apidays australia - openresty for scale

@developersteve #APIDaysAU

OpenRestyBuilding APIs for scale with


Steven CooperSniip CTODevelopersteve.com

As Chief Technology Officer for Sniip Steven is working closely to help scale the platform and creating new innovative ways for consumers to pay. With Sniip’s frictionless and easy to use application he is working with government agencies, councils and utility companies to implement the technology.


About USSniip is a disruptive force in the payment space

It is the first of its kind in Australia as it is a mobile payment application built not around a bank or payment brand, but rather, around the consumer.

About SniipWhere it started


SCAN CHECKOUT

How it WorksThe easy way to pay

PIN


Other “solutions”Such advanced technology


Our Legacy StackIt has to start somewhere


<3 AWS


Laravel API’sPhp framework


PHP is a frameworkhttp://phpthewrongway.com


Mysql SchemaMysql architecture


Our StrategyRebuilding for scale, elasticity and futureproofing

UX/UICreate a user

experience that futureproofs the UX

FunctionalityBuilding relevant functionality that allows for scale

Developer Portal

API’s and Documentation built

for internal and external

User EngagementEnsuring we build how users want to use our platform


The StackOpenresty


OpenRestyA fusion between Nginx and Lua


OpenResty Market ShareUsed by nearly half a million websites

https://wappalyzer.com/categories/web-servers


Powering TumblrUsed by high traffic sites

https://news.netcraft.com/archives/2016/09/19/september-2016-web-server-survey.html


OpenResty Libshttps://devstev.es/orlibs


OpenResty Machine Learninghttp://torch.ch/


<3 NginxNginx is awesome


Lua is back … againCant beat a classic


Corona SDKCross platform mobile


Let’s EncryptAutomatically renewable SSL


Auto renew SSLhttps://devstev.es/autossl


Auto renew SSLhttps://devstev.es/autossl2


PCI DSS 3.2Payment Card Industry Data Security Standard


Implement TLSA more secure connection

TLS 1.0

TLS 1.1

TLS 1.2


ConfigurationSetting up the


Installing OpenRestyopenresty.org


Openresty NginxConfig nginx.conf

./configure --sbin-path=/usr/sbin/nginx --conf-path=/etc/nginx/nginx.conf --error-log-path=/var/log/nginx/error.log --http-log-path=/var/log/nginx/access.log --http-client-body-temp-path=/var/lib/nginx/body --http-fastcgi-temp-path=/var/lib/nginx/fastcgi --http-proxy-temp-path=/var/lib/nginx/proxy --http-scgi-temp-path=/var/lib/nginx/scgi --http-uwsgi-temp-path=/var/lib/nginx/uwsgi --lock-path=/var/lock/nginx.lock --pid-path=/var/run/nginx.pid


Openresty Libraries https://devstev.es/orlibs

--with-luajit --with-pcre-jit --with-debug --with-http_auth_request_module --with-http_geoip_module --with-http_gzip_static_module --with-http_ssl_module --with-ipv6 --with-http_v2_module --with-http_postgres_module


Make… Install…


Nginx.conf LoadbalanceNginx as per normal


Nginx.conf BasicNginx as per normal

worker_processes auto;

error_log logs/error.log;

events { worker_connections 1024;}

http { server {

}}


Nginx.conf SSL/TLSNginx as per normal

ssl_protocols TLSv1 TLSv1.1 TLSv1.2;ssl_prefer_server_ciphers on; ssl_ciphers "EECDH+AESGCM:EDH+AESGCM:AES256+EECDH:AES256+EDH";ssl_ecdh_curve secp384r1; ssl_session_timeout 1d;ssl_session_cache shared:SSL:10m;ssl_session_tickets off;ssl_stapling on;ssl_stapling_verify on;listen 443 ssl http2;listen [::]:443 ssl http2;ssl_certificate /etc/letsencrypt/live/website.com/fullchain.pem;ssl_certificate_key /etc/letsencrypt/live/website.com/privkey.pem;add_header X-Frame-Options DENY;add_header X-Content-Type-Options nosniff;add_header X-XSS-Protection "1; mode=block";


Nginx.conf additionalsNginx setup

http {init_by_lua ’ json = require "cjson";';

}


Nginx.conf RoutesRouting like a boss

location / { content_by_lua_file ”./hello.lua";

}


Calling in Lua helloworl.lua

local cjson = require("cjson")

ngx.status = ngx.HTTP_OKngx.header.content_type = "application/json; charset=utf-8”ngx.say(cjson.encode({ hello = "world" }))return ngx.exit(ngx.HTTP_OK)


Run OpenResty Run Fingers crossed

nginx -p `pwd`/ -c nginx.conf


Nginx.conf RoutesRouting like a boss

location / { content_by_lua_file ”./hello.lua";

}

location ~/status { content_by_lua_file ”./status.lua";

}


Calling in Lua Return a status

local cjson = require("cjson")

ngx.status = ngx.HTTP_OKngx.header.content_type = "application/json; charset=utf-8”ngx.say(cjson.encode({ status = true }))return ngx.exit(ngx.HTTP_OK)


Template Engine Lua https://devstev.es/luatemp


OpenResty Snippets https://devstev.es/luasnip


Load TestingI feel the need for speed


BlitzIOhttps://blitz.io


Legacy


OpenResty


Response TimesLeft is legacy – Right is new

OpenRestyLegacy


Hit RateLeft is legacy – Right is new

OpenRestyLegacy


ReadingRecommended


Designing robust API’shttps://devstev.es/api1


What is OpenRestyhttps://devstev.es/api2


Moltin OpenRestyhttps://devstev.es/api3


Thanks

Questions? Comments?


8-Bit Open Source


Drop Microphone

Walk off stage