Deep Dive: CNCF Serverless WG/ CloudEvents Agenda CloudEvents - - PowerPoint PPT Presentation

Deep Dive: CNCF Serverless WG/ CloudEvents

Agenda

• CloudEvents demo
• Deployment pipeline
• CloudEvents best practices

Demo Vlad Ionescu, Independent

OW OWNZONES PA PARTNERS

AB ABOUT OW OWNZO ZONES

75 c 75 cloud e engineers wi with 100+ years s of accumulated exp xperience Cl Cloud-ba base sed d vide deo suppl supply cha hain n so solut utions ns pr provide ded d with h di disr srup uptive “pa pay-as as-yo you-go go” model Co Component-ba base sed vid video-wo workflow system

Ownzones

Ownzones

OW OWNZO ZONES CO CONNECT

Ge Get fu full ll control l of f your dig igit ital al supply ly chain ain. § Me Media logisti tics § Wo Workflow automation § St Studio in the cloud

PR PRODUCTS TS DI DIGITAL SUPPLY CHAIN SOLUTION

Ownzones

OW OWNZO ZONES DIS DISCOVER

Cu Customizable, sc scalable turnkey y wh white label OT OTT platform. § Ri Rich CMS MS § Bu Built-in in customiz mizatio ion tools ls § “C “Click-to to-de depl ploy” rapi pid d appl pplication n de depl ployment system

PR PRODUCTS TS RE REACH AND D MONETIZATION

Ownzones

OW OWNZO ZONES FR FRAME D DNA

Imp Improve e an and au automa mate e your supply ly chain ain. § AI AI-ba base sed d tool withi hin n Conne nnect § Re Reduction in manual work § Ma Massive cost t savings

PR PRODUCTS TS AI AI-PO POWERED DIGITA TAL SUPPL PPLY CHAIN SOLUTI TION

Ownzones

• Startup
• Focus on reliability

Deployment pipeline

• Observable
• Compliant
• Fast
• Scalable

Deployment pipeline

GitHub events SNS Feature specific SQS Feature specific SQS Feature specific SQS

Deployment pipeline

CircleCI events SNS Feature specific SQS Feature specific SQS Feature specific SQS

Deployment pipeline

AutoDeploy SNS Amazon Elastic Container Service for Kubernetes AWS Lambda DynamoDB GitHub events SNS CircleCI events SNS AWS Lambda DynamoDB Stream AWS Lambda AWS Lambda

Deployment pipeline - DynamoDB

AutoDeploy SNS Amazon Elastic Container Service for Kubernetes AWS Lambda DynamoDB GitHub events SNS CircleCI events SNS AWS Lambda DynamoDB Stream AWS Lambda AWS Lambda

Deployment pipeline - DynamoDB

AutoDeploy SNS Amazon Elastic Container Service for Kubernetes AWS Lambda DynamoDB GitHub events SNS CircleCI events SNS AWS Lambda DynamoDB Stream AWS Lambda AWS Lambda

Deployment pipeline - DynamoDB

AutoDeploy SNS Amazon Elastic Container Service for Kubernetes AWS Lambda DynamoDB GitHub events SNS CircleCI events SNS AWS Lambda DynamoDB Stream AWS Lambda AWS Lambda

Deployment pipeline - DynamoDB

AutoDeploy SNS Amazon Elastic Container Service for Kubernetes AWS Lambda DynamoDB GitHub events SNS CircleCI events SNS AWS Lambda DynamoDB Stream AWS Lambda AWS Lambda

Deployment pipeline

AutoDeploy SNS Amazon Elastic Container Service for Kubernetes AWS Lambda DynamoDB GitHub events SNS CircleCI events SNS AWS Lambda DynamoDB Stream AWS Lambda AWS Lambda AWS Lambda Amazon API Gateway Automation CircleCI SQS Automation GitHub SQS

Event design

Event design

Event design

Event design

Event design

Demo time?

• Special thanks:
• Ileana Andreea Preda
• Queue for demo

Demo

CloudEvents experience

• Simplified design process
• Encoding/ decoding are taken care of
• SDKs
• Sane defaults
• Does not restrict data in any way!

CloudEvents They’re here, they’re boring, use them! CloudEvents experience

But… CloudEvents experience

Architectural considerations Clemens Vasters, Microsoft

CloudEvents is Eventing

• Carry facts: “Something happened”
• Publish/subscribe distribution
• Subscribe at source or distributor
• Some publish/subscribe principles:
• Publishers don’t know/care who will

subscribe or is currently subscribed

• Subscribers might tap into single-

sourced or consolidated event streams

• Event flow is unidirectional
• network or disk
• one or more routing intermediaries
• radio broadcast
• …

Pub- lisher Inter- medi- ary Inter- medi- ary Sub- scriber Sub- scriber Sub- scriber

P P I I

ce ce ce ce ce

P I

Eventing vs. Messaging

• Events and messages are both mailing envelopes for data, decorated by

metadata – but they are different.

• Events carry facts. They report things that have happened.
• State transitions, observed conditions, objects having been created, …
• Messages carry intents. The sender expects something to happen.
• Command execution, job handling, workflow progress, …
• Events are published as an information option for interested subscribers.

Audience size may be zero or many.

• Messages are directed to handlers. There may be delivery and handling

status feedback, replies, conversations, or complex control flows like Workflows and Sagas. Audience size is often one handler per message.

Attributes CloudEvents does not define

• “to”
• There’s no “to” attribute because events aren’t aimed at and routed to a

specific consumer. Subscribers get to decide which events they pick.

• “reply-to”
• There’s no “reply-to” attribute because events aren’t job assignments that
• ught to require a reply and because a subscriber can’t be expected to be

capable of reaching any given reply destination

• “topic” / “queue”
• CloudEvents defines the origin context as “source”, but does not include the

name of any specific intermediary construct in the event metadata because events might travel through multiple intermediary hops

Things that are harder than they appear

Signatures Symmetric: Who holds the signing keys? Asymmetric: Who distributes the verification keys? Whose directory/directories/vaults is the subscriber trusting? Which subscribers does a directory/vault grant access? How/when does who rotate signing keys? How do subscribers know? How to keep track of key history (archived events, events in logs)? End-to-End Encryption Same as above but with encryption keys Encrypting/signing multicast datagrams doesn’t allow for peer-to-peer session keys, which means that “master” keys must be rotated far more frequently than when those are only used for session-key exchange Hardest: Agree on ONE WAY OF DOING ALL THIS: APIs, Algos, Hints, Versioning