Continuous Deployment 2.0: Playtime is Over

CONTINUOUS DEPLOYMENT 2.0
PLAYTIME IS OVER

View Slide

in it
PROFESSIONAL PHP SERVICES
‣ CEO and co-founder of in2it
‣ Community leader  
(PHP, Testing, DevOps, Azure, Security)
‣ OSS contributor
‣ Conference Speaker
‣ Coach at CoderDojo
MICHELANGELO VAN DAM

View Slide

MICHIEL ROOK
OUR CD WAS INSPIRED BY
Continuous Deployment 2.0
www.in2it.be - @in2itvof
in it

View Slide

MICHIEL’S TALK WAS TO SAY THE LEAST…
QUITE CONTROVERSIAL
▸ deploy to master, no branches
▸ pair programming, quick code reviews
▸ 100% code coverage
▸ strangler pattern to replace 10+ year old legacy
app
in it

View Slide

THAT GOT US
THINKING…
in it

View Slide

LEGACY
APPLICATIONS
COMMON FOR ALL CLIENTS:
in it

View Slide

IN2IT PROCESSES?
? ? ?
?
?
?
?
?
in it

View Slide

REFACTORING
ADDING FEATURES
REWRITE FROM SCRATCH
TESTING IS HARD
ONLY NEW FEATURES TESTED
LOTS OF WORK
in it

View Slide

in it

View Slide

IN2IT PROCESSES
ONLY MASTER PAIR PROGRAMMING 100% CODE COVERAGE STRANGLER PATTERN
in it

View Slide

IN2IT PROCESSES
ONLY MASTER ❌ PAIR PROGRAMMING 100% CODE COVERAGE STRANGLER PATTERN
in it

View Slide

IN2IT PROCESSES
ONLY MASTER ❌ PAIR PROGRAMMING ✅ 100% CODE COVERAGE STRANGLER PATTERN
in it

View Slide

IN2IT PROCESSES
ONLY MASTER ❌ PAIR PROGRAMMING ✅ 100% CODE COVERAGE ✅ STRANGLER PATTERN
in it

View Slide

IN2IT PROCESSES
ONLY MASTER ❌ PAIR PROGRAMMING ✅ 100% CODE COVERAGE ✅ STRANGLER PATTERN ❌
in it

View Slide

LET’S SEE WHAT WE’RE MISSING
DO WE NEED TO COMMIT TO MASTER?
▸ All PR’s are going into master branch
▸ Every developer has their own GIT repo
▸ Branching for features
▸ Branching for bug ﬁxes
▸ Deployment Master
▸ Integrates one or more dev branches
▸ Pushes it onto master
in it

View Slide

DEVELOPERS WORK LOCALLY ON A PRIVATE GIT REPO
OUR GIT WORKFLOW
DEVELOPER
PRIVATE REPO
DEVELOPER
PRIVATE REPO
in it

View Slide

ONCE DONE, THEY PUSH TO THEIR PUBLIC REPOS
OUR GIT WORKFLOW
DEVELOPER
PRIVATE REPO
DEVELOPER
PRIVATE REPO
DEVELOPER
PUBLIC REPO
DEVELOPER
PUBLIC REPO
in it

View Slide

AND SEND A PULL REQUEST (PR)
OUR GIT WORKFLOW
DEVELOPER
PRIVATE REPO
DEVELOPER
PRIVATE REPO
DEVELOPER
PUBLIC REPO
DEVELOPER
PUBLIC REPO
TEAM REPO
RELEASE BRANCH
in it

View Slide

OUR RELEASE MANAGER MERGES THE CHANGES IN
OUR GIT WORKFLOW
DEVELOPER
PRIVATE REPO
DEVELOPER
PRIVATE REPO
DEVELOPER
PUBLIC REPO
DEVELOPER
PUBLIC REPO
TEAM REPO
MASTER BRANCH
RELEASE MANAGER
in it

View Slide

CI KICKS IN AND DEPLOYS TO TEST/STAGING/PROD
OUR GIT WORKFLOW
DEVELOPER
PRIVATE REPO
DEVELOPER
PRIVATE REPO
DEVELOPER
PUBLIC REPO
DEVELOPER
PUBLIC REPO
TEAM REPO
MASTER BRANCH
RELEASE MANAGER
CI
TEST/STAGING/PROD
in it

View Slide

OUR CONCLUSION
COMMITTING STRAIGHT TO MASTER
▸ Will make the role of “Release Master” obsolete
▸ Good for small teams
▸ Speeds up the deployment process
▸ In our case
▸ We work with distributed teams (3-5 people in each team)
▸ Will only work when all features are live from the start (feature ﬂags)
in it

View Slide

LET’S SEE WHAT WE’RE MISSING…
STRANGLER PATTERN
▸ Is a clean way to replace legacy code with
clean, distributed and optimised code.
▸ Requires domain knowledge (especially for 10+
years of evolution of an app)
▸ Creates duplicate functionality during
transitions
in it

View Slide

INCREMENTALLY MIGRATE A LEGACY SYSTEM BY GRADUALLY
REPLACING SPECIFIC PIECES OF FUNCTIONALITY WITH NEW
APPLICATIONS AND SERVICES. AS FEATURES FROM THE LEGACY
SYSTEM ARE REPLACED, THE NEW SYSTEM EVENTUALLY REPLACES
ALL OF THE OLD SYSTEM'S FEATURES, STRANGLING THE OLD
SYSTEM AND ALLOWING YOU TO DECOMMISSION IT.
Microsoft Cloud Architecture
in it

View Slide

LEGACY APPLICATION
NEW
REPLACEMENT
STRANGLER FAÇADE
in it

View Slide

NEW REPLACEMENT
STRANGLER FAÇADE
LEGACY
APPLICATION
in it

View Slide

OUR CONCLUSION
STRANGLING LEGACY CODE
▸ Will take time to replace old with new code
▸ Until ready, duplicated functional will exist
▸ In our case
▸ We need to replace legacy code with better solutions
▸ We can live with duplicated functionality
in it

View Slide

IMPROVING LEGACY
THE PATH TO
in it

View Slide

PEAR LIBS PECL EXTS
FRAMEWORK
X
FRAMEWORK
Y
CUSTOM
LIBS
BUSINESS LOGIC
Monolithic Code Monster
in it

View Slide

WE NEED A BETTER
SOLUTION!
in it

View Slide

PEAR LIBS PECL EXTS
FRAMEWORK
X
FRAMEWORK
Y
CUSTOM
LIBS
BUSINESS LOGIC
Monolithic Code Monster
FUNCTIONAL MICROSERVICE FUNCTIONAL MICROSERVICE
Functional Microservices
in it

View Slide

I CAN HEAR YOU ASK:
WHY MICROSERVICES?
▸ Not tied to a single technology
▸ A service per functionality makes it easier to
upgrade without impacting the whole
application
▸ Improved security on application, network and
infrastructure
▸ Easy to scale and extend
▸ Better resilience against failing services
in it

View Slide

LET’S LOOK IF IT IS A SOLUTION FOR US
PROS AND CONS
Pro Con
Not tied to a single technology Lots of different skillsets
Easy to upgrade/ﬁx or add features Lost in forest of services
Improved security Requires lots of monitoring
Better scalability Expensive*
Improved resilience for failure
(*) The cost lies in the higher number of “instances” and faster network required to run these services
in it

View Slide

MICROSERVICES &
CONTINUOUS DEPLOYMENT
in it

View Slide

GOALS OF CONTINUOUS
DEPLOYMENT?
in it

View Slide

CONTINUOUS DEPLOYMENT CAN BE THOUGHT OF
AS AN EXTENSION OF CONTINUOUS INTEGRATION,
AIMING AT MINIMIZING LEAD TIME, THE TIME
ELAPSED BETWEEN DEVELOPMENT WRITING ONE
NEW LINE OF CODE AND THIS NEW CODE BEING
USED BY LIVE USERS, IN PRODUCTION.
Agile Alliance - agilealliance.com
in it

View Slide

DOING THINGS MORE THAN ONCE LEAD UP TO…
AUTOMATE DEPLOYMENT PROCESSES
▸ A series of actions taken before changes are
put in production
▸ Chained together with fail switch to create a
pipeline
▸ Provides full reports on each step of the
delivery process
▸ Can be optimized over time
▸ Is repeatable
in it

View Slide

COMPUTERS ARE GREAT AT REPETITIVE TASKS!
MINIMIZE LEAD TIME
▸ Through automation, actions are executed faster
in parallel
▸ Any failures will be reported immediately
▸ Any successes will be notiﬁed through
▸ E-mail
▸ Wiki
▸ Slack
▸ …
in it

View Slide

STRESS, PANIC, SICKNESS, … ALL HAVE AN IMPACT ON YOUR CONCENTRATION
PREVENTING HUMAN ERROR!
▸ Automation removes human errors
▸ by stress or a “bad” day
▸ Optimized over time
▸ Repeatable for all stages
in it

View Slide

PROGRAMMING
AGREEMENTS
in it

View Slide

COMMIT SMALL, COMMIT OFTEN
Credits to @CalEvans
THE PROGRAMMER’S MANTRA
in it

View Slide

PERFECT WORLD WOULD MAKE THIS POSSIBLE
OPTIMAL COMMIT
▸ creating/updating class (no body)
▸ creating/changing class method (no body)
▸ creating/changing functionality in method
▸ creating/changing conﬁg (no body)
▸ …
in it

View Slide

ON THIS PLANET WE ARE SATISFIED WITH THIS
REALISTIC COMMIT
▸ complete a functionality
▸ complete a logic operation
▸ complete a conﬁguration change
▸ ﬁx a bug or a vulnerability
in it

View Slide

SMALL AND OFTEN COMMITS BALANCE
PROS AND CONS
Pro Con
Incremental small improvements Many commits for one task
Errors can be reverted quickly Requires change of attitude
Easy to review
Small impact on production code
in it

View Slide

AIM FOR 100% CODE COVERAGE
Michiel Rook - @michielcts
LET’S GO FOR IT!
in it

View Slide

SMALL CHANGES REQUIRE MINIMAL OVERHEAD
COMMIT SMALL WITH 100% COVERAGE
▸ small code change
▸ small test covering all lines
▸ make use of @covers annotation
▸ Run PHPUnit with “--strict-coverage”
in it

View Slide

EXAMPLE OF USING THE @COVERS ANNOTATION
/**
* Authentication throws exception for too short password
*
* @param string $password
*
* @covers \LoginForm\Auth\Service\AuthenticationService::__construct
* @covers \LoginForm\Auth\Service\AuthenticationService::authenticate
* @dataProvider shortPasswordProvider
* @expectedException \InvalidArgumentException
*/
public function testAuthenticationThrowsExceptionForTooShortPassword(string $password)
{
$this->validator->expects($this->once())
->method('isValid')
->willReturn(false);
$authService = new AuthenticationService(
$this->validator,
$this->accountModel,
$this->accountEntity,
$this->twoFactorServiceMock
);
$authService->authenticate('username', $password, false);
$this->fail('Authentication service should throw an exception for too short password input');
}
in it

View Slide

SHOULD WE ADOPT 100% CODE COVERAGE?
PROS AND CONS
Pro Con
Higher quality of code A huge effort
Every line of code is accountable Requires change of attitude
Huge time/money gain in long tail Time intensive
in it

View Slide

COVER MOST CRITICAL PART OF AN
APPLICATION 100% WITH TESTS, EVEN IF
IT’S ONLY 1% OF TOTAL COVERAGE.
Michelangelo van Dam
TWEETABLE QUOTE
in it

View Slide

THE PIPELINE
in it

View Slide

A COMMON CI/CD SETUP
in it

View Slide

WE CAN DO BETTER!
in it

View Slide

THE BEGINNING OF A BEAUTIFUL STORY
CODE ASSEMBLY STEP
▸ Check out SCM
▸ Optionally install submodules
▸ Composer packages
in it

View Slide

ARE WE GOOD TO GO?
CODE QUALITY STEP
▸ Version checks (are we on latest version?)
▸ Vulnerability checks (CVE’s)*
▸ Unit testing
▸ Static Analysis
(*) See SensioLabs for composer package validation service
in it

View Slide

LET’S PREPARE EVERYTHING LIKE A TRUE CHEF
PROVISIONING STEP
▸ Create a new environment
▸ Package the code and assets
▸ Sign the package with GPG
▸ Deploy the code
▸ Perform DB migrations
▸ Warm-up caches
in it

View Slide

TEST ALL THE THINGS, AND ADD SOME…
RELEASE QUALITY STEP
▸ Integration testing
▸ Acceptance testing
▸ End-to-end testing
▸ Regression testing
▸ Performance testing
▸ Security testing
▸ Resilience testing
▸ Accessibility testing
▸ UX Testing
▸ Certiﬁcate Testing
▸ …
in it

View Slide

TIME TO SHIP IT!!!
DEPLOYMENT STEP
▸ Stop crons, workers and daemons
▸ Phase out old system with new
▸ Put new system in load balancer
▸ Direct portion of trafﬁc to new node
▸ Validate behaviour of new node
▸ Remove old system from load balancer
▸ Validate deployment
▸ Start crons, workers and daemons
in it

View Slide

KNOWING IS GOOD, KNOWING EVERYTHING IS BETTER - DAVE EGGARS “THE CIRCLE”
REPORTING STEP
▸ Generate release notes
▸ Generate user documentation
▸ Notify training dept. of changes
▸ Generate release report/stats
in it

View Slide

in it

View Slide

WITH PIPELINES YOU HAVE…
ENDLESS POSSIBILITIES TO DEPLOY
in it

View Slide

AND WHEN SOMETHING DOES GOES WRONG…
THE PIPELINE WILL STOP…
in it

View Slide

WE ROLL FORWARD
WHEN FAILURE HAPPENS
in it

View Slide

LEAN DEVELOPMENT &
DEVOPS
in it

View Slide

AGILE LEAN KANBAN
in it

View Slide

THE 3 WAY PHILOSOPHY
in it

View Slide

HOW IS WORK FLOWING FROM LEFT TO RIGHT?
THE FIRST WAY: SYSTEM THINKING
▸ Encapsulates performance of the whole system
▸ How does “work” flows through the system?
▸ What are the constrains in that flow?
▸ Some key values:
▸ Never passing a known defect downstream
▸ Never allowing local optimisation to create
global degradation
▸ Always seeking to increase flow
▸ Always seeking to achieve profound
understanding of the system
in it

View Slide

HOW IS FEEDBACK MOVING FROM RIGHT TO LEFT?
THE SECOND WAY: AMPLIFY FEEDBACK LOOPS
▸ Shorten and amplify feedback loops
▸ Necessary corrections can be continually made
▸ More telemetry, more insight
▸ system data: CPU, memory, disk space
▸ app data: active users, load time, errors
▸ other: query count, items in shopping cart
▸ Make it available to EVERYONE!!!
in it

View Slide

WHAT SHOULD YOU DO WITH THE KNOWLEDGE
THE THIRD WAY: CONTINUOUS LEARNING
▸ Continual experimentation, taking risks and
learning from failure
▸ Understanding that repetition and practice is
the prerequisite to mastery
▸ Learn and experiment as a hive, not as
individual so global knowledge is shared and
preserved
in it

View Slide

YOUR TURN
in it

View Slide

TEST IT ALL!
CONTINUOUS DEPLOYMENT
in it

View Slide

SMALL REMINDER
BY DESIGN
▸ Quality
▸ Security
▸ Privacy
▸ Resilience
▸ Accessibility
in it

View Slide

Continuous Deployment 2.0: Playtime is Over

Continuous Deployment 2.0: Playtime is Over

DragonBe

More Decks by DragonBe

Other Decks in Programming

Featured

Transcript