- Architecture Patterns and Best Practices
- Asynchronous Messaging using Kafka
- AWS ECS E2E Architecture
- AWS Serverless Architecture
- Continuous Deployment - Continuous Delivery
- External Configuration
- Java Spring JPA Microservice on Kubernetes or EKS or ECS or Docker or Beanstalk or EC2 Tomcat Spring Boot
- Microservice API Gateway Patterns
- Object Relational Mapping
- Reference Architecture
- Throughput Computing
At least 3 types of diagram (full, application, flow)
|Full||Includes application agnostic security (DDoS, DPI, CVE)|
|Application||Includes application specific components|
|Flow||Shows flows through the system per use case|
Helm/Kubernetes based Architecture
(recommended) - Reference Architecture#Architecture
Nascent AWS Architecture Examples
Best Practices AWS Architecture
This architecture details what can be achieved using the latest Helm/Kubernetes as the orchestrator and/or ECS/Fargate as the cluster manager
AWS EKS Kubernetes based Architecture
AWS ECS Fargate based Architecture
AWS ECS EC2 based Architecture
(not fully optimized) - see AWS Developer Guide#ECS-ElasticContainerService-Development and - AWS-4Getting issue details... STATUS
The following AWS architecture is based around the Elastic Container Service (ECS) running on 1 ore more EC2 instances in an EC2 cluster.
The pipeline consists of pushing git artifacts to S3, running CodeBuild to produce the War or spring boot Jar and the docker image in ECR, running CodeDeploy to deploy the task definition to ECS.
User access to the deployed service is via the API Gateway through the ELB.
Developer access to the docker container(s) is either via the Systems Manager or via the bastion on an SSH tunnel.
This architecture is an example of a resource constrained design - for example using ECS/EC2 instead of Fargate as the cluster manager or Kubernetes as the orchestrator.
Infrastructure/Platform/Software/Function as a Service
There are many valid architectures suited to a particular set of use cases and requirements. Some of these are hybrid, some are a combination of local or cloud based infrastructure, platform, software or function as a service offerings. I will summarize a subset that I am familiar with or actively implementing here.
Well Architected Framework - AWS
Based on the standard Amazon AWS Well Architected Best Practices
Server Reference Architecture
Platform as a Service Reference Architecture
Serverless Reference Architecture
Log Streaming and Tracing - Logging
If resizing a cluster re-launch all the VMS to allow for single placement
I have experience in the past going back to 2014 where I used Atlassian Bamboo to run AWS EC2 instances for build and deployment. AWS now provides a better alternative where we run our CodeBuild instances inside the private subnet of a VPC - where we can get access to everything inside.
Github/CodeCommit + CodeBuild + CodeDeploy + CodePipeline
We need a 2 subnet VPC that uses a NAT Gateway - not a NAT EC2 instance. We also need a <repo>-codebuild yaml file with the buildspec or we get the following
Create a 2 subnet Public/Private VPC with NAT Gateway and Bastion
github + jenkins + sh script + AWS
Traditional custom scripts are the layer over direct AWS deployment commands or cloudformation templates.
github + jenkins + terraform + AWS
Add terraform as the layer over cloudformation.
Backend: Relational DB - App: Spring Boot REST WAR with AngularJS Frontend
In this section we will create a simple one page web application that is running a REST controller on top of a relational ORM DB. Deployment will be via docker container using kubernetes as the orchestrator.
Eclipse Project Creation
Navigate to spring.io to create the project template
GUI and REST API Separation
Database and Use case Matching
Relational DB for relational data
Graph DB for deep traversal data
KV store for unstructured row level data
Identity and SSO
Secure Remote Protocol - http://srp.stanford.edu/ | Signature Version 4 - https://docs.aws.amazon.com/general/latest/gr/signature-version-4.html |
WebSocket vs HTTP 1/2 and SSE
Some of what I learned working on ONAP S3P - design for Security, Scalability, Stability and Performance. A lot of maturity requirements are met by using a container framework like Kubernetes under Helm.