APIDays Australia - Openresty for scale

@developersteve #APIDaysAU
OpenResty
Building APIs for scale with

Steven Cooper
Sniip CTO
Developersteve.com
As Chief Technology Officer for Sniip Steven is
working closely to help scale the platform and
creating new innovative ways for consumers to pay.
With Sniip’s frictionless and easy to use application
he is working with government agencies, councils
and utility companies to implement the technology.

About
US
Sniip is a disruptive force in the payment space
It is the first of its kind in Australia as it is a
mobile payment application built not around
a bank or payment brand, but rather,
around the consumer.
About Sniip
Where it started

SCAN CHECKOUT
How it Works
The easy way to pay
PIN

Other “solutions”
Such advanced technology

Our Legacy Stack
It has to start somewhere

<3 AWS

Laravel API’s
Php framework

PHP is a framework
http://phpthewrongway.com

Mysql Schema
Mysql architecture

Our Strategy
Rebuilding for scale, elasticity and futureproofing
UX/UI
Create a user
experience that
futureproofs the UX
Functionality
Building relevant
functionality that allows
for scale
Developer Portal
API’s and
Documentation built for
internal and external
User Engagement
Ensuring we build how
users want to use our
platform

The Stack
Openresty

OpenResty
A fusion between Nginx and Lua

OpenResty Market Share
Used by nearly half a million websites
https://wappalyzer.com/categories/web-servers

Powering Tumblr
Used by high traffic sites
https://news.netcraft.com/archives/2016/09/19/september-2016-web-server-survey.html

OpenResty Libs
https://devstev.es/orlibs

OpenResty Machine Learning
http://torch.ch/

<3 Nginx
Nginx is awesome

Lua is back … again
Cant beat a classic

Corona SDK
Cross platform mobile

Let’s Encrypt
Automatically renewable SSL

Auto renew SSL
https://devstev.es/autossl

Auto renew SSL
https://devstev.es/autossl2

PCI DSS 3.2
Payment Card Industry Data Security Standard

Implement TLS
A more secure connection
TLS 1.0
TLS 1.1
TLS 1.2

Configuration
Setting up the

Installing OpenResty
openresty.org

Openresty Nginx
Config nginx.conf
./configure
--sbin-path=/usr/sbin/nginx
--conf-path=/etc/nginx/nginx.conf
--error-log-path=/var/log/nginx/error.log
--http-log-path=/var/log/nginx/access.log
--http-client-body-temp-path=/var/lib/nginx/body
--http-fastcgi-temp-path=/var/lib/nginx/fastcgi
--http-proxy-temp-path=/var/lib/nginx/proxy
--http-scgi-temp-path=/var/lib/nginx/scgi
--http-uwsgi-temp-path=/var/lib/nginx/uwsgi
--lock-path=/var/lock/nginx.lock
--pid-path=/var/run/nginx.pid

Openresty Libraries
https://devstev.es/orlibs
--with-luajit --with-pcre-jit --with-debug
--with-http_auth_request_module
--with-http_geoip_module
--with-http_gzip_static_module
--with-http_ssl_module
--with-ipv6
--with-http_v2_module
--with-http_postgres_module

Make… Install…

Nginx.conf Loadbalance
Nginx as per normal

Nginx.conf Basic
Nginx as per normal
worker_processes auto;
error_log logs/error.log;
events {
worker_connections 1024;
}
http {
server {
}
}

Nginx.conf SSL/TLS
Nginx as per normal
ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
ssl_prefer_server_ciphers on; ssl_ciphers
"EECDH+AESGCM:EDH+AESGCM:AES256+EECDH:AE
S256+EDH";ssl_ecdh_curve secp384r1;
ssl_session_timeout 1d;ssl_session_cache
shared:SSL:10m;ssl_session_tickets off;ssl_stapling
on;ssl_stapling_verify on;listen 443 ssl http2;listen [::]:443
ssl http2;ssl_certificate
/etc/letsencrypt/live/website.com/fullchain.pem;ssl_certificat
e_key
/etc/letsencrypt/live/website.com/privkey.pem;add_header
X-Frame-Options DENY;add_header X-Content-Type-
Options nosniff;add_header X-XSS-Protection "1;
mode=block";

Nginx.conf additionals
Nginx setup
http {
init_by_lua ’
json = require "cjson";
';
}

Nginx.conf Routes
Routing like a boss
location / {
content_by_lua_file ”./hello.lua";
}

Calling in Lua
helloworl.lua
local cjson = require("cjson")
ngx.status = ngx.HTTP_OK
ngx.header.content_type = "application/json; charset=utf-8”
ngx.say(cjson.encode({ hello = "world" }))
return ngx.exit(ngx.HTTP_OK)

Run OpenResty Run
Fingers crossed
nginx -p `pwd`/ -c nginx.conf

Nginx.conf Routes
Routing like a boss
location / {
content_by_lua_file ”./hello.lua";
}
location ~/status {
content_by_lua_file ”./status.lua";
}

Calling in Lua
Return a status
local cjson = require("cjson")
ngx.status = ngx.HTTP_OK
ngx.header.content_type = "application/json; charset=utf-8”
ngx.say(cjson.encode({ status = true }))
return ngx.exit(ngx.HTTP_OK)

Template Engine Lua
https://devstev.es/luatemp

OpenResty Snippets
https://devstev.es/luasnip

Load Testing
I feel the need for speed

BlitzIO
https://blitz.io

Legacy

OpenResty

Response Times
Left is legacy – Right is new
OpenRestyLegacy

Hit Rate
Left is legacy – Right is new
OpenRestyLegacy

Reading
Recommended

Designing robust API’s
https://devstev.es/api1

What is OpenResty

Moltin OpenResty

Thanks
Questions? Comments?

8-Bit Open Source

Drop Microphone
Walk off stage

APIDays Australia - Openresty for scale

More Related Content

What's hot

Viewers also liked

Similar to APIDays Australia - Openresty for scale

More from Steven Cooper

Recently uploaded

APIDays Australia - Openresty for scale

Editor's Notes