Book Image

Hands-On Microservices with Spring Boot and Spring Cloud

By : Magnus Larsson
Book Image

Hands-On Microservices with Spring Boot and Spring Cloud

By: Magnus Larsson

Overview of this book

Microservices architecture allows developers to build and maintain applications with ease, and enterprises are rapidly adopting it to build software using Spring Boot as their default framework. With this book, you’ll learn how to efficiently build and deploy microservices using Spring Boot. This microservices book will take you through tried and tested approaches to building distributed systems and implementing microservices architecture in your organization. Starting with a set of simple cooperating microservices developed using Spring Boot, you’ll learn how you can add functionalities such as persistence, make your microservices reactive, and describe their APIs using Swagger/OpenAPI. As you advance, you’ll understand how to add different services from Spring Cloud to your microservice system. The book also demonstrates how to deploy your microservices using Kubernetes and manage them with Istio for improved security and traffic management. Finally, you’ll explore centralized log management using the EFK stack and monitor microservices using Prometheus and Grafana. By the end of this book, you’ll be able to build microservices that are scalable and robust using Spring Boot and Spring Cloud.

Related Content you might be interested in

Current Title:

Small book image
Hands-On Microservices with Spring Boot and Spring Cloud
Magnus Larsson
Sep, 2019 | 668 pages
Small book image
Mastering Spring Cloud
Piotr Mińkowski
Apr, 2018 | 432 pages
Small book image
Mastering Spring Boot 2.0
Dinesh Rajput
May, 2018 | 390 pages
Table of Contents (26 chapters)
Title Page
Title Page
Copyright and Credits
Copyright and Credits
Hands-On Microservices with Spring Boot and Spring Cloud
About Packt
About Packt
Why subscribe?
Contributors
Contributors
About the author
About the reviewer
Packt is searching for authors like you
Preface
Preface
Who this book is for
What this book covers
To get the most out of this book
Get in touch
Free Chapter
1
Introduction to Microservices
Introduction to Microservices
Technical requirements
My way into microservices
Defining a microservice
Challenges with microservices
Design patterns for microservices
Software enablers
Other important considerations
Summary
2
Introduction to Spring Boot
Introduction to Spring Boot
Technical requirements
Learning about Spring Boot
Beginning with Spring WebFlux
Exploring SpringFox
Understanding Spring Data
Understanding Spring Cloud Stream
Learning about Docker
Summary
Questions
3
Creating a Set of Cooperating Microservices
Creating a Set of Cooperating Microservices
Technical requirements
Introducing the microservice landscape
Generating skeleton microservices
Adding RESTful APIs
Adding a composite microservice
Adding error handling
Testing APIs manually
Adding automated microservice tests in isolation
Adding semi-automated tests of a microservice landscape
Summary
Questions
4
Deploying Our Microservices Using Docker
Deploying Our Microservices Using Docker
Technical requirements
Introduction to Docker
Challenges with running Java in Docker
Using Docker with one microservice
Managing a landscape of microservices using Docker Compose
Testing them all together automatically
Summary
Questions
5
Adding an API Description Using OpenAPI/Swagger
Adding an API Description Using OpenAPI/Swagger
Technical requirements
Introduction to using SpringFox
Changes in the source code
Building and starting the microservice landscape
Trying out the Swagger documentation
Summary
Questions
6
Adding Persistence
Adding Persistence
Technical requirements
But first, let's see where we are heading
Adding a persistence layer to the core microservices
Writing automated tests that focus on persistence
Using the persistence layer in the service layer
Extending the composite service API
Adding databases to the Docker Compose landscape
Manual tests of the new APIs and the persistence layer
Updating the automated tests of the microservice landscape
Summary
Questions
7
Developing Reactive Microservices
Developing Reactive Microservices
Technical requirements
Choosing between non-blocking synchronous APIs and event-driven asynchronous services
Developing non-blocking synchronous REST APIs using Spring
Developing event-driven asynchronous services
Running manual tests of the reactive microservice landscape
Running automated tests of the reactive microservice landscape
Summary
Questions
8
Introduction to Spring Cloud
Introduction to Spring Cloud
Technical requirements
The evolution of Spring Cloud
Using Netflix Eureka as a discovery service
Using Spring Cloud Gateway as an edge server
Using Spring Cloud Config for centralized configuration
Using Resilience4j for improved resilience
Using Spring Cloud Sleuth and Zipkin for distributed tracing
Summary
Questions
9
Adding Service Discovery Using Netflix Eureka and Ribbon
Adding Service Discovery Using Netflix Eureka and Ribbon
Technical requirements
Introducing service discovery
Setting up a Netflix Eureka server
Connecting microservices to a Netflix Eureka server
Setting up configuration for use in the development process
Trying out the discovery service
Summary
Questions
10
Using Spring Cloud Gateway to Hide Microservices Behind an Edge Server
Using Spring Cloud Gateway to Hide Microservices Behind an Edge Server
Technical requirements
Adding an edge server to our system landscape
Setting up a Spring Cloud Gateway
Trying out the edge server
Summary
Questions
11
Securing Access to APIs
Securing Access to APIs
Technical requirements
Introduction to OAuth 2.0 and OpenID Connect
Securing the system landscape
Adding an authorization server to our system landscape
Protecting external communication with HTTPS
Securing access to the discovery service, Netflix Eureka
Authenticating and authorizing API access using OAuth 2.0 and OpenID Connect
Testing with the local authorization server
Testing with an OpenID Connect provider – Auth0
Summary
Questions
12
Centralized Configuration
Centralized Configuration
Technical requirements
Introduction to the Spring Cloud Configuration server
Setting up a config server
Configuring clients of a config server
Structuring the configuration repository
Trying out the Spring Cloud Configuration server
Summary
Questions
13
Improving Resilience Using Resilience4j
Improving Resilience Using Resilience4j
Technical requirements
Introducing the Resilience4j circuit breaker and retry mechanism
Adding a circuit breaker and retry mechanism to the source code
Trying out the circuit breaker and retry mechanism
Summary
Questions
14
Understanding Distributed Tracing
Understanding Distributed Tracing
Technical requirements
Introducing distributed tracing with Spring Cloud Sleuth and Zipkin
Adding distributed tracing to the source code
Trying out distributed tracing
Summary
Questions
15
Introduction to Kubernetes
Introduction to Kubernetes
Technical requirements
Introducing Kubernetes concepts
Introducing Kubernetes API objects
Introducing Kubernetes runtime components
Creating a Kubernetes cluster using Minikube
Trying out a sample deployment
Managing a Kubernetes cluster
Summary
Questions
16
Deploying Our Microservices to Kubernetes
Deploying Our Microservices to Kubernetes
Technical requirements
Replacing Netflix Eureka with Kubernetes services
Introducing Kustomize
Deploying to Kubernetes for development and test
Deploying to Kubernetes for staging and production
Performing a rolling upgrade
Rolling back a failed deployment
Summary
Questions
17
Implementing Kubernetes Features as an Alternative
Implementing Kubernetes Features as an Alternative
Technical requirements
Replacing the Spring Cloud Config Server
Replacing the Spring Cloud Gateway
Testing with Kubernetes ConfigMaps, secrets, and ingress resource
Automating the provision of certificates 
Verifying that microservices work without Kubernetes
Summary
Questions
18
Using a Service Mesh to Improve Observability and Management
Using a Service Mesh to Improve Observability and Management
Technical requirements
Introduction to service mesh using Istio
Deploying Istio in a Kubernetes cluster
Creating the service mesh
Observing the service mesh
Securing a service mesh
Ensuring that a service mesh is resilient
Performing zero-downtime deployments
Running tests with Docker Compose
Summary
Questions
19
Centralized Logging with the EFK Stack
Centralized Logging with the EFK Stack
Technical requirements
Configuring Fluentd
Deploying the EFK stack on Kubernetes
Trying out the EFK stack
Summary
Questions
20
Monitoring Microservices
Monitoring Microservices
Technical requirements
Introduction to performance monitoring using Prometheus and Grafana
Changes in source code for collecting application metrics
Building and deploying the microservices
Monitoring microservices using Grafana dashboards
Setting up alarms in Grafana
Summary
Questions
Other Books You May Enjoy
Other Books You May Enjoy
Leave a review - let other readers know what you think

My way into microservices

When I first learned about the concept of microservices back in 2014, I realized that I had been developing microservices (well, kind of) for a number of years without knowing it was microservices I was dealing with. I was involved in a project that started in 2009 where we developed a platform based on a set of separated features. The platform was delivered to a number of customers that deployed it on-premise. To make it easy for the customers to pick and choose what features they wanted to use from the platform, each feature was developed as an autonomous software component; that is, it had its own persistent data and only communicated with other components using well-defined APIs.

Since I can't discuss specific features in this project's platform, I have generalized the names of the components, which are labeled from Component A to Component F. The composition of the platform into a set of components is illustrated as follows:

Each component is developed using Java and the Spring Framework, and is packaged as a WAR file and deployed as a web app in a Java EE web container, for example, Apache Tomcat. Depending on the customer's specific requirements, the platform can be deployed on single or multiple servers. A two-node deployment may look as follows:

Benefits of autonomous software components

Decomposing the platform's functionality into a set of autonomous software components provides a number of benefits:

  • A customer can deploy parts of the platform in its own system landscape, integrating it with its existing systems using its well-defined APIs.
    The following is an example where one customer decided to deploy Component A, Component B, Component D, and Component E from the platform and integrate them with two existing systems in the customer's system landscape, System A and System B:

  • Another customer can choose to replace parts of the platform's functionality with implementations that already exist in the customer's system landscape, potentially requiring some adoption of the existing functionality in the platform's APIs. The following is an example where a customer has replaced Component C and Component F in the platform with their own implementation:

  • Each component in the platform can be delivered and upgraded separately. Thanks to using well-defined APIs, one component can be upgraded to a new version without being dependent on the life cycle of the other components.
    The following is an example where Component A has been upgraded from version v1.1 to v1.2. Component B, which calls Component A, does not need to be upgraded since it uses a well-defined API; that is, it's still the same after the upgrade (or it's at least backward-compatible):

  • Thanks to the use of well-defined APIs, each component in the platform can also be scaled out to multiple servers independently of the other components. Scaling can be done either to meet high availability requirements or to handle higher volumes of requests. Technically, this is achieved by manually setting up load balancers in front of a number of servers, each running a Java EE web container. An example where Component A has been scaled out to three instances looks as follows:

Challenges with autonomous software components

We also learned that decomposing the platform introduced a number of new challenges that we were not exposed (at least not to the same degree) when developing more traditional, monolithic applications:

  • Adding new instances to a component required manually configuring load balancers and manually setting up new nodes. This work was both time-consuming and error-prone.
  • The platform was initially prone to errors in the other systems it was communicating with. If a system stopped responding to requests that were sent from the platform in a timely fashion, the platform quickly ran out of crucial resources, for example, OS threads, specifically when exposed to a large number of concurrent requests. This caused components in the platform to hang or even crash. Since most of the communication in the platform is based on synchronous communication, one component crashing can lead to cascading failures; that is, clients of the crashing components could also crash after a while. This is known as a chain of failures.
  • Keeping the configuration consistent and up to date in all the instances of the components quickly became a problem, causing a lot of manual and repetitive work. This led to quality problems from time to time.
  • Monitoring the state of the platform in terms of latency issues and hardware usage (for example, usage of CPU, memory, disks, and the network) was more complicated compared to monitoring a single instance of a monolithic application.
  • Collecting log files from a number of distributed components and correlating related log events from the components was also difficult but feasible since the number of components was fixed and known in advance.

Over time, we addressed most of the challenges that were mentioned in the preceding list with a mix of in-house-developed tools and well-documented instructions for handling these challenges manually. The scale of the operation was, in general, at a level where manual procedures for releasing new versions of the components and handling runtime issues were acceptable, even though they were not desirable.

Enter microservices

Learning about microservice-based architectures in 2014 made me realize that other projects had also been struggling with similar challenges (partly for other reasons than the ones I described earlier, for example, the large cloud service providers meeting web-scale requirements). Many microservice pioneers had published details of lessons they'd learned. It was very interesting to learn from these lessons. 

Many of the pioneers initially developed monolithic applications that made them very successful from a business perspective. But over time, these monolithic applications became more and more difficult to maintain and evolve. They also became challenging to scale beyond the capabilities of the largest machines available (also known as vertical scaling). Eventually, the pioneers started to find ways to split monolithic applications into smaller components that could be released and scaled independently of each other. Scaling small components can be done horizontally, that is, deploying a component on a number of smaller servers and placing a load balancer in front of it. If done in the cloud, the scaling capability is potentially endless  it is just a matter of how many virtual servers you bring in (given that your component can scale out on a huge number of instances, but more on that later on).

In 2014, I also learned about a number of new open source projects that delivered tools and frameworks that simplified the development of microservices and could be used to handle the challenges that come with a microservice-based architecture. Some of these are as follows:

  • Pivotal released Spring Cloud, which wraps parts of the Netflix OSS in order to provide capabilities such as dynamic service discovery, configuration management, distributed tracing, circuit breaking, and more.
  • I also learned about Docker and the container revolution, which is great for minimizing the gap between development and production. Being able to package a component not only as a deployable runtime artifact (for example, a Java, war or, jar file) but as a complete image ready to be launched as a container (for example, an isolated process) on a server running Docker was a great step forward for development and testing.
  • A container engine, such as Docker, is not enough to be able to use containers in a production environment. Something is needed that, for example, can ensure that all the containers are up and running and that they can scale out containers on a number of servers, thereby providing high availability and/or increased compute resources. These types of product became known as container orchestrators. A number of products have evolved over the last few years, such as Apache Mesos, Docker in Swarm mode, Amazon ECS, HashiCorp Nomad, and Kubernetes. Kubernetes was initially developed by Google. When Google released v1.0, they also donated Kubernetes to CNCF (https://www.cncf.io/). During 2018, Kubernetes became kind of a de facto standard, available both pre-packaged for on-premise use and available as a service from most major cloud providers.
  • I have recently started to learn about the concept of a service mesh and how a service mesh can complement a container orchestrator to further offload microservices from responsibilities to make them manageable and resilient. 

A sample microservice landscape

Since this book can't cover all aspects of the technologies I just mentioned, I will focus on the parts that have proven to be useful in customer projects I have been involved in since 2014. I will describe how they can be used together to create cooperating microservices that are manageable, scalable, and resilient.

Each chapter in this book will address a specific concern. To demonstrate how things fit together, I will use a small set of cooperating microservices that we will evolve throughout this book:

Now that we know the how and what of microservices, let's start to look into how a microservice can be defined.

Previous Section
End of Section 3
Next Section