecasting sfruttando algoritmi di ML e deep learn...
Come costruire servizi di Forecasting sfruttando algoritmi di ML e deep learn...
 
Esegui pod serverless con Amazon EKS e AWS Fargate
Esegui pod serverless con Amazon EKS e AWS FargateEsegui pod serverless con Amazon EKS e AWS Fargate
Esegui pod serverless con Amazon EKS e AWS Fargate
 
Costruire Applicazioni Moderne con AWS
Costruire Applicazioni Moderne con AWSCostruire Applicazioni Moderne con AWS
Costruire Applicazioni Moderne con AWS
 
Come spendere fino al 90% in meno con i container e le istanze spot
Come spendere fino al 90% in meno con i container e le istanze spot Come spendere fino al 90% in meno con i container e le istanze spot
Come spendere fino al 90% in meno con i container e le istanze spot
 
Open banking as a service
Open banking as a serviceOpen banking as a service
Open banking as a service
 
Rendi unica l’offerta della tua startup sul mercato con i servizi Machine Lea...
Rendi unica l’offerta della tua startup sul mercato con i servizi Machine Lea...Rendi unica l’offerta della tua startup sul mercato con i servizi Machine Lea...
Rendi unica l’offerta della tua startup sul mercato con i servizi Machine Lea...
 
OpsWorks Configuration Management: automatizza la gestione e i deployment del...
OpsWorks Configuration Management: automatizza la gestione e i deployment del...OpsWorks Configuration Management: automatizza la gestione e i deployment del...
OpsWorks Configuration Management: automatizza la gestione e i deployment del...
 
Microsoft Active Directory su AWS per supportare i tuoi Windows Workloads
Microsoft Active Directory su AWS per supportare i tuoi Windows WorkloadsMicrosoft Active Directory su AWS per supportare i tuoi Windows Workloads
Microsoft Active Directory su AWS per supportare i tuoi Windows Workloads
 
Computer Vision con AWS
Computer Vision con AWSComputer Vision con AWS
Computer Vision con AWS
 
Database Oracle e VMware Cloud on AWS i miti da sfatare
Database Oracle e VMware Cloud on AWS i miti da sfatareDatabase Oracle e VMware Cloud on AWS i miti da sfatare
Database Oracle e VMware Cloud on AWS i miti da sfatare
 
Crea la tua prima serverless ledger-based app con QLDB e NodeJS
Crea la tua prima serverless ledger-based app con QLDB e NodeJSCrea la tua prima serverless ledger-based app con QLDB e NodeJS
Crea la tua prima serverless ledger-based app con QLDB e NodeJS
 
API moderne real-time per applicazioni mobili e web
API moderne real-time per applicazioni mobili e webAPI moderne real-time per applicazioni mobili e web
API moderne real-time per applicazioni mobili e web
 
Database Oracle e VMware Cloud™ on AWS: i miti da sfatare
Database Oracle e VMware Cloud™ on AWS: i miti da sfatareDatabase Oracle e VMware Cloud™ on AWS: i miti da sfatare
Database Oracle e VMware Cloud™ on AWS: i miti da sfatare
 
Tools for building your MVP on AWS
Tools for building your MVP on AWSTools for building your MVP on AWS
Tools for building your MVP on AWS
 
How to Build a Winning Pitch Deck
How to Build a Winning Pitch DeckHow to Build a Winning Pitch Deck
How to Build a Winning Pitch Deck
 
Building a web application without servers
Building a web application without serversBuilding a web application without servers
Building a web application without servers
 
Fundraising Essentials
Fundraising EssentialsFundraising Essentials
Fundraising Essentials
 
AWS_HK_StartupDay_Building Interactive websites while automating for efficien...
AWS_HK_StartupDay_Building Interactive websites while automating for efficien...AWS_HK_StartupDay_Building Interactive websites while automating for efficien...
AWS_HK_StartupDay_Building Interactive websites while automating for efficien...
 
Come costruire un'architettura Serverless nel Cloud AWS
Come costruire un'architettura Serverless nel Cloud AWSCome costruire un'architettura Serverless nel Cloud AWS
Come costruire un'architettura Serverless nel Cloud AWS
 
AWS Serverless per startup: come innovare senza preoccuparsi dei server
AWS Serverless per startup: come innovare senza preoccuparsi dei serverAWS Serverless per startup: come innovare senza preoccuparsi dei server
AWS Serverless per startup: come innovare senza preoccuparsi dei server
 

Come costruire apllicazioni "12-factor microservices" in AWS

  • 1.
  • 2. © 2019, Amazon Web Services, Inc. or its Affiliates. All rights reserved. Building "12-factor app" in AWS Piergiorgio Malusardi Solution Architect – Public Sector – Amazon Web Services 16 Ottobre 2019
  • 3. Agenda Introduction to Microservices Microservices implementation on AWS API implementation Functions vs containers Container based microservices Serverless microservices (Lambda-based applications) Service discovery and service mesh Microservices communication Orchestration Data store and distributed data management Distribute monitoring and tracing Auditing
  • 5. Microservices Architectural and Organizational approach to software development Software is composed of small services that communicate over well- defined APIs that can be deployed independently Services are owned by small autonomous teams Three common patterns: • API driven • Event driven • Data streaming
  • 6. What microservices are not… Defined by the number of lines of code Services that only have subroutines (calculation or a validation) are functions, not a service Services that only expose CRUD operations are RPC call to a database, not a service REST / SOAP provide common interfaces for integration but don’t change the logical responsivity of the implementation
  • 7. Microservices applications on AWS User interface Microservices Data store Amazon CloudFront Amazon S3 Application Load Balancing Elastic Container Service Amazon Aurora Amazon DynamoDB Amazon ElastiCache Amazon API Gateway AWS Lambda
  • 9. Challenges in API implementation • Architecting, deploying, monitoring, continuously improving, and maintaining an API is a time-consuming task • Different versions of APIs need to be run • Different stages of the development cycle • Authorization is a critical feature, but it is complex to build • Monetize the ecosystem of third-party developers utilizing the APIs
  • 10. Amazon API Gateway Create a unified API frontend for multiple micro-services Authenticate and authorize requests to a backend DDoS protection and throttling for your backend Throttle, meter, and monetize API usage by 3rd party developers
  • 12. Select … Containers When you need • Lower startup latency • Support for long running compute jobs (> 15 minutes) • Predictable, high traffic usage • Persistence of data When you want • Complete control of compute environment Serverless When you need • To trigger action on an event • Support for varying utilization • Ability to handle unknown demand When you want to • Quickly prove business value • Hand operational complexity (for example, patching, scaling) to AWS • Make fewer decisions
  • 13. Comparison of operational responsibility AWS Lambda Serverless functions AWS Fargate Serverless containers ECS/EKS Container-management as a service EC2 Infrastructure-as-a-Service More opinionated Less opinionated AWS manages Customer manages • Data source integrations • Physical hardware, software, networking, and facilities • Provisioning • Application code • Container orchestration, provisioning • Cluster scaling • Physical hardware, host OS/kernel, networking, and facilities • Application code • Data source integrations • Security config and updates, network config, management tasks • Container orchestration control plane • Physical hardware software, networking, and facilities • Application code • Data source integrations • Work clusters • Security config and updates, network config, firewall, management tasks • Physical hardware software, networking, and facilities • Application code • Data source integrations • Scaling • Security config and updates, network config, management tasks • Provisioning, managing scaling and patching of servers
  • 14. Runtime environment compatible with AWS Lambda? .NET Core, Go, Java, Python, or Node.js Unknown demand and below RPS breakeven Inter-container communication* or storage- intensive? Desire orchestration portability OR open source fan? Amazon EKS Are you comfortable managing your own infrastructure? Amazon ECSAWS Fargate Deployment Package size <= 50MB Desired Service runtime <= 15 minutes? AWS Lambda What if I can’t decide? Decision Tree…
  • 16. MANAGED BY AWS No EC2 Instances to provision, scale or manage ELASTIC Scale up & down seamlessly. Pay only for what you use INTEGRATED with VPC Networking, Elastic Load Balancing, IAM Permissions, CloudWatch and more. AWS Fargate
  • 19. AWS Lambda Bring your own code • Node.js • Java • Python • C# • Go Simple resource model • Select power rating from 128 MB to 3 GB • CPU and network allocated proportionately Stateless • Persist data using external storage • No affinity or access to underlying infrastructure Flexible use • Synchronous or asynchronous • Configurable Throttling
  • 20. Service discovery and service mesh
  • 21. Service discovery Challenges Controll application-level communication across : - Compute environments - Container orchestrators - Clusters Keep configuration synchronized with dynamic state as: - Communication circuits fail and recover - As replicas scale out and back under variable load End-to-end observability - Logs / metrics / distributed tracing Needs • Reliable communication between service nodes • Ability to control routing through policy • React autonomously and responsively to dynamically changing state • Uniform, dependable, noninvasive mechanism for observability • Decoupled from application code • Applied in a standardized, declarative, and reliable fashion
  • 22. Service discovery patterns Server side service discovery - Connections are proxied - Discovery is abstracted away - Availability and capacity impact - Additional latency Client side service discovery - Clients connect directly to providers - Fewer components in the system - Clients must be registry-aware - Client-side load balancing
  • 23. Service discovery ECS integrated service discovery • Creates / manages service names using the Route 53 Auto Naming API • Names are automatically mapped to a set of DNS records • Services can be referred by name • Health check conditions → only healthy service endpoints are returned Unified service discovery for services managed by Kubernetes: • AWS contributed to the External DNS project (Kubernetes incubator) Third-party software • HashiCorp Consul • Etcd • Netflix Eureka • ZooKeeper
  • 24. Define convenient names for all cloud resources Discover resources with specific attributes Ensure only healthy resources are discovered Use highly available DNS and regional API
  • 25. Cloud Map: attribute-based service discovery Version: 1.0 Version: 2.0 Ready: yes Stage: prod
  • 26. Kubernetes ExternalDNS Connector frontend service frontend.app.com sync state publish updates
  • 28. The sidecar proxy pattern All service-to-service traffic ("east-west") routed to out-of-process sidecar proxy Proxy Microservice All service ingress/egress traffic flows through the proxy Proxy Discovery Routing Monitoring Microservice App logic Task or pod
  • 29. This is what App Mesh does OSS community project Wide community support, numerous integrations Stable and production-proven Graduated project in Cloud Native Computing Foundation Started at Lyft in 2016
  • 30. AWS App Mesh and Cloud Map Service registry for AWS App Mesh AWS App Mesh discoverInstances AWS_INSTANCE_IPV4 AWS_INSTANCE_PORT AVAILABILITY_ZONE REGION ECS_SERVICE_NAME ECS_CLUSTER_NAME EC2_INSTANCE_ID ECS_TASK_DEFINITION_FAMILY
  • 32. Microservices communication In microservices the communication between different parts of the application must be implemented using network communication RESTful API • HTTP as a transport layer • Relies on • Stateless communication • Uniform interfaces • Standard methods • Amazon API Gateway as a “front door” • An API object is a group of resources and methods • A resource is a typed object within the domain of an API and may have associated a data model or relationships to other resource • Each resource can respond to one or more methods (GET, POST, PUT) • REST APIs can be deployed to different stages, and versioned Message passing • Services communicate by exchanging messages via a queue • Major benefits: • Service discovery is not necessary • Services are loosely couple • Different AWS services • Amazon Simple Queue Service and Amazon Simple Notification Service: • SQS uses custom API → code changes are necessary • Amazon MQ: if existing software is using open standard APIs and protocols for messaging (JMS, NMS, AMQP, STOMP, MQTT, and WebSocket)
  • 33. Message passing AWS Lambda functions Amazon Elastic Container Service
  • 35. Orchestration challenges • Microservices makes it challenging to orchestrate • Developers → add orchestration code into services directly • This should be avoided as it • Introduces tighter coupling • Makes it harder to quickly replace individual services • Use AWS Step Functions to build applications from individual components • Provides a state machine that hides the complexities of service orchestration (error handling, serialization/parallelization) • Uses the Amazon States Language (JSON based): https://states-language.net/spec.html
  • 36. Orchestration with AWS Step Function
  • 37. Data store and distributed data management
  • 38. Centralized database – anti-pattern Monolithic applications typically have a monolithic data store: • Difficult to make schema changes • Technology lock-in • Vertical scaling • Single point of failure user-svc account-svccart-svc DB
  • 39. Decentralized data stores • Each service chooses its data store technologies • Low impact schema changes • Independent scalability • Data is gated through the service API account-svccart-svc Dynam oDB RDS user-svc ElastiC ache RDS
  • 40. Challenges Transactional integrity • Use a pessimistic model • Handle it in the client • Add a transaction manager / distributed locking service • Rethink your design • Use an optimistic model • Accept eventual consistency • Retry (if idempotent) • Fix it later • Write it off Aggregation • Pull: Make the data available via your service API • Push: To Amazon S3, Amazon CloudWatch, or another service you create • Pub/Sub: Via Amazon Kinesis or Amazon SQS
  • 41. Transactional integrity Transactions span multiple microservices Cannot leverage a single ACID transaction  partial execution Control logic to redo already processed transactions  Saga pattern AWS Step Function to implement Saga execution coordinator
  • 42. Challenges CAP Theorem In a distributed system, you can only have two out of the following three guarantees across a write/read pair: • Consistency - A read is guaranteed to return the most recent write for a given client • Availability - A non-failing node will return a reasonable response within a reasonable amount of time (no error or timeout) • Partition tolerance - The system will continue to function when network partitions occur Networks and parts of networks go down frequently and unexpectedly You must tolerate partitions in a distributed system, period
  • 43. CAP Theorem Consistency/Partition tolerance • Wait for a response from the partitioned node • Could result in a timeout error • Choose Consistency when you needs to garantee atomic reads and writes Availability/Partition tolerance • Return the most recent version of the data • Writes can be processed later • Choose Availability when some flexibility on data synchronization is allowed • When the system needs to continue to work in presence of external errors
  • 45. Distributed monitoring • Use CloudWatch to gain system-wide visibility into: • resource utilization • application performance • operational health • Alternative option (especially for Amazon EKS): Prometheus • An open-source monitoring and alerting toolkit • Often used in combination with Grafana
  • 46. Log analysis Log analysis with Amazon Elasticsearch Service and Kibana Log analysis with Amazon RedShift and Amazon QuickSight Log analysis on Amazon S3
  • 47. Distributed tracing – AWS X-Ray • AWS X-Ray uses correlation IDs: unique identifiers attached to all requests and messages related to a specific event chain. • Trace ID is added to HTTP requests in headers named X-Amzn-Trace-Id • Via the X-Ray SDK, any microservice can read, add or update this header
  • 49. Auditing Challenges • Ensuring visibility of user actions on each service • Being able to get an overall view across all services at an organizational level • Audit both resource access as well as activities that lead to system changes • Changes: tracked at the individual service level, and across services running on the wider system. • Changes occur frequently in microservices  auditing changes is more important
  • 50. AWS CloudTrail • Tracks changes in microservices • Enables all API calls made in the AWS Cloud to be logged and sent to either CloudWatch Logs (real time) or to Amazon S3 (several minutes)
  • 51. Resource inventory and change management • CloudTrail and CloudWatch Events: building blocks to track and respond to infrastructure changes across microservices • AWS Config rules: to define security policies with specific rules to automatically detect, track, and alert you to policy violations
  • 53. © 2019, Amazon Web Services, Inc. or its Affiliates. All rights reserved. Demo session Simple Bookstore App
  • 54. Simple Bookstore App The Bookstore App is built on-top of AWS Full-Stack Template, which provides: • Foundational services • Components • Plumbing needed to get basic web application up and running https://github.com/awslabs/aws-full-stack-template
  • 55. Simple Bookstore App The app contains multiple services 1. Shopping cart 2. Product search 3. Recommendations 4. Top sellers list For each of these services, the app makes use of a purpose-built database.
  • 56. Simple Bookstore App – used services
  • 57. Simple Bookstore App - Architecture
  • 58. Simple Bookstore – How it works