Browse Library
Sign In Start Free Trial
Close icon Search icon
Account
Browse Library Advanced Search Sign In Start Free Trial

Add to playlist

Create a Playlist

Modal Close icon
You need to login to use this feature.
  • Python Microservices Development – 2nd edition
  • Toc
  • feedback
Python Microservices Development – 2nd edition

Python Microservices Development – 2nd edition

By : Fraser, Ziadé
5 (3)
close
Python Microservices Development – 2nd edition

Python Microservices Development – 2nd edition

5 (3)
By: Fraser, Ziadé

Overview of this book

The small scope and self-contained nature of microservices make them faster, cleaner, and more scalable than code-heavy monolithic applications. However, building microservices architecture that is efficient as well as lightweight into your applications can be challenging due to the complexity of all the interacting pieces. Python Microservices Development, Second Edition will teach you how to overcome these issues and craft applications that are built as small standard units using proven best practices and avoiding common pitfalls. Through hands-on examples, this book will help you to build efficient microservices using Quart, SQLAlchemy, and other modern Python tools In this updated edition, you will learn how to secure connections between services and how to script Nginx using Lua to build web application firewall features such as rate limiting. Python Microservices Development, Second Edition describes how to use containers and AWS to deploy your services. By the end of the book, you’ll have created a complete Python application based on microservices.
Table of Contents (14 chapters)
close
close
Preface
Preface
Who this book is for
What this book covers
To get the most out of this book
Get in touch
1
Understanding Microservices
Understanding Microservices
The origins of service-oriented architecture
The monolithic approach
The microservice approach
Microservice benefits
Pitfalls of microservices
Implementing microservices with Python
Summary
Free Chapter
2
Discovering Quart
Discovering Quart
Making sure we have Python
How Quart handles requests
Quart's built-in features
A microservice skeleton
Summary
3
Coding, Testing, and Documentation: the Virtuous Cycle
Coding, Testing, and Documentation: the Virtuous Cycle
Different kinds of tests
Using pytest and tox
Developer documentation
Version control
Continuous Integration and Continuous Deployment
Summary
4
Designing Jeeves
Designing Jeeves
The Jeeves bot
User stories
Monolithic design
Putting together the monolithic design
Summary
5
Splitting the Monolith
Splitting the Monolith
Identifying potential microservices
Splitting a Monolith
Refactoring Jeeves
Summary
6
Interacting with Other Services
Interacting with Other Services
Calling other web resources
Finding out where to go
Transferring data
Asynchronous messages
Testing
Using OpenAPI
Summary
7
Securing Your Services
chevron up
Securing Your Services
The OAuth2 protocol
X.509 certificate-based authentication
Token-based authentication
The TokenDealer microservice
Securing your code
Web application firewall
Summary
8
Making a Dashboard
Making a Dashboard
Building a ReactJS dashboard
ReactJS and Quart
Authentication and authorization
Summary
9
Packaging and Running Python
Packaging and Running Python
The packaging toolchain
Running all microservices
Process management
Summary
10
Deploying on AWS
Deploying on AWS
What is Docker?
Introduction to Docker
Running Quart in Docker
Docker-based deployments
Summary
11
What's Next?
What's Next?
Automation
Scaling
Content Delivery Networks
Multi-cloud deployments
Lambda Functions
Expanding monitoring
Making promises
Summary
12
Other Books You May Enjoy
Other Books You May Enjoy
13
Index
Index

Securing your code

Whatever we do, an application must receive data and act on it, somehow, or it will not be very useful. If a service receives data, then as soon as you expose your app to the world, it is open to numerous possible types of attack, and your code needs to be designed with this in mind.

Anything that is published to the web can be attacked, although we have the advantage that most microservices are not exposed to the public internet, which reduces the possible ways they could be exploited. The expected inputs and outputs of the system are narrower, and often better defined using specification tools, such as OpenAPI.

Attacks are not always due to hostile intent, either. If the caller has a bug or is just not calling your service correctly, the expected behavior should be to send back a 4xx response and explain to the client why the request was rejected.

The Open Web Application Security Project (OWASP) (https://www.owasp.org) is an excellent resource...

Unlock full access

Continue reading for free

A Packt free trial gives you instant online access to our library of over 7000 practical eBooks and videos, constantly updated with the latest in tech
Start a 7-day FREE trial
End of Section 6
Next Section
bookmark search playlist download
font-size

Change the font size

margin-width

Change margin width

day-mode

Change background colour

Close icon Search
Country selected
Close icon Your notes and bookmarks

Delete Bookmark

Modal Close icon
Are you sure you want to delete it?
Cancel
Yes, Delete