Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/bharat-rajani/cloudoreg

Last synced: about 1 month ago
JSON representation

Host: GitHub
URL: https://github.com/bharat-rajani/cloudoreg
Owner: bharat-rajani
License: mit
Created: 2023-06-13T07:32:07.000Z (over 1 year ago)
Default Branch: main
Last Pushed: 2023-06-16T12:37:35.000Z (over 1 year ago)
Last Synced: 2024-06-21T17:52:16.717Z (5 months ago)
Language: Go
Size: 19.6 MB
Stars: 2
Watchers: 2
Forks: 4
Open Issues: 1
Metadata Files:
- Readme: README.md
- License: LICENSE

Awesome Lists containing this project

README

# CLOUDOREG

Cloudoreg is a streamlined solution that simplifies the cloudigrade + auto-registration listener.
With a focus on trust establishment for cloud access, Cloudoreg optimizes the functionality of cloudigrade while
maintaining its current purpose of validating the source authentication.

With this implementation we will reduce the deployments and complexity present in our current code. In comparison to our current architecture where when a source is added, cloudigrade listens on sources event kafka topic for `ApplicationAuthentication.create` event and then verifies the source via celery workers(which have their separate deployed pods). It also maintains a separate db to store provider account id to org mapping. When the source is verified, a message is published to sources status topic to mark the source as available. When the source is marked as available a new `Application.update` message is published to events kafka topic to which then autoreg listener listens to and calls RHSM API to create new provider_account mapping.

Now with cloudigrade being handed over to Teamnado and being stripped off all other functionality, it makes sense to move this all into a single codebase where we will process a single `ApplicationAuthentication.create` message from sources event stream and in a single flow we will verify the source and create trust for it.

### Existing architecture
![Existing architecture](assets/existing_architecture.svg?raw=true "Existing architecture")

### Proposed architecture
![Proposed architecture](assets/proposed_architecture.svg?raw=true "Proposed architecture")

### Sequence Diagram
![Sequence Diagram](assets/cloudoreg-seq-diag.png "Sequence Diagram")

### Running on local
Refer to `_deployment/RUN_LOCAL.md`

### How is this a improvement to existing architecture?
With current architecture we have 1 deployment for autoreg-listener, 1 deployment for cloudigrade sources message parser and 3 deployment for celery workers which do the job of processing data.Added to this cloudigrade itself had 1 db deployment as well. Now with the proposed architecture we would be requiring a single deployment in comparison to 5 deployments and 1 db which we had.

With current analysis of data flow into prod,we could see data a around 290 requests per week for cloudigrade event processing. This can be easily managed with a single deployment.

### Improvement points for future
1. We can add kafka transactions(after confirming kafka versions from sources team) for ensuring minimum loss of message.
2. With current architecture this design is not scalable, but we can design this to be scalable where we would separate message listener to single deployment and message processor to separate. We can not scale message listener deployments as we need to process message in the same sequence as it is produced.