Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Microservices on Cloud Run @ KAUCHE

Yuki Ito
November 17, 2022
Technology
0
90

Microservices on Cloud Run @ KAUCHE

Yuki Ito

November 17, 2022
Tweet

More Decks by Yuki Ito

See All by Yuki Ito
Architect / Platform Team at KAUCHE
110y
0
280
Cloud Run + Observability / Reliability @ KAUCHE
110y
0
240
Cloud Run CI/CD + QA @ KAUCHE
110y
1
300
KAUCHE Loves Go
110y
0
250
Evolution of Architecture @ Kauche
110y
3
330
Envoy as an API Gateway
110y
0
170
Microservices on Cloud Run + VPC Network
110y
0
310
How We Use Cloud Run and its Friends
110y
0
280
Custom Kubernetes Controllers at Mercari
110y
1
570

Other Decks in Technology

See All in Technology
マルチプロダクト運用におけるSREのあり方/SRE NEXT 2023-link-and-motivation
lmi
0
170
備えあれば患いなし:効率的なインシデント対応を目指すSREの取り組み
kazumax55
0
250
Chat & Shop Like Never Before Unleash LINE SHOPPING API
linedevth
1
250
ChatGPTを前に頭が真っ白を乗り越え人が答えることが困難な認知負荷MAXなタフクエスチョンをどんどん回答させてプロダクト価値を爆速探求するぞ/cognitive_load_question_and_chatgpt
moriyuya
2
380
F0推定アルゴリズムHarvestは中で何をしているのか
nagiss
2
360
Runbookに何を書き、どのようにアラートを振り分けるか?
egmc
0
650
セキュアエレメントによるWireGuardのセキュリティ強化
kmwebnet
0
150
K8s 上で laravel を 快適に運用する方法
colopl
0
140
事業や組織の変化に柔軟に適応するIVRyのプロダクト開発チーム運営 / IVRy's Product Development
yrhorita
1
230
プロダクトオーナーとしてSLOに向き合う 〜Mackerelチームの事例〜 / SRE NEXT 2023
tatsuru
PRO
0
200
私が経験したアジャイルテスト
culvert
2
430
【IoT-Tech Meetup #5】IoTとは?WireGuard概要とIoTで通信を守る理由
soracom
PRO
0
190

Featured

See All Featured
The Web Native Designer (August 2011)
paulrobertlloyd
78
2.6k
Typedesign – Prime Four
hannesfritz
35
1.8k
StorybookのUI Testing Handbookを読んだ
zakiyama
9
3.9k
ParisWeb 2013: Learning to Love: Crash Course in Emotional UX Design
dotmariusz
101
6.4k
Docker and Python
trallard
31
2.3k
It's Worth the Effort
3n
179
27k
The Power of CSS Pseudo Elements
geoffreycrofte
56
4.6k
Faster Mobile Websites
deanohume
296
29k
Build The Right Thing And Hit Your Dates
maggiecrowley
23
1.7k
Bash Introduction
62gerente
603
210k
We Have a Design System, Now What?
morganepeng
40
6.3k
How To Stay Up To Date on Web Technology
chriscoyier
780
250k

Transcript

  1. Microservices on Cloud Run @ KAUCHE
    Yuki Ito (@mrno110)
    GCPUG


    Modern Architecture Talk

    View Slide

  2. Kauche


    Architect
    Yuki Ito


    @mrno110

    View Slide

  3. View Slide

  4. Architecture
    Run
    Tasks
    Pub/Sub
    Mobile App External Service
    Mobile API Web Hook API Job API
    Scheduler

    View Slide

  5. What is Cloud Run
    Cloud Run is a managed compute
    platform that enables you to run
    containers that are invocable via
    requests or events.


    Cloud Run is serverless: it abstracts
    away all infrastructure management...
    https://cloud.google.com/run/docs

    View Slide

  6. Architecture - Key Concepts -
    ɾEverything runs on Cloud Run


    ɾEverything runs as an API (gRPC)

    View Slide

  7. Architecture
    Run
    Tasks
    Pub/Sub
    Mobile App External Service
    Mobile API Web Hook API Job API
    Scheduler

    View Slide

  8. Architecture
    Run
    Tasks
    Pub/Sub
    Mobile App External Service
    Mobile API Web Hook API Job API
    Scheduler

    View Slide

  9. Architecture - Key Concepts -
    e.g.) VS. Cloud Functions Trigger
    Run Pub/Sub Functions
    Run Firestore Functions

    View Slide

  10. Architecture
    Run
    Tasks
    Pub/Sub
    Mobile App External Service
    Mobile API Web Hook API Job API
    Scheduler

    View Slide

  11. Architecture
    ✅ Everything is Managed as API De
    fi
    nitions


    ✅ Reuse same implementation logic as APIs


    ✅ Use same Monitoring environments

    View Slide

  12. Architecture: 2020 ~
    Run
    Customer App
    Customer gRPC

    View Slide

  13. Architecture: 2022 ~
    Customer App
    Customer gRPC
    Partner App
    Partner gRPC
    Envoy (API Gateway)

    View Slide

  14. O
    ffl
    oading Cross-Cutting Concerns to the API Gateway
    ✓ Authentication / Authorization


    ✓ Transcoding


    ✓ Being Internet facing (TLS / Domain / CDN / IP ...)


    ✓ ...

    View Slide

  15. API Gateway Pattern
    Customer App
    Customer gRPC
    Partner App
    Partner gRPC
    Envoy (API Gateway)

    View Slide

  16. proxy-wasm
    https://github.com/proxy-wasm/spec/blob/c8
    ff
    5a8ac7b18a65360fe8ab843a6291b8947682/docs/WebAssembly-in-Envoy.md

    View Slide

  17. e.g. Fetching access tokens from Google Cloud Metadata Server
    API Gateway
    Upstream Microservice
    Metadata Server
    Access Token Access Token
    Get Access Token
    Request

    View Slide

  18. Architecture: 2022 ~
    Customer App
    Customer gRPC
    Partner App
    Partner gRPC
    Envoy (API Gateway)

    View Slide

  19. Network: Single Service

    View Slide

  20. Network: Microservices

    View Slide

  21. Network: Access Control

    View Slide

  22. Access Control - Cloud Run -
    • Access Control with IAM


    • Restricting Ingress

    View Slide

  23. Network: Shared VPC + Service Controls Perimeter

    View Slide

  24. Architecture: 2022 ~
    Customer App
    Customer gRPC
    Partner App
    Partner gRPC
    Envoy (API Gateway)

    View Slide