Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Building a self-service Kafka Platform

Pere Urbón
July 21, 2020
Technology
0
220

Building a self-service Kafka Platform

Have you ever wondered, what motivates people? According to many authors, autonomy is a key factor to build a sustainable and motivated team. This is as well a core principle of the devops.

If you are in the quest of building a self-service kafka based platform where your users can manage topics, acls and rbac by themself, but still keep change control and a verification process? Gitops and Kafka Topology Builder is here to help you.

In this talk we’re going to present and guide you towards the steps necessary to build up a self-service Apache Kafka using Gitops and Kafka Topology Builder, including a few war stories from people using it in production. As well we introduce the idea of service brokers for k8s and Cloud Foundry.

By the end of this talk, you will take home an automatic Jenkins pipeline, that will make your users autonomous and give you more time to focus on less bureaucratic work and a setup with service brokers in k8s and cf.

Pere Urbón

July 21, 2020
Tweet

More Decks by Pere Urbón

See All by Pere Urbón
10 ways to deploy Apache Kafka® and have fun along the way
purbon
1
130
Apache Kafka: advice from the trenches or how to successfully fail!
purbon
3
900
Building an Streaming Platform with Kafka
purbon
0
91
UrbonBayesPere_BerlinBuzzwords18_ConnectingDataInfraWithDataFlow.pdf
purbon
0
80
Connecting the data infrastructure with the DataFlow (Apache NiFi)
purbon
2
190
Ten Tips to completely fail building your Search Project
purbon
0
140
Learning to Rank 101, Bringing personalisation to data discovery
purbon
0
460
The quantum mechanics of data pipelines
purbon
0
86
Data Engineering without borders
purbon
0
66

Other Decks in Technology

See All in Technology
トラブルシューティングから Linux カーネルに潜り込む
hiboma
7
1.3k
Mirror mirror... what am I typing next?
spinscale
0
150
Por que testes de unidade não são suficientes para seus microsserviços
rponte
1
850
カーネルコードの歩き方
sat
PRO
3
2.5k
点群SegmentationのためのTransformerサーベイ
takmin
1
480
CloudWatch複合アラームでELBの5XXをいい感じに検知しようとしたらうまくいかなかった話 / cloudwatch alarm elb 5xx
gotok365
0
330
KEDAで始めるイベント駆動システム #k8snovice / keda-tutorial
chmikata
1
120
1人目QA奮闘記-2023年ver-/QA Engineer's Struggle 2023
mii3king
1
200
ABEMAのRenderScript Intrinsics Replacement Toolkit 導入事例
takahana
0
210
20230520_ChatGPT部_第7回_オープニングトークとこの1週間のサマリ
doradora09
0
100
Vision.framework - 商品画像からのテキスト検出と並列化実装への試み
hcrane
0
200
TrivyでAWSセキュリティをシフトレフトしよう
bitkey
PRO
1
530

Featured

See All Featured
GitHub's CSS Performance
jonrohan
1022
430k
ReactJS: Keep Simple. Everything can be a component!
pedronauck
658
120k
The Art of Programming - Codeland 2020
erikaheidi
37
11k
Building a Modern Day 
E-commerce SEO Strategy
aleyda
9
5.3k
The Invisible Customer
myddelton
113
12k
Become a Pro
speakerdeck
PRO
7
3.4k
Templates, Plugins, & Blocks: Oh My! Creating the theme that thinks of everything
marktimemedia
16
1.3k
Art Directing for the Web. Five minutes with CSS Template Areas
malarkey
197
11k
Designing the Hi-DPI Web
ddemaree
273
33k
Why Our Code Smells
bkeepers
PRO
327
55k
Building Better People: How to give real-time feedback that sticks.
wjessup
346
18k
How to Ace a Technical Interview
jacobian
271
22k

Transcript

  1. Building a self-service Kafka
    platform
    Pere Urbon-Bayes / Benedikt Linse
    [email protected]fluent.io / [email protected]fluent.io
    @purbon

    View Slide

  2. What are we going to talk about today?
    2
    • How to build a self-service and building full automation for an Apache Kafka platform to
    make your users autonomous
    • Present the Kafka Topology Builder as descriptive change agent to manage your
    changes in the Kafka platform
    • Introduce Service brokers as a Kubernetes/Cloud Foundry ways of providing autonomy
    to teams

    View Slide

  3. The quest to build a self-service
    Kafka platform
    Building a self-service platform

    View Slide

  4. @purbon
    Common
    questions for
    KafkaOps

    View Slide

  5. @purbon
    What happens to my logs?

    View Slide

  6. @purbon
    Automate all the things!

    View Slide

  7. @purbon
    A declarative method

    View Slide

  8. @purbon
    A gitops approach for Apache Kafka, and others

    View Slide

  9. What does Kafka Topology Builder offer you?
    Continuous delivery of changes to Apache
    Kafka and Confluent Platform
    Multitenancy out of the box
    All changes are documented and
    approved. Full control of change
    management for audit
    Declarative approach, users don’t need to
    know low level of Kafka
    Full development team autonomy, without
    hampering operational control
    9

    View Slide

  10. In detail, what do I get with this process?
    ● API driven solution to integrate with CI/CD practises in house.
    ○ Support for on-prem cluster and Confluent Cloud.
    ● Topic management with:
    ○ creation, delete and update of specific configuration value
    ○ out of the box namespacing based on the project structure and data types.
    ● Multi tenancy enablement out of the box
    ● Access Control management with:
    ○ Predefined roles for Consumers, Producers, Kafka Connect Connectors and Kafka
    Streams applications
    ○ Support for traditional ACLs and Confluent RBAC
    ○ Platform wide ACLs for Schema Registry deployments
    NOTE: For all this futures, the tool managed automatic create, delete and update when
    required.
    10

    View Slide

  11. To know more about the project
    If you are interested to know more about the project, you can find more information in:
    ● Kafka Topology Builder Github: https://github.com/purbon/kafka-topology-builder
    ● Documentation: https://kafka-topology-builder.readthedocs.io/
    ● Releases: https://github.com/purbon/kafka-topology-builder/releases
    11

    View Slide

  12. Does anything changes if I do containers?
    12

    View Slide

  13. Self Service Platforms / Service Brokers
    ● A way to enrich self service platforms with custom services
    ● The Open Service Broker API defines these interactions, and therefore allows software
    providers to offer their services to anyone, regardless of the technology or infrastructure
    those software providers wish to utilise.
    ● The tasks of a Service Broker are the following:
    ● Allow easy use of stateful services by application developers
    ● Provide a catalog of offers
    ● Provisioning new service instances
    ● Dis/connecting applications from services
    ● Deprovision service instances
    13

    View Slide

  14. Concepts: Apps and Services
    ● App:
    ○ written by developers
    ○ stateless
    ○ comply with 12-factor-app standard
    ○ autoscale or can be manually scaled
    ○ use services to persist data
    ○ run within a container
    ○ deployed through declarative application
    manifests.
    14
    ● Service
    ○ provided by platform operators
    ○ stateful
    ○ can be declaratively provisioned by
    developers in a self-service style
    ○ can be shared or dedicated
    ○ Examples:
    ■ MysqlDB, Redis,Kafka,
    ElasticSearch, DynamoDB,
    BigTable …

    View Slide

  15. Many ones available, for Kubernetes and CF
    ● A Kafka Service Broker for Cloud Foundry at BOSH
    ● Pivotal - Datastax: Cassandra Service Broker
    ● Service Broker for MongoDB Atlas
    ● Another Kafka Service Broker by 1123
    15

    View Slide

  16. Service Brokers on Kubernetes
    16
    Source: https://kubernetes.io/docs/concepts/extend-kubernetes/service-catalog

    View Slide

  17. Kubernetes: Service Catalog
    17

    View Slide

  18. Kafka Service Broker Workflow on CloudFoundry
    Service Instantiation
    18
    Cloud
    Controller
    Application Runtime
    Kafka Service
    Broker
    1. My App needs access to a topic!
    cf create-service confluent-kafka gold t1
    2. create
    topic
    3. create topic
    Success/Failure
    response
    Success /
    Failure
    response
    Success/
    Failure
    response
    MyApp
    MyApp

    View Slide

  19. Kafka Service Broker on CloudFoundry
    Service Binding
    19
    Cloud
    Controller
    PWS Application
    Runtime
    Kafka Service
    Broker
    6. create user and
    api key
    7. set ACLs
    4. bind topic to my app
    cf bind-service my-app t1
    5. bindRequest my-app, t1
    8. return user, password
    MyApp
    9. Inject credentials as
    environment variable
    9. Read Credentials from
    Environment upon startup
    MyApp

    View Slide

  20. Many ones available, for Kubernetes and CF
    ● A Kafka Service Broker for Cloud Foundry at BOSH
    ● Pivotal - Datastax: Cassandra Service Broker
    ● Service Broker for MongoDB Atlas
    ● Kafka Service Broker for Topics by 1123
    20

    View Slide

  21. Kafka Service Broker: Future Work
    ● Support for SASL/SCRAM users
    ● Support for Role Based Access Control
    ● Support for prefixed ACLs
    ● Support for more topic configurations
    ● Support for more bind methods:
    ○ read only
    ○ write only
    ○ streams
    ○ transactional
    ● Use future CCloud API for managing users
    ● Test Service Instance sharing
    21

    View Slide

  22. Demo time….
    22

    View Slide