TL;DR

246 posts
api

Design patterns in API gateways and microservices

Some of the most common cross-cutting concerns in applications include authentication, authorization, sessions, cookies, cache, logging and dependencies on other services.…

api

The two most important challenges with an API gateway when adopting Kubernetes

Encourage a diversity of implementations for consolidated tooling that supports architectural flexibility. However, take advantage of a consolidated underlying platform and offer a ‘buffet’ of implementation options rather than allowing developers to build bespoke ones for better security.…

api

How to safely throttle high traffic APIs

Adopting a scalable language and framework can help spread the traffic across multiple endpoints and systems, spreading the load across a wider structure.…

kubernetes

Kubernetes deployment strategies

The standard for Kubernetes is rolling deployment, replacing pods of previous versions with the new one without cluster downtime. Kubernetes probes new pods for readiness before scaling down old ones, so you can abort deployment without bringing down the cluster.…

microservices

Implementation of a monitoring strategy for products based on microservices

Proper instrumentation of microservices ensures faster pinpointing and troubleshooting of problems. These include metrics for availability, metrics for capacity planning or to detect resource saturation, and metrics to understand internal states of each instance of a microservice.…

microservices

Microservices architecture as a large-scale refactoring tool

To refactor a monolith into microservices architecture, you need to break it into single responsibilities or services in an incremental fashion…

python

Common security gotchas in Python and how to avoid them

Prevent input injections (SQL or command injections) by sanitizing input using utilities that come with your web framework, avoid constructing SQL queries manually, and use shlex module to escape input correctly.…

http

HTTP headers to secure your app for the busy web developer

Set an X-Frame-Options header to prevent someone from creating an iframe wrapper around your site to clickjack your site. Your safety options are DENY, SAMEORIGIN, and ALLOW-FROM.…

Node.js

5 ways to make HTTP requests in Node.js

Request is a simplified HTTP client which is more user-friendly that you can install as a dependency from npm. It is easy to use and you can support Promises with the request-promise library.…

microservices

Do you have too many microservices? - 5 design attributes that can help

When you are developing microservices, ensure that each service relies on its own underlying data stores. If multiple services reference the same table in a DB, there is a great chance that your DB is a source of coupling. You must avoid such coupling.…