The document discusses the advantages of using sidecar patterns and container orchestration in microservices architectures for cross-cutting concerns, language-agnostic functionality, and ease of operational management. It highlights the complexity of handling configurations, error management, and scaling challenges when using different programming languages. Additionally, it provides examples of tools that facilitate these patterns, such as airbag, dqd, fluentd, and istio.

1. @OrRosenblatt
@Yshayy
Dev.IL meetup
Languages don’t matter
anymore!

2. We all know that story...

3. Our service is going production...

4. Adding a new service

5. As developers, we want to choose
the right tool for the job.

6. Same capabilities as before...
● node-authentication-package
● node-monitoring-package
● node-logging-package
● node-storage-package
● node-configuration-package
● etc.
● python-authentication-package
● python-monitoring-package
● python-logging-package
● python-storage-package
● python-configuration-package
● etc.

8. Ain’t nobody got time for that!

9. Use Case - Workers

10. Process items from a queue
$$$Cloud
Queue

11. Process items from a queue
Cloud
Queue

12. Process items from a queue
Cloud
Queue

13. Process items from a queue
Cloud
Queue

14. Let’s zoom in...
Cloud
Queue

15. Logic
Inside the Worker
Cloud
Queue
Azure
Sdk
Worker
Helper
library
Email
Client

16. Inside the Worker
Logic
Cloud
Queue
Azure
Sdk
Worker
Helper
library
Email
Client

17. Worker Helper Library
? ? ?
Configuration ? ? ?

18. Worker Helper Library
? ?
Configuration Error handling ? ?

19. Worker Helper Library
?
Configuration Error handling Concurrency ?

20. Worker Helper Library
Configuration Error handling Concurrency Monitoring

21. Need to implement in every language!
(Not all languages are born equal…)

22. Process items from a queue - Two processes
Cloud
Queue
Worker
Helper
Email
Client

23. Main process and a Sidecar process
Cloud
Queue
Worker
Helper
Email
Client

24. Sidecar.
How awesome is that!

25. Sidecar pattern
● Different processes, same host
● Also known as Sidekick pattern, decomposition pattern
● Shared resources
○ Network
○ Storage
○ Lifecycle
○ IP

26. DQD - Dequeue Daemon
Cloud
Queue
DQD
Email
Client

27. DQD in a nutshell
- Dequeue items from a source
- POST item to an endpoint using http
- Find the right rate/parallelism level
- Expose metrics
- Handle errors
- Extensible
- Abstract queue-worker relation
Written once, can be used anywhere

28. DQD Demo

29. Sidecars Packages/Libraries
● Language agnostic functionality
● Isolated loosely-coupled components
● Leaner testable components
● Upgrades are easier
Host
Main
App
Sidecar
Main App
Package
Host

30. ● Same host
○ Zero Latency
○ Security out of the box
● Better Availability
○ Limited blast radius
○ Scaling with the main application
● Shared file system
● Multiple configuration
Sidecars Microservices
Host
Main
App
Sidecar
Service
Service
Service
Service

31. Side cars in Production

32. Not all is perfect...
● Process overhead
● Operational Complexity

33. Operational complexity
? ? ? ? ?
Runtime
Conflicts
? ? ? ? ?

34. Operational complexity
? ? ? ?
Runtime
Conflicts
Security ? ? ? ?

35. Operational complexity
? ? ?
Runtime
Conflicts
Security Configuration ? ? ?

36. Operational complexity
? ?
Runtime
Conflicts
Security Configuration Health
Checking
? ?

37. Operational complexity
?
Runtime
Conflicts
Security Configuration Health
Checking
Scheduling /
Allocation
?

38. Operational complexity
Runtime
Conflicts
Security Configuration Health
Checking
Scheduling /
Allocation
Scaling

40. What is a container
● Isolated process
● “VM like” isolation
○ Filesystem
○ Process namespace
○ Cpu/Memory quotas
○ Networking
● Fast boot-time

41. What and why?
● Great containerization tooling
● Images as packages/artifact format
● No conflicting dependencies
● Easy to config
● Fast Multiple containers deployment

42. Operational complexity
Runtime
Conflicts
Security Configuration Health
Checking
Scheduling /
Allocation
Scaling

43. What and why?
● Container orchestration platform
● Scheduling
● Easy to group containers into pod
● Configuration files as deployment
● Auto-scaling

44. Operational complexity
Runtime
Conflicts
Security Configuration Health
Checking
Scheduling /
Allocation
Scaling

45. Demo k8s

46. How far can we go?

47. Soluto/Airbag - OIDC authentication
Incoming traffic Airbag
OIDC
Provider
Sync
Keys
Main
Application
Validate
jwt token

48. FluentD sidecar - log shipping
FluentD
/Logs
volume
Main
Application Log analytics
service
Scrape
Write
Send

49. Service mesh!

50. Istio - service mesh
Envoy
Main
Application
Envoy
Main
Application
Envoy
Main
Application

51. Summary
● Sidecars allow us to solve cross-cutting concerns in a language agnostic way
● Container platform make operational management much easier
● Open source Sidecars code/images can solve hard problems with relatively easy and
loose integration.
Use sidecars and go polyglot!

52. Additional resources
● Tools:
○ AirBag - www.github.com/soluto/airbag
○ DQD - www.github.com/soluto/dqd
○ FluentD - https://www.fluentd.org/
○ Istio - https://istio.io/
○ Skaffold - https://github.com/GoogleContainerTools/skaffold
● Design patterns for container-based distributed systems
● Prana: A Sidecar for your Netflix PaaS based Applications and Services

53. Thank you!
@OrRosenblatt
@Yshayy
Dev.IL meetup

54. Questions?
@OrRosenblatt
@Yshayy
Dev.IL meetup