This document discusses automating the lifecycle of PostgreSQL databases. It recommends using BOSH to automate provisioning, configuration, backups, upgrades, and other lifecycle tasks across infrastructure. Key points covered include: - BOSH allows automating the PostgreSQL lifecycle in a repeatable, scalable way across platforms. - It provisions VMs with persistent disks to decouple data from VM lifecycles. - Automation handles high availability clustering, failover, backups to object storage, and vertical/horizontal scaling. - The approach makes dedicated PostgreSQL instances on-demand and automates their full lifecycles.

1. PostgreSQL Lifecycle Automation

2. This Talk

3. • Transform the way databases are being operated.
• Looking at PostgreSQL and see what automation its lifecycle means.
• Select a tooling to work with.
• Draft an architectural outline.
• Show use case examples for handling the PostgreSQL lifecycle in a fully
automated way.

4. Introduction

7. –The anynines mission statement
“Automate the entire
lifecycle at production
grade of a growing number
of data services across
platforms, infrastructures
at scale.”

8. Terms

9. • Infrastructure
• Platform
• (Data) Service
• (Data) Service Instance
• Service Binding
• Cluster = Streaming Replication PostreSQL Cluster

10. Change

11. “Database Administration
is Subject to Change.”

12. • Application development platforms. CF, k8s, …
• Microservices
• More Apps
• More Data Service Types
• More Data Service Instances
Change

13. Striving for…

14. Scalability
Instant On-demand Self-
Service
Production-Readiness

15. The mantra is…

16. Automate!
Automate!
Automate!

17. PostgreSQL
Vision

18. Automate the entire lifecycle of
PostgreSQL to easily operate
thousands of production grade
DBs across …

19. publicand on-premise clouds

20. and integrate well with
multiple platforms

21. Tackle the
Challenge

22. PostgreSQL
Lifecycle

23. • Provision database VM
• Install database software
• Configure database software
• Setup replication & cluster mangement
• Configure Monitoring
• Configure availability monitoring
• Configure alerting
• Configure collection of logs
• Configure collection of metrics
• Create database
• Create database users
• Adapt configuration of individual
database servers
• e.g. enable extension
• Adapt configuration of individual
databases
• Setup backup procedure
• Perform backups regularly
• Perform on-demand backups
• Perform schema migrations
• Query data
• Determine performance bottleneck
• Perform scale-out of database server
• Recover from master db failure
• Recover from standby failure
• Recover from AZ failure
• Recover from network partitioning (split
brain)
• Recover from PostgreSQL process failure
• Perform upgrade of operating system
• Restore data from backup
• Apply patch-level upgrade
• Apply major version upgrade
• Perform data migration
• Destroy data
• Destroy database server
PostgreSQL Lifecycle

24. PostgreSQL is
not easy to
automate.

25. PostgreSQL
Lifecycle
Automation

26. Finding the
Automation
Strategy

27. Is there a single strategy
that works at production
grade across data services
at scale?

28. On-Demand Provisioning
of
Dedicated Database
Servers

29. Easy Deployment
$> cf create-service postgresql
single-small single-postgres-1

30. single-postgres-1
Postgresql
VM#1
Service Instance #1
Service Broker
PostgreSQL Automation

31. Easy Deployment
$> cf create-service postgresql
cluster-small postgres-cluster-2

32. single-postgres-1
Postgresql
VM#1
Service Instance #1
Service Broker
PostgreSQL Automation
postgres-cluster-2
Postgresql
VM#1
Postgresql
VM#2
Postgresql
VM#3
Service Instance #2

33. Data ServicesApplication Runtime
App App App App App App App App App App
App App App App App App App App App App
App App App App App App App App App App
App App App App App App App App App App
App App App App App App App App App App
App App App App App App App App App App
App App App App App App App App App App
App App App App App App App App App App
App App App App App App App App App App
App App App App App App App App App App

34. Data Service Automation
Lifecycle
vs.
Data Service Instance Lifecycle

35. Data Service
Automation
Lifecycle

36. Test
a9s
Release
Build
Upstream
Release
Platform
Environment #1
Platform
Environment #2
Platform
Environment #n
Ship Automation Releases
into Platform Environments
Update Data Service Instances
a9s PostgreSQL
Release Repository
Open Source
PostgreSQL
Building new PostgreSQL automation releases
PostgreSQL CI/CD-Pipeline

37. Data Service
Instance
Lifecycle

38. Create
Modify
Update
Backup
Recovery
Terminate
PostgreSQL Lifecycle - 1st Iteration

39. Principles - Full Lifecycle Management
Iteratively increase the
automation depth.

40. Create
Modify
Update
Backup
Recove
ry
Termina
te
Enabling/disabling data
service plugins
Scale-out Scale down
Add/remove a log/metric endpoint
Major version update Misc. config changes
Greenfield / Clone
Single / clustered
pre-provisioned / on-demand
Trigger manual backup
Scheduled backup
Restore backup
Hard reset of service
instance
Destroy service
instance
Minor version update
Patchlevel version update
Cluster Failure detection
Cluster failover
Self-healing by
resurrection
PostgreSQL Lifecycle - nth Iteration

41. Automation
Architecture

42. a9s Deployer
Templates Deployments
Bosh || k8s
a9s Service Broker
my-3node-postgres-cluster-2
Postgresql
VM#1
Postgresql
VM#2
Postgresql
VM#3
my-single-postgres-1
Postgresql
VM#1
Middleware Adapter
Open Service Broker API
a9s PostgreSQL SPI
Service InstanceService Instance
my-3node-postgres-cluster-3
Postgresql
VM#1
Postgresql
VM#2
Postgresql
VM#3
Service Instance
…
Cloud ControllerCF Client
create service
create service
create deployment from template xy with attributes {…}
deploy release abc & deployment manifest xyz
Execute deployments
create
service specific
credentials
create binding

44. HTTP Verb Action
Service Catalog
GET /v2/catalog
Deliver meta data about the data service.
Create Service Instance
PUT /v2/service_instances/:id
Provision a VM, install and configure a
data service VMs
/ Cluster representing a service instance.
Create Service Binding
PUT /v2/service_instances/:instance_id/service_bindings/:id
Create a data service user and return
credentials representing a service
binding.
Delete Service Binding
DELETE /v2/service_instances/:instance_id/service_bindings/:id
Remove credentials associated with the
service binding.
Delete Service Instance
DELETE /v2/service_instances/:id
Destroy the VMs and data associated with
the service instance.

45. How to
Automate?

46. Selecting the
Automation
Technology

47. Automation
Technology
Requirements

48. Lifecycle
Awareness

49. Repeatability

50. Scalability

51. Infrastructure
Agnosticism

52. Automation
Technology
Candidates

53. BOSH
Kubernetes

54. VMs
Containers

55. VMs
Containers
Strong isolation.
Bad
Neighborhood
Protection.
Faster dev
cycles.
Less overhead.
Faster instance
startup.
Weak isolation.

56. BOSH

57. Infrastructure
Independent

58. “„BOSH let’s you
orchestrate the lifecycle of
large-scale deployments of
stateful distributed
systems
to infrastructure.“”

59. Automate once,
deploy everywhere.

60. VMware
BOSH
BOSH CLI
$> bosh target http://bosh-on.vmware.com$> bosh deploy
Some
Service / App
BOSH Agent
VIRTUAL MACHINE
Some
Service / App
BOSH Agent
VIRTUAL MACHINE
Some
Service / App
BOSH Agent
VIRTUAL MACHINE
Some
Service / App
BOSH Agent
VIRTUAL MACHINE
Some
Service / App
BOSH Agent
VIRTUAL MACHINE
Some
Service / App
BOSH Agent
VIRTUAL MACHINE
OpenStack
BOSH
AWS
BOSH

61. BOSH CLI
VMware AWS OpenStack
$> bosh target http://bosh-on.aws.com$> bosh deploy
Some
Service / App
BOSH Agent
VIRTUAL MACHINE
Some
Service / App
BOSH Agent
VIRTUAL MACHINE
Some
Service / App
BOSH Agent
VIRTUAL MACHINE
Some
Service / App
BOSH Agent
VIRTUAL MACHINE
Some
Service / App
BOSH Agent
VIRTUAL MACHINE
Some
Service / App
BOSH Agent
VIRTUAL MACHINE
BOSH BOSH BOSH

62. Dealing with State

63. Where to store state?

64. Store state on a remotely
attached block device =
persistent disk.
🔑

65. Infrastructure as a Service (IaaS), e.g. OpenStack
VIRTUAL DATACENTER
Router
STORAGE
Storage Node Storage Node Storage Node
HDD HDD
HDD HDD
HDD HDD
HDD HDD
HDD HDD
HDD HDD
HDD HDD
HDD HDD
HDD HDD
Storage Volume
Operating
System
VIRTUAL MACHINE
Infrasstructure API

66. The data lifecycle has been
decoupled from the VM
lifecycle
⇒ The VM becomes
disposable.
🔑

67. Ephemeral VM,
persistent disk.
🔑

68. Scalable

69. Horizontal
Scaling
Some Service
BOSH Agent
VIRTUAL MACHINE
Some Service
BOSH Agent
VIRTUAL MACHINE
Some Service
BOSH Agent
VIRTUAL MACHINE
Some Service
BOSH Agent
VIRTUAL MACHINE
Some Service
BOSH Agent
VIRTUAL MACHINE
Some Service
BOSH Agent
VIRTUAL MACHINE
Some Service
BOSH Agent
VIRTUAL MACHINE
Some Service
BOSH Agent
VIRTUAL MACHINE
Some Service
BOSH Agent
VIRTUAL MACHINE
Some Service
BOSH Agent
VIRTUAL MACHINE
Some Service
BOSH Agent
VIRTUAL MACHINE
Some Service
BOSH Agent
VIRTUAL MACHINE
Some Service
BOSH Agent
VIRTUAL MACHINE
Some Service
BOSH Agent
VIRTUAL MACHINE
Some Service
BOSH Agent
VIRTUAL MACHINE
Some Service
BOSH Agent
VIRTUAL MACHINE
Some Service
BOSH Agent
VIRTUAL MACHINE
Some Service
BOSH Agent
VIRTUAL MACHINE
Some Service
BOSH Agent
VIRTUAL MACHINE
Some Service
BOSH Agent
VIRTUAL MACHINE
Some Service
BOSH Agent
VIRTUAL MACHINE
Some Service
BOSH Agent
VIRTUAL MACHINE
Some Service
BOSH Agent
VIRTUAL MACHINE
Some Service
BOSH Agent
VIRTUAL MACHINE
Some Service
BOSH Agent
VIRTUAL MACHINE
Some Service
BOSH Agent
VIRTUAL MACHINE
Some Service
BOSH Agent
VIRTUAL MACHINE
Some Service
BOSH Agent
VIRTUAL MACHINE

70. BOSH Deployments are
Predictable

71. BOSH Deployments are
Repeatable

72. PostgreSQL
Automation.

73. High Availability &
Cluster
Management

74. Replication

75. • Applies to clustered Data Service Instances
• Asynchronous streaming replication
• Three (3) Nodes:
• One (1) Master Node
• Two (2) Standby Nodes
• Replication slots configured to avoid early recycling of master WAL segments
High Availability & Replication

76. Repmgr

77. • Extends PostgreSQL streaming replication
• Manages replication
• Performs failure detection
• Assists during failover by triggering leader election
• Facilitates monitoring of the replication health & performance
Repmgr

78. Custom
Automation

79. • Detect network partitioning & split brain situations
• Periodically checks the repmgr database and verifies replication status and
cluster status
• Fires alarm if
• master is not followed by a majority
• standby is following the wrong master
Custom PostgreSQL Automation

80. Exemplary
Failure Scenarios

81. Failing Standby

82. my-3node-postgres-cluster-1
Postgresql
VM#1
Postgresql
VM#2
Postgresql
VM#3
👑

83. my-3node-postgres-cluster-1
Postgresql
VM#1
Postgresql
VM#2
Postgresql
VM#3
👑

84. my-3node-postgres-cluster-1
Postgresql
VM#1
Postgresql
VM#3
👑

85. my-3node-postgres-cluster-1
Postgresql
VM#1
Postgresql
VM#2
Postgresql
VM#3
👑

86. Failing Master

87. my-3node-postgres-cluster-1
Postgresql
VM#1
Postgresql
VM#2
Postgresql
VM#3
👑

88. my-3node-postgres-cluster-1
Postgresql
VM#1
Postgresql
VM#2
Postgresql
VM#3
👑

89. my-3node-postgres-cluster-1
Postgresql
VM#1
Postgresql
VM#3
👑

90. my-3node-postgres-cluster-1
Postgresql
VM#1
Postgresql
VM#2
Postgresql
VM#3
👑

91. Vertical Scale-
Out

92. single-postgres-1
Postgresql
VM#1
Service Instance #1

93. ScalabilityVertical-Scale Out
$> cf service-update
single-postgres-1 -p single-large

94. Single node PostgreSQL service instance
> turned into a large PostgreSQL server.
single-postgres-
1
Postgresql
VM#1

95. What has happened
during the vertical scale-
out?

96. 4GB RAM
1 vCPU
10GB persistent disk
BOSH Agent
VIRTUAL MACHINE
4 GB RAM, 1 vCPU
10 GB Persistent Disk
Data
PostgreSQL

97. BOSH Agent
PostgreSQL
VIRTUAL MACHINE
8 GB RAM, 2 vCPUs
10 GB Persistent Disk
Data
BOSH Agent
VIRTUAL MACHINE
4 GB RAM, 1 vCPU
PostgreSQL
10 GB Persistent Disk
Data
20 GB Persistent Disk
Data

98. OS Update

99. PostgreSQL
Upgrade

100. Add DB User and
Grand Access

101. ScalabilityDB User & DB Access
$> cf bind-service
my-app single-postgres-1

102. Backup &
Restore

103. Backup & Restore for
Application Developers

104. Backup & Restore of
the user’s service
instances

105. Backup & Restore for
Platform Operators

106. • Disaster Recovery Plan for Data Services
• Backup & Restore for platform operators
• Backup & Restore of
• All service instances
• Individual service instances
Backup & Restore for Platform
Operators

107. Backup Framework

108. my-3node-postgres-cluster-1
Postgresql
VM#1
Postgresql
VM#2
Postgresql
VM#3
my-3node-postgres-cluster-2
Postgresql
VM#1
Postgresql
VM#2
Postgresql
VM#3
my-3node-postgres-cluster-3
Postgresql
VM#1
Postgresql
VM#2
Postgresql
VM#3
my-3node-mongo-cluster-4
MongoDB
VM#1
MongoDB
VM#2
MongoDB
VM#3
my-3node-postgres-cluster-6
Postgresql
VM#1
Postgresql
VM#2
Postgresql
VM#3
my-3node-postgres-cluster-5
Postgresql
VM#1
Postgresql
VM#2
Postgresql
VM#3
my-3node-redis-
solo-7
Redis
VM#1

109. BOSH Agent
VIRTUAL MACHINE
4 GB RAM, 1 vCPU
10 GB Persistent Disk
Data
PostgreSQL
Replication Manager
Log Agent
my-3node-postgres-cluster-1
Postgresql
VM#1
Postgresql
VM#2
Postgresql
VM#3
Backup Agent

110. Data Filter Chain
a9s PostgreSQL
Service Instance #32
Data Stream Reader
Postgresql VM#2
Data Filter
Data Stream Writer
Data Filter
Backup Agent
Object Store,
e.g. AWS S3
Database
Object Store,
e.g. AWS S3

111. my-3node-postgres-cluster-1
Postgresql
VM#1
Postgresql
VM#2
Postgresql
VM#3
my-3node-postgres-cluster-2
Postgresql
VM#1
Postgresql
VM#2
Postgresql
VM#3
Backup requested
a9s Backup Manager
a9s Backup API
⏰
Amazon S3
Backup scheduled
Tell backup agent to
perform backup
Store encrypted backup to storage
Backup🔐

112. Conclusion

113. • Dedicated service instances are mandatory.
• On-demand provisioning is essential.
• Choosing the right automation technology is key.

114. Full PostgreSQL
lifecycle automation is
feasible…

115. … and it is
already
happening!

116. Questions?
@anynines
@fischerjulian

117. Thank You!