Zalando's Jan Mußler points out how Docker helps to foster team autonomy while complying with company regulations. As an example he shows how Zalando Tech deploys onto its microservices infrastructure by using their open source platform STUPS (stups.io) along with Docker in their continuous delivery strategy.
https://tech.zalando.com
Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
Powering Radical Agility with Docker
1. Docker - Powering RA at Zalando
Docker Meetup - Dortmund 7.6.2016 | jan.mussler@zalando.de | @JanMussler
2. 15 countries
3 fulfillment centers
18+ million active customers
3.0+ billion € revenue
135+ million visits per month
1.000+ employees in tech
Europe's Leading Fashion Platform
Visit us: tech.zalando.com
28. The
OAuth 2.0 authorization framework
enables a third-party application
to obtain limited access to
an HTTP service.
- oauth.net
OAUTH 2.0?
29. ● Robustness & resilience
⇒ Cassandra, no SPOF
● Low latency for token validation
⇒ Token Info next to application
● Horizontal scalability
⇒ Cassandra, “stateless” Token Info
PLAN B: GOALS - Build open source Oauth2 Provider
30. PLAN B: COMPLETE PICTURE
bobalice
create
token
Token Info
validate
Provider
credential storage
Revocation
poll
public keys
poll
revocation listsS3
call with Bearer token
31. Written in Go
~16 MB Docker image
Stateless application
CPU bound, Go 1.6 ~40x speedup for EC verify
EC2 instance start to healthy: 45sec
Scaling Token Info example
47. ● AWS terminology and behavior
● OAuth2 + Security + Security Groups
● Ops can be hard -> SaaS?
● CF deployment takes time
● DNS load balancing and switching :-(
○ Remember timeout config …!!
○ ELB soso ...
● Great flexibility and power though
A lot of input to cover ...