Business Transactions in Distributed Systems
•
0 likes•51 views
Software development has advanced immensely throughout the years, whether it's technologies, tools or methodologies. Be that as it may, it is quite surprising to see how some concepts remain extremely difficult still. One of the big challenges in developing any system is dealing with consistency, and going towards more extreme cases of distributed systems makes it even a more serious conundrum. What can we you do about it then? How do you address it? What approaches and tools should you consider? How can you design (distributed) systems and achieve high consistency guarantees? Join me in this talk as we tackle such questions head-on and leave better equipped to build distributed systems that maintain application state and workflows with consistency in mind.
Recommended
More Related Content
Similar to Business Transactions in Distributed Systems
Similar to Business Transactions in Distributed Systems (20)
Recently uploaded
Recently uploaded (20)
Business Transactions in Distributed Systems
- 1. Dealing with Consistency in Distributed Systems Amir Zuker 2 8 . 0 6 . 2 3
- 5. Decades Ago RDBMS Service Service Service Use-case: Submit Order function submitOrder(request) { try { const tx = createDbTransaction(); const order = await createOrder(tx, request); const invoice = await performPayment(tx, order); await initiateShipment(tx, order); await updateInventory(tx, order); await tx.commit(); return formatResponse(request, invoice); } catch (error) { tx.rollback(); throw error; } }
- 8. About Me 10 Amir Zuker Senior software architect, developer Over 25 years of experience in the field Leads teams and R&D divisions Several publications and contributions CTO at CodeValue @amirzuker amirz@codevalue.net
- 9. Agenda Consistency in Distributed Systems Immediate vs. Eventual Consistency Distributed Sagas Consistency as a Feature 11
- 11. Consistency – A Broad Term Database systems Data is “correct” Data consistency Sync across replicas Software engineering Business transactions Overall state is sound (integrity included) 13 RDBMS Replica Replica Replica Service Service Service
- 13. Distributed Business Flows A business transaction can span multiple services Distributed systems: “components are located on different networked computers” 15 Db Service Service Service Db Db
- 14. 16
- 16. Why Distribute? Nature of the application Organization Structure and communication flow Politics Technical needs Scale, Redundancy, Availability, Polyglot, etc. Masochism
- 17. Distribute! 19
- 18. ACID ACID Atomic, Consistent, Isolated, Durable Strong and immediate consistency All or nothing Correct No side effects Persisted Db Service
- 19. Can we do ACID in distributed flows?
- 20. ACID-like Distributed Business Transaction 22 Db Db Db Service Service Service Service
- 21. ACID-like Distributed Business Transaction 23 Db Db Db Service Service Service Service
- 22. ACID-like Distributed Business Transaction 24 Db Db Db Service Service Service Service A B A B A B Service A
- 23. ACID-like Distributed Business Transaction 25 Db Db Db Service Service Service Service A B A B Service A
- 24. ACID-like Distributed Business Transaction 26 Db Db Db Service Service Service Service A B A B Service A
- 25. ACID in Distributed Systems Difficult and complex No silver bullet Today’s expectations Need reliable distributed flows? Probably look elsewhere 27
- 26. Eventual Consistency Opposite of immediate consistency If new updates aren’t made to a data item: Eventually, all reads will return the last updated value Weak consistency guarantees Only liveness 28
- 28. How can we achieve reliable distributed flows with Eventual Consistency?
- 30. Distributed Sagas Aggregates smaller (atomic) operations Uses compensation to handle failures Coordinated via orchestration or choreography Many implementations exist in the wild Db Db Db Service Service Service
- 31. 1. Orchestration, Commands, Sequential 33 Order Orchestrator Payment Inventory Shipment Message Broker Reply Queue
- 32. 1. Orchestration, Commands, Sequential 34 Order Orchestrator Payment Inventory Shipment Message Broker Reply Queue
- 33. 2. Choreography, Events, Sequential 35 Order Payment Inventory Shipment Message Broker Order Created Paid Stock Updated Shipped
- 34. 2. Choreography, Events, Sequential 36 Order Payment Inventory Shipment Message Broker Order Created Paid Out Of Stock
- 35. Distributed Sagas Guarantees either: All requests were completed successfully OR.. A subset of requests and their compensating requests were executed The system is consistent, eventually No atomicity No isolation
- 36. Asynchronous messaging Persisted workflows Scheduler, agent, supervisor 39
- 37. Asynchronous Messaging Persistence No message loss Retries …requires Idempotence! Concurrency / Ordered Relevance Time-to-live (TTL) Dead-lettering Need to decide what to do with it afterwards though Loose coupling In terms of connectivity especially 40
- 39. Scheduler, Agent, Supervisor 43 Source: https://learn.microsoft.com/en-us/azure/architecture/patterns/scheduler-agent-supervisor
- 40. Oh, and one more small thing.. 44 Test, test, and test..
- 41. Consistency in not only about engineering 45
- 42. Consistency as a Feature 46
- 44. Consistency as a Feature Unmet expectations Bugs Affects Quality Customer trust and satisfaction Involve the product Negotiate, both ways
- 45. 50 Eventual Consistency is NOT the new Inconsistent
- 46. Product and UX/UI Mitigations
- 47. Design Considerations What must happen “immediately” What can take place later (eventually) What can be happy path only What can be made in parallel What level of control and accuracy is needed
- 48. Design Considerations What must happen “immediately” What can take place later (eventually) What can be best effort or happy path only What can be made in parallel What level of accuracy is needed
- 49. Key Takeaways 54
- 50. Key Takeaways Design Define business transaction boundaries Identify required consistency guarantees Not as an afterthought Involve product Realize and negotiate requirements Distributed or not, a choice Service granularity Consistency, an integrator force Test Address technical aspects Patterns Sagas, scheduler-agent-supervisor, etc. Coordination Orchestration or choreography Async messaging Persistence, retries, idempotence, TTL, DLQ Concurrency, connectivity, etc. Persisted workflows Be consistent ..as needed! 55
- 52. 57 Slides: https://www.slideshare.net/amirzuker/ business-transactions-in-distributed-systems Dealing with Consistency in Distributed Systems Senior Software Architect CTO at CodeValue amirz@codevalue.net Amir Zuker @amirzuker
Editor's Notes
- Test length: רגע לפני שמסכמים, אין לנו הרבה זמן, אז חשוב לי רק לציין את הדברים הבאים. כפי שאמרנו תמיד סביב בניית תרבות ענן, אז בMC זה יותר (יותר vendors) וגם יותר קריטי *כל הקשור לCloudOps – DevOps, SecOps, FinOps *בנוסף, לדאוג למתודולוגיה, סטנדרטיים ארכיטקטוניים, ולהשקיע בכלים שיתמכו *אוטומציה – workflows (oam) / control plane – איך להעביר, איך לדעת מה נמצא *מוניטורינג – cost בעיקר *אם צריכים עזרה, תשיגו עזרה ...אז כן..
- שלום לכולם, ברוכים הבאים להרצאה שלי על Dealing with Csy in Distributed Systems אני יודע..
- לאחר האוכל לנמנם נושא טכני במהותו -- כולנו לאחר האוכל לנמנם תחת כיפת השמיים והנה אנחנו כאן בהרצאה סביב נושא מאוד טכני במהותו ניקח נשימה ויאללה נתחיל
- חנות ספרים Eg: fancy books / book store Decades ago --- Let's say we're a book store company Fancy Books!
- לפני הרבה שנים BE Monolith, DB, Clients SubmitOrder, Flow --- Touch the same db, and only that Db with high gtees of cy + tx Consistent – either happens or not
- קוד – דברים בTX מול data-store אחד Strong & immediate, ACID --- Code – order, payment, shipping, inventory IN TX SC GTEES, ACID --- Touch the same db, and only that Db with high gtees of cy + tx Consistent – either happens or not
- קוד – דברים בTX מול data-store אחד Strong & immediate, ACID לא צריך לדאוג לסנכרון במקרה של עותק אחד --- Code – order, payment, shipping, inventory IN TX SC GTEES, ACID --- Touch the same db, and only that Db with high gtees of cy + tx Consistent – either happens or not
- כמה שנים קדימה משנים לארכיטקטורה מבוזרת Eg: fancy books / book store Decades ago --- Let's say we're a book store company Fancy Books!
- משנים לארכיטקטורה מבוזרת כמה שירותים רגע, אבל מה עושים עכשיו מבחינת Csy? מה יהיה מצב הState במערכת במקרה של כשלון או קריאות במקביל? על זה אנחנו הולכים לדבר --- Concerns This is what we’ll talk about today Not just distributed BTW No ambient tx (layers, technical/domain) two stores/sources (e.g., sms notification) Db with weak gtees, no ACID support
- Senior software architect, instructor, speaker and developer Over 20 years of experience in the field Designed and developed various systems, both backend and frontend Mentored and lead large teams and R&D divisions Publications, e.g. Book: HandsOn Full-Stack Web Development with ASP.NET Core Open source: WCF Contrib WCF Microsoft Official Curriculum (MOC) Head of Web and Mobile at CodeValue
- נגדיר את עולם הבעיה איך ניתן לגשת לזה, נגע בImmediate וEventual נסקור patterns שמאפשרים להתמודד, נתמקד בDistributed Sagas נסיים בConsistency as a Feature אז בואו נתחיל ---
- בואו נסכם, key takeaways
- מושג נרחב בעל פרושים רבים בDb sys – נכון, תקין, מדויק – עונה על החוקים סביב Data Cons – התמודדות עם מקרים של מספר nodes וכיצד מסנכרנים SW Eng – כאן נתמקד, מדבר על כך שהState בכלל המערכת נכון ותקין Distributed or not --- Correct – FKs, constraints, etc. not violated, Applies to the rules Sound – accurate, correct, State across the system is aligned (generally ) The stronger consistency – better isolation, safety and accuracy Go to payment – here Go to order – NA Inconsistent state – not sound, LO TAKIN Lack of consistency In database systems, consistency (or correctness) refers to the requirement that any given database transaction must change affected data only in allowed ways. Any data written to the database must be valid according to all defined rules, including constraints, cascades, triggers, and any combination thereof. This does not guarantee correctness of the transaction in all ways the application programmer might have wanted (that is the responsibility of application-level code) but merely that any programming errors cannot result in the violation of any defined database constraints
- Csy הולך יד-ביד עם Reliability עולם נרחב יש לנו 20 דקות מתמקדים בBuiz Tx אז אנחנו מדברים על Distributed Buiz Flows... --- Many aspects Focus on buiz tx Let’s talk about data csy for a sec In the heart of our system, where we keep the state – the data stores
- אז אנחנו מדברים על Distributed Buiz Flows Buiz Tx יכול להתפרס על Flow בין כמה שירותים Distributed systems.. אז במקרה הזה מעורב network.. ובמובן הזה.. --- Go to payment – here Go to order – NA Inconsistent state – not sound, LO TAKIN Lack of consistency In database systems, consistency (or correctness) refers to the requirement that any given database transaction must change affected data only in allowed ways. Any data written to the database must be valid according to all defined rules, including constraints, cascades, triggers, and any combination thereof. This does not guarantee correctness of the transaction in all ways the application programmer might have wanted (that is the responsibility of application-level code) but merely that any programming errors cannot result in the violation of any defined database constraints
- מי שזוכר Fallacies of distributed computing לא נכנס לכל זה כרגע, אבל העיקר שרלוונטי לקונטקסט שלנו Network הוא לא reliable Latency הוא לא אפסי ובמקרים האלה, טיפול בCsy הופך להרבה יותר קשה אז עולה השאלה.. --- Fallacies of distributed computing Network is reliable Latency is zero Consistency is now much more difficult
- האם to distribute or not? אני מעוניין להדגיש את הנקודה הזו זו אחת התהיות שאנחנו כארכיטקטים מתלבטים רבות עליה זה נוגע בService Granularity וכיצד אנו מבצעים את הSystem decomposition Csy זה אחד הכוחות החזקים שמובילים לשילוב/לשלב קומפוננטות איפה שאנחנו צריכים Strong Csy – אולי לא נלך על Distributed אז בואו נדבר על מתי כן נחליט To distribute.. --- 2 button meme – distribute or not One of the main criticism towards micro/nano-services Can be the go-to, but it should be justified, especially where you need strong csy gtees Again, not only a trait of distribution Service granularity Even in the same process boundary, is there an ambient tx E.g., modular monolith Technical - Perhaps different stores, etc.
- אז בואו נדבר על מתי כן נחליט To distribute.. טבע האפליקציה היבטים ארגוניים מבנה, כיצד מתבצעת התקשורת פוליטיקות ארגוניות צרכים טכניים Scale, Redundancy, Availability, Fault tolerance, Polyglot מזוכיזם אז החלטנו to distribute.. --- Conway's law is an adage that states organizations design systems that mirror their own communication structure
- אז החלטנו to distribute Fancy books רוצה עדיין את אותה התנהגות מבחינת Csy Strong & immediate, ACID אז בואו נסביר רגע מה זה ACID.. --- So we want to distribute! How can we achieve strong csy like before then?
- Atomic, Consistent, Isolated, Durable מאפשר Strong & immediate הכל מצליח או מתבטל הData נשאר נכון אין אפקטים על טרנזקציות וclients אחרים Persisted אז עולה השאלה.. --- safe data environment, immediate consistency and data accuracy --- Atomic All or nothing Consistent Foreign keys & constraints Isolated From other transactions Durable Remains committed even in case of system failure Provide linearizability for single-machine --- Atomic – All operations in a transaction succeed or every operation is rolled back Consistent – On the completion of a transaction, the database is structurally sound Isolated – Transactions do not contend with one another. Contentious access to data is moderated by the database so that transactions appear to run sequentially Durable – The results of applying a transaction are permanent, even in the presence of failures Once a transaction is complete, its data is consistent (write consistency) and stable on disk Write consistency is great for developers, but it also requires sophisticated locking which is typically a heavyweight pattern for most use cases “Always consistent” doesn’t scale well and is less highly available as BASE
- אז עולה השאלה האם ניתן לעשות ACID בDistributed Flows --- Atomic All or nothing Consistent Foreign keys & constraints Isolated From other transactions Durable Remains committed even in case of system failure Provide linearizability for single-machine --- Atomic – All operations in a transaction succeed or every operation is rolled back Consistent – On the completion of a transaction, the database is structurally sound Isolated – Transactions do not contend with one another. Contentious access to data is moderated by the database so that transactions appear to run sequentially Durable – The results of applying a transaction are permanent, even in the presence of failures Once a transaction is complete, its data is consistent (write consistency) and stable on disk Write consistency is great for developers, but it also requires sophisticated locking which is typically a heavyweight pattern for most use cases “Always consistent” doesn’t scale well and is less highly available as BASE
- Tx boundary Compensatiing transactions don’t always work Return an error – “Inconsistent here, sorry”
- Tx boundary Compensatiing transactions don’t always work Return an error – “Inconsistent here, sorry”
- Happy flow During – isolation (in all services) Means we need to know when business tx ends It gets more complicated in case of errors
- Error flow זה נראה פשוט ושהשגנו את המטרה.. אבל מה קורה אם יש שגיאות רציניות יותר השירותים נופלים ולא זמינים Compensating tx נכשל השירות הראשון המרכזי – אם הוא לא זמין, מה קורה עם כל התהליך ומה עושים עם התשובה שאמורים להחזיר לקליינט? כל זה יכול להוביל אותנו למצבים שנגיד.. --- --- This actually ends in a consistent manner, but.. What happens if the compensating tx fails What happens if the orchestrator crashes That orchestrator – what is it? Robust coordinator/app service? Needs to be reliable, fault tolerant, persistent
- המערכת סגורה כרגע, אנחנו צריכים לטפל בבעיות, תחזרו אח"כ אז.. ---
- ACID in Distributed Systems – בעייתי מתחיל בכוונות טובות זה מאוד קשה ומורכב יש patterns שבאים לעזור – 2PC, 3PC, others אבל הם לא באמת משנים את טבע הבעיה אין silver bullet זה לא פוגש את הציפיות של היום יוזרים מצפים למערכות always available ומהירות latency נמוך מי שמכיר, קשור לCAP Theorem, אבל זה מחוץ לסקופ שלנו היום רוצים reliable distributed flows צריכים משהו אחר מה שמביא אותנו לEventual Csy אז מה זה.. --- Expectations – favor availability and reduced latency, high paced auto releases Covering all edge cases is REALLY complex 2PC / 3PC too for that matter Perhaps if you go with extreme locking and compromise availability (still complex) Going distributed requires a different consistency model ACID is just not natural here Eventual Consistency
- אז מה זה.. ההפך מImmediate עקרון פשוט, כל עוד אין עדכונים על data item, בסופו של עניין המערכת תחזיר את אותו ערך המערכת מתמזגת בסופו של עניין, eventually Gtees חלשים, רק liveness, אם רוצים לעשות reads/writes אנחנו פה בשבילכם, אבל לא מבטיחים שום דבר מעבר כדי להמחיש מה זה EC.. --- System will eventually converge Eventual consistency is sometimes criticized[8] as increasing the complexity of distributed software applications. This is partly because eventual consistency is purely a liveness guarantee (reads eventually return the same value) and does not guarantee safety: an eventually consistent system can return any value before it converges. An eventual consistency[4] is a weak consistency model in the system with the lack of simultaneous updates. It defines that if no update takes a very long time, all replicas eventually become consistent. Most shared decentralized databases have an eventual consistency model, either BASE: basically available; soft state; eventually consistent, or a combination of ACID and BASE sometimes called SALT: sequential; agreed; ledgered; tamper-resistant, and also symmetric; admin-free; ledgered; and time-consensual.[19][20][21]
- - החיים הם Eventually consistent Sun – 8min Talk tx אוקיי, אז אם החיים הם ככה, בואו ניקח את זה לעולם שלנו אז כיצד.. --- Look at us talking right now – a buiz tx No “commit”, you’ll compensate – raise your voice, repeat, etc. So we want to achieve reliable Schedule meeting while offline Cart – is it really available? So, it’s not only engineering It’s about the “product” too
- * אז כיצד אנחנו יכולים להשיג.. * אנחנו נתמקד בpatterns סביב Distributed Sagas
- אז מה זה Distributed Sagas? אמרנו שDistributed Flow מתפרס על כמה שירותים אז סגה היא בעצם סידרה של local tx שחל בתוך כל שירות כחלק מהתהליך של הBuiz Tx טיפול בשגיאות נעשה באמצעות Compensating tx Coordinated באמצעות Orc/Chor הרבה implementations – patterns, פלטפורמות, טכנולוגיות אנחנו נסקור כרגע שני patterns הכי פופולריים אז הראשון.. Many implementations: - Patterns and Technology – platforms and services A series of local transactions Application-level transaction pattern Let’s focus on 2 popular ones --- Orchestration Pros Improves understandability and observability Business flow is centrally managed in one service Changes and bug fixes in the existing business flow is done in one service Easier to design and implement than choreography (next slide) Cons Increases coupling with underlying services Order might need to know about payment, inventory, notification, etc. Adding new services that are part of the business flow affects the orchestrator too Choreography Pros Business flow is not tightly coupled in a single service operation Adding new services that are part of the business flow doesn’t require integration and changes to other services Cons Business flow spans multiple services which makes it harder to understand and track Changes to the existing business-flow is usually done in multiple services Harder to design and implement than Orchestration
- Happy Flow
- Error Flow
- Happy Flow
- Error Flow
- Break – orchestrator fails, service crashes, compensating tx fails, etc. What happens during? No gty (weak, not atomic nor isolated)
- Break – orchestrator fails, service crashes, compensating tx fails, etc. What happens during? No gty (weak, not atomic nor isolated)
- Break – orchestrator fails, service crashes, compensating tx fails, etc. אם אנחנו צריכים משהו robust יותר, נצטרך לשקול דברים נוספים. גם כאן, יש מגוון רחב, נציין כרגע 3 דברים, לא נכנס יותר מדי לפרטים בחלק הזה, חשוב לי שנגע בזה על מנת שתכירו.. ---- Break – orchestrator fails, service crashes, compensating tx fails, etc. Use relevant tech and tools to counter and improve reliability This is the part that we’re just going to highlight.. Not cover
- משתמשים בmessage broker מאפשר.. Persistence Retries Idempotency הרצה חוזרת של פעולה מביאה את המערכת לאותו מצבState/, כאילו הרצנו פעם אחת Concurrency/Ordered – מה שרצוי במקרה שלכם Relevance DLQ – היכולת להעביר לתור אחר אם זה לא רלוונטי או שלא ניתן לטפל בהודעה כרגע Loose – בדגש על חיבוריות וזמינות אז AM מביא איתו הרבה דברים טובים בנוסף, אפשר לשקול טכנולוגיות סביב Persisted Workflows.. --- https://en.wikipedia.org/wiki/Idempotence Concurrency – ordered, resource-level causality, consistent hashing, etc. No async msgs? Still doing such in some way. Need something to enable that and provide more control and powerful saga coordination options? (next slides) --- DLQ – How do we know something is there? What should we be able to do about it? Retrieve/View/Replay/etc. Monitoring, alerts Human in the loop, etc. --- Instead of performing synchronous calls to the PaymentService and ShippingService within the OrderService, you can use asynchronous messaging techniques such as message queues or event-driven architectures. By decoupling services through messaging, you can ensure that each service processes its part of the transaction independently and can handle failures and retries gracefully.
- משתמשים בmessage broker מאפשר.. Persistence Retries Idempotency הרצה חוזרת של פעולה מביאה את המערכת לאותו מצבState/, כאילו הרצנו פעם אחת Concurrency/Ordered – מה שרצוי במקרה שלכם Relevance DLQ – היכולת להעביר לתור אחר אם זה לא רלוונטי או שלא ניתן לטפל בהודעה כרגע Loose – בדגש על חיבוריות וזמינות אז AM מביא איתו הרבה דברים טובים בנוסף, אפשר לשקול טכנולוגיות סביב Persisted Workflows.. --- https://en.wikipedia.org/wiki/Idempotence Concurrency – ordered, resource-level causality, consistent hashing, etc. No async msgs? Still doing such in some way. Need something to enable that and provide more control and powerful saga coordination options? (next slides) --- DLQ – How do we know something is there? What should we be able to do about it? Retrieve/View/Replay/etc. Monitoring, alerts Human in the loop, etc. --- Instead of performing synchronous calls to the PaymentService and ShippingService within the OrderService, you can use asynchronous messaging techniques such as message queues or event-driven architectures. By decoupling services through messaging, you can ensure that each service processes its part of the transaction independently and can handle failures and retries gracefully.
- בנוסף, אפשר לשקול טכנולוגיות סביב Persisted Workflows.. אנחנו רואים כאן דוגמה לשימוש בסרברלס, Durable functions באזור, AWS Step Funcs מי שמכיר זה מאפשר לממש Workflows על גבי Sls, שינוי של state יכול להניע את הWF בין step לstep חשוב לי רק שתכירו, שוב, לא נכנס לזה יותר מדי נכנס request ובצעם מתחיל סגה חדשה כDurable function הDS מפעיל Activities לפי הState שהוא נמצא במקרה שלנו נניח לPayment הPayment מבצע את העבודה ומחזיר תשובה דרך Reply Q (EH) זה מגיע לפונקציה שמשנה את הState של הOrchestrator שלנו שמבצע את הפעולות הבאות הState נשמר, אפשר גם לתשאל אותו כל Activity יכול להסתיים בסטטוס של כשלון, מה שיכול לגרום להפעלה של Activity סביב Compensating tx שימו לב, זה בעצם מימוש של הפטרן הראשון שראינו – Orchestrator & Commands עוד פטרן שחשוב לי שתכירו.. --- Azure durable functions, AWS Step functions, Azure Logic Apps, etc. https://github.com/Azure-Samples/saga-orchestration-serverless
- פטרן מאוד רלוונטי בנושא שלנו Distributed Sagas יש לנו את הScheduler אחראי לביצוע הפעולות שמקדמות את הסגות באמצעות agents שהם בעצם מבצעים את הפעולה אל מול הtarget resources/servics יש לנו את הState store Durable וFault tolerant יש לנו את הSupervisor מנתר את התהליך, מבין את הסטטוס של הסגות ומבקש מהScheduler לבצע פעולות בהתאם יכול להיות הפעולות הרגילות או הcompensating tx --- https://learn.microsoft.com/en-us/azure/architecture/patterns/scheduler-agent-supervisor A smart engine for a saga coordinator Pushes through failures Drives sagas to completion
- Difficult, complex All failure cases Use tech and tools - Fault injection, in many levels, automate, consider prod too
- נעשה מעבר חד שכזה עד עכשיו דיברנו על Csy במונחים של engineering אבל consistency לא מתחיל ונגמר בengineering וזה מושפע מ.. ומשפיע על עולם הפרודקט אז בואו נדבר על.. --- BTW, Consistency doesn’t start and end in engineering Which brings us to the last section.. Behavior is formed from It can leak to the product as well
- הציפיות שלנו כיוזרים נגזרות מהפרודקט וה-UX/UI קחו לדוגמא דלת ומפתח – Low-level, strong & immediate לעומת זאת, קורא טביעות אצבע – מבינים שמדובר במערכת ופעולות אסינכרוניות עדיין, הפרודקט נותן חיווי עבור הFlow השלם, הDistributed יכול להיות שזה מעצבן, שנצטרך להניח כמה פעמים את האצבע, אבל לפחות מוצג לנו כיוזרים מה הסטטוס, ומבחינתנו זה מקובל, גם אם יש כשלון ברמת "הטרנזקציה" אז הפרודקט והUX קובע את הציפיות ומשפיע על התפיסה שלנו.. --- Take unlocking a car as an example Key – immediate consistency expectations fingers – async, eventual Expected by the customer, Satisfaction is high, trust is preserved, no bugs Additional feedback/que – sound, etc. – needed, sets expectations So.. Product and UX/UI is important --- Photo: car open with fingers vs. key Key: expect strong consistency Fingers: can fail, will reposition fingers But.. Once there’s the “sound” – I expect it to work! Otherwise – a bug
- Quality - Bugs and support If you went to Amazon Placed order, received SMS that payment was done You go to the orders screen – it is NOT there MS QnA – Edit question, old text is shown, editing shows the new text -> confirmation message can go a long way Confirmation – not make it a bug (in customer’s eyes --- Product expects the system to just work As they should Engineers need to follow Impossible to build bullet-proof systems Accept the imperfection What is acceptable in terms of product, determine together Analyze what must happen before ok WITH product E.g., post message Running moderation rules can take a while, let’s do it async Can affect product Can affect system behavior – reshape the business tx, simplify it
- אז הפרודקט והUX קובע את הציפיות ומשפיע על התפיסה שלנו מה ייתפס כבאג או כהתנהגות מקובלת של המוצר חשוב.. מקרין על הQuality, ומשפיע על הCustomer trust and satisfaction לשתף את הפרודקט Negotiation – תהליך איטרטיבי, אחד משפיע על השני ו-vice versa הרבה פעמים קורה שמפתחים את הFunctional Requirements בhappy flow ואומרים שזה EC.. תחת הרעיון שEC.. CLICK --- דוגמא של אמזון.. הרבה פעמים קורה שמפתחים את הFunctional Requirements בhappy flow ואומרים שזה EC.. CLICK תחת הרעיון שEC --- Quality - Bugs and support If you went to Amazon Placed order, received SMS that payment was done You go to the orders screen – it is NOT there MS QnA – Edit question, old text is shown, editing shows the new text -> confirmation message can go a long way Confirmation – not make it a bug (in customer’s eyes --- Product expects the system to just work As they should Engineers need to follow Impossible to build bullet-proof systems Accept the imperfection What is acceptable in terms of product, determine together Analyze what must happen before ok WITH product E.g., post message Running moderation rules can take a while, let’s do it async Can affect product Can affect system behavior – reshape the business tx, simplify it
- תחת הרעיון שEC זה הInconsistent החדש.. CLICK אז זה לא בדיוק כך דוגמה של אמזון (BAD) – יש תשלום אבל לא רואים הזמנה ללא שום פידבק אז חשוב לערב את הפרודקט כי ניתן לבצע mitigations ברמת המוצר.. CLICK
- כי ניתן לבצע mitigations ברמת המוצר.. לכתוב הודעת confirmation שקרה/יקרה משהו ללכת רחוק יותר ולתת pane של tasks עם סטטוס, progress וכדומה וכמובן לזהות כשיש בעיה ולתת פידבק מתאים זו הודעה של אמזון שמתחברת לדוגמה שאמרנו מקודם.. אז, חשוב, ביססנו את זה.. יחד עם הפרודקט תוכלו להגדיר אילו consistency gtees אתה צריכים תקחו בחשבון את הדברים הבאים CLICK --- Generally, User expects strong consistency in “immediate” actions User accepts weak consistency when async process is apparent E.g., Amazon – Order lifecyle Azure Portal provisioning status, etc. User expectations is driven by UX/UI Get product on board, explain, negotiate Compromise where is appropriate to your product Product expects the system to just work As they should --- Can show lifecycle of order as originally suggested by product Starts with “Order Placed and Paid For” Negotiate with product Payment is an external system, can’t sync, takes time Product changes Order Placed Order Paid Show diagrams, how now it payment is posted to a queue, more reliable Allows extracting things to a separate business transaction Ease on the entire complexity Might still need some type of coordination – can lead to the fairy tale saga Can still reduce coupling and complexity
- תקחו בחשבון את הדברים הבאים Immediate אח"כ (eventual) Happy path מקביל איזו רמה של דיוק ושליטה אתם צריכים גבולות גזרה.. --- This will help you determine boundaries (גבולות גזרה), both in terms of Service granularity and how you decompose the system Buiz tx boundaries ---- Where you need fine control or more flexible one Will help you determine what solution to build Then define: Order and dependencies Business transaction boundaries Required consistency guarantees Accurate control vs. Flexible (orchestration vs. choreography) Then, can approach to implementing the (reliable) distributed business tx --- Can show lifecycle of order as originally suggested by product Starts with “Order Placed and Paid For” Negotiate with product Payment is an external system, can’t sync, takes time Product changes Order Placed Order Paid Show diagrams, how now it payment is posted to a queue, more reliable Allows extracting things to a separate business transaction Ease on the entire complexity Might still need some type of coordination – can lead to the fairy tale saga Can still reduce coupling and complexity
- גבולות גזרה.. Service Granularity ואיך לשבור את המערכת כפי שדיברנו וגם לקבוע את גבולות הBuiz Tx אוקיי.. אז בואו נסכם --- This will help you determine boundaries (גבולות גזרה), both in terms of Service granularity and how you decompose the system Buiz tx boundaries ---- Where you need fine control or more flexible one Will help you determine what solution to build Then define: Order and dependencies Business transaction boundaries Required consistency guarantees Accurate control vs. Flexible (orchestration vs. choreography) Then, can approach to implementing the (reliable) distributed business tx --- Can show lifecycle of order as originally suggested by product Starts with “Order Placed and Paid For” Negotiate with product Payment is an external system, can’t sync, takes time Product changes Order Placed Order Paid Show diagrams, how now it payment is posted to a queue, more reliable Allows extracting things to a separate business transaction Ease on the entire complexity Might still need some type of coordination – can lead to the fairy tale saga Can still reduce coupling and complexity
- בואו נסכם, key takeaways
- Design Csy gtees Tx boundaries Product Realization & negotiation Distribute or not, choice Granularity, csy force Test Technical Consistent as needed
- Alright, that's a wrap! Next, resources!
- לינקים זמן לשאלות?