Okay, Microservices are cool. But, as all the new trendy buzzword, it’s not a silver bullet, and there are several problems to manage. One is the authentication, distributed authentication is hard, and there is many ways to achieve it. Configuration is the second issue to be managed when dealing with distributed micro application strategy. This talk is a concrete return of experience to build a strategy on microservice and problems we will have to deal on this occasion.

1. Problems in the microservice
world:
Authentication, communication,
configuration and boundaries
Quentin ADAM - @waxzce

2. Who am I ?
Quentin ADAM from the Clever Cloud
@waxzce on twitter – github- soundcloud – instagram ….

3. My day to day work :
, the IT automation company

4. Keep your apps online. made with node.js,
scala, java, ruby, php, python, go…
Cloud & on premise

5. And learn a lot of things
about your code, apps,
and good/bad design…

6. Give back to the
community
NEVER GONNA
LET YOU DOWN
clever-cloud.com

7. The beginning
How Clever Cloud start?
How the roadmap was define.

8. Remote Code
Execution
as a
Service

10. Dog container

11. We are happy

12. Multiple stacks

13. Scaling

14. Evolution

15. Team management

16. Architecture as a playground
Lego FTW

17. Microservice communication

18. NO TRUSTED NETWORK
https://www.clever-cloud.com/blog/guests/2015/06/16/the-end-of-the-fortress-metaphor/

19. Server -> Server
• Authenticated
• Encrypted
• Auditable/logged
🔪

20. Loosely coupled

21. Routing is a problem

22. Message box

23. Duplicate messages

24. Analytic and audit

25. HTTP for all?

26. Messages brokers
• RabbitMQ
• FR: https://www.youtube.com/watch?v=VBUQXM96hpw
• EN: https://www.youtube.com/watch?v=15mzY2MfDgM
• Kafka
• Redis?
• 0MQ?
• Warp10 / time series DB📬

27. Migrate to event source?

28. The right size?
What is the boundaries of a microservice

29. Noisy Microworker army

30. Beware of (massive) RPC
(Remote Procedure Call)

31. Network is two problems: Fragile and Slow

32. 📦 Micro services is not Workload
Distribution
👁 akka, project orleans, Erlang OTP, hadoop…

33. One service do have to actually
provide a service by itself

34. Fat monoliths

35. Micro service creating too much
lib?

36. Why theses two functions are in
the same services?
Or can I 👁 it?

37. Does we have a common data
store?

38. Does this features need the same
scaling agenda?

39. Example Clever Cloud

40. Configuration on multiple spots

41. Configuration != Code

42. Zk, etcd, consul… So many possibilities

43. Reconfigure at runtime?
Hot reloading or live configuration? https://www.clever-cloud.com/blog/engineering/2017/07/24/hot-
reloading-configuration-why-and-how/

44. Simpler way, never change on
runtime
Immutable infrastructure (FR) https://www.youtube.com/watch?v=WrZCbgQsPVU

45. Agnostic solution: Environment variable

46. Clever Cloud service
dependencies
https://www.clever-cloud.com/blog/features/2016/06/23/introducing-service-dependencies/

47. No over engineering on
configuration, when you need to
configure the configuration injector,
you are too far 🖇

48. Who the hell are you?
Distribute Authentication

49. Distribute Identity and ACL

50. Common solutions (or not)

51. Shared data repository
Redis
Service
A (php)
Service
C (java)
Service
B
(nodejs)

52. Authentication using a proxy
Request
Reverse Proxy
+
Database call
+
Business code
+
Authentication
Service A
Service B
Service C
Authenticated
request with
user identity
data

53. Central API call to authenticate request
Request
Via
reverse
proxy
Service A
Service B
Service C
Authentification
API

54. We need more tools
👁 🔧 🔩 ⛏ ⚒ 👁

55. Tokens

56. JWT

57. Macaroons

58. Keep hackable and pluggable
playground to enforce
innovations

59. Maintenance

60. Clean legacy code on regular
basis
Why and how bookkeepers f***d up IT
FR https://www.youtube.com/watch?v=0ip1FoBsLB4
EN https://www.youtube.com/watch?v=OngWRJ8txps

61. Deployment agility

62. No dogma, full developer
hapiness oriented architecture

63. Thank you
find me on twitter
@waxzce
Gift coupon for
clever-cloud.com:
devopsCon17