Evolving a serverless startup architecture - ArmadaJS 2022

Transcript

1. A story about building a profitable bootstrapped startup using serverless.

2. @slobodan_ Our journey starts with a prototype, continues with an

   MVP, and follows the evolution to a real product.

3. @slobodan_ We faced many issues and learned a lot along

   the way.

4. Evolving a serverless startup architecture From 1 to 101 Lambda

   functions in production

5. Evolving a serverless startup architecture From 1 to 101 Lambda

   functions in production

6. @slobodan_ The problem & the idea

7. @slobodan_ Everything started in 2016 with a problem in our

   other company.

8. @slobodan_ Everything started in 2017 with an idea, a prototype,

   and a landing page.

9. @slobodan_ Everything really started in 2018 with an MVP.

10. @slobodan_ A simple idea •Track leave requests and a number

    of remaining PTO days •Use SSO to avoid another username and password to remember •Integrate with Slack to make and approve PTO requests •Show events in a Google calendar

11. @slobodan_ How hard can it be?

12. @slobodan_ Slobodan Stojanović CTO and co-founder of the product I

    am talking about co-author of Serverless Apps with Node.js book AWS Serverless Hero JS Belgrade meetup organizer

13. @slobodan_ Architecture

14. @slobodan_ A prototype

15. @slobodan_ An MVP architecture: a simple serverless bot*

16. @slobodan_ Why serverless? •Faster - it was fast to build

    a prototype and an MVP •Less - we outsourced scaling, maintenance, and security •Focused - we focused on the business logic and minimized time spent on everything else •Cheaper - the cost scales with users, and it starts with $0
17. None

18. @slobodan_ Benefits •Quick and independent deployments •Easy to understand and

    maintain •Easy to onboard new people •Cheap

19. @slobodan_ The cost of the infrastructure: $0,00

20. @slobodan_ Adding new features

21. @slobodan_ Downsides •Independent deployment for each Lambda function •Hard to

    manage a!er we added 10 Lambda functions •Hard to scale, as a critical part wasn't serverless •An obvious bottleneck

22. @slobodan_ ~100 paying teams

23. @slobodan_ The first architecture iteration: a complex serverless spaghetti

24. @slobodan_ The first architecture iteration: a complex serverless application

25. @slobodan_ Infrastructure as code (IaC) & first microservices

26. @slobodan_ Microservices Service Service (micro?) (micro?)

27. None

28. @slobodan_ We had ~150 Lambda functions

29. @slobodan_ First migrations from an old service to a new

    one

30. @slobodan_ We realized that we'll need to find the right

    architecture for our problem

31. @slobodan_ Most significant changes •(Almost) everything was in AWS CloudFormation

    (IaC) •We replaced Node.js server with serverless services •We started using TypeScript instead of JavaScript •We started a migration from MongoDB to DynamoDB

32. @slobodan_ Benefits •Easier deployments •App was auto-scalable •We had almost

    100% uptime out-of-the-box •Still very cheap (our infrastructure cost was less than $100/ month)

33. @slobodan_ Downsides •The big flaw in our system design: we

    were storing a state and not events in our database •We were still wasting a lot of time on less important things •Project complexity and the number of new services increased, and it was harder to onboard new developers •Developers don't like YAML

34. @slobodan_ ~600 paying teams

35. @slobodan_ The second architecture iteration: an event-driven system with microservices

36. @slobodan_ The quest for an architecture that solves our problem

37. @slobodan_ In the end, we decided to use Event Sourcing

    & Command Query Responsibility Segregation (CQRS)

38. @slobodan_ Why Event Sourcing and CQRS?

39. @slobodan_ Storing state vs storing events

40. @slobodan_ A common flow in our app •Ana created a

    new location and moved John and Mike to that location •Ana assigned Mike as an approver •Ana made a leave policy (20 PTO days per year) •John requested leave, and Ana approved it •Brought forward event happened and five unused days are transferred to the next year balance •Ana changed John's working week •Mike added some past leaves for John •Alex moved John to another location with a different policy

41. @slobodan_ How do we calculate John's remaining PTO days? Events

    and CQRS to the rescue. As a bonus, we got everything we need for the audit logs.

42. 1. The client sends an API POST request or GraphQL

    mutation 2. The event is stored in the Events table (append-only, no edits) 3. The DynamoDB streams the event to the Lambda function that sends it to the EventBridge event bus 4. EventBridge triggers the specific business logic Lambda function 5. The business logic Lambda stores the "cached" data to one of the read-only DynamoDB tables 6. And then triggers the mutation that sends a "fake" mutation 7. A "fake" mutation triggers the GraphQl subscription to notify the clients

43. 1. The client sends an API POST request or GraphQL

    mutation 2. The event is stored in the Events table (append-only, no edits) 3. The DynamoDB streams the event to the Lambda function that sends it to the EventBridge event bus 4. EventBridge triggers the specific business logic Lambda function 5. The business logic Lambda stores the "cached" data to one of the read-only DynamoDB tables 6. And then triggers the mutation that sends a "fake" mutation 7. A "fake" mutation triggers the GraphQl subscription to notify the clients 8. App uses an event bus to "route" the response to the user's platform

44. Client then query the read-only tables directly using GraphQl

45. Client then query the read-only tables directly using GraphQl Or

    using the RESTful API in case of bots

46. We decreased the number of Lambda functions to 101! But

    now we have 197 functions in production.

47. @slobodan_ Benefits •Fully Managed GraphQL •Less code •Better control •All

    benefits from the previous architecture (without the spaghetti part) •Monorepo and shared types

48. @slobodan_ Downsides •YAML is still very important (but we also

    added CDK for some smaller services) •Many new AWS services to learn •Velocity templates

49. Lambda functions → business logic Other services → transformation and

    orchestration

50. @slobodan_ ~1600 paying teams

51. @slobodan_ The cost of the infrastructure: <1% of MRR ~$750

52. @slobodan_ Architecture should evolve with your product. Don't waste your

    time making it perfect for the MVP.

53. @slobodan_ Development & Testing

54. @slobodan_ Common questions during onboarding •How do I run this

    locally? •How do we debug errors? •What is a DynamoDB single-table design, and why do we store all events in the same table? •What did we just do?

55. @slobodan_ It's impossible to run the whole serverless application locally

    But if you are learning to be a pilot, you don't start with driving a plane in your backyard !

56. @slobodan_ You can simulate parts of your application locally Think

    of it as an early version of a "Flight Simulator" It's helpful, but probably far from the complete set of tools to learn how to fly the plane

57. @slobodan_ What can we do? •A Lambda function is just

    a function - you can run it locally as any other function* •You can use SAM Local or similar tools to run (a simulation of) a Lambda function locally in the Docker container •You can test in the cloud •You can waste your time trying to simulate everything locally

58. @slobodan_ Or you can write tests

59. @slobodan_ How do we test a common client-server app?

60. @slobodan_ How do we test a serverless app?

61. @slobodan_ How do we test a serverless app?

62. @slobodan_ Hexagonal architecture

63. @slobodan_ Anatomy of a Lambda function

64. @slobodan_ Anatomy of a Lambda function

65. @slobodan_ Anatomy of a Lambda function

66. @slobodan_ TypeScript example (business logic) interface IParams<T> { event: T

    parser: (T) => IParsedData repositories: { users: IUserRepository notifications: INotificationRepository } } export async function businessLogic<T>(params: IParams<T>): Promise<void> { const {event, parser, repositories} = params try { const parsedData = parser(event) await repositories.users.invite(parsedData.email) await repositories.notifications.invitationSent() } catch (err) { await repositories.notifications.failure(err) } }

67. @slobodan_ TypeScript example (business logic) interface IParams<T> { event: T

    parser: (T) => IParsedData repositories: { users: IUserRepository notifications: INotificationRepository } } export async function businessLogic<T>(params: IParams<T>): Promise<void> { const {event, parser, repositories} = params try { const parsedData = parser(event) await repositories.users.invite(parsedData.email) await repositories.notifications.invitationSent() } catch (err) { await repositories.notifications.failure(err) } }

68. @slobodan_ TypeScript example (business logic) interface IParams<T> { event: T

    parser: (T) => IParsedData repositories: { users: IUserRepository notifications: INotificationRepository } } export async function businessLogic<T>(params: IParams<T>): Promise<void> { const {event, parser, repositories} = params try { const parsedData = parser(event) await repositories.users.invite(parsedData.email) await repositories.notifications.invitationSent() } catch (err) { await repositories.notifications.failure(err) } }

69. @slobodan_ TypeScript example (business logic) interface IParams<T> { event: T

    parser: (T) => IParsedData repositories: { users: IUserRepository notifications: INotificationRepository } } export async function businessLogic<T>(params: IParams<T>): Promise<void> { const {event, parser, repositories} = params try { const parsedData = parser(event) await repositories.users.invite(parsedData.email) await repositories.notifications.invitationSent() } catch (err) { await repositories.notifications.failure(err) } }

70. @slobodan_ TypeScript example (business logic) interface IParams<T> { event: T

    parser: (T) => IParsedData repositories: { users: IUserRepository notifications: INotificationRepository } } export async function businessLogic<T>(params: IParams<T>): Promise<void> { const {event, parser, repositories} = params try { const parsedData = parser(event) await repositories.users.invite(parsedData.email) await repositories.notifications.invitationSent() } catch (err) { await repositories.notifications.failure(err) } }

71. @slobodan_ TypeScript example (business logic) interface IParams<T> { event: T

    parser: (T) => IParsedData repositories: { users: IUserRepository notifications: INotificationRepository } } export async function businessLogic<T>(params: IParams<T>): Promise<void> { const {event, parser, repositories} = params try { const parsedData = parser(event) await repositories.users.invite(parsedData.email) await repositories.notifications.invitationSent() } catch (err) { await repositories.notifications.failure(err) } }

72. @slobodan_ TypeScript example (business logic) interface IParams<T> { event: T

    parser: (T) => IParsedData repositories: { users: IUserRepository notifications: INotificationRepository } } export async function businessLogic<T>(params: IParams<T>): Promise<void> { const {event, parser, repositories} = params try { const parsedData = parser(event) await repositories.users.invite(parsedData.email) await repositories.notifications.invitationSent() } catch (err) { await repositories.notifications.failure(err) } }

73. @slobodan_ TypeScript example (business logic) interface IParams<T> { event: T

    parser: (T) => IParsedData repositories: { users: IUserRepository notifications: INotificationRepository } } export async function businessLogic<T>(params: IParams<T>): Promise<void> { const {event, parser, repositories} = params try { const parsedData = parser(event) await repositories.users.invite(parsedData.email) await repositories.notifications.invitationSent() } catch (err) { await repositories.notifications.failure(err) } }

74. @slobodan_ TypeScript example (handler) export async function handler(event: APIGatewayProxyEvent): Promise<APIGatewayProxyResult>

    { try { const userRepository = new UsersDynamoDBRepository(process.env.USERS_TABLE) const eventBridgeRepository = new EventBridgeRepository(process.env.EVENT_BUS) await businessLogic<APIGatewayProxyEvent>({ event, parser: parseApiGatewayEvent, repositories: { users: userRepository, notifications: eventBridgeRepository } }) await apiGatewaySuccessResponse() } catch(err) { await apiGatewayErrorResponse() } }

75. @slobodan_ TypeScript example (handler) export async function handler(event: APIGatewayProxyEvent): Promise<APIGatewayProxyResult>

    { try { const userRepository = new UsersDynamoDBRepository(process.env.USERS_TABLE) const eventBridgeRepository = new EventBridgeRepository(process.env.EVENT_BUS) await businessLogic<APIGatewayProxyEvent>({ event, parser: parseApiGatewayEvent, repositories: { users: userRepository, notifications: eventBridgeRepository } }) await apiGatewaySuccessResponse() } catch(err) { await apiGatewayErrorResponse() } }

76. @slobodan_ TypeScript example (handler) export async function handler(event: APIGatewayProxyEvent): Promise<APIGatewayProxyResult>

    { try { const userRepository = new UsersDynamoDBRepository(process.env.USERS_TABLE) const eventBridgeRepository = new EventBridgeRepository(process.env.EVENT_BUS) await businessLogic<APIGatewayProxyEvent>({ event, parser: parseApiGatewayEvent, repositories: { users: userRepository, notifications: eventBridgeRepository } }) await apiGatewaySuccessResponse() } catch(err) { await apiGatewayErrorResponse() } }

77. @slobodan_

78. @slobodan_

79. @slobodan_

80. @slobodan_

81. @slobodan_

82. @slobodan_ Also useful for migrations

83. @slobodan_

84. @slobodan_

85. @slobodan_

86. @slobodan_ Integration tests

87. @slobodan_ Testing in the cloud

88. @slobodan_ describe('DynamoDB repository', () => { describe('unit', () => {

    ... }) describe('integration', () => { beforeAll(() => { // Create test DB }) afterAll(() => { // Destroy test DB }) // Tests }) })

89. @slobodan_ beforeAll(async () => { const params = { ...

    } await dynamoDb.createTable(params).promise() await dynamoDb.waitFor('tableExists', { TableName: tableName }).promise() })

90. @slobodan_ afterAll(async () => { await dynamoDb.deleteTable({ TableName: tableName }).promise()

    await dynamoDb.waitFor('tableNotExists', { TableName: tableName }).promise() })

91. @slobodan_ Or we deploy the full app and run integration

    tests

92. @slobodan_ Deploy where? Serverless environments are often cheap!

93. @slobodan_ Our environments 12 similar environments total cost: $750/month

94. @slobodan_ It's hard to run or simulate a serverless app

    locally. Make small trade-o"s to make your app testable, and you'll be able to move fast.

95. @slobodan_ Security

96. @slobodan_ Accounts are cheap Create one AWS sub-account per environment

    Create an AWS sub-account for each developer But remember to set budget notifications!

97. @slobodan_ Tools for management and easy repeatability CloudFormation AWS Organization

    Formation

98. @slobodan_ Use AWS SSO

99. @slobodan_ Use AWS IAM Identity Center (Successor to AWS SSO)

100. @slobodan_ Learn AWS Identity & Access Management (IAM) Apply the

     minimal permissions model for all AWS services i.e., a Lambda function can do one specific operation only

101. @slobodan_ Use WAF to protect your application

102. @slobodan_ But what about distributed denial-of-service (DDOS) attacks?

103. @slobodan_ But what about distributed denial-of-wallet (DDOW) attacks? "All AWS

     customers benefit from the automatic protections of AWS Shield Standard, at no additional charge."

104. @slobodan_ You still need to be sure that your code

     is secure

105. @slobodan_ Learn about security best practices for your service provider

     and use them from day one.

106. @slobodan_ Philosophy

107. @slobodan_ Focus on the important things only, and outsource everything

     else

108. @slobodan_ But how do we know what's important?

109. @slobodan_ See "Why the Fuss about Serverless?" (https://youtu.be/SPsaqiegOP4)

110. @slobodan_ See "Why the Fuss about Serverless?" (https://youtu.be/SPsaqiegOP4)

111. @slobodan_ See "Why the Fuss about Serverless?" (https://youtu.be/SPsaqiegOP4)

112. @slobodan_ See "Why the Fuss about Serverless?" (https://youtu.be/SPsaqiegOP4)

113. @slobodan_ See "Why the Fuss about Serverless?" (https://youtu.be/SPsaqiegOP4)

114. @slobodan_ See "Why the Fuss about Serverless?" (https://youtu.be/SPsaqiegOP4)

115. @slobodan_ See "Why the Fuss about Serverless?" (https://youtu.be/SPsaqiegOP4)

116. @slobodan_ See "Why the Fuss about Serverless?" (https://youtu.be/SPsaqiegOP4)

117. @slobodan_ Does this apply only to the infrastructure?

118. @slobodan_ Do not waste your time or energy building from

     scratch components in the product or commodity phases

119. @slobodan_ Focus on your business logic and outsource everything else.

120. @slobodan_ Joe Armstrong “Make it work, then make it beautiful,

     then if you really, really have to, make it fast. 90% of the time, if you make it beautiful, it will already be fast. So really, just make it beautiful!” creator of Erlang programming language
121. None

122. Thank you! twitter: @slobodan_