Doing Multi-Cloud the Easy Way... But should you?

Transcript

1. But should you? Doing Multi-Cloud the Easy Way

2. Isn't one cloud enough? Yes! Embrace the cloud you're on!

3. Mixed Cloud ≠ Multi Cloud • Services only offered by

   specific cloud vendors • Services already in-place and integratable to any cloud platform

4. Go Multi-Cloud? • You require extreme redundancy and reliability •

   You want to avoid vendor lock-in • It happened to you • You're build a non-SaaS product • You want to minimize costs

5. Multi-Cloud is not trivial • Manage diverse infrastructure • Complex

   in deployment and maintenance • Performance & data transfer concerns • Fragmented security solutions • Explosion of required knowledge

6. Doing Multi-Cloud the Easy Way But should you? Nico Krijnen

   Doing Multi-Cloud the Easy Way @nicokrijnen nkrijnen nicokrijnen

7. What about tools?

8. None

9. k-proxy kubelet sched sched sched Control Plane Node etcd Kubernetes

   cluster api api api c-c-m c-c-m c-c-m c-m c-m c-m Node Node k-proxy kubelet kubelet k-proxy Control plane Scheduler sched Cloud controller manager (optional) c-c-m Controller manager c-m kubelet kubelet kube-proxy k-proxy (persistence store) etcd etcd Node API server api

10. AWS Azure GCP Database Pod Application Pod Database Pod Application

    Pod Application Pod Kubernetes / EKS
11. None

12. AWS Azure GCP Database Pod Application Pod Database Pod Application

    Pod Application Pod Kubernetes / EKS

13. AWS Azure GCP Kubernetes / EKS Database Pod Application Pod

    Database Pod Application Pod Application Pod Sidecar Sidecar Sidecar Sidecar Sidecar Sidecar Sidecar Sidecar Redis Pod Sidecar Sidecar Grafana Pod ArgoCD Pod Prometheus Pod Ingress Controller Cilium CNI External Secrets Operator

14. AWS Azure GCP On premise Kubernetes / EKS Database Pod

    Application Pod Database Pod Application Pod Application Pod Sidecar Sidecar Sidecar Sidecar Sidecar Sidecar Sidecar Sidecar Redis Pod Sidecar Sidecar Grafana Pod ArgoCD Pod Prometheus Pod Ingress Controller Cilium CNI External Secrets Operator

15. !

16. !

17. None
18. None
19. None
20. None

21. Business logic

22. None
23. None
24. None

25. Where does it break? "When we think about building cloud

    abstractions, finding suitable abstractions is difficult enough. But even that is only half the story. We also need to find a “stack trace”, a path back from any failure point to determining what to change at the abstraction layer to correct it." – Gregor Hohpe architectelevator.com/architecture/stacktrace-abstraction/
26. None

27. Dapr - Queue pub/sub private val daprClient = DaprClientBuilder().build() fun

    publishEvent(event: CarEnteredEvent) { println("Publishing $event") val publishEventRequest = PublishEventRequest( pubsubName = "eventbus", topic = "cartelemetry", data = event ) daprClient.publishEvent(publishEventRequest).block() } !!" @Topic(name = "cartelemetry", pubsubName = "eventbus") @PostMapping("/cartelemetry") fun handleQueueMessage( @RequestBody(required = false) cloudEvent: CloudEvent<CarEnteredEvent> ) { handleCarTelemetry(cloudEvent.data) } private fun handleCarTelemetry(event: CarEnteredEvent) { println("Car ${event.licensePlate} at ${event.time}") } apiVersion: dapr.io/v1alpha1 kind: Component metadata: name: cartelemetry spec: type: bindings.aws.sqs version: v1 metadata: - name: queueName value: "cartelemetry" - name: region value: "us-west-2" - name: accessKey value: "*****************" - name: secretKey value: "*****************" - name: sessionToken value: "*****************" - name: direction value: "input, output"

28. Dapr vs AWS native private val daprClient = DaprClientBuilder().build() fun

    publishEvent(event: CarEnteredEvent) { println("Publishing $event") val publishEventRequest = PublishEventRequest( pubsubName = "eventbus", topic = "cartelemetry", data = event ) daprClient.publishEvent(publishEventRequest).block() } !!" @Topic(name = "cartelemetry", pubsubName = "eventbus") @PostMapping("/cartelemetry") fun handleQueueMessage( @RequestBody(required = false) cloudEvent: CloudEvent<CarEnteredEvent> ) { handleCarTelemetry(cloudEvent.data) } private fun handleCarTelemetry(event: CarEnteredEvent) { println("Car ${event.licensePlate} at ${event.time}") } private val sqs = AmazonSQSClientBuilder.defaultClient() fun publishEvent(event: CarEnteredEvent) { println("Publishing $event") val sendMessageRequest = SendMessageRequest() .withQueueUrl(queueUrl) .withMessageBody(event.toJson()) sqs.sendMessage(sendMessageRequest) } !!" @PostConstruct private fun handleQueueMessages() { while (true) { val result = sqs.receiveMessage(queueUrl) result.messages.forEach { msg !" handleCarTelemetry(msg.body.fromJson()) sqs.deleteMessage(queueUrl, msg.receiptHandle) } } } private fun handleCarTelemetry(event: CarEnteredEvent) { println("Car ${event.licensePlate} at ${event.time}") }

29. Dapr vs AWS native private val daprClient = DaprClientBuilder().build() fun

    publishEvent(event: CarEnteredEvent) { println("Publishing $event") val publishEventRequest = PublishEventRequest( pubsubName = "eventbus", topic = "cartelemetry", data = event ) daprClient.publishEvent(publishEventRequest).block() } !!" @Topic(name = "cartelemetry", pubsubName = "eventbus") @PostMapping("/cartelemetry") fun handleQueueMessage( @RequestBody(required = false) cloudEvent: CloudEvent<CarEnteredEvent> ) { handleCarTelemetry(cloudEvent.data) } private fun handleCarTelemetry(event: CarEnteredEvent) { println("Car ${event.licensePlate} at ${event.time}") } private val sqs = AmazonSQSClientBuilder.defaultClient() fun publishEvent(event: CarEnteredEvent) { println("Publishing $event") val sendMessageRequest = SendMessageRequest() .withQueueUrl(queueUrl) .withMessageBody(event.toJson()) .withDelaySeconds(5) sqs.sendMessage(sendMessageRequest) } !!" @PostConstruct private fun handleQueueMessages() { while (true) { val request = ReceiveMessageRequest(queueUrl) .withVisibilityTimeout(10) val result = sqs.receiveMessage(request) result.messages.forEach { msg !" handleCarTelemetry(msg.body.fromJson()) sqs.deleteMessage(queueUrl, msg.receiptHandle) } } } private fun handleCarTelemetry(event: CarEnteredEvent) { println("Car ${event.licensePlate} at ${event.time}") }
30. None
31. None

32. • Developer experience! " • Local simulation # $ •

    Auto-generate least privilege IAM policies %& • Built for the cloud from the start (it's still the start ')

33. Spread your wings class Backend { api: cloud.Api; pub storage:

    cloud.Bucket; init() { this.api = new cloud.Api(); this.storage = new cloud.Bucket(); this.api.put("/car/entered", inflight (request) => { log("Received ${request.body}"); let body = Json.tryParse(request.body); let event: events.CarEnteredEvent = events.CarEnteredEvent.fromJson(body); let fileKey = "${event.licensePlate}.json"; let records: Json? = this.storage.tryGetJson(fileKey); let addRecord = (records: Json?, toAdd: Json): Json => { if records? { let newRecords = Json.deepCopyMut(records); let count: num = newRecords.get("length").asNum(); log("Adding to ${count} records"); newRecords.setAt(count, toAdd); return Json.deepCopy(newRecords); } else { log("Adding first record"); return Json [ event ]; } }; let fileBody = addRecord(records, Json event); this.storage.putJson(fileKey, fileBody); return cloud.ApiResponse { status: 200, headers: { "Content-Type" => "text/plain" }, body: "Ok" }; }); this.api.get("/license-plates/unique", inflight (request) => { let files = this.storage.list(); return cloud.ApiResponse { status: 200, headers: { "Content-Type" => "application/json" }, body: Json.stringify(Json { "uniquePlateCount": files.length }) }; }); } pub getApiUrl(): str { return this.api.url; } }

34. Where does it break?

35. Under development

36. What do these multi-cloud tools fix?

37. What do these multi-cloud tools fix? Simplified development and maintenance

    ✅

38. What do these multi-cloud tools fix? Simplified development and maintenance

    ! ✅

39. What do these multi-cloud tools fix? Reduced risk of vendor

    lock-in

40. What do these multi-cloud tools fix? Reduced risk of vendor

    lock-in )

41. Navigating lock-in

42. Navigating lock-in

43. Navigating lock-in * +

44. Fading line between App logic & Infra logic

45. Go Multi-Cloud? • You require [extreme] redundancy and reliability ,

    • You want to avoid vendor lock-in • It happened to you • You want to minimize costs you have lock-in anyway ! let each org unit stay on the cloud they're on ☁ ☁ operating multiple clouds is not free .

46. Maximize adding value now

47. Embrace the cloud you're on

48. Domain Model API Persistance Message Queue Event Bus Tests

49. Domain Model API Persistance Message Queue Event Bus Tests

50. Infra code vs Domain code @Path("/car") @Produces(MediaType.APPLICATION_JSON) class CarTelemetryApi( private

    val eventBus: EventBus ) { @POST @Path("/entered") fun receiveEvent(event: CarEnteredEvent): Response { eventBus.publish(event) return Response.noContent().build() } } !!" class SQSEventBus( private val sqs: SqsClient, @ConfigProperty(name = "queue.url") private val queueUrl: String, ) : EventBus { override fun publish(event: DomainEvent) { sqs.sendMessage { it.queueUrl(queueUrl).messageBody(event.toJson()) } } } !!" @ApplicationScoped class SQSMessageListener( private val sqs: SqsClient, @ConfigProperty(name = "queue.url") private val queueUrl: String, private val eventHandler: (event: DomainEvent) !# Unit ) { @PostConstruct fun handleQueueMessages() { while (true) { val messages = sqs.receiveMessage { it.queueUrl(queueUrl).maxNumberOfMessages(10) }.messages() messages.forEach { message !" eventHandler(message.body().fromJson()) sqs.deleteMessage { it.queueUrl(queueUrl).receiptHandle(message.receiptHandle()) } } } } } interface EventBus { fun publish(event: DomainEvent) } !!" sealed interface Command data class SignalFraudAttemptCommand( val licensePlate: LicensePlate, val time: Instant, val reason: String, ) : Command !!" sealed interface DomainEvent data class CarEnteredEvent( val time: Instant, val licensePlate: LicensePlate, ) : DomainEvent !!" class FraudDetectionPolicy( private val carpark: CarPark ) { fun whenCarEntered(event: CarEnteredEvent): Command? { if (carpark.alreadyEntered(event.licensePlate)) { return SignalFraudAttemptCommand( event.licensePlate, event.time, "Car with this license plate already entered the car park" ) } return null } }

51. Embrace the cloud you're on

52. But should you? Doing Multi-Cloud the Easy Way

53. But should you? Doing Multi-Cloud the Easy Way Do we

    have tools that make Multi-Cloud easy?

54. But should you? Doing Multi-Cloud the Easy Way Maximize adding

    value now, while reducing the cost of being wrong.

55. But should you? Make well-considered choices, that work for your

    context. Doing Multi-Cloud the Easy Way

56. Only if you can't avoid it! Do Multi-Cloud

57. Embrace the cloud you're on Better @nicokrijnen nkrijnen nicokrijnen Nico

    Krijnen