Tale of Two Pizzas: Developer Tools at AWS

© 2020, Amazon Web Services, Inc. or its Affiliates. All rights reserved.
Tale of Two Pizzas: Developer
Tools at AWS
@darkosubotica
ln/darko-mesaros
twitch.tv/ruptwelve
youtube.com/ruptwelve

View Slide

The Three What's!
• What is DevOps?
• What is a Modern Application?
• What Tools make my life easier?

View Slide

What is DevOps?

View Slide

What is DevOps?
• Cultural philosophies
• Practices
• Tools

View Slide

DevOps Culture
• Dev & Ops coming together
• No more “silos”
• Shared responsibility
• Ownership
• Visibility and communication

View Slide

DevOps Practices
• Microservices
• Moving away from “monolithic” application
architecture to many individual services

View Slide

DevOps Practices
• Continuous Integration
• Continuous Delivery & Deployment

View Slide

DevOps Practices
• Infrastructure as Code
• Model your AWS resources using code

View Slide

DevOps Practices
• Monitoring and Logging
• Track and analyze metrics and logs
• Understand real-time performance of
infrastructure and application

View Slide

Reliability
Benefits of DevOps
Speed
Scale
Rapid Delivery
Improved Collaboration
Security

View Slide

$(whoami) Darko Mesaroš / Darko Meszaros /
Дарко Месарош
Berlin
@darkosubotica
ln/darko-mesaros
twitch.tv/ruptwelve

View Slide

Tell me about Amazon’s Story

View Slide

Development transformation at Amazon: 2001–2002
monolithic application
+ teams
2001
Lesson learned: decompose for agility
2002
microservices
+ 2 pizza teams

View Slide

Amazon Retail Platform (2009)

View Slide

Full ownership
Full accountability
“DevOps”
Focused innovation
Two-pizza teams

View Slide

Things went much
better under this
model and teams
were releasing faster
than ever, but we
felt that we could
still improve.

View Slide

In 2009, we ran
a study to find
out where
inefficiencies
might still exist

View Slide

We were just waiting.
Wait
Write
Code
Wait
Build
Code
Wait
Deploy
to Test
Deploy
to Prod

View Slide

Wait
Write
Code
Wait
Build
Code
Wait
Deploy
to Test
Deploy
to Prod
Mins Days Mins Days Mins Days Mins

View Slide

Wait
Write
Code
Wait
Build
Code
Wait
Deploy
to Test
Deploy
to Prod
Weeks
Mins Days Mins Days Mins Days Mins

View Slide

https://secure.flickr.com/photos/lindseygee/5894617854/

View Slide

Automated actions
and transitions; from
check-in to production
Development benefits:
• Faster
• Safer
• Simplification &
standardization
• Visualization of the
process

View Slide

This has continued to work out really well:
In 2014:
• Thousands of service teams across Amazon
• Building microservices
• Practicing continuous delivery
• Many environments (staging, beta, production)
50 million deploys

View Slide

This has continued to work out really well:
Every year at Amazon, we perform a survey of all our
software developers. The 2014 results found only one
development tool/service could be correlated statistically
with happier developers:
Our pipelines service!
continuous delivery == happier developers!

View Slide

Monolith development lifecycle
monitor
release
test
build
developers
delivery pipelines
services

View Slide

Microservice development lifecycle
???
developers
delivery pipelines
services

View Slide

Microservice development lifecycle
developers services
monitor
release
test
build
delivery pipelines
monitor
release
test
build
monitor
release
test
build
monitor
release
test
build
monitor
release
test
build
monitor
release
test
build

View Slide

Listen
Iterate
Experiment
Innovation
Flywheel
Experiments power the engine of rapid innovation

View Slide

What is a Modern Application?

View Slide

What changes do you need to make to adopt these best
practices?
Serverless
No provisioning/management
Automatic scaling
Pay for value billing
Availability and resiliency
Microservices
Componentization
Business capabilities
Products not projects
Infrastructure automation
DevOps
Cultural philosophies
Cross-disciplinary teams
CI/CD
Automation tools
DEV OPS
Architectural
patterns
Operational
Model
Software
Delivery

View Slide

Approaches to modern application development
• Simplify environment management
• Reduce the impact of code changes
• Automate operations
• Accelerate the delivery of new, high-quality services
• Gain insight across resources and applications
• Protect customers and the business

View Slide

Approaches to modern application development
• Simplify environment management with serverless technologies
• Reduce the impact of code changes with microservice architectures
• Automate operations by modeling applications & infrastructure as code
• Accelerate the delivery of new, high-quality services with CI/CD
• Gain insight across resources and applications by enabling observability
• Protect customers and the business with end-to-end security & compliance

View Slide

Release process stages
Source Build Test Production

View Slide

• Integration tests
with other
systems
• Load testing
• UI tests
• Security testing
• Check-in source
code such as .java
files
• Peer review new
code
• Compile code
• Unit tests
• Style checkers
• Create container
images and
function
deployment
packages
• Deployment to
production
environments
• Monitor code in
production to
quickly detect
errors

View Slide


View Slide

Pillars of releasing modern applications

View Slide

What Tools should I use?

View Slide

Infrastructure
as code

View Slide

Infrastructure as code
✓
Make infrastructure
changes repeatable and
predictable
✓
Release infrastructure
changes using the same
tools as code changes
✓
Replicate production in
a staging environment
to enable continuous
testing

View Slide

AWS CloudFormation
• Infrastructure as code (IaC)
• Provides a common language for you to
describe and provision all the infrastructure
resources in your cloud environment
• Build and rebuild your infrastructure and
applications, without having to perform
manual actions or write custom scripts
https://aws.amazon.com/cloudformation/

View Slide

Model function environments with AWS Serverless
Application Model (SAM)
• Open source framework for building serverless
applications on AWS
• Shorthand syntax to express functions, APIs,
databases, and event source mappings
• Transforms and expands SAM syntax into AWS
CloudFormation syntax on deployment
• Supports all AWS CloudFormation resource types
https://aws.amazon.com/serverless/sam/

View Slide

SAM template
AWSTemplateFormatVersion: '2010-09-09’
Transform: AWS::Serverless-2016-10-31
Resources:
GetFunction:
Type: AWS::Serverless::Function
Properties:
Handler: index.get
Runtime: nodejs8.10
CodeUri: src/
Policies:
- DynamoDBReadPolicy:
TableName: !Ref MyTable
Events:
GetResource:
Type: Api
Properties:
Path: /resource/{resourceId}
Method: get
MyTable:
Type: AWS::Serverless::SimpleTable
Just 20 lines to create:
• Lambda function
• IAM role
• API Gateway
• DynamoDB table

View Slide


View Slide

Shorten the learning curve with AWS Cloud Development
Kit (CDK)
Late 2020
Brings cloud infrastructure to developers in ways the can understand
• Build cloud infrastructure with the languages they already know
• Use their existing tools and workflows
• Helpful abstractions that remove the need to learn the details
• Vibrant and fast-growing community of developers

View Slide

AWS Cloud Development Kit (AWS CDK)
A multi-language development framework for modeling infrastructure as reusable components

View Slide

Infrastructure
as code

View Slide

Continuous
integration

View Slide

Continuous integration goals

View Slide

1. Automatically kick off a new release when new code is checked in
2. Build and test code in a consistent, repeatable environment
3. Continually have an artifact ready for deployment
4. Continually close feedback loop when build fails

View Slide

AWS CodePipeline
• Continuous delivery service for fast and reliable
application updates
• Model and visualize your software release process
• Builds, tests, and deploys your code every time there is
a code change
• Integrates with third-party tools and AWS

View Slide

AWS CodePipeline: Supported sources
Pick branch
AWS CodeCommit
GitHub
Pick object or folder
Amazon S3
Pick Docker tag
Amazon ECR
Automatically kick off release and pull latest source code

View Slide

AWS CodePipeline: ECR source action
Source code:
“master” branch
ECR repository:
“release” tag

View Slide

AWS CodeBuild
• Fully managed build service that compiles source code,
runs tests, and produces software packages
• Scales continuously and processes multiple builds
concurrently
• No build servers to manage
• Pay by the minute, only for the compute resources you
use
• Monitor builds through CloudWatch Events

View Slide

AWS CodeBuild: Docker buildspec
version: 0.2
phases:
build:
commands:
- $(aws ecr get-login --no-include-email)
- docker build -t $IMAGE_REPO_NAME:$IMAGE_TAG .
- docker tag $IMAGE_REPO_NAME:$IMAGE_TAG $ECR_REPO:$IMAGE_TAG
- docker push $ECR_REPO:$IMAGE_TAG

View Slide

1. Automatically kick off a new release when new code is checked in
2. Build and test code in a consistent, repeatable environment
3. Continually have an artifact ready for deployment
4. Continually close feedback loop when build fails

View Slide

Continuous
integration

View Slide

Continuous
deployment

View Slide

Continuous deployment goals

View Slide

1. Automatically deploy new changes to staging environments for testing
2. Deploy to production safely without impacting customers
3. Deliver to customers faster: Increase deployment frequency, and
reduce change lead time and change failure rate

View Slide

AWS CodeDeploy
• Automates code deployments to any instance and
Lambda
• Handles the complexity of updating your applications
• Avoid downtime during application deployment
• Roll back automatically if failure detected
• Deploy to Amazon EC2, Lambda, or on-premises
servers

View Slide

CodeDeploy-Lambda deployments
• Shifts traffic using Lambda function weighted aliases
• Choose canary (“shift 10% of traffic for 10 minutes, then shift rest”) or linear
(“shift 10% more traffic every 10 minutes”)
• Validation “hooks” enable testing at each stage of the deployment
• Fast rollback in seconds if case of hook failure or CloudWatch alarms
• Monitor deployment status and history via console, API, Amazon Simple
Notification Service (Amazon SNS) notifications, and CloudWatch Events

View Slide

CodeDeploy – Lambda deployments
Enable in your serverless application template
Resources:
GetFunction:
Type: AWS::Serverless::Function
Properties:
DeploymentPreference:
Type: Canary10Percent10Minutes
Alarms:
- !Ref ErrorsAlarm
Hooks:
PreTraffic: !Ref PreTrafficHook
Canary10Percent30Minutes
Linear10PercentEvery10Minutes
Linear10PercentEvery1Minute
AllAtOnce

View Slide

CodeDeploy – Lambda canary deployment
API
Gateway
Lambda
function
weighted
alias “live”
v1 Lambda
function
code
100%

View Slide

API
Gateway
Lambda
function
weighted
alias “live”
v1 code
100%
Run PreTraffic hook against v2 code before it receives traffic
v2 code
0%

View Slide

API
Gateway
Lambda
function
weighted
alias “live”
v1 code
90%
Wait for 10 minutes, roll back in case of alarm
v2 code
10%

View Slide

API
Gateway
Lambda
function
weighted
alias “live”
v1 code
0%
Run PostTraffic hook and complete deployment
v2 code
100%

View Slide

1. Automatically deploy new changes to staging environments for testing
2. Deploy to production safely without impacting customers
3. Deliver to customers faster: Increase deployment frequency, and
reduce change lead time and change failure rate

View Slide

Continuous
deployment

View Slide

Demo

View Slide

Takeaways
1. No one knows what is DevOps
2. Decompose for Agility
3. Use the right tool for the right job – and focus your efforts on your value not
everything else around it!

View Slide

@darkosubotica
ln/darko-mesaros
twitch.tv/ruptwelve

View Slide

Tale of Two Pizzas: Developer Tools at AWS

Tale of Two Pizzas: Developer Tools at AWS

Darko Mesaros

More Decks by Darko Mesaros

Other Decks in Technology

Featured

Transcript