Symfony2 is one of the de-facto standards for developing enterprise-ready applications in PHP: being a very structured & decoupled framework, it becomes very handy and suitable for building Service Oriented architectures, which require loose coupling and a clean and tested structure: we will see hot to create a Service Oriented Architecture in Symfony2, taking advantage of messaging systems like RabbitMQ, HTTP APIs and Sf2's internals.

1. SOA with Symfony2
Alessandro Nadalin - Montreal, February 2014

2. This talk is for those...

3. Stuck with the legacy

4. dealing with CRONs

5. in the need of a solid foundation

6. rely on web services

7. need a pluggable software architecture

8. who love @fabpot

9. SOA

10. 1. SO WHAT?
(A)

11. A software design based on discrete software
components, "services", that collectively
provide the functionalities of the larger
software application

12. You typically start with the infamous PHP
app, hopefully built with Symfony2
which does everything on its own

14. Then you realize that to provide
a chat system to your users
PHP might not be the best...

16. And soon you also decide,
to improve performances,
that your frontend should have its own
in-memory persistence, to be faster
and you put it into another service

18. Then, as always...

19. SCALE.

21. And eventually, your lead architect
will come up and tell you
that your Java-based chat
sucks and should be
replaced with...

22. NODEJS

24. In human-understandable words, SOA is a software design which
embraces splitting a monolithic, totalitarian software
architecture into smaller pieces, thus making them independent,
loosely coupled and more maintainable

25. Ok, but in the real world?

26. 2. Your (Symfony2) app
is just a piece of
the puzzle

27. How does communication (usually) happen?

28. WEBSERVICES

29. Services can request data to other services,
usually through WSs

30. POX

32. https://github.com/kriswallsmith/buzz
https://github.com/fabpot/Goutte
https://github.com/guzzle/guzzle

33. SOAP

35. PHP and SOAP in 2014
http://www.whitewashing.de/2014/01/31/soap_and_php_in_2014.html

36. HTTP

37. REST

38. FosREST
https://github.com/FriendsOfSymfony/FOSRestBundle

39. # app/config/routing.yml
users:
type:
rest
resource: MyBundleUsersController

40. GET /users

41. class UsersController
{
public function getUsersAction()
{
return $this->get(‘storage’)->getUsers();
}
}

42. class UsersController
{
public function getUsersAction()
{
return $this->get(‘storage’)->getUsers();
}
}

43. class UsersController
{
public function getUsersAction()
{
return $this->get(‘storage’)->getUsers();
}
}

44. View?

45. SERIALIZE ALL
THE THINGS!

46. JMSSerializer
Bundle: https://github.com/schmittjoh/JMSSerializerBundle

47. /**
* @ExclusionPolicy("all")
*/
class Customer implements UserInterface, EquatableInterface
{
/**
* @Expose
* @SerializedName("addresses")
* @Groups({"Customer:depth:1"})
*/
protected $addresses;
/**
* @Expose
* @Groups({
* "Customer:list",
* "Customer:detail",
* })
*/
private $email;

48. /**
* @ExclusionPolicy("all")
*/
class Customer implements UserInterface, EquatableInterface
{
/**
* @Expose
* @SerializedName("addresses")
* @Groups({"Customer:depth:1"})
*/
protected $addresses;
/**
* @Expose
* @Groups({
* "Customer:list",
* "Customer:detail",
* })
*/
private $email;

49. /**
* @ExclusionPolicy("all")
*/
class Customer implements UserInterface, EquatableInterface
{
/**
* @Expose
* @SerializedName("addresses")
* @Groups({"Customer:depth:1"})
*/
protected $addresses;
/**
* @Expose
* @Groups({
* "Customer:list",
* "Customer:detail",
* })
*/
private $email;

50. /**
* @ExclusionPolicy("all")
*/
class Customer implements UserInterface, EquatableInterface
{
/**
* @Expose
* @SerializedName("addresses")
* @Groups({"Customer:depth:1"})
*/
protected $addresses;
/**
* @Expose
* @Groups({
* "Customer:list",
* "Customer:detail",
* })
*/
private $email;

51. /**
* @ExclusionPolicy("all")
*/
class Customer implements UserInterface, EquatableInterface
{
/**
* @Expose
* @SerializedName("addresses")
* @Groups({"Customer:depth:1"})
*/
protected $addresses;
/**
* @Expose
* @Groups({
* "Customer:list",
* "Customer:detail",
* })
*/
private $email;

52. /**
* @ExclusionPolicy("all")
*/
class Customer implements UserInterface, EquatableInterface
{
/**
* @Expose
* @SerializedName("addresses")
* @Groups({"Customer:depth:1"})
*/
protected $addresses;
/**
* @Expose
* @Groups({
* "Customer:list",
* "Customer:detail",
* })
*/
private $email;

53. EVENTS

54. services notify the architecture that an event has happened

55. asynchronous messaging queues

56. RabbitMQ
https://github.com/videlalvaro/rabbitmqbundle

57. old_sound_rabbit_mq:
connections:
default:
host:
'localhost'
port:
5672
user:
'guest'
password: 'guest'
vhost:
'/'
lazy:
false
producers:
user_registration:
connection:
default
exchange_options: {name: 'userreg', type: direct}
consumers:
user_registration:
connection:
default
exchange_options: {name: 'userreg', type: direct}
queue_options:
{name: 'userreg'}
callback:
mailer

58. old_sound_rabbit_mq:
connections:
default:
host:
'localhost'
port:
5672
user:
'guest'
password: 'guest'
vhost:
'/'
lazy:
false
producers:
user_registration:
connection:
default
exchange_options: {name: 'userreg', type: direct}
consumers:
user_registration:
connection:
default
exchange_options: {name: 'userreg', type: direct}
queue_options:
{name: 'userreg'}
callback:
mailer

59. old_sound_rabbit_mq:
connections:
default:
host:
'localhost'
port:
5672
user:
'guest'
password: 'guest'
vhost:
'/'
lazy:
false
producers:
user_registration:
connection:
default
exchange_options: {name: 'userreg', type: direct}
consumers:
user_registration:
connection:
default
exchange_options: {name: 'userreg', type: direct}
queue_options:
{name: 'userreg'}
callback:
mailer

60. old_sound_rabbit_mq:
connections:
default:
host:
'localhost'
port:
5672
user:
'guest'
password: 'guest'
vhost:
'/'
lazy:
false
producers:
user_registration:
connection:
default
exchange_options: {name: 'userreg', type: direct}
consumers:
user_registration:
connection:
default
exchange_options: {name: 'userreg', type: direct}
queue_options:
{name: 'userreg'}
callback:
mailer

61. old_sound_rabbit_mq:
connections:
default:
host:
'localhost'
port:
5672
user:
'guest'
password: 'guest'
vhost:
'/'
lazy:
false
producers:
user_registration:
connection:
default
exchange_options: {name: 'userreg', type: direct}
consumers:
user_registration:
connection:
default
exchange_options: {name: 'userreg', type: direct}
queue_options:
{name: 'userreg'}
callback:
mailer

62. mailer:
class: "MyMailer"
arguments: [..., ...]

63. $this->get('old_sound_rabbit_mq.user_registration_producer')
->publish(serialize($msg));

64. php app/console rabbitmq:consumer user_registration

65. old_sound_rabbit_mq:
connections:
default:
host:
'localhost'
port:
5672
user:
'guest'
password: 'guest'
vhost:
'/'
lazy:
false
producers:
user_registration:
connection:
default
exchange_options: {name: 'userreg', type: direct}
consumers:
user_registration:
connection:
default
exchange_options: {name: 'userreg', type: direct}
queue_options:
{name: 'userreg'}
callback:
mailer

66. class Mailer
{
…
public function execute(AMQPMessage $message)
{
// do stuff
}
}

67. class Mailer
{
…
public function execute(AMQPMessage $message)
{
// do stuff
}
}

68. 2. Free data

69. CONSIDER ELIMINATING FK CONSTRAINTS

70. A service might need to handle data with
another DBMS, so FKs are virtually impossible

71. ABSTRACT THE DATA

72. You might think in "rows" but the architecture
thinks in "resources"

73. $this->get(‘doctrine’)
->getRepository(‘My:Entity’)
->findActiveOnes()

74. $this->get(‘doctrine’)
->getRepository(‘My:Entity’)
->findActiveOnes()

75. $this->get(‘storage’)
->getRepository(‘My:Entity’)
->findActiveOnes()

76. class RedisStorage
{
public function getRepository($name)
{
$this->hash = $name;
return $this;
}
public function findActiveOnes()
{
$results = $this->redis->hget($this->hash);
return array_filter($results, function($r){
return $r[‘active’] == true;
});
}
}

77. class RedisStorage
{
public function getRepository($name)
{
$this->hash = $name;
return $this;
}
public function findActiveOnes()
{
$results = $this->redis->hget($this->hash);
return array_filter($results, function($r){
return $r[‘active’] == true;
});
}
}

78. class RedisStorage
{
public function getRepository($name)
{
$this->hash = $name;
return $this;
}
public function findActiveOnes()
{
$results = $this->redis->hget($this->hash);
return array_filter($results, function($r){
return $r[‘active’] == true;
});
}
}

79. class RedisStorage
{
public function getRepository($name)
{
$this->hash = $name;
return $this;
}
public function findActiveOnes()
{
$results = $this->redis->hget($this->hash);
return array_filter($results, function($r){
return $r[‘active’] == true;
});
}
}

80. class RedisStorage
{
public function getRepository($name)
{
$this->hash = $name;
return $this;
}
public function findActiveOnes()
{
$results = $this->redis->hget($this->hash);
return array_filter($results, function($r){
return $r[‘active’] == true;
});
}
}

81. class RedisStorage
{
public function getRepository($name)
{
$this->hash = $name;
return $this;
}
public function findActiveOnes()
{
$results = $this->redis->hget($this->hash);
return array_filter($results, function($r){
return $r[‘active’] == true;
});
}
}

82. REPOSITORIES NEED
INTERFACES

83. ENTITIES NEED
INTERFACES

84. forget managers, you
need collections

85. implements StockStorageInterface

86. use StockStorageInterface as Storage;
class RedisStorage implements Storage
{
...

87. use StockStorageInterface as Storage;
class RedisStorage implements Storage
{
...

88. use StockStorageInterface as Storage;
class StockStorage implements Storage
{
...

89. collections as a service

90. stock:
class: “MyNamespaceStockStorage”
arguments:
…
…
$this->get(‘stock’)->findActiveOnes();

91. stock:
class: “MyNamespaceStockStorage”
arguments:
…
…
$this->get(‘stock’)->findActiveOnes();

92. stock:
class: “MyNamespaceStockStorage”
arguments:
…
…
$this->get(‘stock’)->findActiveOnes();

93. No more FKs and
the ability of
JOINing to retrieve
some related data

94. But you choose
what perfectly fits
each service:
your transactions
over a RDBMS and
your community
over a graph DB

95. So complicated!

96. Have fun returning
serialized collections
over HTTPS in
~50ms with Doctrine!

97. 3. Standardize

98. EVERY DEVELOPER NEEDS
THE ENTIRE ARCHITECTURE ON HIS MACHINE

99. The architecture needs
to be installed in
~1 hour

100. Setting up VMs
is an hassle and
they are so slow!

101. go #vagrant

102. But Vagrant is
still suboptimal:
provisioning and
system resources
are still a pain!

104. 4. Identity

105. Centralized authentication = identity service

106. OAuth

107. OpenID

108. JWS

109. JSON WEB SIGNATURE

110. JSON WEB TOKEN

111. JSON WEB SIGNATURE

112. JAVASCRIPT OBJECT
SIGNING & ENCRYPTION

113. JOSE
http://www.thread-safe.com/2012/03/json-object-signing-and-encryption-jose.html

114. 1. The user enters the
credentials once in your
frontend
2. The JS app will forward them
to your Auth webservice
JS APP
AUTH
SERVICE
3. The Auth webservice will
then generate the encrypted
JWS and set a cookie with
its value
JS APP
4. The JS app can now just
execute calls using
that cookie

115. 1. The user enters the credentials
once in your frontend
JS APP

116. 2. The JS app will forward them
to your Auth webservice
JS APP
AUTH
SERVICE

117. AUTH
SERVICE
3. The Auth webservice will then generate the
encrypted JWS and set a cookie with its value

118. AUTH
SERVICE
JS APP
4. The JS app can now just execute
calls using that cookie

119. 1. The user enters the
credentials once in your
frontend
2. The JS app will forward them
to your Auth webservice
JS APP
AUTH
SERVICE
3. The Auth webservice will
then generate the encrypted
JWS and set a cookie with
its value
JS APP
4. The JS app can now just
execute calls using
that cookie

120. setcookie($name, $jws,$ttl, $path, $domain, true);

121. setcookie($name, $jws,$ttl, $path, $domain, true);
HTTPS

122. JWS in PHP?

123. namshi/jose

124. use NamshiJOSEJWS;
$jws = new JWS('RS256');
$jws->setPayload(array(
'uid' => $user->getid(),
));
$privateKey = openssl_get_privatekey("file://path/to/private.
key");
$jws->sign($privateKey);
setcookie('identity', $jws->getTokenString());
use NamshiJOSEJWS;
$jws
= JWS::load($_COOKIE['identity']);
$public_key = openssl_pkey_get_public("/path/to/public.key");
if ($jws->verify($public_key)) {
echo "EUREKA!;
}

125. use NamshiJOSEJWS;
$jws = new JWS('RS256');
$jws->setPayload(array(
'uid' => $user->getid(),
));
$privateKey = openssl_get_privatekey("file://path/to/private.
key");
$jws->sign($privateKey);
setcookie('identity', $jws->getTokenString());
use NamshiJOSEJWS;
$jws
= JWS::load($_COOKIE['identity']);
$public_key = openssl_pkey_get_public("/path/to/public.key");
if ($jws->verify($public_key)) {
echo "EUREKA!;
}

126. use NamshiJOSEJWS;
$jws = new JWS('RS256');
$jws->setPayload(array(
'uid' => $user->getid(),
));
$privateKey = openssl_get_privatekey("file://path/to/private.
key");
$jws->sign($privateKey);
setcookie('identity', $jws->getTokenString());
use NamshiJOSEJWS;
$jws
= JWS::load($_COOKIE['identity']);
$public_key = openssl_pkey_get_public("/path/to/public.key");
if ($jws->verify($public_key)) {
echo "EUREKA!;
}

127. use NamshiJOSEJWS;
$jws = new JWS('RS256');
$jws->setPayload(array(
'uid' => $user->getid(),
));
$privateKey = openssl_get_privatekey("file://path/to/private.
key");
$jws->sign($privateKey);
setcookie('identity', $jws->getTokenString(), ...);
use NamshiJOSEJWS;
$jws
= JWS::load($_COOKIE['identity']);
$public_key = openssl_pkey_get_public("/path/to/public.key");
if ($jws->verify($public_key)) {
echo "EUREKA!;
}

128. use NamshiJOSEJWS;
$jws = new JWS('RS256');
$jws->setPayload(array(
'uid' => $user->getid(),
));
$privateKey = openssl_get_privatekey("file://path/to/private.
key");
$jws->sign($privateKey);
setcookie('identity', $jws->getTokenString());
use NamshiJOSEJWS;
$jws
= JWS::load($_COOKIE['identity']);
$public_key = openssl_pkey_get_public("/path/to/public.key");
if ($jws->verify($public_key)) {
echo "EUREKA!;
}

129. use NamshiJOSEJWS;
$jws = new JWS('RS256');
$jws->setPayload(array(
'uid' => $user->getid(),
));
$privateKey = openssl_get_privatekey("file://path/to/private.
key");
$jws->sign($privateKey);
setcookie('identity', $jws->getTokenString());
use NamshiJOSEJWS;
$jws
= JWS::load($_COOKIE['identity']);
$public_key = openssl_pkey_get_public("/path/to/public.key");
if ($jws->verify($public_key)) {
echo "EUREKA!;
}

130. ...what about Symfony2?

131. use SymfonyComponentSecurity...AuthenticationProviderInterface;
class JwsProvider implements AuthenticationProviderInterface
{
...
public function authenticate(TokenInterface $token)
{
$key = openssl_pkey_get_public($this->publicKeyPath);
$jws = $token->getJws();
if ($key && $jws->isValid($key)) {
$token->setUser(User::fromArray($jws->getPayload()));
return $token;
}
throw new AuthenticationException('authentication failed.');
}
...
}

132. use SymfonyComponentSecurity...AuthenticationProviderInterface;
class JwsProvider implements AuthenticationProviderInterface
{
...
public function authenticate(TokenInterface $token)
{
$key = openssl_pkey_get_public($this->publicKeyPath);
$jws = $token->getJws();
if ($key && $jws->isValid($key)) {
$token->setUser(User::fromArray($jws->getPayload()));
return $token;
}
throw new AuthenticationException('authentication failed.');
}
...
}

133. use SymfonyComponentSecurity...AuthenticationProviderInterface;
class JwsProvider implements AuthenticationProviderInterface
{
...
public function authenticate(TokenInterface $token)
{
$key = openssl_pkey_get_public($this->publicKeyPath);
$jws = $token->getJws();
if ($key && $jws->isValid($key)) {
$token->setUser(User::fromArray($jws->getPayload()));
return $token;
}
throw new AuthenticationException('authentication failed.');
}
...
}

134. use SymfonyComponentSecurity...AuthenticationProviderInterface;
class JwsProvider implements AuthenticationProviderInterface
{
...
public function authenticate(TokenInterface $token)
{
$key = openssl_pkey_get_public($this->publicKeyPath);
$jws = $token->getJws();
if ($key && $jws->isValid($key)) {
$token->setUser(User::fromArray($jws->getPayload()));
return $token;
}
throw new AuthenticationException('authentication failed.');
}
...
}

135. use SymfonyComponentSecurity...AuthenticationProviderInterface;
class JwsProvider implements AuthenticationProviderInterface
{
...
public function authenticate(TokenInterface $token)
{
$key = openssl_pkey_get_public($this->publicKeyPath);
$jws = $token->getJws();
if ($key && $jws->isValid($key)) {
$token->setUser(User::fromArray($jws->getPayload()));
return $token;
}
throw new AuthenticationException('authentication failed.');
}
...
}

136. I can't simply
use the HTTP
basic authentication,
it was so
convenient!

137. ...and flawed.
Modern apps,
modern tech.

138. 4. Embrace
messaging

139. Don't wait, notify instead

140. Different services can intercept an even, separately

141. If one is down, the others keep working

142. Who cares about milliseconds for notifications?

143. The human body is the bottleneck

144. Email?

145. SMS?

146. Be reliable

147. “Daemons are great”

148. “Daemons are great”
- No PHP developer ever

149. SUPERVISOR
http://supervisord.org/

150. SUPERVISE
http://cr.yp.to/daemontools/supervise.html

151. use python ;-)

152. It doesn’t matter...

153. ‫اﻟﺤﺮوف اﻟﻌﺮﺑﯿﺔ ‪if you talk‬‬

154. Rabbit makes everyone talk the same language

155. chat
sync daemons
Batch processing
frontend
ERP
agony
transcoding
telcom

157. But I
Symfony2

158. Tech monogamy
is so ‘90
“given a hammer,
everything
becomes a nail”

159. One size doesn’t fit all

160. “But look at Google,
they basically use
python for everything”

161. “...and C”

162. “...and C++”

163. “...and Java”

164. “...and JavaScript”

165. “...and Go”

166. But hey, you say...

167. they really dislike supporting
multiple platforms

168. “...and Dart”

169. But hey, you say...

170. they really are not into
supporting the secondary platforms

171. “...and AngularJS”

172. 5. Not always
sunday

173. Monitor in real time

174. Native support for Symfony2

175. Logs are first-class citizens

176. https://github.com/Seldaek/monolog

177. Sharp, as much
as possible

178. I LIED A LOOOOOT

179. Symfony isn’t even
the main point of this
SOA talk

180. You can build SOAs
with anything

181. ...or can you?

182. http://odino.org/why-we-choose-symfony2-over-any-other-php-framework/

184. By being decoupled and HTTP-centric
Symfony2 has turned into an
ideal application framework
that can take (part of)
the stage in a SOA

185. Full-stack is dead

186. PHP developers are dead

187. LONG LIVE API ENGINEERS!

188. All in all...

189. SOA is complex

190. like Symfony2

191. A puzzle with more pieces

192. like Symfony2

193. More things to keep in mind

194. like Symfony2

195. COMPLEX
IS NOT
COMPLICATED

196. Loose coupling

197. every service is independent, not forced to the
constraints of a monolithic block

198. you have the freedom of changing or replacing services
without the hassle of touching an entire system

199. State-of-the-art defense against outages

200. Fault tolerance

201. if one of the services has an outage, the rest
of the architecture still works

202. if a service, listening for messages, is down,
the publisher doesn't get stuck

203. Cleaner architecture

204. SoC happens at architectural, not application, level and you can perform large-scale
refactorings without the fear of destroying the entire system

205. ...yawn...

206. Alessandro Nadalin

207. Alessandro Nadalin
@_odino_

208. Alessandro Nadalin
@_odino_
Namshi | Rocket Internet

209. Alessandro Nadalin
@_odino_
Namshi | Rocket Internet
VP Technology

210. Alessandro Nadalin
@_odino_
Namshi | Rocket Internet
VP Technology
odino.org

211. Thanks!
Alessandro Nadalin
@_odino_
Namshi | Rocket Internet
VP Technology
odino.org

212. By the way

213. Wanna join?

214. We are looking for talented nerds!

215. We are looking for talented nerds!
frontend engineer

216. We are looking for talented nerds!
frontend engineer
data engineer

217. We are looking for talented nerds!
lead frontend engineer
data engineer

218. Thanks!
Alessandro Nadalin
@_odino_
Namshi | Rocket Internet
VP Technology
odino.org

219. Image credits
http://www.flickr.com/photos/randystiefer/6998037429/sizes/h/in/photostream/
http://www.flickr.com/photos/55432818@N02/5500963965/
http://www.flickr.com/photos/pamhule/4503305775/
http://www.flickr.com/photos/wili/1427890704/
http://www.flickr.com/photos/nickpiggott/5212959770/sizes/l/in/photostream/
http://www.flickr.com/photos/nomad9491/2549965427/sizes/l/in/photostream/
http://www.flickr.com/photos/amyvdh/95764607/sizes/l/in/photostream/
http://www.flickr.com/photos/matthoult/4524176654/
http://www.flickr.com/photos/kittyeden/2416355396/sizes/l/in/photostream/
http://www.flickr.com/photos/jpverkamp/3078094381/
http://www.flickr.com/photos/madpoet_one/5554416836/
http://www.flickr.com/photos/87792096@N00/2732978107/
http://www.flickr.com/photos/petriv/4787037035/
http://www.flickr.com/photos/51035796522@N01/111091247/sizes/l/in/photostream/
http://www.flickr.com/photos/m-i-k-e/6366787693/sizes/l/in/photostream/
http://www.flickr.com/photos/39065466@N04/9111005211/
http://www.flickr.com/photos/marchorowitz/5449945176/sizes/l/in/photolist-9iAoQ1-8s4ueH-bCWef9-bCWdPh-e48XUmbu67nh-a7xaEr-8wLiNh-9aYU1k-9F4VUN-dYqzr1-9vosHb-8BtFuw-8P3h2e-9tqc6M-82qpt4-7UgkBJ-dgSnfS-aJiubZ-9Xji2U-9UVpkC7BSh7Y-8GE54k-91GHtB-8VMHJ2-8wiwvo-aCmPCg-925Tg8-bcBv9T-dGUseY/
http://www.flickr.com/photos/blegg/745322703/sizes/l/in/photostream/
http://www.flickr.com/photos/centralasian/4649550142/sizes/l/in/photostream/
http://www.flickr.com/photos/pennstatelive/4947279459/sizes/l/in/photostream/
http://www.flickr.com/photos/tjblackwell/7819341478/
http://www.flickr.com/photos/brainbitch/6066375386/
http://www.flickr.com/photos/nnova/4215594009/
http://www.flickr.com/photos/publicenergy/2246574379/
http://www.flickr.com/photos/andrewteman/4592833017/sizes/o/in/photostream/
http://www.flickr.com/photos/beautifulrevelry/8548004964/sizes/o/in/photostream/
http://www.flickr.com/photos/denaldo/5066810104/sizes/l/in/photostream/
http://www.flickr.com/photos/picturewendy/8365723674/sizes/l/in/photostream/
http://www.flickr.com/photos/danielygo/6644679037/sizes/l/in/photostream/
http://www.flickr.com/photos/ross/7614352/sizes/l/in/photostream/
http://www.flickr.com/photos/75932013@N02/6874087329/sizes/l/in/photostream/
http://crucifixjel.deviantart.com/art/300-Wallpaper-03-66516887
https://www.flickr.com/photos/acidsaturation/6635987033/sizes/l/