0
Open Source Middleware for the Cloud: WSO2 Stratos<br />by<br />AfkhamAzeez<br />Director of Architecture<br />WSO2 Inc.<b...
… the completeopen sourcePaaS & CMP<br />
Agenda<br /><ul><li>What is a PaaS?
What are the differentiations?
What to look for in a PaaS?
What is Stratos?</li></li></ul><li>What is a middleware Platform?<br />
What is a middleware Platform?<br />
What is Platform as a Service?<br />
The Key Players<br />7<br />
What to look for in a PaaS (1/2)<br /><ul><li>Lean
All the on-premise benefits are magnified in a cloud
Efficiency that is valuable in fixed deployments is invaluable in large dynamic deployments!
Available on private, public, on-premise
Getting locked into a specific public PaaS will have long term repercussions
Open Source is a huge protection against this
The correct set of core “services”
Not just App Server, but Identity, Registry, Data, Cache, ESB, BPMS, Billing, Logging, etc</li></li></ul><li>What to look ...
Self-service, multi-tenancy, elasticity, metering, incremental deployment and testing
Offers a basis for both single-tenant and multi-tenant models
Lots of tenants each with their own stuff, and/or
One application that is offered to all or many tenants</li></li></ul><li>Cloud Native Middleware<br />
Cloud Middleware Platform and PaaS<br /><ul><li>A PaaS requires an underlying software base
Cloud Middleware Platform (CMP), or
Cloud Enabled Application Platform (CEAP – Gartner)
Not all PaaS have redistributable CMPs
The benefit of having a CMP is choice:
Run your own PaaS in a private cloud
More than one PaaS provider
Open PaaS / Open CMP fights lock-in
WSO2’s CMP = Stratos
WSO2’s PaaS = StratosLive</li></ul>11<br />
Stratos Overview<br /><ul><li>A full middleware platform available as a service, with self service
Fast provisioning
Based on OSGi
Modular, componentized, standard
Multi-tenant, Elastic, Metered and Billed
Effective and powerful
Available under the Apache License
Open Source, Open License, Open Development</li></li></ul><li>StratosLive<br />http://stratoslive.wso2.com <br />13<br />
Complete PaaS	<br /><ul><li>Gartner is forecasting that it will be 2015 before vendors have true, integrated, complete CMP...
We believe Stratos & StratosLiveis that today!</li></ul>14<br />
Services available in Stratoslive<br />
One Enterprise Platform wherever you need it:<br /><ul><li>A single code continuum
Completely modular based on OSGi
Complete Enterprise SOA Architecture:
AppServer, ESB, Governance, Portal, BPMS, BAM, Identity and more
Supported 24x7 with phone, web and full SLAs</li></li></ul><li>WSO2 Carbon & Stratos<br />
User Experience of Stratos<br />
Multi-tenancy<br />
Multi-tenancy<br /><ul><li>Three possible ways
Machine per tenant
VM per tenant
Share machine/VM across tenants
Challenges
Data isolation
Logic isolation
Security</li></li></ul><li>Achieving Tenant Isolation<br /><ul><li>Each Tenant is given a Security Domain
Each domain may have its own User Store and Permissions, thus have a set of users and permissions enabling users to access...
Each domain is isolated and do not have access to other domains</li></li></ul><li>Achieving Execution Isolation<br /><ul><...
Upcoming SlideShare
Loading in...5
×

WSO2Con 2011: Introduction to Stratos

584

Published on

More enterprises are recognizing the opportunity to extend the reach and cost-efficiency of their applications by delivering them as software-as-a-service (SaaS). However, the approach to deploying in the cloud and the choice of either cloud middleware software or a platform-as-a-service (PaaS) can significantly affect the success of a SaaS implementation.
WSO2 Stratos is a complete enterprise-ready cloud middleware platform designed to extend SOAs to the cloud, and it is the software that powers the WSO2 StratosLive PaaS. By providing WSO2 Carbon products as services over public, private, and hybrid cloud infrastructure, WSO2 Stratos offers an ideal platform for SaaS developers to create, manage and run enterprise-class applications and services with all the inherent benefits of a true cloud-native environment.In this session, we will be looking at the WSO2 Stratos cloud middleware platform and the benefits it offers in developing, testing, deploying and managing cloud-native applications.

Published in: Technology
0 Comments
1 Like
Statistics
Notes
  • Be the first to comment

No Downloads
Views
Total Views
584
On Slideshare
0
From Embeds
0
Number of Embeds
1
Actions
Shares
0
Downloads
32
Comments
0
Likes
1
Embeds 0
No embeds

No notes for slide

Transcript of "WSO2Con 2011: Introduction to Stratos"

  1. 1. Open Source Middleware for the Cloud: WSO2 Stratos<br />by<br />AfkhamAzeez<br />Director of Architecture<br />WSO2 Inc.<br />
  2. 2. … the completeopen sourcePaaS & CMP<br />
  3. 3. Agenda<br /><ul><li>What is a PaaS?
  4. 4. What are the differentiations?
  5. 5. What to look for in a PaaS?
  6. 6. What is Stratos?</li></li></ul><li>What is a middleware Platform?<br />
  7. 7. What is a middleware Platform?<br />
  8. 8. What is Platform as a Service?<br />
  9. 9. The Key Players<br />7<br />
  10. 10. What to look for in a PaaS (1/2)<br /><ul><li>Lean
  11. 11. All the on-premise benefits are magnified in a cloud
  12. 12. Efficiency that is valuable in fixed deployments is invaluable in large dynamic deployments!
  13. 13. Available on private, public, on-premise
  14. 14. Getting locked into a specific public PaaS will have long term repercussions
  15. 15. Open Source is a huge protection against this
  16. 16. The correct set of core “services”
  17. 17. Not just App Server, but Identity, Registry, Data, Cache, ESB, BPMS, Billing, Logging, etc</li></li></ul><li>What to look for in a PaaS (2/2)<br /><ul><li>Open Standard interfaces to common services
  18. 18. Self-service, multi-tenancy, elasticity, metering, incremental deployment and testing
  19. 19. Offers a basis for both single-tenant and multi-tenant models
  20. 20. Lots of tenants each with their own stuff, and/or
  21. 21. One application that is offered to all or many tenants</li></li></ul><li>Cloud Native Middleware<br />
  22. 22. Cloud Middleware Platform and PaaS<br /><ul><li>A PaaS requires an underlying software base
  23. 23. Cloud Middleware Platform (CMP), or
  24. 24. Cloud Enabled Application Platform (CEAP – Gartner)
  25. 25. Not all PaaS have redistributable CMPs
  26. 26. The benefit of having a CMP is choice:
  27. 27. Run your own PaaS in a private cloud
  28. 28. More than one PaaS provider
  29. 29. Open PaaS / Open CMP fights lock-in
  30. 30. WSO2’s CMP = Stratos
  31. 31. WSO2’s PaaS = StratosLive</li></ul>11<br />
  32. 32. Stratos Overview<br /><ul><li>A full middleware platform available as a service, with self service
  33. 33. Fast provisioning
  34. 34. Based on OSGi
  35. 35. Modular, componentized, standard
  36. 36. Multi-tenant, Elastic, Metered and Billed
  37. 37. Effective and powerful
  38. 38. Available under the Apache License
  39. 39. Open Source, Open License, Open Development</li></li></ul><li>StratosLive<br />http://stratoslive.wso2.com <br />13<br />
  40. 40. Complete PaaS <br /><ul><li>Gartner is forecasting that it will be 2015 before vendors have true, integrated, complete CMP & PaaS frameworks
  41. 41. We believe Stratos & StratosLiveis that today!</li></ul>14<br />
  42. 42. Services available in Stratoslive<br />
  43. 43. One Enterprise Platform wherever you need it:<br /><ul><li>A single code continuum
  44. 44. Completely modular based on OSGi
  45. 45. Complete Enterprise SOA Architecture:
  46. 46. AppServer, ESB, Governance, Portal, BPMS, BAM, Identity and more
  47. 47. Supported 24x7 with phone, web and full SLAs</li></li></ul><li>WSO2 Carbon & Stratos<br />
  48. 48. User Experience of Stratos<br />
  49. 49. Multi-tenancy<br />
  50. 50. Multi-tenancy<br /><ul><li>Three possible ways
  51. 51. Machine per tenant
  52. 52. VM per tenant
  53. 53. Share machine/VM across tenants
  54. 54. Challenges
  55. 55. Data isolation
  56. 56. Logic isolation
  57. 57. Security</li></li></ul><li>Achieving Tenant Isolation<br /><ul><li>Each Tenant is given a Security Domain
  58. 58. Each domain may have its own User Store and Permissions, thus have a set of users and permissions enabling users to access resources
  59. 59. Each domain is isolated and do not have access to other domains</li></li></ul><li>Achieving Execution Isolation<br /><ul><li>Axis2 have stateless executions and keep all state in a Context.
  60. 60. Different contexts are created for each tenant
  61. 61. Lazy loaded</li></li></ul><li>Security<br /><ul><li>Tenants cannot write code with privilege operations
  62. 62. Otherwise tenants can write malicious code
  63. 63. Tenants can't write to file system, can't open port
  64. 64. Java Security Manager can be used to prevent it
  65. 65. Sandbox environment, similar to applets
  66. 66. Only allow privilege operations to codes signed by a particular key</li></li></ul><li>Identity<br />
  67. 67. Every tenant has access to an Identity Service<br />
  68. 68. Identity Server / Service<br /><ul><li>Each tenant is identified by the @tenant-domain
  69. 69. Each tenant admin can choose to manage their tenants user store either within the Stratos-internal LDAP store or using an external LDAP
  70. 70. Bulk import
  71. 71. Each tenant user has a OpenId/Infocard as well as SAML2 tokens
  72. 72. Single-signon& Single-Signoff
  73. 73. SAML2 is used across the Stratos deployment to ensure a smooth transition (single sign-on) between Stratos services
  74. 74. SAML2 is also available as sign-on for webapps, gadgets and other user-deployed content</li></li></ul><li>web.xml – Integrating Identity into WebApps<br /><login-config> <auth-method>BASIC</auth-method> <realm-name>Basic Auth</realm-name><br /></login-config> <br />Automatically ties into Stratos Identity<br />
  75. 75. Google Authentication<br /><ul><li>Enable sign into Stratosusing Google Apps username/password.
  76. 76. For successful sign in using Google Apps,
  77. 77. If a tenant does not exist, it will be created with the same name as Google Apps domain. The IdP of this domain is Google Apps</li></li></ul><li>Login with Google Apps Domain<br />
  78. 78. Direct Access From Gmail<br /><ul><li>Google Apps administrator can add Stratos to your domain. Direct access to Stratos.</li></li></ul><li>Cloud Data Solutions<br />
  79. 79. WSO2 Cloud Data Solutions<br /><ul><li>WSO2 Data Server
  80. 80. Carbonized Cassandra Cluster
  81. 81. Database cluster
  82. 82. Carbonized HDFS Cluster
  83. 83. <Data> PaaS Offerings
  84. 84. Apache Cassandra as a Service
  85. 85. Relational Database as a Service
  86. 86. HDFS as a Service
  87. 87. We are also planning MapReduce as a Service as Future work. </li></li></ul><li>Polyglot Data Architecture<br />
  88. 88. Database as a Service <br /><ul><li>Users can log in to the Stratos data page and create a Database and receive a JDBC URL.
  89. 89. A DB will be allocated from an Amazon RDS cluster
  90. 90. Tenant isolation & and integrated with WSO2 Security model. </li></li></ul><li>
  91. 91.
  92. 92.
  93. 93. Column Family Storage as a Service<br /><ul><li>Users can log in to the Web Console (both in Stratos and in WSO2 Data Server) and create Cassandra key spaces. </li></li></ul><li>Column Family Storage (Contd.) <br /><ul><li>Key spaces
  94. 94. will be allocated from a Cassandra clusters
  95. 95. they are isolated from other tenants in Stratos
  96. 96. it is integrated with WSO2 Security model.
  97. 97. Users can manage and share his key spaces through Stratos Web Console and use those key spaces through Hector Client (Java Client for Cassandra)
  98. 98. In essence we provide
  99. 99. Cassandra as a part of Stratos as a Service
  100. 100. Multi-tenancy support
  101. 101. Security integration with WSO2 security model</li></li></ul><li>HDFS as a Service<br /><ul><li>Users can log in to the Stratos data page and create a HDFS volume (File system volume for user). </li></li></ul><li>HDFS as a Service<br /><ul><li>The volume
  102. 102. will be allocated from a HDFS cluster
  103. 103. they are isolated from other tenants in Stratos
  104. 104. it is integrated with WSO2 Security model.
  105. 105. Users can manage and share his File system through Stratos Web Console and use the file system like any other file system. </li></li></ul><li>Cloud Services Gateway<br />
  106. 106. Elasticity<br />
  107. 107. Elasticity<br /><ul><li>Fault tolerance, High availability and scalability
  108. 108. Traditional solution: Buying safety-net capacity
  109. 109. Better Solution: Scale up and down
  110. 110. Pay for the actual use
  111. 111. Elastic, Service & tenant aware load balancer</li></li></ul><li>Metering & Billing<br />
  112. 112. Metering<br /><ul><li>Each services collects
  113. 113. Number of service calls
  114. 114. Request/response bandwidth
  115. 115. Registry bandwidth (upload, download)
  116. 116. Total registry space usage
  117. 117. Send above to BAM publishers, which sends the data to the BAM Service
  118. 118. BAM summarizes periodically
  119. 119. Summarized data will be accessible by Stratos Manager</li></li></ul><li>Throttling<br /><ul><li>Restrict tenants from using more than the allocated resources, depending on the usage plan
  120. 120. Number of users per tenant
  121. 121. Storage space
  122. 122. Number of requests to webapps, services etc</li></li></ul><li>Usage Metering/Throttling<br />Usage Metering<br /><ul><li>Registry Resource Volume
  123. 123. Number of users
  124. 124. Appserver Service Bandwidths/Request Response count
  125. 125. ESB Mediation Data(Bandwidths Data)</li></ul>Throttling<br /><ul><li>Number of users
  126. 126. Registry Resource Volume
  127. 127. Number of Request and Response counts
  128. 128. Service incoming and outgoing bandwidths</li></li></ul><li>Stratos Billing<br /><ul><li>Scheduled invoice generation
  129. 129. Ability to view past invoices and the current(interim) invoice
  130. 130. Securely pay the invoice via Paypal
  131. 131. Notifies the customer via email on received payments
  132. 132. Notifies the super-admin on customers exceeding the credit limit
  133. 133. Presents a summary view to the super-admin</li></li></ul><li>
  134. 134. Logging<br />
  135. 135. Distributed Logging<br /><ul><li>Every service and custom applications logs are captured by the log4j/commons loggings settings
  136. 136. Logs are partitioned & stored by tenant
  137. 137. Logs are sent to the Manager service via syslog
  138. 138. Logs are then viewable / downloadable by tenant admins</li></li></ul><li>MT-Logging Deployment Architecture<br />
  139. 139. Log Viewer – Stratos Manager {Super-Tenant}<br />
  140. 140. Log Viewer – Stratos Data Services Server {Tenant User}<br />
  141. 141. Messaging<br /><ul><li>A full AMQP message broker
  142. 142. Pub/Sub and Queuing
  143. 143. Queues and Topics are partitioned by tenant
  144. 144. Authorized against the tenant identity store
  145. 145. JMS
  146. 146. Backed by a multi-tenant JNDI implementation based on our Registry
  147. 147. Amazon SQS API
  148. 148. WS-Eventing</li></li></ul><li>Tooling<br />
  149. 149. Questions<br />
  150. 150. Thank You!<br />
  1. A particular slide catching your eye?

    Clipping is a handy way to collect important slides you want to go back to later.

×