talked at #dockertokyo #dockerbday
© - BASE, Inc.Container-basedApplication DesignReal Practices. . #dockertokyo - @hgsgtk
View Slide
© - BASE, Inc.Talk SummaryKeep each components is DecoupledKeep Balance with development efficiencyUse Cloud-based Design Principles
© - BASE, Inc.About meKazuki HigashiguchiTwitter / GitHub : @hgsgtkServer-side EngineerBASE BANK, Inc.
© - BASE, Inc.Agenda.Configuration.Logging.Building Application.Monitoring
Configuration
© - BASE, Inc.Features of Configuration• “Runtime” Data (Necessary at startup)• Different for each environment• A lot of values
© - BASE, Inc.Requests for configuration• Manage hierarchically• Make configurations easy to understand• Externalize configuration• Get rid of configurations from Application• Minimal accessibility• Configurations includes credentials
© - BASE, Inc.Related Principles• “ . CONFIGURATION, CREDENTIALS, ANDCODE” in “Beyond the Twelve-Factor App”• “IMAGE IMMUTABILITY PRINCIPLE(IIP)” in“Principles of container-based applicationdesign (redhat)”
© - BASE, Inc.. CONFIGURATION, CREDENTIALS, AND CODE (WIP)• Get rid of configurations from Code• Not include in Version Control System• “Treat Your Apps Like Open Source”• Environment variables are considered the bestpractice for externalized configuration,• Externalized configurations
© - BASE, Inc.Extra: Beyond the Twelve-Factor App• Best practices of cloud-nativeapplication• published by Pivotal• https://content.pivotal.io/blog/beyond-the-twelve-factor-app• Original is “The Twelve-FactorApp”• https:// factor.net/• Original + New = factors
© - BASE, Inc.Extra: Principles of container-based applicationdesign (redhat)• Design Principles of container-based application• published by red-hot• https://www.redhat.com/en/resources/cloud-native-container-design-whitepaper
© - BASE, Inc.Configuration: Practical example• AWS ECS(Fargate)• Configurations are stored inParameter Store• Encryption using KeyManagement Store• See also:• https://devblog.thebase.in/entry/ / / /
© - BASE, Inc.Configuration: Real Issues• Depends on Features provided by Cloud vendor• If well-integrated features, become “Simple”• If Not, may become “Complicated”
© - BASE, Inc.For example: Fargate & Parameter Store• A example to use Parameter Store asexternalized configuration store• Before Platform Version .• Each container access Parameter Store via API• Write entrypoint.sh by myself
© - BASE, Inc.entrypoint.sh#!/usr/bin/env bashset -e# request multiple timesexport DB_HOST=$(aws ssm get-parameters --name /prd/database/host --query "Parameters[0].Value" --region ap-northeast-1 --output text)export DB_PORT=$(aws ssm get-parameters --name /prd/database/port --query "Parameters[0].Value" --region ap-northeast-1 --output text)exec "[email protected]"
© - BASE, Inc.For example: Fargate & Parameter Store• After Released .• “AWS Fargate Platform Version . AddsSecrets Support”• Just write task definition (and set IAM role)• Become well-integrated features.• It makes our application “Simpler”
Logging
© - BASE, Inc.Requests for Logging• Realtime• Know “What is happening now”• Availability• “No” Missing Log• Searching• Make identifying the cause of problem “Easy”
© - BASE, Inc.Related Principles• “ . LOGS” in “Beyond the Twelve-Factor App”
© - BASE, Inc.“ . LOGS”• Treat Log as Event Stream• Not depends on File System• Log on STDOUT/STDERR• Use tools (ex. ElasticSearch, Logstash, Kibana)to satisfied the requirements of aggregation,processing, storage of logs
© - BASE, Inc.LOGGING: Practical Examples• Application writes logs to STDOUT/STDERR• Fargate -> CloudWatchLogs(CWL) -> S ->ElasticSearch & Kibana• See also https://qiita.com/tomy rider/items/aa dd
Build Application
© - BASE, Inc.Requests for Build Application• Dependency Management• Manage Application Dependency• Work in Difference environments• Work in Local, QA, Stating, Production
© - BASE, Inc.Application Components• Runtime Engine• Code• Dependencies• Configuration
© - BASE, Inc.Container Application• Container includes• Runtime Engine• Code• Dependencies• Configuration isinjected at startup
© - BASE, Inc.For environments, Same Container
© - BASE, Inc.Related Principles• “ . DEPENDENCY MANAGEMENT” in “Beyondthe Twelve-Factor App”• “ . DESIGN, BUILD, RELEASE, RUN” in “Beyondthe Twelve-Factor App”
© - BASE, Inc.Build Application: Practical example• Use case• API developed by Go• One Dockerfile fordeploy• Build image provide toenvironments
© - BASE, Inc.Build Application: Real Issues• Best practices: same containerprovides ALL environments• However, in Local environments,Development efficiency is alsoimportant
© - BASE, Inc.Build Application: Real Issues• One Dockerfile for deploy• Another Dockerfile fordeveloper• Live reloading• See also• https://go-talks.appspot.com/github.com/hgsgtk/gocon -lt/realize.slide#
© - BASE, Inc.Find the suitable balance for you• “Docker for local”• -> weakens the merit• -> strengthen developers• Necessity to find suitable balance
Monitoring
© - BASE, Inc.Requests for Monitoring• Check Health• Monitor application is healthy• Keep Watching Metrics• Keep watching Metrics
© - BASE, Inc.Related Principles• “HIGH OBSERVABILITY PRINCIPLE (HOP)” in“Principles of container-based applicationdesign (redhat)”
© - BASE, Inc.HIGH OBSERVABILITY PRINCIPLE (HOP)• Treat Container like “Black box”• Provide API for various status check• Activity status• Preparation status• Log important events on STDOUT/STDERR
© - BASE, Inc.Health endpoint pattern• One of application monitoring patterns• Provide HTTP endpoints in the application• convey the health of the application• See also: “Practical Monitoring—EffectiveStrategies for the Real World”• http://shop.oreilly.com/product/.do
© - BASE, Inc.Mackerel Container Agent• Monitor “Inside Container”• CPU, Memory, Network etc• Run as a task / pod sidecar• See also: https://mackerel.io/ja/docs/entry/howto/container-agent
© - BASE, Inc.Monitoring: Practical example/.health_check endpoint return “OK”See also: https://devblog.thebase.in/entry/ // /-> % curl -i http://localhost/.health_checkHTTP/1.1 200 OKContent-Type: application/json; charset=utf-8Date: Mon, 04 Mar 2019 13:24:23 GMTContent-Length: 15{"status":200}
© - BASE, Inc.Monitoring: Practical example/.health_check endpoint also return “NG”See also: https://devblog.thebase.in/entry/ // /-> % curl -i http://localhost/.health_checkHTTP/1.1 503 Service UnavailableContent-Type: application/json; charset=utf-8Date: Mon, 04 Mar 2019 13:35:38 GMTContent-Length: 106{"status":503,"message":"failed to get connectiondatabase","string":"sql: connection is already closed"}
© - BASE, Inc.Extra: Related Presentations• “Container-based Application Design Reference and Practice”at Docker Tokyo Meetup• https://speakerdeck.com/hgsgtk/container-based-application-design-reference-and-practice-number-dockertokyo• “Docker Go development environment starting with realize”at Go Conference Autumn• https://go-talks.appspot.com/github.com/hgsgtk/gocon -lt/realize.slide#
© - BASE, Inc.Extra: Related Blogs• “ECS(Fargate)でコンテナアプリケーションを動かすための設定情報の扱い⽅”• https://devblog.thebase.in/entry/ / / /• “アプリケーション監視のパターン「Health エンドポイントパターン」を実践する | 書籍『⼊⾨ 監視 ―モダンなモニタリングのためのデザインパターン』を読んで”• https://devblog.thebase.in/entry/ / / /
© - BASE, Inc.Extra: Related Books• 『⼊⾨ 監視 モダンなモニタリングのためのデザインパターン』https://www.oreilly.co.jp/books/ /
© - BASE, Inc.Extra: Related Documents• Beyond the Twelve-Factor App• https://content.pivotal.io/blog/beyond-the-twelve-factor-app• Principles of container-based application design (redhat)• https://www.redhat.com/en/resources/cloud-native-container-design-whitepaper (English Edition)• https://www.redhat.com/ja/resources/cloud-native-container-design-whitepaper (Japanese Edition)• AWS Cloud Design Patterns• http://en.clouddesignpattern.org/index.php/Main_Page
© - BASE, Inc.Extra: Related Documents• “AWS Fargate Platform Version . Adds Secrets Support”• https://aws.amazon.com/about-aws/whats-new/ / /aws-fargate-platform-version- - -adds-secrets-support/?nc =h_ls
hgsgtk
microcms
.png){kind=icon}
pharma_x_tech
nagauta
andpad
gotok365
hayaok3
sat
spinscale
yuya4
hankehly
tkmnzm
paulrobertlloyd
csswizardry
aarron
danielanewman
jmmastey
hannesfritz
morganepeng
marcduiker
erikaheidi
chrislema
zenorocha
garrettdimon