Designing Scalable Microservices Architecture on AWS
microservicesawsarchitecturecloud-nativedevops
The Microservices Paradigm
Microservices architecture breaks down monolithic applications into smaller, independent services that communicate over well-defined APIs. Each service owns its data, can be deployed independently, and scales based on demand.
Why Microservices?
Independent Scaling: Scale only the services that need it, not the entire application.
Technology Diversity: Use the best tool for each job - Python for ML, Go for high-performance APIs, Node.js for real-time features.
Faster Deployment: Small, focused services deploy faster and with less risk.
Team Autonomy: Teams own services end-to-end, reducing coordination overhead.
AWS Services for Microservices
Lambda: Event-Driven Compute
Perfect for services with variable workload:
# Lambda function for order processing
import json
import boto3
dynamodb = boto3.resource('dynamodb')
table = dynamodb.Table('Orders')
def lambda_handler(event, context):
# Parse order from API Gateway event
order = json.loads(event['body'])
# Store in DynamoDB
table.put_item(Item={
'orderId': order['id'],
'customerId': order['customerId'],
'items': order['items'],
'total': order['total'],
'status': 'PENDING'
})
# Publish to SNS for downstream processing
sns = boto3.client('sns')
sns.publish(
TopicArn='arn:aws:sns:us-east-1:123456789012:order-created',
Message=json.dumps(order)
)
return {
'statusCode': 200,
'body': json.dumps({'orderId': order['id']})
}
ECS/EKS: Container Orchestration
For services requiring persistent processes:
# Kubernetes deployment for user service
apiVersion: apps/v1
kind: Deployment
metadata:
name: user-service
spec:
replicas: 3
selector:
matchLabels:
app: user-service
template:
metadata:
labels:
app: user-service
spec:
containers:
- name: user-service
image: myregistry/user-service:v1.2.0
ports:
- containerPort: 8080
env:
- name: DATABASE_URL
valueFrom:
secretKeyRef:
name: db-credentials
key: url
resources:
limits:
memory: "512Mi"
cpu: "500m"
requests:
memory: "256Mi"
cpu: "250m"
livenessProbe:
httpGet:
path: /health
port: 8080
initialDelaySeconds: 30
periodSeconds: 10
readinessProbe:
httpGet:
path: /ready
port: 8080
initialDelaySeconds: 5
periodSeconds: 5
---
apiVersion: v1
kind: Service
metadata:
name: user-service
spec:
selector:
app: user-service
ports:
- port: 80
targetPort: 8080
type: LoadBalancer
API Gateway: Service Gateway
Unified entry point for all microservices:
# OpenAPI specification for API Gateway
openapi: 3.0.0
info:
title: E-Commerce API
version: 1.0.0
paths:
/users/{userId}:
get:
summary: Get user profile
x-amazon-apigateway-integration:
uri: arn:aws:apigateway:us-east-1:lambda:path/2015-03-31/functions/arn:aws:lambda:us-east-1:123456789012:function:UserService/invocations
httpMethod: POST
type: aws_proxy
/orders:
post:
summary: Create order
x-amazon-apigateway-integration:
uri: arn:aws:apigateway:us-east-1:lambda:path/2015-03-31/functions/arn:aws:lambda:us-east-1:123456789012:function:OrderService/invocations
httpMethod: POST
type: aws_proxy
DynamoDB: NoSQL Database
Fast, scalable data store:
// Node.js service using DynamoDB
const AWS = require('aws-sdk');
const dynamodb = new AWS.DynamoDB.DocumentClient();
async function getProduct(productId) {
const params = {
TableName: 'Products',
Key: { productId }
};
const result = await dynamodb.get(params).promise();
return result.Item;
}
async function updateInventory(productId, quantity) {
const params = {
TableName: 'Products',
Key: { productId },
UpdateExpression: 'SET inventory = inventory - :qty',
ConditionExpression: 'inventory >= :qty',
ExpressionAttributeValues: {
':qty': quantity
},
ReturnValues: 'UPDATED_NEW'
};
return await dynamodb.update(params).promise();
}
RDS: Relational Database
For services requiring ACID transactions:
-- PostgreSQL schema for order service
CREATE TABLE orders (
order_id UUID PRIMARY KEY DEFAULT gen_random_uuid(),
customer_id UUID NOT NULL,
total_amount DECIMAL(10,2) NOT NULL,
status VARCHAR(20) NOT NULL,
created_at TIMESTAMP DEFAULT NOW(),
updated_at TIMESTAMP DEFAULT NOW()
);
CREATE TABLE order_items (
item_id UUID PRIMARY KEY DEFAULT gen_random_uuid(),
order_id UUID REFERENCES orders(order_id),
product_id UUID NOT NULL,
quantity INT NOT NULL,
unit_price DECIMAL(10,2) NOT NULL
);
CREATE INDEX idx_orders_customer ON orders(customer_id);
CREATE INDEX idx_orders_status ON orders(status);
Best Practices
1. Infrastructure as Code
Define all infrastructure in Terraform:
# Lambda function with DynamoDB
resource "aws_lambda_function" "order_service" {
filename = "order_service.zip"
function_name = "order-service"
role = aws_iam_role.lambda_exec.arn
handler = "index.handler"
runtime = "nodejs18.x"
environment {
variables = {
TABLE_NAME = aws_dynamodb_table.orders.name
}
}
}
resource "aws_dynamodb_table" "orders" {
name = "Orders"
billing_mode = "PAY_PER_REQUEST"
hash_key = "orderId"
attribute {
name = "orderId"
type = "S"
}
}
2. CI/CD Automation
Automate build, test, and deployment:
# GitHub Actions workflow
name: Deploy User Service
on:
push:
branches: [main]
paths:
- 'services/user/**'
jobs:
deploy:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v3
- name: Run tests
run: |
cd services/user
npm test
- name: Build Docker image
run: |
docker build -t user-service:${{ github.sha }} services/user
- name: Push to ECR
run: |
aws ecr get-login-password | docker login --username AWS --password-stdin $ECR_REGISTRY
docker tag user-service:${{ github.sha }} $ECR_REGISTRY/user-service:${{ github.sha }}
docker push $ECR_REGISTRY/user-service:${{ github.sha }}
- name: Deploy to ECS
run: |
aws ecs update-service --cluster production --service user-service --force-new-deployment
3. Failure Resilience
Implement circuit breakers and retries:
// Circuit breaker pattern
const CircuitBreaker = require('opossum');
const options = {
timeout: 3000,
errorThresholdPercentage: 50,
resetTimeout: 30000
};
const breaker = new CircuitBreaker(callExternalService, options);
breaker.fallback(() => ({
error: 'Service temporarily unavailable',
cached: true
}));
async function callExternalService(params) {
const response = await fetch(`https://api.example.com/data?${params}`);
return response.json();
}
4. Centralized Logging
Aggregate logs from all services:
// Structured logging
const logger = require('winston');
logger.info('Order created', {
orderId: order.id,
customerId: order.customerId,
total: order.total,
timestamp: new Date().toISOString(),
service: 'order-service',
traceId: context.traceId
});
5. Secure Service Communication
Use VPC, security groups, and IAM:
# Security group for microservices
resource "aws_security_group" "microservices" {
name = "microservices-sg"
vpc_id = aws_vpc.main.id
ingress {
from_port = 8080
to_port = 8080
protocol = "tcp"
security_groups = [aws_security_group.alb.id]
}
egress {
from_port = 0
to_port = 0
protocol = "-1"
cidr_blocks = ["0.0.0.0/0"]
}
}
Conclusion
Building microservices on AWS requires careful architectural decisions, but the platform provides all the building blocks you need. Start with a small service, prove the value, and gradually decompose your monolith. Use IaC, automate everything, and design for failure from day one.
Remember: microservices are a means to an end (faster delivery, better scalability), not an end in themselves. Don't over-engineer. Keep services focused, loosely coupled, and highly cohesive.