radical agility
play

Radical Agility with Autonomous Teams and Microservices - PowerPoint PPT Presentation

Feb 18, 2023 •150 likes •1.01k views

Radical Agility with Autonomous Teams and Microservices jan.loeffler@zalando.de / @jlsoft2 GOTO Copenhagen 2015-10-06 We shape our buildings; thereafter they shape us Conways Law organizations which design systems ... are constrained

  1. Radical Agility with Autonomous Teams and Microservices jan.loeffler@zalando.de / @jlsoft2 GOTO Copenhagen 2015-10-06

  2. We shape our buildings; thereafter they shape us

  3. Conway’s Law “organizations which design systems ... are constrained to produce designs which are copies of the communication structures of these organizations” Melvin Conway

  4. AN ARCHITECTURE FOR INNOVATION

  9. A BRIEF HISTORY OF ZALANDO TECHNOLOGY

  13. 900+ Apps 800+ Tech employees October

  14. deploy request servers Platform Platform team

  15. 70+ delivery teams deploy request servers request storage Platform Platform team

  18. DELIVER AMAZING PRODUCTS EFFICIENTLY AT SCALE, AND FEELING GREAT ABOUT IT.

  19. PURPOSE - AUTONOMY - MASTERY

  23. DRIVE The Surprising Truth About What Motivates Us Daniel Pink

  24. FROM CONTROL & COMMAND TO PURPOSE AND TRUST

  25. DELIVERY PEOPLE LEAD LEAD

  26. BUSINESS PRODUCT ASSURANCE PRODUCT PRODUCT OWNER SPECIALIST GLOBAL REGRESSION DELIVERY LEAD DELIVERY DELIVERY ENGINEERING LEAD PRODUCTIVITY PEOPLE LEAD PEOPLE TECH LEAD SERVICE OVERARCHING CONTROLLING AGILE RISK , COACHING PROJECT COMPLIANCE SECURITY & EXECUTIVE MANGEMENT STRATEGY ADMIN & SUPPORT SUPPORT ONBOARDING & INNOVATION LAB TECHADEMY

  28. OKR

  30. API FIRST

  31. REST

  32. SAAS

  33. MICRO SERVICES

  34. CLOUD

  35. OPEN SOURCE

  37. Compliance Innovation

  40. WHERE APP APP APP APP APP APP 1 4 1 4 1 4 APP APP APP APP APP TO GO 2 5 2 5 2 APP APP APP APP APP 3 3 3 6 6 DataCenter I DataCenter II AWS

  42. STUPS.io STUPS To Unleash Penguin Swarms

  44. One AWS account per Team Deployment with Docker Managed SSH Access REST / OAuth 2.0 mandatory

  45. DOCKER SSH AUDIT FULL AWS DEPLOY ACCESS REPORTS ACCESS STUPS AWS

  46. Internet *.abc.example.org *.xyz.example.org ELB ELB Team ABC Team XYZ EC2 EC2 EC2

  47. myapp.example.org ELB myapp-1 EC2 EC2 EC2 + Docker + Docker + Docker

  48. myapp.example.org ELB myapp-1 ELB myapp-2 EC2 EC2 EC2 EC2 EC2 + Docker + Docker + Docker + Docker + Docker

  49. myapp.example.org ELB myapp-2 EC2 EC2 + Docker + Docker

  50. Ticket system Issue “ABC-123” SCM Commit “afb123” msg: ABC-123..

  51. Pier One Docker Registry Ticket system Image “docker/myart:1.0” commit: afb123 Issue “ABC-123” build SCM Commit “afb123” msg: ABC-123..

  52. Pier One Docker Registry Ticket system Image “docker/myart:1.0” commit: afb123 Issue “ABC-123” build SCM Commit “afb123” msg: ABC-123.. Application Registry approved Application Version “1.0” ✓ Specification artifact: docker/myart:1.0 ✓ Artefact tested

  53. Pier One Docker Registry Ticket system Image “docker/myart:1.0” commit: afb123 EC2 Instance Issue “ABC-123” build Docker Container SCM AMI Commit “afb123” msg: ABC-123.. Application Registry approved Application Version “1.0” ✓ Specification artifact: docker/myart:1.0 ✓ Artefact tested

  54. Docker Registry docker push Senza CLI docker pull AWS AMI

  55. Developer rotate OAuth Console passwords Provider Password Application Registry Rotator store get access passwords token AWS S3 get password AMI

  57. Spilo Highly available open-source PostgreSQL appliance https://github.com/zalando/spilo

  59. Try STUPS.io https://stups.io https://docs.stups.io All components are Open Source https://github.com/zalando https://github.com/zalando-stups

  60. Jan Löffler ● Head of Platform Engineering ● Twitter: @jlsoft2 ● jan.loeffler@zalando.de ● http://www.slideshare.net/jlsoft/

  61. We shape our buildings; thereafter they shape us

  62. STUPS website & docs https://stups.io https://docs.stups.io All components are Open Source https://github.com/zalando https://github.com/zalando-stups

  63. BACKUP

  65. T N E M Y O L P E D

  66. DOCKERFILE FROM zalando/openjdk:8u40-b09-4 EXPOSE 8080 COPY target/hello-world.jar / COPY target/scm-source.json / CMD java $(java-dynamic-memory-opts) ↲ -jar /hello-world.jar

  67. DOCKER BUILD & PUSH $ docker build -t ↲ pierone.example.org/myteam/hello-world:0.2 . $ pierone login Getting OAuth2 token "pierone".. OK Storing Docker client configuration in ~/.dockercfg.. OK $ docker push pierone.example.org/myteam/hello-world:0.2

  68. VERIFY IMAGE UPLOAD $ pierone tags myteam hello-world Team │ Artifact │ Tag │ Created │ By | myteam hello-world 0.1-andre-test 13d ago ahartmann myteam hello-world 0.1 3d ago ahartmann myteam hello-world 0.2 3m ago hjacobs $ pierone scm myteam hello-world 0.2 Tag │ Author │ URL │ Revision │ Status │ Created │ By | 0.2 hjacobs git:git@github.. 442b7502 10m ago hjacobs

  69. SENZA: DEFINITION YAML SenzaInfo : StackName : hello-world Parameters : - ImageVersion : Description : "Docker image version of Hello World." SenzaComponents : - Configuration : Type : Senza::StupsAutoConfiguration # auto-detect network setup - AppServer : # will create a launch configuration and ASG with scaling triggers Type : Senza::TaupageAutoScalingGroup InstanceType : t2.micro SecurityGroups : [app-hello-world] ElasticLoadBalancer : AppLoadBalancer TaupageConfig : runtime : Docker source : "stups/hello-world:{{Arguments.ImageVersion}}" ports : 8080: 8080

  70. SENZA: STACK DEPLOYMENT $ senza create hello-world.yaml 1 0.2 Generating Cloud Formation template.. OK Creating Cloud Formation stack hello-world-1.. OK $ senza events hello-world.yaml 1 Stack Name │ Ver. │ Resource Type │ Resource ID │ Status │ Status Reason │ Event Time hello-world 1 CloudFormation::Stack hello-world-1 CREATE_IN_PROGRESS User Initiated 10m ago ... hello-world 1 CloudFormation::Stack hello-world-1 CREATE_COMPLETE 6m ago

  71. TAUPAGE: DOCKER COMMAND LINE docker run -d --log-driver= syslog ↲ --restart=on-failure:10 ↲ -e DB_SUBNAME=.. ↲ -v /meta:/meta:ro ↲ -e CREDENTIALS_DIR=/meta/credentials ↲ -p 8080:8080 -p 7979:7979 ↲ -u 999 ↲ pierone.example.org/stups/pierone:0.5

  72. SENZA: MANAGE STACKS

  73. G N I G G O L

  74. TAUPAGE: DOCKER SYSLOG docker run .. --log-driver= syslog .. /etc/rsyslog.d/24-application.conf :syslogtag, startswith, "docker" ↲ /var/log/application.log /etc/logrotate.d/.. Don’t forget log rotation..

  75. APPLICATION LOGS: TAUPAGE SUPPORTS LOGENTRIES AND SCALYR

  76. S S E C C A H S S

  77. SSH ACCESS: TIME-LIMITED ACCESS TO ANY TEAM SERVER

  78. G N I R O T I N O M

  79. ZMON TODO: Screenshot

  80. ZMON APPLIANCE ZMON KairosDB Controller *.foo.example.org *.bar.example.org Team “Foo” Team “Bar” ELB ELB ZMON ZMON EC2 EC2 EC2 EC2 Instance Appliance Appliance Instance EC2 EC2 Instance Instance Instance Instance

  81. HYSTRIX TURBINE

  82. R E K C O D

  83. RECAP: DOCKER IN STUPS ● Ubuntu & OpenJDK base image ● Log to STDOUT ● Config via environ. vars (+ KMS decryption) ● Non-root execution ● Persistence via EBS mounts ● Immutable stacks , no orchestration ● DNS endpoints , etcd e.g. for Hystrix streams

  84. Securing REST based Microservices Lock all doors Encrypt all channels ● Open only ports that you need ● Keep all tranferred data confidential permanently ● Use TLS ● Grant SSH access only temporary ● Use a firewall for each app container Authenticate & Authorize Monitor & Limit your API calls ● Make sure you talk to the right guy ● Control who accesses your API how ● Check if access is permitted often, when and from where ● Use OAuth 2.0 ● Use Rate Limiting against fraud ● Use external Security Services against DDoS Isolate your apps ● Only one app per container / server ● Use Docker or CoreOS Rkt

  85. OAuth 2.0 explained Hi, could you please show me your credentials? I need to check your identity. Sure, I am jan.loeffler@zalando.de and my password is secret . Hey Mr. DJ, can I have an Access Token for the Order API? No issue Sir, I just have to ask the User for some details. Your seem to be ok! Here is your access token d2fa5d27-2acc-4b06-95i8-6d3018d94b4f User “Jan” Authorization Server (OpenAM / OpenDJ) Here are all all your orders! I want to see all my past orders! Hey DJ, I was just given this token: Sure, the token belongs to jan. d2fa5d27-2acc-4b06-95i8-6d3018d94b4f loeffler@zalando.de and is still valid. To whom does it belong? Hey Order API, here is my access token: Hey Order API, could you please list all past orders of Jan Loeffler? d2fa5d27-2acc-4b06-95i8-6d3018d94b4f Sorry, this resource is protected! Please show me your Access Token! So, here are all orders of Jan Loeffler. Resource Server Browser (App Server)

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Inspect and Adapt Then What? @coreyhaines Agile! Agility! Agility Feedback Agility Minimize

Inspect and Adapt Then What? @coreyhaines Agile! Agility! Agility Feedback Agility Minimize

Inspect and Adapt Then What? @coreyhaines Agile! Agility! Agility Feedback Agility Minimize time between Doing Something Agility Finding out if it was the Right Thing To Do Agile Methodology (XP, Scrum, etc) vs Agility

1.63k views • 50 slides
agility trainer WEARABLE PAIRED WITH ATTACHABLE SENSORS TO GIVE FEEDBACK ON AGILITY PERFORMANCE

agility trainer WEARABLE PAIRED WITH ATTACHABLE SENSORS TO GIVE FEEDBACK ON AGILITY PERFORMANCE

agility trainer WEARABLE PAIRED WITH ATTACHABLE SENSORS TO GIVE FEEDBACK ON AGILITY PERFORMANCE Agility Trainer Tracks position, velocity, acceleration, and timing data Passing beacons segments the logged data Transfers data via Bluetooth to

410 views • 12 slides
The Agility Continuum Where is your project (or product or team) on the agility scale? Thene

The Agility Continuum Where is your project (or product or team) on the agility scale? Thene

The Agility Continuum Where is your project (or product or team) on the agility scale? Thene Sheehy October, 2017 PMP, ACP, CSP, ScrumStudy SMC & Trainer Who am I? Thene Sheehy Program Manager/Specialist, Center for Enablement PetSmart,

1.43k views • 26 slides
Developing Leadership Agility: A Business Imperative Dr. Nicholas F. Horney Principal, Agility

Developing Leadership Agility: A Business Imperative Dr. Nicholas F. Horney Principal, Agility

Developing Leadership Agility: A Business Imperative Dr. Nicholas F. Horney Principal, Agility Consulting Developing Leadership Agility: A Business Imperative Nick Horney, Ph.D. Retired Captain Navy Special Operations (Diving & EOD)

968 views • 23 slides
Tufin: Maximizing Agility and Security Henry Pea Digital Transformation is all about Business

Tufin: Maximizing Agility and Security Henry Pea Digital Transformation is all about Business

Tufin: Maximizing Agility and Security Henry Pea Digital Transformation is all about Business Agility 2 The Tradeoff Balancing Security and Agility 3 The Problem: Manual Processes Speed Cost Risk Compliance 4 The Solution: Security

1.21k views • 46 slides
Earn Bonus Points by Improving Business Agility 107 107 84% of business leaders expect

Earn Bonus Points by Improving Business Agility 107 107 84% of business leaders expect

Earn Bonus Points by Improving Business Agility 107 107 84% of business leaders expect greater agility to enable them to act on new opportunities faster. State of Business Agility", CA Technologies & Gatepoint Research, 2017

539 views • 19 slides
Fundamental Movement Skills Agility Agility Balance Co-ordination Running Jumping Extra:

Fundamental Movement Skills Agility Agility Balance Co-ordination Running Jumping Extra:

Fundamental Movement Skills Agility Agility Balance Co-ordination Running Jumping Extra: Tricks of the Trade STEP PRINCIPAL SPACE: How could you change the space to make an activity any harder or easier.

922 views • 32 slides
Phase III Randomized Trial of Laparoscopic or Robotic Radical Hysterectomy vs. Abdominal Radical

Phase III Randomized Trial of Laparoscopic or Robotic Radical Hysterectomy vs. Abdominal Radical

Phase III Randomized Trial of Laparoscopic or Robotic Radical Hysterectomy vs. Abdominal Radical Hysterectomy in Patients with Early-Stage Cervical Cancer: LACC Trial Pedro T. Ramirez, Michael Frumovitz, Rene Pareja, Aldo Lopez, Marcelo Vieira,

747 views • 29 slides
Pragmatic Agility Pragmatic Agility Presented by: Andy Hunt The Pragmatic Programmers

Pragmatic Agility Pragmatic Agility Presented by: Andy Hunt The Pragmatic Programmers

W11 Concurrent Session Wednesday 11/12/2008 12:45 PM 2:15 PM Pragmatic Agility Pragmatic Agility Presented by: Andy Hunt The Pragmatic Programmers Presented at: Agile Development Practices 2008 November 10 - 14, Orlando, FL., USA 330

61 views • 3 slides
Advisors Emily Hammock Mosby + Jenna Price, GEO What is Intercultural Agility and Why Do I

Advisors Emily Hammock Mosby + Jenna Price, GEO What is Intercultural Agility and Why Do I

Intercultural Agility for Advisors Emily Hammock Mosby + Jenna Price, GEO What is Intercultural Agility and Why Do I Need It? Intercultural agility is the ability to communicate and behave EFFECTIVELY and APPROPRIATELY with people from

448 views • 11 slides
We Have an App for That: U.S. Military Use of Widgets and Apps to Increase C2 Agility Mr. Mike

We Have an App for That: U.S. Military Use of Widgets and Apps to Increase C2 Agility Mr. Mike

17th ICCRTS: Operationalizing C2 Agility We Have an App for That: U.S. Military Use of Widgets and Apps to Increase C2 Agility Mr. Mike Morris, Ms. Angela Bowers, Mr. George Galdorisi Ms. Amanda George, Dr. Stephanie Hszieh, Mr. Chris Raney

421 views • 21 slides
Network deployments for universal connectivity Radical solutions to radical problems

Network deployments for universal connectivity Radical solutions to radical problems

Network deployments for universal connectivity Radical solutions to radical problems Universal deployment Private deployments on public space and commons infrastructure Mandatory infrastructure sharing From the experience of a

387 views • 13 slides
Rationalizing Numerators and Denominators of Radical Expressions 8.5 Rationalizing Denominators

Rationalizing Numerators and Denominators of Radical Expressions 8.5 Rationalizing Denominators

Rationalizing Numerators and Denominators of Radical Expressions 8.5 Rationalizing Denominators You may not have a radical in the denominator. Example: 8 5 Nor may you have a fraction in a radical. Example: 2 3 Simplifying Fractions

193 views • 8 slides
Agility Practices UNC COMP 523 October 7, 2020 Jeff Terrell 1 / 26 Announcements music:

Agility Practices UNC COMP 523 October 7, 2020 Jeff Terrell 1 / 26 Announcements music:

Agility Practices UNC COMP 523 October 7, 2020 Jeff Terrell 1 / 26 Announcements music: Paranoid Android (try 2) by Radiohead, who exhibit great musical agility IMO using Sakai for the quiz today reminder: if stressed, consider seeking help,

494 views • 26 slides
Structuring for Business Agility Phil Abernathy BA conference Purple candor Sydney 24-Sep-18

Structuring for Business Agility Phil Abernathy BA conference Purple candor Sydney 24-Sep-18

Structuring for Business Agility Phil Abernathy BA conference Purple candor Sydney 24-Sep-18 Structure The Org Style The Work Business Agility Design Lean Agile Thinking Scrum Kanban XP Customer Journeys Centered DevOps

882 views • 41 slides
Agility UNC COMP 523 October 5, 2020 Jeff Terrell 1 / 49 Announcements music: Paranoid Android

Agility UNC COMP 523 October 5, 2020 Jeff Terrell 1 / 49 Announcements music: Paranoid Android

Agility UNC COMP 523 October 5, 2020 Jeff Terrell 1 / 49 Announcements music: Paranoid Android by Radiohead, who exhibit great musical agility IMO please join our class on OpenClass.ai before Q4 on Wednesday see Piazza for a link Q1

883 views • 49 slides
P L A N N I N G & T R A N S P O R T A T I O N C O M M I T T E E 6 October 2020 Swan Lane

P L A N N I N G & T R A N S P O R T A T I O N C O M M I T T E E 6 October 2020 Swan Lane

P L A N N I N G & T R A N S P O R T A T I O N C O M M I T T E E 6 October 2020 Swan Lane Pier: Presentation Swan Lane Pier Site location plan Swan Lane Pier Existing Site Swan Lane Pier Existing Site Swan Lane Pier Existing Site

236 views • 21 slides
Status of the MICE Online Status of the MICE Online Systems Systems Pierrick Hanlet Pierrick

Status of the MICE Online Status of the MICE Online Systems Systems Pierrick Hanlet Pierrick

Status of the MICE Online Status of the MICE Online Systems Systems Pierrick Hanlet Pierrick Hanlet 6 March 2012 6 March 2012 Outline I. Introduction II. Data Acquisition III.Online Reconstruction IV.Controls and Monitoring V.

822 views • 35 slides
B STREET / BROADWAY PIERS DOWNTOWN ANCHORAGE SWITZER CREEK 21 APRIL 2003 WORKSHOP Craig L.

B STREET / BROADWAY PIERS DOWNTOWN ANCHORAGE SWITZER CREEK 21 APRIL 2003 WORKSHOP Craig L.

CA Regional Water Quality Control Board San Diego Region B STREET / BROADWAY PIERS DOWNTOWN ANCHORAGE SWITZER CREEK 21 APRIL 2003 WORKSHOP Craig L. Carlisle I NTRODUCTI ONS CONTAMI NATED SEDI MENTS - OVERVI EW TMDLs: A

513 views • 12 slides
Pillar: one format to rule them all! D. Cassou and S. Ducasse

Pillar: one format to rule them all! D. Cassou and S. Ducasse

Pillar: one format to rule them all! D. Cassou and S. Ducasse http://www.smalltalkhub.com/#!/~Pier/Pillar Problem We want more doc! We want you to write doc on your great software! But we want pdf html epub. Current strategies LaTeX

314 views • 10 slides
Pier 8, Block 16 Opportunity Study May 20, 2020 PLANNING & ECONOMIC DEVELOPMENT DEPARTMENT

Pier 8, Block 16 Opportunity Study May 20, 2020 PLANNING & ECONOMIC DEVELOPMENT DEPARTMENT

Pier 8, Block 16 Opportunity Study May 20, 2020 PLANNING & ECONOMIC DEVELOPMENT DEPARTMENT PLANNING DIVISION 1 Site Location PIER 8 BLOCK 16 SITE PLANNING & ECONOMIC DEVELOPMENT DEPARTMENT PLANNING DIVISION 2 Background

420 views • 7 slides
Alignment 4 In a parallel text (or when we translate), we align words in one language with

Alignment 4 In a parallel text (or when we translate), we align words in one language with

Alignment 4 In a parallel text (or when we translate), we align words in one language with the words in the other 1 2 3 4 das Haus ist klein the house is small 1 2 3 4 Word positions are numbered 14 Philipp Koehn

998 views • 73 slides
Empirical Methods in Natural Language Processing Lecture 15 Machine translation (II): Word-based

Empirical Methods in Natural Language Processing Lecture 15 Machine translation (II): Word-based

Empirical Methods in Natural Language Processing Lecture 15 Machine translation (II): Word-based models and the EM algorithm Philipp Koehn 25 February 2008 Philipp Koehn EMNLP Lecture 15 25 February 2008 1 Lexical translation How to

628 views • 16 slides
Some Unlikely Intersections Beyond Andr e-Oort Jonathan Pila Mathematical Institute Oxford

Some Unlikely Intersections Beyond Andr e-Oort Jonathan Pila Mathematical Institute Oxford

Some Unlikely Intersections Beyond Andr e-Oort Jonathan Pila Mathematical Institute Oxford Recent Developments in Model theory Ol eron, June 2011 1 I. Diophantine geometry in o-minimal structures Result (+Alex Wilkie) about the

625 views • 38 slides

More recommend