The STUPS platform is a set of tools and components to provide a convenient and audit-compliant Platform-as-a-Service (PaaS) for multiple autonomous teams on top of Amazon Web Services (AWS).
More information: http://stups.io
Unblocking The Main Thread Solving ANRs and Frozen Frames
Â
STUPS by Zalando @ AWS Berlin User Group Meetup May 2015
1. STUPS
STUPS To Unleash Penguin Swarms
AWS Berlin Meetup 2015-05-21
henning.jacobs@zalando.de @try_except_
2. 15 countries
14+ million active customers
2.2 billion € revenue 2014
640+ million visits in Q1/2 2014
One of Europe's largest
online fashion retailers
3. What is STUPS?
The STUPS platform is
a set of tools and components
to provide a convenient and audit-compliant
Platform-as-a-Service (PaaS)
for multiple autonomous teams
on top of Amazon Web Services (AWS).
4. One AWS account per Team
â—Ź Every team gets own,
isolated AWS Account
â—Ź Every team gets own team domain
*.<teamid>.example.org
5. Public Internet
Isolated AWS Accounts
*.foo.example.org *.bar.example.org
Team “Foo” Team “Bar”ELB ELB
EC2
Instance
EC2
InstanceEC2
InstanceEC2
Instance
EC2
InstanceEC2
Instance
6. Isolated AWS Accounts..
â—Ź All cross-team traffic via public Internet
â—Ź All cross-team APIs as REST
â—Ź Endpoints need to be secured
via SSL and OAuth
● No firewall/network “magic” needed
7. Autonomy
Teams..
â—Ź can choose technologies
as they think fit
â—Ź own their AWS Account
â—Ź are end-to-end responsible
for their applications
8. Autonomy and Compliance
STUPS offers
maximum freedom for developers
while enabling
near-real-time audit compliance
for every single application.
9. STUPS Policy TL;DR
â—Ź Use the Taupage base AMI
⇒ Docker
â—Ź Register all applications
in the Kio application registry
â—Ź Use REST+OAuth
to expose services to other teams
10. Application Deployment
â—Ź Build your application
â—Ź Create a Docker image
â—Ź Deploy a new immutable stack with Senza
â—Ź Route traffic to the new stack
Try out for yourself: http://docs.stups.io/en/latest/user-guide/standalone-deployment.html
12. What is Senza?
â—Ź Command line tool
â—Ź Generator of Cloud Formation templates
â—Ź Management tool for CF stacks
● Convenience high-level CF “components”
18. OAuth Infrastructure
â—Ź Central IAM Provider
(ForgeRock Open Identity Stack)
â—Ź Registered Apps get OAuth
credentials automatically
â—Ź Credential Distribution via S3 Buckets