Please enable JavaScript.
Coggle requires JavaScript to display documents.
MRTTLN DVA-C02, Exponential backoff - Coggle Diagram
MRTTLN DVA-C02
YY
CodeDeployent
Type
-
-
OneAtATime default configuration, one instance at a time
-
HalfAtATime deploys to half of the instances at a time, if odd number it will round up
Deployment Strategy
-
-
Cattle clound native architecture, replaceable units
Warm Standby scaled-down, ready-to-go environment in a secondary location
-
Cognito
Federated Identity Pools enable authenticated users to access AWS resources directly, can federate users from various identity provider, including User Pools, Google/ FB
User Pools user directory that enables you to manage user registration, authentication, account recovery. Token handling & management
-
Sync to sync user data, current replcae with AppSync & Cognito User Pools
-
Cognito Identity Pools temporary AWS credentials for other AWS resources like S3, DynamoDB.
-
-
-
-
AWS Serverless Application Repository (SAR) managed repository for serverless application, share reusable serverless applications, easily assemble & deploy serverless architectures in powerful new ways
AWS Service Catalog create, share, organize, govern your curated IaC template
SAM Serverless Application Model is an extension of CloudFormation, provides a shorthand syntax for defining serverless application
AWS::Serverless::Function, Api, SimpleTable
-
CloudFront
Signed URL: control access to specific files by creating a URL that includes a signature, expiration date, optional conditions
-
-
Trusted Key Group: collection of public keys used by CF to verify the validity of signed URLs or cookies, keyy management & rotation
Database
RDS
Read Replicate: max 15 with MySQL, MariaDB, PostgreSQL, Aurora/ 5 with Oracle, SQL Server
-
-
-
-
Docker in AWS
AWS Copilot CLI tool to build, release, operate production-ready containerized apps. Run your apps on AppRunner/ ECS/ Fargate
-
-
CloudFormation
-
-
Intrinsic Function: Ref, Fn::GetAtt, Fn::Base64
Compute
EC2
Instance Store EBS Volume: network drive (not a physical drive), lock to AZ. One EBS cannot attach to multiple EC2, but opposite is okay
-
-
Elastic Beanstalk
Deployment opt
Rolling with additional batch similar to Rolling but add temporary instances to handle traffic during deployment, minimal downtime, higher cost due to temporary instances
Immutable launches new instances with updated version, swap them with old once, zero downtime, higher cost, slower deployment
Rolling update few instances at a time until all are updated, reduce downtime but take longer than All at once
Blue/ Green creates completely new environment for the new version and swaps traffic after deployment, zero download, ideal for production
-
Application Version LifeCycle Policy, Traffic Splitting, Cloning
Messaging
SQS
Visibility Timeout is a period during which a message is invisible other consumer after being retrieved by one consumer
-
Fan Out Pattern messaging architecture where a single message from a source is replicated and sent to multiple destination (queue) for parallel processing. Combine with SNS.
Policy
-
-
Delivery how message deliver from SNS to SQS, Retry Attempts, Error Handling
Redrive managing message processing failure, move to DLQ
Feature
Long Polling its allow consumer to wait for message become available rather than returning immediately with an empty response if no message are present at the time of the request
-
-
Message Retention Period: min 60sec, max 14days, default 4days
-
-
SNS support Lambda, SQS, HTTP Endpoint
-
Kinesis
Data Stream
Data Retention: max 365days, default 24hrs
-
Monitoring & Audit
CloudWatch
-
Log Retention: define at Log Groups, never expire
Detailed Monitoring on EC2 to collect & report metric at a higher frequency than the default setting
-
AWS X-Ray
Phân tích request flow trong các distributed application, microservices và serverless
Open Telemetry? X-Ray chỉ có traces, không có metrics, logs
Add data
-
Annotations key-value pair can associate with your trace, indexed by X-Ray. They can be searched & fitltered.
Concept
Sampling is a process of selecting a subset of requests to be traced, helps manage costs & performance by limiting the amount of trace data sent to X-Ray
-
Segments each segment associated with a trace, such as an incoming request to a web service
ABC
LB
-
-
-
-
API Gateway
Caching per stage, TTL 300s
-
-
-