Upload File

oracle's microservices strategy · microservices. • operations is not integrated in the...

  • Home
  • Documents
  • Oracle's Microservices Strategy · Microservices. • Operations is not integrated in the platform making it an expensive ... (Zipkin/Jaeger, Vizceral) • Istio (Service mesh) •
18
Copyright © 2017, Oracle and/or its affiliates. All rights reserved. | Oracle's Modern Microservices Strategy An Opinionated Platform on Kubernetes Boris M Scholl VP of Development Claudio Caldato Sr. Director of Development Oracle Cloud Microservices October 3rd, 2017 Confidential – Oracle Internal/Restricted/Highly Restricted

Upload: others

Post on 30-Jul-2020

4 views

Category:

Documents


0 download

Report

TRANSCRIPT

Page 1: Oracle's Microservices Strategy · Microservices. • Operations is not integrated in the platform making it an expensive ... (Zipkin/Jaeger, Vizceral) • Istio (Service mesh) •

Copyright©2017, Oracleand/oritsaffiliates.Allrightsreserved.|

Oracle'sModernMicroservices StrategyAnOpinionatedPlatformonKubernetes

BorisMSchollVPofDevelopmentClaudioCaldatoSr.DirectorofDevelopmentOracleCloudMicroservicesOctober3rd,2017

Confidential– OracleInternal/Restricted/HighlyRestricted

Page 2: Oracle's Microservices Strategy · Microservices. • Operations is not integrated in the platform making it an expensive ... (Zipkin/Jaeger, Vizceral) • Istio (Service mesh) •

Copyright©2017, Oracleand/oritsaffiliates.Allrightsreserved.|

SafeHarborStatementThefollowingisintendedtooutlineourgeneralproductdirection.Itisintendedforinformationpurposesonly,andmaynotbeincorporatedintoanycontract.Itisnotacommitmenttodeliveranymaterial,code,orfunctionality,andshouldnotberelieduponinmakingpurchasingdecisions.Thedevelopment,release,andtimingofanyfeaturesorfunctionalitydescribedforOracle’sproductsremainsatthesolediscretionofOracle.

Confidential– OracleInternal/Restricted/HighlyRestricted 2

Page 3: Oracle's Microservices Strategy · Microservices. • Operations is not integrated in the platform making it an expensive ... (Zipkin/Jaeger, Vizceral) • Istio (Service mesh) •

Copyright©2017, Oracleand/oritsaffiliates.Allrightsreserved.|

ProgramAgenda

Motivation

OurStack

Demo

Roadmap

1

2

3

Confidential– OracleInternal/Restricted/HighlyRestricted 3

4

Page 4: Oracle's Microservices Strategy · Microservices. • Operations is not integrated in the platform making it an expensive ... (Zipkin/Jaeger, Vizceral) • Istio (Service mesh) •

Copyright©2017, Oracleand/oritsaffiliates.Allrightsreserved.|Copyright©2017, Oracleand/oritsaffiliates.Allrightsreserved.| Confidential– OracleInternal/Restricted/HighlyRestricted 4

Motivation

Page 5: Oracle's Microservices Strategy · Microservices. • Operations is not integrated in the platform making it an expensive ... (Zipkin/Jaeger, Vizceral) • Istio (Service mesh) •

Copyright©2017, Oracleand/oritsaffiliates.Allrightsreserved.|

Today’sproblemswithcontainernativedevelopment

OracleConfidential– Internal/Restricted/HighlyRestricted 5

COMMONAPIANDSERVICESCI/CD

MANAGEDKUBERNETES

JAVAMICROSERVICES

DIAG

NOSTICS

• Programmingmodelandinfrastructureareentangled,thereisnoclearseparationanddevelopersneedtounderstandtheunderneathinfrastructuretomaketheirservicework

• Lackoffocusondevelopersmakesonboardingonandoperateexistingsolutionsexpensiveandtimeconsuming

• Externalservicedependenciesneedtobewiredupmanually• ThereisnounifiedapproachforServerless andcontainer-basedMicroservices.

• Operationsisnotintegratedintheplatformmakingitanexpensiveafterthought

• Turnkeymicroservices platformslackopennessandmodularity

Page 6: Oracle's Microservices Strategy · Microservices. • Operations is not integrated in the platform making it an expensive ... (Zipkin/Jaeger, Vizceral) • Istio (Service mesh) •

Copyright©2017, Oracleand/oritsaffiliates.Allrightsreserved.|

Today’sproblemswithcontainernativedevelopment

OracleConfidential– Internal/Restricted/HighlyRestricted 6

COMMONAPIANDSERVICESCI/CD

MANAGEDKUBERNETES

JAVAMICROSERVICES

DIAG

NOSTICS

• Kubernetes(K8S)providesapplicationinfrastructureformoderncloud-nativeapplications,butleavesmuchofdistributedsystemmanagementtoapplicationauthors:• Service/APIDiscovery• Backoff/RetryandIdempotency• Resiliency/CircuitBreakers• Diagnostics

• MuchasintheSOAdays,newtechnologiesareemergingtooutsourcethiscomplexityfromapplications:servicemeshes(istio/linkerd)

Page 7: Oracle's Microservices Strategy · Microservices. • Operations is not integrated in the platform making it an expensive ... (Zipkin/Jaeger, Vizceral) • Istio (Service mesh) •

Copyright©2017, Oracleand/oritsaffiliates.Allrightsreserved.|Copyright©2017, Oracleand/oritsaffiliates.Allrightsreserved.| Confidential– OracleInternal/Restricted/HighlyRestricted 7

OurStack

Page 8: Oracle's Microservices Strategy · Microservices. • Operations is not integrated in the platform making it an expensive ... (Zipkin/Jaeger, Vizceral) • Istio (Service mesh) •

Copyright©2017, Oracleand/oritsaffiliates.Allrightsreserved.|

Microservices Stack

OracleConfidential– Internal/Restricted/HighlyRestricted 8

COMMONAPIANDSERVICESCI/CD

MANAGEDKUBERNETES

JAVAMICROSERVICES

DIAG

NOSTICS

• WestartwithacuratedpackageofOSSlaidontopofourmanagedK8Sservice:• DiagnosticsandOperations(Zipkin/Jaeger,Vizceral)• Istio(Servicemesh)• OpenServiceBrokerAPI(LinuxFoundation),whichisthefoundationoftheK8sservicecatalog

• APICatalog(Apiary)• EventManager(Kafkabased)

• Ourvalue-addistounifyallofthis,andfliptheexperienceforthedevelopertobeAPI-first:alwaysreactive,unifiedbetweenfunctions/services• Developersgetobservabilityand“distributedmuck”forfree

Page 9: Oracle's Microservices Strategy · Microservices. • Operations is not integrated in the platform making it an expensive ... (Zipkin/Jaeger, Vizceral) • Istio (Service mesh) •

Copyright©2017, Oracleand/oritsaffiliates.Allrightsreserved.|

ArchitecturalandFunctionalOverview

Confidential– OracleInternal/Restricted/HighlyRestricted 9

OKE

ISTIOServiceMesh/ISTIO

ISTIO

ISTIOServiceBroker

Kubernetes

APIRegistry+

ISTIOCLI– kubectl-oms ISTIODeveloperConsole

ISTIO

Diagno

stics/Mon

itorin

g

ISTIO

DeveloperCloud

Prometheus

• PublishandConsumeAPIsandmanagement• Generateclientlibraries• Mockservices

• RegistrationofcloudservicesanduserservicesAPIsandFn

• Configurationofserviceaccess

§ RoutingandDiscover(LB,A/Betc.)§ Resiliency(CircuitBreakeretc.)§ Servicemonitoringanddiagnostics§ InterServiceSecurityandPolicies

§ ClusterManagement/HA§ Orchestration§ Deploymentstrategies

ISTIOEventManager

RegisterEventprovidersandconsumers

CatalogService

OrderService

FooService

HighProductivityService/APIfirst

HighControlBuildonnativeK8s

Page 10: Oracle's Microservices Strategy · Microservices. • Operations is not integrated in the platform making it an expensive ... (Zipkin/Jaeger, Vizceral) • Istio (Service mesh) •

Copyright©2017, Oracleand/oritsaffiliates.Allrightsreserved.|

ServiceMesh• Istio isthefoundationofouroffering;besidesofferingingresscontrol,itprovidesanapplicationdeveloperdefaultservice-to-service:– Loadbalancing– Encryption– AccessPolicy– Resiliency– Upgradesandsophisticatedrouting(e.g.,1%canaries,etc.)– DiagnosticsandTracing

• WearefundamentallygoingtoalignwithIstio,andenhanceitintheopen,notlayerontop

Confidential– OracleInternal/Restricted/HighlyRestricted 10

Page 11: Oracle's Microservices Strategy · Microservices. • Operations is not integrated in the platform making it an expensive ... (Zipkin/Jaeger, Vizceral) • Istio (Service mesh) •

Copyright©2017, Oracleand/oritsaffiliates.Allrightsreserved.|

ServiceBroker• BuildingonOpenServiceBrokerAPI,wearegoingtounifyaccessto3rdpartyservicesonthemesh;developerswillbeabletoaccessserviceslikeDynamoDB/etc asifitisoneoftheirownservices• Wewillalsoenabledeveloperstoregisteruserservicesandfunctionswiththeservicebrokeronthemeshtogetthesameintegrationbenefitsmentionedabove• Every3rd partyservice,userserviceandfunctionregisteredthroughtheservicebrokerwillbeautoactivatedandaddedtotheAPIcatalog• OurservicebrokerwillregisterconnectioninformationandaccesstokenswiththeAPIcatalog;developersdonotneedtoconfiguresecureaccesstothirdpartyservicesandcanfocusonworkingwithAPIs

Confidential– OracleInternal/Restricted/HighlyRestricted 11

Page 12: Oracle's Microservices Strategy · Microservices. • Operations is not integrated in the platform making it an expensive ... (Zipkin/Jaeger, Vizceral) • Istio (Service mesh) •

Copyright©2017, Oracleand/oritsaffiliates.Allrightsreserved.|

APICatalog

• Apiary’sOSScomponentsarethefoundationofourAPIcatalog,weenhancetheircurrentmockserviceandBlueprint/OpenAPIfunctionalitybyadding– ClientLibrarygeneration,wewillstartwithsupportforJavaandJavaScript– SecuritysettingsforAPIaccess– SophisticatedroutingcapabilitiestoenableA/Btesting,Canarydeploymentsetc.

• EverycomponentregisteredwiththeAPIcatalogwillbedeeplyintegratedwiththemesh;asaresultdevelopersdonotneedtoworryaboutendpoints,security,routingandresiliency.

Confidential– OracleInternal/Restricted/HighlyRestricted 12

Page 13: Oracle's Microservices Strategy · Microservices. • Operations is not integrated in the platform making it an expensive ... (Zipkin/Jaeger, Vizceral) • Istio (Service mesh) •

Copyright©2017, Oracleand/oritsaffiliates.Allrightsreserved.|

Diagnosticsandoperations• TodaywearepackagingZipkin/OpenTracing/PrometheusandVizceral• Longtermasacloudproviderthisisourhugeopportunitytodifferentiatebyprovidingeasyaccessto:– Telemetry– Capacitymanagement– Securityauditing– ServiceDebugging/Introspection

• WewillbuildanoperationsUXthatenablesdeveloperstonotonlymonitor,diagnoseanddebugtheirservicesinrealtime,butalsotosetupsophisticateddeploymentandtestingscenariossuchasBlue/GreendeploymentandA/Btesting.

Confidential– OracleInternal/Restricted/HighlyRestricted 13

Page 14: Oracle's Microservices Strategy · Microservices. • Operations is not integrated in the platform making it an expensive ... (Zipkin/Jaeger, Vizceral) • Istio (Service mesh) •

Copyright©2017, Oracleand/oritsaffiliates.Allrightsreserved.|Copyright©2017, Oracleand/oritsaffiliates.Allrightsreserved.| Confidential– OracleInternal/Restricted/HighlyRestricted 14

Demo

Page 15: Oracle's Microservices Strategy · Microservices. • Operations is not integrated in the platform making it an expensive ... (Zipkin/Jaeger, Vizceral) • Istio (Service mesh) •

Copyright©2017, Oracleand/oritsaffiliates.Allrightsreserved.|

KeyTakeaways• OpinionatedandOpen– useofprovenCNCFcomponents– Batteriesincludedbutreplaceable

• DeveloperProductivity– Abstractionofinfrastructure– Resiliencypushedintotheplatform– Diagnosticsandmonitoringpushedintotheplatform

• DevelopmentFirst– Easytoconsumeexternalservices– APIfirstapproach– FNintegration– Supportforeventdrivenarchitectures

Confidential– OracleInternal/Restricted/HighlyRestricted 15

Page 16: Oracle's Microservices Strategy · Microservices. • Operations is not integrated in the platform making it an expensive ... (Zipkin/Jaeger, Vizceral) • Istio (Service mesh) •

Copyright©2017, Oracleand/oritsaffiliates.Allrightsreserved.|

Doyouwanttotryit?• TechPreviewavailability– about4weeksafterOOW

• Pleasecontact:– [email protected][email protected]

Confidential– OracleInternal/Restricted/HighlyRestricted 16

Page 17: Oracle's Microservices Strategy · Microservices. • Operations is not integrated in the platform making it an expensive ... (Zipkin/Jaeger, Vizceral) • Istio (Service mesh) •

Copyright©2017, Oracleand/oritsaffiliates.Allrightsreserved.| Confidential– OracleInternal/Restricted/HighlyRestricted 17

Page 18: Oracle's Microservices Strategy · Microservices. • Operations is not integrated in the platform making it an expensive ... (Zipkin/Jaeger, Vizceral) • Istio (Service mesh) •

Setting up Kubernetes with - Linux Foundation Events...•Prometheus: monitoring system •Zipkin: distributed tracing system •CNI plugins (calico, flannel, rkt): networking •Istio

Lightweight Enterprise Java · • Microservices! • What is ... • OpenTracing is a distributed tracing standard for applicaons ... Zipkin Demo. 2019 #devdays2019 @JLouisMonteiro

Microservices Tracing with Spring Cloud and Zipkin (devoxx)

Microservices Tracing With Spring Cloud and Zipkin @CybercomDEV

Istio Service Mesh Managing microservices with · 2019-10-04 · NetFlix OSS first microservices patterns and libraries open-sourced 2013 Spring Cloud Enterprise microservice framework

Implementing microservices tracing with spring cloud and zipkin (spring one)

Makaira ISTIO Mak Genu s - fao.org

Microservices Tracing With Spring Cloud and Zipkin @Szczecin JUG

Microservices Tracing with Spring Cloud and Zipkin

Distributed Tracing with OpenTracing, ZipKin and Kubernetes

Managing Microservice Applications with Istio

The Road to Istio - GeekWireof the journey PRINCIPLES: Design your software such that it will be easily ... Resiliency Circuit Break Bulk Head Monolithic Microservices . agility Cultural

Implementing Microservices Tracing with Spring Cloud and Zipkin

SERVICE MESH EN K8S CON ISTIO - dit

Openzipkin conf: Zipkin at Yelp

Istio Journey Airbnb’s

2013 Marin County Market Report Roger Zipkin

Enterprise Service Mesh - Istio v1 · 2019-06-18 · Fragmented or No DevOps Process Microservices Based Architecture Platform & Infrastructure ... API Driven Microservices Cloud

HYBRID CLOUD ISTIO: SOLVING CHALLENGES OF...ISTIO: SOLVING CHALLENGES OF HYBRID CLOUD Zack Butcher (@ZackButcher) - Stealth Startup Christian Posta (@christianposta) - Red Hat 8 May,

Of microservices and microservices

Best practice: from spring cloud to Istio

(mTLS) PADA ARSITEKTUR MICROSERVICES DENGAN ISTIO DI

Istio · Weaving the mesh svcA sidecar sidecar Service A ... Fault Injection ... Istio adds fault tolerance to your application

Zipkin& Splunk: Tracing Transactions Across Your ecosystem€¦ · © 2018 SPLUNK INC. Zipkin& Splunk: Tracing Transactions Across Your ecosystem Tom Martin | Staff Practitioner,

N GINX Application Platform · 2020-02-13 · 4 Microservices Web App Mgr. Mgr. Mgr. Mgr. Mgr. Control plane Data plane Server/app Mgr. CDN WAF L4 LB L7 LB API GW Mgr. Mgr. Istio

Service Mesh The Salesforce - Istio

Services Mesh Istio: Sailing to a Secure - Istio... · Istio: Sailing to a Secure Services Mesh Spike Curtis, Tigera & Dan Berg, IBM. ... Ops needs a cross-platform toolchain: Canary

Building APIs with Microservices · Using Docker Scheduling containers Kubernetes Introducing Istio API Management. James (Jim) Gough Previous: Java developer and contributor Previous:

Istio customer deck (PPT) - IBM

xiaorui.ccxiaorui.cc/static/service_mesh.pdf · httpl.l, http2.O grpc/tcp wtih or without mTLS Istio citadel report Envoy Pod servB . istio Istio jaeger prometheus zipkin fluented

Politecnico di Torino · Connect, secure, manage and monitor a microservices application by using Istio Relatori Prof. Riccardo Sisto Prof. Fulvio Risso ... 1 Introduzione 1 ... che

Istio Service Meshpeople.redhat.com/abach/OSAW/FILES/DAY2/7 Istio Service Mesh.pdf · Enforce consistently across diverse protocols and runtimes with little or no application changes

Istio Service Mesh Developing Microservices with...HTTP1.1, HTTP2, gRPC, TCP w/TLS istioctl, API, config Quota, Telemetry Rate Limiting, ACL CA, SPIFFE Istio Service Mesh POD SERVICE

2014 Marin Market Report - Roger Zipkin

Istio / Service Mesh - events.redhat.com · Istio and Microservices Distributed Traces supplemental slide Follow a request as it moves from one service to another Where is it getting