avoiding speed bumps on the road to microservices
play

AVOIDING SPEED BUMPS ON THE ROAD TO MICROSERVICES Scott Shaw - PowerPoint PPT Presentation

May 01, 2023 •211 likes •1k views

AVOIDING SPEED BUMPS ON THE ROAD TO MICROSERVICES Scott Shaw Head of Technology, ThoughtWorks Australia 1 MICROSERVICE ENVY GOOGLE TRENDS DATA service oriented architecture microservices 2 THE SPEED BUMPS X 3 THE SPEED BUMPS X

  1. AVOIDING 
 SPEED BUMPS 
 ON THE ROAD TO MICROSERVICES Scott Shaw Head of Technology, ThoughtWorks Australia 1

  2. MICROSERVICE ENVY GOOGLE TRENDS DATA service oriented architecture microservices 2

  3. THE SPEED BUMPS X 3

  4. THE SPEED BUMPS X DDD REST Automation Cloud DevOps Logging Monitoring Resilience Testing with CDCs Conway Postel 3

  5. THE SPEED BUMPS X Data Aggregation DDD REST Automation Cloud DevOps Logging Monitoring Resilience Testing with CDCs Conway Postel 3

  6. THE SPEED BUMPS X Access Control & Security Data Aggregation DDD REST Automation Cloud DevOps Logging Monitoring Resilience Testing with CDCs Conway Postel 3

  7. THE SPEED BUMPS X Managing Change Access Control & Security Data Aggregation DDD REST Automation Cloud DevOps Logging Monitoring Resilience Testing with CDCs Conway Postel 3

  8. Aggregating Data 4

  9. SINGLE DATASTORE PRINCIPAL 5

  10. SINGLE DATASTORE PRINCIPAL 5

  11. SINGLE DATASTORE PRINCIPAL 5

  12. BUT AS A SYSTEM EVOLVES… 6

  13. BUT AS A SYSTEM EVOLVES… 6

  14. BUT AS A SYSTEM EVOLVES… 6

  15. BUT AS A SYSTEM EVOLVES… 6

  16. BUT AS A SYSTEM EVOLVES… 6

  17. BUT AS A SYSTEM EVOLVES… 7

  18. BUT AS A SYSTEM EVOLVES… 7

  19. JIA YANG’S STORY 8

  20. JIA YANG’S STORY 8

  21. SIDEBAR: SERVICE COMPOSITION THE MONOLITHIC APPROACH Customers JOIN in the EC tax regime Tax Regime Service 9

  22. SIDEBAR: SERVICE COMPOSITION NAIVE SERVICE IMPLEMENTATION tax geography Customers 
 in the EC Countries 
 customers in the EC 10

  23. SIDEBAR: SERVICE COMPOSITION COMPOSED SERVICES tax geography Countries in the EC GET … 
 ?country_list=UK,NL,SE... customers Customers in the EC

  24. SIDEBAR: SERVICE COMPOSITION COMPOSED SERVICES tax geography Countries in the EC GET … ? fi lter=https://geo/countries?r=ec customers GET Customers in the EC

  25. AGGREGATING DATA tax geography Countries in the EC customers Customers in the EC 12

  26. AGGREGATING DATA tax geography Countries in the EC customers How do we know 
 if these states 
 are consistent? Customers in the EC 12

  27. AGGREGATING DATA tax geography Changes in EC Membership Reacts to 
 Events to rescue! event streams customers How do we know 
 if these states 
 are consistent? Changes in 
 customer status 12

  28. AGGREGATING DATA tax geography customers 13

  29. AGGREGATING DATA tax geography customers GET https://integration-toolkit.com/customers/events 13

  30. AGGREGATING DATA tax geography customers GET https://integration-toolkit.com/customers/events 13

  31. IMPLEMENTING EVENTS OPTION 1: CHUCK ‘EM IN THE DB 14

  32. IMPLEMENTING EVENTS OPTION 2: HIPSTER BATCH Tax Geography Customer Shared Storage (S3) 15

  33. IMPLEMENTING EVENTS OPTION 3: SPECIAL-PURPOSE EVENT STORE Geography Event Subscription JS Customers Event Store 16

  34. IMPLEMENTING EVENTS OPTION 3: SPECIAL-PURPOSE EVENT STORE Geography “Projections” Event Subscription JS Customers Event Store 16

  35. Delegated Authority & Access Control 17

  36. DELEGATED ACCESS MANAGEMENT JWT ADFS OpenID 2.0 HMAC OAuth 2.0 SAML v2 OpenID Connect 18

  37. DELEGATED ACCESS MANAGEMENT JWT ADFS OpenID 2.0 HMAC OAuth 2.0 SAML v2 OpenID Connect 18

  38. FENDY’S STORY 19

  39. FENDY’S STORY 19

  40. THE OLD WORLD OF PERIMETER SECURITY credentials Identity 
 End User Provider Application token token cookie veri fi cation Web 
 Application 20

  41. THE OLD WORLD OF PERIMETER SECURITY credentials Identity 
 End User Provider Application token token cookie veri fi cation Web 
 Application stateless? 20

  42. THE OLD WORLD OF PERIMETER SECURITY credentials Identity 
 End User Provider Application token token cookie veri fi cation Web 
 Application stateless? whose identity? 20

  43. THE OLD WORLD OF PERIMETER SECURITY credentials Identity 
 End User Provider Application token token cookie veri fi cation Web 
 Application token token 20

  44. VARIOUS APPROACHES ▫︎ 2-Way SSL/TLS ▫︎ HMAC signing ▫︎ JWT ▫︎ NTLM/WIF/ADFS ▫︎ SAML v2 ▫︎ OAUTH 2.0 ▫︎ OPENID Connect 21

  45. VARIOUS APPROACHES ▫︎ 2-Way SSL/TLS ▫︎ HMAC signing Ask these questions ... ▫︎ JWT ▫︎ NTLM/WIF/ADFS ▫︎ SAML v2 ▫︎ OAUTH 2.0 ▫︎ OPENID Connect 21

  46. VARIOUS APPROACHES ▫︎ 2-Way SSL/TLS ▫︎ HMAC signing Ask these questions ... ▫︎ JWT • Considered both authentication 
 ▫︎ NTLM/WIF/ADFS and authorisation? ▫︎ SAML v2 ▫︎ OAUTH 2.0 ▫︎ OPENID Connect 21

  47. VARIOUS APPROACHES ▫︎ 2-Way SSL/TLS ▫︎ HMAC signing Ask these questions ... ▫︎ JWT • Considered both authentication 
 ▫︎ NTLM/WIF/ADFS and authorisation? ▫︎ SAML v2 ▫︎ OAUTH 2.0 ▫︎ OPENID Connect 21

  48. VARIOUS APPROACHES ▫︎ 2-Way SSL/TLS ▫︎ HMAC signing Ask these questions ... ▫︎ JWT • Considered both authentication 
 ▫︎ NTLM/WIF/ADFS and authorisation? ▫︎ SAML v2 • Based on open standards? ▫︎ OAUTH 2.0 ▫︎ OPENID Connect 21

  49. VARIOUS APPROACHES ▫︎ 2-Way SSL/TLS ▫︎ HMAC signing Ask these questions ... ▫︎ JWT • Considered both authentication 
 ▫︎ NTLM/WIF/ADFS and authorisation? ▫︎ SAML v2 • Based on open standards? ▫︎ OAUTH 2.0 ▫︎ OPENID Connect 21

  50. VARIOUS APPROACHES ▫︎ 2-Way SSL/TLS ▫︎ HMAC signing Ask these questions ... ▫︎ JWT • Considered both authentication 
 ▫︎ NTLM/WIF/ADFS and authorisation? ▫︎ SAML v2 • Based on open standards? ▫︎ OAUTH 2.0 • Simple enough to be widely used? ▫︎ OPENID Connect 21

  51. VARIOUS APPROACHES ▫︎ 2-Way SSL/TLS ▫︎ HMAC signing Ask these questions ... ▫︎ JWT • Considered both authentication 
 ▫︎ NTLM/WIF/ADFS and authorisation? ▫︎ SAML v2 • Based on open standards? ▫︎ OAUTH 2.0 • Simple enough to be widely used? ▫︎ OPENID Connect • Supports a modern web integration strategy? 21

  52. VARIOUS APPROACHES ▫︎ 2-Way SSL/TLS ▫︎ HMAC signing Ask these questions ... ▫︎ JWT • Considered both authentication 
 ▫︎ NTLM/WIF/ADFS and authorisation? ▫︎ SAML v2 • Based on open standards? ▫︎ OAUTH 2.0 • Simple enough to be widely used? ▫︎ OPENID Connect • Supports a modern web integration strategy? 21

  53. VARIOUS APPROACHES ▫︎ 2-Way SSL/TLS ▫︎ HMAC signing Ask these questions ... ▫︎ JWT • Considered both authentication 
 ▫︎ NTLM/WIF/ADFS and authorisation? ▫︎ SAML v2 • Based on open standards? ▫︎ OAUTH 2.0 • Simple enough to be widely used? ▫︎ OPENID Connect • Supports a modern web integration strategy? • Has proven implementations? 21

  54. VARIOUS APPROACHES ▫︎ 2-Way SSL/TLS ▫︎ HMAC signing Ask these questions ... ▫︎ JWT • Considered both authentication 
 ▫︎ NTLM/WIF/ADFS and authorisation? ▫︎ SAML v2 • Based on open standards? ▫︎ OAUTH 2.0 • Simple enough to be widely used? ▫︎ OPENID Connect • Supports a modern web integration strategy? • Has proven implementations? 21

  55. EXAMPLE OPENID CONNECT FLOW End 
 User 
 access code access code App access code OpenID 
 Resource Resource id token Connect id token Provider Another Another {“iss":"op.example.com", � Resource Resource "c_hash":"HK6E_P6Dh8Y93mRNtsDB1Q", � "email_verified":"true", � "sub":"10769150350006150715113082367", � “azp”:”another_resource", � “email":"sshaw@thoughtworks.com", � “aud”:[”resource”, “another_resource”], � "iat":1353601026, � "exp":1353604926 } 22

  56. BEWARE PKI secrets Also Need ssshh! How to 
 • CSRF manage and 
 • Nonce distribute? • Correct implementation keys • Expire • Revoke • Distribute 23

  57. Managing Change 24

  58. MANAGING CHANGE DOES YOUR SYSTEM LOOK LIKE THIS? ? 25

  59. MANAGING CHANGE MAYBE IT SHOULD LOOK LIKE THIS INSTEAD 26

  60. MANAGING CHANGE MAYBE IT SHOULD LOOK LIKE THIS INSTEAD JUICE! 26

  61. RYAN’S STORY 27

  62. RYAN’S STORY 27

  63. BACK TO THE TAX EXAMPLE … tax geography customers 28

  64. BACK TO THE TAX EXAMPLE … tax geography customers 28

  65. BACK TO THE TAX EXAMPLE … tax geography customers 28

  66. BACK TO THE TAX EXAMPLE … tax geography customers Assignment 28

  67. BACK TO THE TAX EXAMPLE … tax geography customers And 
 from 
 here Some logic 
 Some logic 
 from here from here Assignment 28

  68. BACK TO THE TAX EXAMPLE … tax But How? geography customers And 
 from 
 here Some logic 
 Some logic 
 from here from here Assignment 28

  69. HOW TO MANAGE THE CHANGE 1. DO NOTHING 
 May be better than the chaos of not having clear ownership and accountability 2. ONE BIG VERSION CHANGE 
 Version all your services, test them together, release them together 29

Recommend

Speed perception by drivers as dependent on target travel speeds, on every road type urban street

Speed perception by drivers as dependent on target travel speeds, on every road type urban street

32 nd ICTCT Conference in Warsaw, Poland - October 24 & 25, 2019 Background: Speed in Sustainable road safety Speed one of the main issues in Sustainable road safety and in Safe System Speed management matching road

317 views • 3 slides
Building on Change Casselmonte Farm Ginger Speed Bumps 1. Perennial we are growing as an

Building on Change Casselmonte Farm Ginger Speed Bumps 1. Perennial we are growing as an

Building on Change Casselmonte Farm Ginger Speed Bumps 1. Perennial we are growing as an annual 2. Wants to live at 60 F - 90 F 3. From initial planting to maturity 10-11 months 4. None of the published growing data deal with

167 views • 12 slides
A Trustees Road Map to Court Created Trusts TARRANT COUNTY BAR PROBATE SECTION FEBRUARY 6,

A Trustees Road Map to Court Created Trusts TARRANT COUNTY BAR PROBATE SECTION FEBRUARY 6,

Construction, Road Blocks, and Speed Bumps: A Trustees Road Map to Court Created Trusts TARRANT COUNTY BAR PROBATE SECTION FEBRUARY 6, 2020 Why Construct a Management Trust? 1301: 1. Least Restrictive Alternative 142: 2. Family Dynamics

171 views • 15 slides
Navigating the Bumps in the Road "At each moment, you choose the intentions that will shape

Navigating the Bumps in the Road "At each moment, you choose the intentions that will shape

Navigating the Bumps in the Road "At each moment, you choose the intentions that will shape your experiences and those things, negative or positive, upon which you will focus your attention. If you choose unconsciously, you evolve

544 views • 15 slides
Speed Bumps on the Implementation Highway Presented by: Dan Wall 2008 TSP Symposium September

Speed Bumps on the Implementation Highway Presented by: Dan Wall 2008 TSP Symposium September

Speed Bumps on the Implementation Highway Presented by: Dan Wall 2008 TSP Symposium September 2008 SEI Approach - 1 The TSP introduction approach must be unique for each organization. Start with two to four TSP prototype projects.

625 views • 17 slides
quadri: bumps in the road from language to data presented by richard waldinger joint work with

quadri: bumps in the road from language to data presented by richard waldinger joint work with

quadri: bumps in the road from language to data presented by richard waldinger joint work with cleo condoravdi danny bobrow, kyle richardson, and amar das 9 march 2012 why do we need logic? Want to distinguish between A patient does not have

556 views • 42 slides
Microservices Smaller is Better? Eberhard Wolff Freelance consultant & trainer

Microservices Smaller is Better? Eberhard Wolff Freelance consultant & trainer

Microservices Smaller is Better? Eberhard Wolff Freelance consultant & trainer http://ewolff.com Why Microservices? Eberhard Wolff - @ewolff Why Microservices? Strong modularization Sustainable Replaceability Development speed

1.25k views • 48 slides
Avoiding alerts overload from microservices Sarah Wells Principal Engineer, Financial Times

Avoiding alerts overload from microservices Sarah Wells Principal Engineer, Financial Times

Avoiding alerts overload from microservices Sarah Wells Principal Engineer, Financial Times @sarahjwells Knowing when theres a problem isnt enough @sarahjwells You only want an alert when you need to take action Hello @sarahjwells 1

1.74k views • 141 slides
Speed Management and Road Traffic Accidents Where are We Heading? Ir Lee Choy Hin April, 2019

Speed Management and Road Traffic Accidents Where are We Heading? Ir Lee Choy Hin April, 2019

International Seminar and Workshop Safer Road by Infrastructure Design and Operation MIROS/PIARC Technical Session 6: Traffic and Speed Management Speed Management and Road Traffic Accidents Where are We Heading? Ir Lee Choy Hin April,

501 views • 27 slides
Road Traffic (Speed Limits) Bill Presentation to Committee for Regional Development Road Traffic

Road Traffic (Speed Limits) Bill Presentation to Committee for Regional Development Road Traffic

Road Traffic (Speed Limits) Bill Presentation to Committee for Regional Development Road Traffic (Speed Limits) Bill The Department fully supports the drive to improve safety on our roads. We are a primary stakeholder in Northern

560 views • 15 slides
Evaluating Potential Road Diets: The Benefits of Avoiding Detailed Engineering Analysis Bob

Evaluating Potential Road Diets: The Benefits of Avoiding Detailed Engineering Analysis Bob

Evaluating Potential Road Diets: The Benefits of Avoiding Detailed Engineering Analysis Bob Noland Edward J. Bloustein School of Planning and Public Policy Rutgers University June 2018 1 Background: Complete Streets and Road Diets

259 views • 24 slides
hybris-as-a-service A Microservices Architecture in Action Andrea Stubbe Product Manager at

hybris-as-a-service A Microservices Architecture in Action Andrea Stubbe Product Manager at

hybris-as-a-service A Microservices Architecture in Action Andrea Stubbe Product Manager at hybris The Vision Why Microservices? CLOUD FIRST AUTONOMY RETAIN SPEED COMMUNITY Scale different parts Independent teams, Ship new features as

883 views • 32 slides
Study of I ndium bumps f or the Study of I ndium bumps f or the ATLAS pixel detector ATLAS

Study of I ndium bumps f or the Study of I ndium bumps f or the ATLAS pixel detector ATLAS

Study of I ndium bumps f or the Study of I ndium bumps f or the ATLAS pixel detector ATLAS pixel detector June, 7th 2000, Pixel2000, Genova, I taly G. Gagliardi, C.Gemme, P. Netchaeva, L. Rossi, E. Ruscino, F. Vernocchi University

640 views • 25 slides
Jan 2013 Speed limit set at 20mph Small, self-contained area (~5x5 blocks or mile

Jan 2013 Speed limit set at 20mph Small, self-contained area (~5x5 blocks or mile

Jan 2013 Speed limit set at 20mph Small, self-contained area (~5x5 blocks or mile diameter) Announced with signage and gateways Self-enforcing via speed bumps 20mph markings remind drivers to slow down 2

363 views • 15 slides
Speed is an important risk factor A comprehensive and unified Many road safety measures seek

Speed is an important risk factor A comprehensive and unified Many road safety measures seek

Speed is an important risk factor A comprehensive and unified Many road safety measures seek to influence the number framework for analysing the and severity of accidents by influencing speed impacts on road safety of Is it possible to

308 views • 4 slides
Safe Pedestrians, Equines the Environment & Drivers Who are SPEED? The SPEED action group

Safe Pedestrians, Equines the Environment & Drivers Who are SPEED? The SPEED action group

SPEED Safe Pedestrians, Equines the Environment & Drivers Who are SPEED? The SPEED action group was formed after a public meeting to discuss road safety issues and the tragic accident on the A626, involving a horse fatality.

368 views • 13 slides
WHAT COMES AFTER MICROSERVICES? MATT RANNEY WHAT COMES AFTER MICROSERVICES? MATT RANNEY We

WHAT COMES AFTER MICROSERVICES? MATT RANNEY WHAT COMES AFTER MICROSERVICES? MATT RANNEY We

WHAT COMES AFTER MICROSERVICES? MATT RANNEY WHAT COMES AFTER MICROSERVICES? MATT RANNEY We hired lots of engineers. They wrote lots of software. This causes lots of problems. Why use microservices at all? Easier releases? Ef fj ciency

709 views • 55 slides
Microservices Security Fundamentals MICROSERVICES SECURITY CHALLENGES Wojciech Lesniak PRINCIPAL

Microservices Security Fundamentals MICROSERVICES SECURITY CHALLENGES Wojciech Lesniak PRINCIPAL

Microservices Security Fundamentals MICROSERVICES SECURITY CHALLENGES Wojciech Lesniak PRINCIPAL DEVELOPER / TECH LEAD @voit3k Microservices International Data Corporation (IDC) predicts that by: 2019 Q1 Microservices International Data

641 views • 39 slides
Importance of achieving continuous off-route cycle facility avoiding the tram-tracks in the High

Importance of achieving continuous off-route cycle facility avoiding the tram-tracks in the High

Item 8: Pedals Report for Greater Nottingham Light Rapid Transit Advisory Committee, 13.3.18 Importance of achieving continuous off-route cycle facility avoiding the tram-tracks in the High Road / Chilwell Road area, Beeston Abbreviations B6464

417 views • 4 slides
IR bump scan Al, Yun, Chuyu 02/14/2015 APEX mee=ng IR

IR bump scan Al, Yun, Chuyu 02/14/2015 APEX mee=ng IR

IR bump scan Al, Yun, Chuyu 02/14/2015 APEX mee=ng IR bumps with blue beam IR bumps with yellow beam 12 mm horizontal IP bumps in one

476 views • 6 slides
Preprepared draft implementation plans on speed management of Viet Nam 1. Road traffic in

Preprepared draft implementation plans on speed management of Viet Nam 1. Road traffic in

Preprepared draft implementation plans on speed management of Viet Nam 1. Road traffic in Viet Nam Population: 94.569.072 Income group: Middle GNI per capita: US$ 2050 2. Analysis of road traffic accidents 3. Some causes of over

467 views • 13 slides
Road Traffic (Speed Limits) Bill 1 Road Traffic (Speed Limits) Bill The Department fully

Road Traffic (Speed Limits) Bill 1 Road Traffic (Speed Limits) Bill The Department fully

CENTRAL MANAGEMENT BRANCH Room 413c Clarence Court 10-18 Adelaide Street Paul Carlisle Belfast BT2 8GB Clerk to the Committee for Regional Development Committee Office Telephone: (028 905) 41140 Facsimile: (028 905) 40064 Room 254 Email:

485 views • 15 slides
KrakenD API Gateway Product overview @devopsfaith Microservices are challenging The need for

KrakenD API Gateway Product overview @devopsfaith Microservices are challenging The need for

KrakenD API Gateway Product overview @devopsfaith Microservices are challenging The need for agility and scalability has driven Microservices adoption, but: 91% of Internet businesses are using or have plans to use microservices 86% expect

696 views • 53 slides
MCC Speed Management Policy Agenda Purpose of the Speed Management Policy Results of

MCC Speed Management Policy Agenda Purpose of the Speed Management Policy Results of

MCC Speed Management Policy Agenda Purpose of the Speed Management Policy Results of feedback from previous Road Safety workshop Sum Up; Questions & Close MCC Speed Management Policy Purpose of the Speed Management Policy To

416 views • 16 slides

More recommend