Microservices on Cloud Run @ KAUCHE

Microservices on Cloud Run @ KAUCHE Yuki Ito (@mrno110) GCPUG
Modern Architecture Talk

Kauche Architect Yuki Ito @mrno110

Architecture Run Tasks Pub/Sub Mobile App External Service Mobile API
Web Hook API Job API Scheduler

What is Cloud Run Cloud Run is a managed compute
platform that enables you to run containers that are invocable via requests or events. Cloud Run is serverless: it abstracts away all infrastructure management... https://cloud.google.com/run/docs

Architecture - Key Concepts - ɾEverything runs on Cloud Run
ɾEverything runs as an API (gRPC)

Architecture - Key Concepts - e.g.) VS. Cloud Functions Trigger
Run Pub/Sub Functions Run Firestore Functions

Architecture ✅ Everything is Managed as API De fi nitions
✅ Reuse same implementation logic as APIs ✅ Use same Monitoring environments

Architecture: 2020 ~ Run Customer App Customer gRPC

Architecture: 2022 ~ Customer App Customer gRPC Partner App Partner
gRPC Envoy (API Gateway)

O ffl oading Cross-Cutting Concerns to the API Gateway ✓
Authentication / Authorization ✓ Transcoding ✓ Being Internet facing (TLS / Domain / CDN / IP ...) ✓ ...

API Gateway Pattern Customer App Customer gRPC Partner App Partner

proxy-wasm https://github.com/proxy-wasm/spec/blob/c8 ff 5a8ac7b18a65360fe8ab843a6291b8947682/docs/WebAssembly-in-Envoy.md

e.g. Fetching access tokens from Google Cloud Metadata Server API
Gateway Upstream Microservice Metadata Server Access Token Access Token Get Access Token Request

Network: Single Service

Network: Microservices

Network: Access Control

Access Control - Cloud Run - • Access Control with
IAM • Restricting Ingress

Network: Shared VPC + Service Controls Perimeter

Microservices on Cloud Run @ KAUCHE

Microservices on Cloud Run @ KAUCHE

Yuki Ito

More Decks by Yuki Ito

Other Decks in Technology

Featured

Transcript