Download as PDF, PPTX
![@Koenighotze
"Statement": [{
"Effect": "Allow",
"Action": [
“s3:*",
],
"Resource": [
“arn:aws:s3:::*”
]
}, …](https://image.slidesharecdn.com/realworldserverless20180307-voxxed-zurich-180308160402/75/Real-world-serverless-architecture-patterns-and-lessons-learned-179-2048.jpg)
![@Koenighotze
"Statement": [{
"Effect": "Allow",
"Action": [
"s3:*",
],
"Resource": [
"arn:aws:s3:::*"
]
}, …](https://image.slidesharecdn.com/realworldserverless20180307-voxxed-zurich-180308160402/75/Real-world-serverless-architecture-patterns-and-lessons-learned-180-2048.jpg)
![@Koenighotze
"Statement": [{
"Effect": "Allow",
"Action": [
“s3:*",
],
"Resource": [
“arn:aws:s3:::senacor/fis/orders/*”
]
}, …](https://image.slidesharecdn.com/realworldserverless20180307-voxxed-zurich-180308160402/75/Real-world-serverless-architecture-patterns-and-lessons-learned-181-2048.jpg)
![@Koenighotze
"Statement": [{
"Effect": "Allow",
"Action": [
"s3:GetObject"
],
"Resource": [
“arn:aws:s3:::senacor/fis/orders/*”
]
}, …](https://image.slidesharecdn.com/realworldserverless20180307-voxxed-zurich-180308160402/75/Real-world-serverless-architecture-patterns-and-lessons-learned-182-2048.jpg)
![@Koenighotze
"Statement": [{
"Effect": "Allow",
"Action": [
"s3:GetObject"
],
"Resource": [
“arn:aws:s3:::senacor/fis/orders/*”
]
}, …](https://image.slidesharecdn.com/realworldserverless20180307-voxxed-zurich-180308160402/75/Real-world-serverless-architecture-patterns-and-lessons-learned-183-2048.jpg)
![@Koenighotze
"Statement": [{
"Effect": "Allow",
"Action": [
“s3:*",
],
"Resource": [
“arn:aws:s3:::*”
]
}, …](https://crownmelresort.com/image.slidesharecdn.com/realworldserverless20180307-voxxed-zurich-180308160402/75/Real-world-serverless-architecture-patterns-and-lessons-learned-179-2048.jpg)
![@Koenighotze
"Statement": [{
"Effect": "Allow",
"Action": [
"s3:*",
],
"Resource": [
"arn:aws:s3:::*"
]
}, …](https://crownmelresort.com/image.slidesharecdn.com/realworldserverless20180307-voxxed-zurich-180308160402/75/Real-world-serverless-architecture-patterns-and-lessons-learned-180-2048.jpg)
![@Koenighotze
"Statement": [{
"Effect": "Allow",
"Action": [
“s3:*",
],
"Resource": [
“arn:aws:s3:::senacor/fis/orders/*”
]
}, …](https://crownmelresort.com/image.slidesharecdn.com/realworldserverless20180307-voxxed-zurich-180308160402/75/Real-world-serverless-architecture-patterns-and-lessons-learned-181-2048.jpg)
![@Koenighotze
"Statement": [{
"Effect": "Allow",
"Action": [
"s3:GetObject"
],
"Resource": [
“arn:aws:s3:::senacor/fis/orders/*”
]
}, …](https://crownmelresort.com/image.slidesharecdn.com/realworldserverless20180307-voxxed-zurich-180308160402/75/Real-world-serverless-architecture-patterns-and-lessons-learned-182-2048.jpg)
![@Koenighotze
"Statement": [{
"Effect": "Allow",
"Action": [
"s3:GetObject"
],
"Resource": [
“arn:aws:s3:::senacor/fis/orders/*”
]
}, …](https://crownmelresort.com/image.slidesharecdn.com/realworldserverless20180307-voxxed-zurich-180308160402/75/Real-world-serverless-architecture-patterns-and-lessons-learned-183-2048.jpg)
Uploaded byDavid Schmitz
Real world serverless - architecture, patterns and lessons learned
The document discusses the transition to AWS Lambda and serverless computing, emphasizing its advantages such as reduced server management and operational focus for developers. It highlights essential aspects of building serverless applications, including deployment tools, security considerations, and maintenance practices. Key recommendations include automation, testing, and managing dependencies to ensure efficient and secure serverless architectures.
More Related Content
Similar to Real world serverless - architecture, patterns and lessons learned
![Jumpstart your idea with AWS Serverless [Oct 2020]](https://cdn.slidesharecdn.com/ss_thumbnails/jumpstartyourideawithawsserverlessoct2020-240904053409-07f4072b-thumbnail.jpg?width=640&height=640&fit=bounds)
Real world serverless - architecture, patterns and lessons learned
- 1. REAL WORLD SERVERLESS GoingLambda without being burned too much
- 2.
- 3.
- 4.
- 5.
- 6.
- 7.
- 8.
- 9. @Koenighotze –Me “Some of thethings we learned, while moving an application (partially) to AWS Lambda.”
- 10.
- 11.
- 12.
- 13.
- 14. @Koenighotze Some basics Tools andstuff Architecture Security Housekeeping Operations
- 15.
- 16.
- 17.
- 18.
- 19.
- 20.
- 21. @Koenighotze PLATFORM AS ASERVICE
- 22.
- 23.
- 24.
- 25.
- 26.
- 27. @Koenighotze HOW TO DRAWAN OWL?
- 28. @Koenighotze 1. Draw somecircles 2. Draw the rest of the damn owl
- 29.
- 30.
- 31.
- 32.
- 33.
- 34.
- 35. @Koenighotze Serverless computing allowsyou to build and run applications and services without thinking about servers. Serverless applications don't require you to provision, scale, and manage any servers… Building serverless applications means that your developers can focus on their core product instead of worrying about managing and operating servers or runtimes…
- 36. @Koenighotze Serverless computing allowsyou to build and run applications and services without thinking about servers. Serverless applications don't require you to provision, scale, and manage any servers… Building serverless applications means that your developers can focus on their core product instead of worrying about managing and operating servers or runtimes…
- 37. @Koenighotze FOCUS ON WHATMATTERS
- 38.
- 39.
- 40.
- 41.
- 42.
- 43.
- 44.
- 45. @Koenighotze WHAT IS A “LAMBDAFUNCTION”?
- 46.
- 47.
- 48.
- 49.
- 50.
- 51.
- 52.
- 53.
- 54.
- 55.
- 56.
- 57.
- 58.
- 59.
- 60.
- 61.
- 62.
- 63.
- 64.
- 65.
- 66. @Koenighotze AWS LAMBDA MAYNEED NO SPECIAL FRAMEWORK
- 67.
- 68.
- 69.
- 70.
- 71. @Koenighotze Handler create Order forward Order cancelOrder Vendor agnostic Vendor specific Anticorruptionlayer Pure domain logic
- 72. @Koenighotze YOU ABSOLUTELY NEED TOOLINGFOR DEPLOYMENT
- 73.
- 74.
- 75.
- 76.
- 77. @Koenighotze $ zip index.zipindex.js node_modules $ aws lambda create-function --function-name HelloWorld --runtime nodejs6.10 --role arn:aws:iam::…:… --handler index.handler --zip-file fileb://index.zip
- 78.
- 79. @Koenighotze $ claudia create --region eu-west-1 --deploy-proxy-api --handler index.handler --name HelloWorld
- 80.
- 81.
- 82.
- 83.
- 84. @Koenighotze AWSTemplateFormatVersion: '2010-09-09' Transform: AWS::Serverless-2016-10-31 Description:Hello World Resources: HelloWorld: Type: AWS::Serverless::Function Properties: Timeout: 5 Runtime: nodejs6.10 Handler: index.handler CodeUri: .
- 85. @Koenighotze AWSTemplateFormatVersion: '2010-09-09' Transform: AWS::Serverless-2016-10-31 Description:Hello World Resources: HelloWorld: Type: AWS::Serverless::Function Properties: Timeout: 5 Runtime: nodejs6.10 Handler: index.handler CodeUri: .
- 86. @Koenighotze AWSTemplateFormatVersion: '2010-09-09' Transform: AWS::Serverless-2016-10-31 Description:Hello World Resources: HelloWorld: Type: AWS::Serverless::Function Properties: Timeout: 5 Runtime: nodejs6.10 Handler: index.handler CodeUri: .
- 87. @Koenighotze $ aws cloudformationpackage --template-file sam.yaml --s3-bucket somebucket > build/packaged.yaml $ aws cloudformation deploy --template-file build/packaged.yaml --stack-name voxxed-demo --capabilities CAPABILITY_NAMED_IAM
- 88. @Koenighotze $ aws cloudformationpackage --template-file sam.yaml --s3-bucket somebucket > build/packaged.yaml $ aws cloudformation deploy --template-file build/packaged.yaml --stack-name voxxed-demo --capabilities CAPABILITY_NAMED_IAM
- 89. @Koenighotze $ aws cloudformationpackage --template-file sam.yaml --s3-bucket somebucket > build/packaged.yaml $ aws cloudformation deploy --template-file build/packaged.yaml --stack-name voxxed-demo --capabilities CAPABILITY_NAMED_IAM
- 90. @Koenighotze $ aws cloudformationpackage --template-file sam.yaml --s3-bucket somebucket > build/packaged.yaml $ aws cloudformation deploy --template-file build/packaged.yaml --stack-name voxxed-demo --capabilities CAPABILITY_NAMED_IAM
- 91. @Koenighotze $ aws cloudformationpackage --template-file sam.yaml --s3-bucket somebucket > build/packaged.yaml $ aws cloudformation deploy --template-file build/packaged.yaml --stack-name voxxed-demo --capabilities CAPABILITY_NAMED_IAM
- 92.
- 93.
- 94. @Koenighotze CLEANLINESS IS NEXT TOGODLINESS
- 95.
- 96.
- 97.
- 98.
- 99.
- 100.
- 101. @Koenighotze YOUR TESTING TOOLS SHOULDBE AS MATURE AS YOUR PRODUCTION TOOLS
- 102. @Koenighotze TESTING LAMBDA FOR REALIS JUST TOO EASY
- 103. @Koenighotze aws lambda invoke --function-name ReceiptUpload --region eu-central-1 --payload file://expensive_receipt.json out.json
- 104. @Koenighotze aws lambda invoke --function-name ReceiptUpload --region eu-central-1 --payload file://expensive_receipt.json out.json
- 105.
- 106.
- 107.
- 108. @Koenighotze Parameters: … Stage: Type: String Default: DEV ForwardBilling: Type:AWS::Serverless::Function Properties: FunctionName: !Sub ForwardBilling-${Stage}
- 109. @Koenighotze Parameters: … Stage: Type: String Default: DEV ForwardBilling: Type:AWS::Serverless::Function Properties: FunctionName: !Sub ForwardBilling-${Stage}
- 110. @Koenighotze aws cloudformation deploy --template-file… --stack-name … --parameter-overrides Stage=PROD
- 111. @Koenighotze aws cloudformation deploy --template-file… --stack-name … --parameter-overrides Stage=PROD
- 112.
- 113.
- 114.
- 115. @Koenighotze aws cloudformation deploy … --parameter-overridesStage=PROD --profile ACCOUNT_A
- 116. @Koenighotze aws cloudformation deploy … --parameter-overridesStage=PROD --profile ACCOUNT_A
- 117.
- 118.
- 119. @Koenighotze HOW DO YOU REASONABOUT CLOUD ARCHITECTURES?
- 120. @Koenighotze HOW TO KNOWWHAT TO CLEANUP?
- 121. @Koenighotze PYTHON LIST_LAMBDAS.PY —INACTIVE-DAYS-FILTER10 https:!//github.com/epsagon/list-lambdas
- 122.
- 123.
- 124.
- 125. @Koenighotze REDUCE ATTACK SURFACE REDUCECOGNITIVE CLUTTER STAY IN CONTROL
- 126.
- 127.
- 128.
- 129.
- 130.
- 131.
- 132.
- 133.
- 134.
- 135. @Koenighotze COLD START WILLHAPPEN ONCE FOR EACH CONCURRENT EXECUTION OF YOUR FUNCTION
- 136.
- 137.
- 138.
- 139. @Koenighotze NO HARD DETAILS JUSTGUIDELINES
- 140.
- 141.
- 142.
- 143.
- 144.
- 145. @Koenighotze /AWS/LAMBDA/…REPORT REQUESTID: DURATION: 3208.99 MS BILLEDDURATION: 3300 MS MEMORY SIZE: 128 MB MAX MEMORY USED: 59 MB
- 146. @Koenighotze /AWS/LAMBDA/…REPORT REQUESTID: DURATION: 3208.99 MS BILLEDDURATION: 3300 MS MEMORY SIZE: 128 MB MAX MEMORY USED: 59 MB
- 147.
- 148.
- 149.
- 150. @Koenighotze AWS WILL KILLEVEN WARM LAMBDAS AFTER A CERTAIN TIME FRAME
- 151.
- 152.
- 153.
- 154.
- 155.
- 156.
- 157. @Koenighotze NO LONG LIVEDSERVERS OR MANUAL PATCH SCHEDULES
- 158. @Koenighotze …THAT YOU NEEDTO HANDLE
- 159.
- 160. @Koenighotze HOW DO YOUDEPLOY A WEB APPLICATION FIREWALL… …WITHOUT A WEB …WITHOUT AN APPLICATION …WITHOUT A SERVER
- 161. @Koenighotze NEW OR ADAPTED SECURECODING PATTERNS NEEDED
- 162.
- 163.
- 164.
- 165.
- 166.
- 167.
- 168.
- 169. @Koenighotze CLASSIC LAYERED CAKE ARCHITECTUREDOES NOT APPLY TO SERVERLESS
- 170.
- 171. @Koenighotze const Joi =require('joi') const eventSchema = { 'lambdaName': Joi.string().required(), 'invokationCount': Joi.number().required(), 'dryRun': Joi.boolean().default(true) } exports.handler = (event, context, callback) => { const { error, value } = Joi.validate(event, eventSchema) if (error) { return callback(new Error('Cannot parse event')) } ...doSomethingWithValue() }
- 172. @Koenighotze const Joi =require('joi') const eventSchema = { 'lambdaName': Joi.string().required(), 'invokationCount': Joi.number().required(), 'dryRun': Joi.boolean().default(true) } exports.handler = (event, context, callback) => { const { error, value } = Joi.validate(event, eventSchema) if (error) { return callback(new Error('Cannot parse event')) } ...doSomethingWithValue() }
- 173. @Koenighotze const Joi =require('joi') const eventSchema = { 'lambdaName': Joi.string().required(), 'invokationCount': Joi.number().required(), 'dryRun': Joi.boolean().default(true) } exports.handler = (event, context, callback) => { const { error, value } = Joi.validate(event, eventSchema) if (error) { return callback(new Error('Cannot parse event')) } ...doSomethingWithValue() }
- 174.
- 175.
- 176. @Koenighotze SECURITY IS LIKECSS NO ONE DELETES RULES YOU ONLY ADD RULES
- 177.
- 178.
- 179. @Koenighotze "Statement": [{ "Effect": "Allow", "Action":[ “s3:*", ], "Resource": [ “arn:aws:s3:::*” ] }, …
- 180. @Koenighotze "Statement": [{ "Effect": "Allow", "Action":[ "s3:*", ], "Resource": [ "arn:aws:s3:::*" ] }, …
- 181. @Koenighotze "Statement": [{ "Effect": "Allow", "Action":[ “s3:*", ], "Resource": [ “arn:aws:s3:::senacor/fis/orders/*” ] }, …
- 182. @Koenighotze "Statement": [{ "Effect": "Allow", "Action":[ "s3:GetObject" ], "Resource": [ “arn:aws:s3:::senacor/fis/orders/*” ] }, …
- 183. @Koenighotze "Statement": [{ "Effect": "Allow", "Action":[ "s3:GetObject" ], "Resource": [ “arn:aws:s3:::senacor/fis/orders/*” ] }, …
- 184.
- 185.
- 186.
- 187.
- 188. @Koenighotze Resources: ForwardBillingRole: Type: "AWS::IAM::Role" Properties: RoleName: !Sub"ForwardBillingRole-${Stage}" AssumeRolePolicyDocument: ... ManagedPolicyArns: ... Policies: - PolicyName: !Sub "StoreBillingInS3Policy-${Stage}" PolicyDocument: ... ForwardBilling: Type: AWS::Serverless::Function Properties: Role: !GetAtt ForwardBillingRole.Arn
- 189. @Koenighotze Resources: ForwardBillingRole: Type: "AWS::IAM::Role" Properties: RoleName: !Sub"ForwardBillingRole-${Stage}" AssumeRolePolicyDocument: ... ManagedPolicyArns: ... Policies: - PolicyName: !Sub "StoreBillingInS3Policy-${Stage}" PolicyDocument: ... ForwardBilling: Type: AWS::Serverless::Function Properties: Role: !GetAtt ForwardBillingRole.Arn
- 190. @Koenighotze Resources: ForwardBillingRole: Type: "AWS::IAM::Role" Properties: RoleName: !Sub"ForwardBillingRole-${Stage}" AssumeRolePolicyDocument: ... ManagedPolicyArns: ... Policies: - PolicyName: !Sub "StoreBillingInS3Policy-${Stage}" PolicyDocument: ... ForwardBilling: Type: AWS::Serverless::Function Properties: Role: !GetAtt ForwardBillingRole.Arn
- 191. @Koenighotze Resources: ForwardBillingRole: Type: "AWS::IAM::Role" Properties: RoleName: !Sub"ForwardBillingRole-${Stage}" AssumeRolePolicyDocument: ... ManagedPolicyArns: ... Policies: - PolicyName: !Sub "StoreBillingInS3Policy-${Stage}" PolicyDocument: ... ForwardBilling: Type: AWS::Serverless::Function Properties: Role: !GetAtt ForwardBillingRole.Arn
- 192.
- 193. @Koenighotze YOUR FUNCTION MAYBE SMALL, BUT YOUR DEPENDENCIES MAY NOT
- 194. @Koenighotze $ du -ssrc/ 8.0K src/ $ ls -lh lambda.zip 7.6M Mar 1 07:13 lambda.zip
- 195. @Koenighotze $ du -ssrc/ 8.0K src/ $ ls -lh lambda.zip 7.6M Mar 1 07:13 lambda.zip
- 196.
- 197.
- 198.
- 199.
- 200. @Koenighotze SECURITY MUST BEPART OF DEVELOPMENT RIGHT FROM THE START
- 201.
- 202. @Koenighotze YOU BUILD IT YOUSECURE IT AND THEN RUN IT
- 203.
- 204.
- 205. @Koenighotze BEWARE OF KILLING YOURVINTAGE BACKENDS
- 206.
- 207.
- 208.
- 209.
- 210. @Koenighotze …AND AT THEEND OF A MONTH…
- 211.
- 212. @KoenighotzeGrigoriy Myasoyedov.1897 Please stop thislambda non-sense But the HYPE!
- 213.
- 214. @Koenighotze aws lambda put-function-concurrency --function-name<NAME> --reserved-concurrent-executions <N>
- 215. @Koenighotze aws lambda put-function-concurrency --function-name<NAME> --reserved-concurrent-executions <N>
- 216. @Koenighotze KEEP AN EYEON METRIC FOR CONCURRENCY FAILURES
- 217. @Koenighotze BE AWARE BOTTLENECKS TENDTO MOVE UPWARDS
- 218.
- 219.
- 220.
- 221. @Koenighotze BE AWARE OF PERACCOUNT LIMITS
- 222.
- 223.
- 224.
- 225.
- 226.
- 227.
- 228.
- 229.
- 230.
- 231.
- 232.
- 233.
- 234. @Koenighotze ONE LAMBDA WITHDISPATCH MULTI LAMBDA - SHARED ZIP MULTI LAMBDA - SHARED NOTHING
- 235.
- 236. @Koenighotze create Order forward Order cancelOrder Order ZIP
- 237. @Koenighotze create Order forward Order cancelOrder Order ZIP
- 238.
- 239.
- 240. @Koenighotze create Order forward Order cancelOrder Order ZIP
- 241.
- 242.
- 243.
- 244. @Koenighotze create Order forward Order cancelOrder Order ZIP
- 245. @Koenighotze Create Order ZIP Forward Order ZIP Cancel OrderZIP cancel Orderforward Ordercreate Order
- 246.
- 247.
- 248.
- 249.
- 250.
- 251.
- 252.
- 253.
- 254.
- 255. @Koenighotze YOU NEED ACLOUD-SAVVY OPERATIONS TEAM MEMBER
- 256.
- 257.
- 258.
- 259.
- 260.
- 261.
- 262. @Koenighotze SOMETIMES A SIMPLE VMIS ENOUGH
- 263.
- 264. @Koenighotze LESS SERVERS THATWE NEED TO TAKE CARE OF
- 265.