Browse Library
Sign In Start Free Trial
Close icon Search icon
Account
Browse Library Advanced Search Sign In Start Free Trial

Add to playlist

Create a Playlist

Modal Close icon
You need to login to use this feature.
  • Book Overview & Buying Microservices with Spring Boot 3 and Spring Cloud, Third Edition
  • Table Of Contents Toc
  • Feedback & Rating feedback
Microservices with Spring Boot 3 and Spring Cloud, Third Edition

Microservices with Spring Boot 3 and Spring Cloud, Third Edition

By : Magnus Larsson AB, Magnus Larsson
4 (24)
Buy this Book
close
close
Microservices with Spring Boot 3 and Spring Cloud, Third Edition

Microservices with Spring Boot 3 and Spring Cloud, Third Edition

4 (24)
By: Magnus Larsson AB, Magnus Larsson
Buy this Book

Overview of this book

Looking to build and deploy microservices but not sure where to start? Check out Microservices with Spring Boot 3 and Spring Cloud, Third Edition. With a practical approach, you'll begin with simple microservices and progress to complex distributed applications. Learn essential functionality and deploy microservices using Kubernetes and Istio. This book covers Java 17, Spring Boot 3, and Spring Cloud 2022. Java EE packages are replaced with the latest Jakarta EE packages. Code examples are updated and deprecated APIs have been replaced, providing the most up to date information. Gain knowledge of Spring's AOT module, observability, distributed tracing, and Helm 3 for Kubernetes packaging. Start with Docker Compose to run microservices with databases and messaging services. Progress to deploying microservices on Kubernetes with Istio. Explore persistence, resilience, reactive microservices, and API documentation with OpenAPI. Learn service discovery with Netflix Eureka, edge servers with Spring Cloud Gateway, and monitoring with Prometheus, Grafana, and the EFK stack. By the end, you'll build scalable microservices using Spring Boot and Spring Cloud.
Table of Contents (26 chapters)
close
close
close
Preface
Preface
Who this book is for
What this book covers
Get in touch
Share your thoughts
1
Introduction to Microservices
Introduction to Microservices
Technical requirements
My way into microservices
Defining a microservice
Challenges with microservices
Design patterns for microservices
Software enablers
Other important considerations
Summary
Free Chapter
2
Introduction to Spring Boot
Introduction to Spring Boot
Technical requirements
Spring Boot
Spring WebFlux
springdoc-openapi
Spring Data
Spring Cloud Stream
Docker
Summary
Questions
3
Creating a Set of Cooperating Microservices
Creating a Set of Cooperating Microservices
Technical requirements
Introducing the microservice landscape
Generating skeleton microservices
Adding RESTful APIs
Adding a composite microservice
Adding error handling
Testing APIs manually
Adding automated microservice tests in isolation
Adding semi-automated tests of a microservice landscape
Summary
Questions
4
Deploying Our Microservices Using Docker
Deploying Our Microservices Using Docker
Technical requirements
Introduction to Docker
Running Java in Docker
Using Docker with one microservice
Managing a landscape of microservices using Docker Compose
Automating tests of cooperating microservices
Summary
Questions
5
Adding an API Description Using OpenAPI
Adding an API Description Using OpenAPI
Technical requirements
Introduction to using springdoc-openapi
Adding springdoc-openapi to the source code
Building and starting the microservice landscape
Trying out the OpenAPI documentation
Summary
Questions
6
Adding Persistence
Adding Persistence
Technical requirements
Chapter objectives
Adding a persistence layer to the core microservices
Writing automated tests that focus on persistence
Using the persistence layer in the service layer
Extending the composite service API
Adding databases to the Docker Compose landscape
Manual tests of the new APIs and the persistence layer
Updating the automated tests of the microservice landscape
Summary
Questions
7
Developing Reactive Microservices
Developing Reactive Microservices
Technical requirements
Choosing between non-blocking synchronous APIs and event-driven asynchronous services
Developing non-blocking synchronous REST APIs
Developing event-driven asynchronous services
Running manual tests of the reactive microservice landscape
Running automated tests of the reactive microservice landscape
Summary
Questions
8
Introduction to Spring Cloud
Introduction to Spring Cloud
Technical requirements
The evolution of Spring Cloud
Using Netflix Eureka for service discovery
Using Spring Cloud Gateway as an edge server
Using Spring Cloud Config for centralized configuration
Using Resilience4j for improved resilience
Using Micrometer Tracing and Zipkin for distributed tracing
Summary
Questions
9
Adding Service Discovery Using Netflix Eureka
Adding Service Discovery Using Netflix Eureka
Technical requirements
Introducing service discovery
Setting up a Netflix Eureka server
Connecting microservices to a Netflix Eureka server
Setting up the configuration for development use
Trying out the discovery service
Starting up the Eureka server again
Summary
Questions
10
Using Spring Cloud Gateway to Hide Microservices behind an Edge Server
Using Spring Cloud Gateway to Hide Microservices behind an Edge Server
Technical requirements
Adding an edge server to our system landscape
Setting up Spring Cloud Gateway
Trying out the edge server
Summary
Questions
11
Securing Access to APIs
Securing Access to APIs
Technical requirements
Introduction to OAuth 2.0 and OpenID Connect
Securing the system landscape
Protecting external communication with HTTPS
Securing access to the discovery server
Adding a local authorization server
Protecting APIs using OAuth 2.0 and OpenID Connect
Testing with the local authorization server
Testing with an external OpenID Connect provider
Summary
Questions
12
Centralized Configuration
Centralized Configuration
Technical requirements
Introduction to the Spring Cloud Config Server
Setting up a config server
Configuring clients of a config server
Structuring the configuration repository
Trying out the Spring Cloud Config Server
Summary
Questions
13
Improving Resilience Using Resilience4j
Improving Resilience Using Resilience4j
Technical requirements
Introducing the Resilience4j resilience mechanisms
Adding the resilience mechanisms to the source code
Trying out the circuit breaker and retry mechanism
Summary
Questions
14
Understanding Distributed Tracing
Understanding Distributed Tracing
Technical requirements
Introducing distributed tracing with Micrometer Tracing and Zipkin
Adding distributed tracing to the source code
Trying out distributed tracing
Summary
Questions
15
Introduction to Kubernetes
Introduction to Kubernetes
Technical requirements
Introducing Kubernetes concepts
Introducing Kubernetes API objects
Introducing Kubernetes runtime components
Creating a Kubernetes cluster using Minikube
Trying out a sample Deployment
Managing a local Kubernetes cluster
Summary
Questions
16
Deploying Our Microservices to Kubernetes
Deploying Our Microservices to Kubernetes
Technical requirements
Replacing Netflix Eureka with Kubernetes Services
Introducing how Kubernetes will be used
Using Spring Boot’s support for graceful shutdown and probes for liveness and readiness
Introducing Helm
Deploying to Kubernetes for development and test
Deploying to Kubernetes for staging and production
Summary
Questions
17
Implementing Kubernetes Features to Simplify the System Landscape
Implementing Kubernetes Features to Simplify the System Landscape
Technical requirements
Replacing the Spring Cloud Config Server
Replacing the Spring Cloud Gateway
Automating certificate provisioning
Testing with Kubernetes ConfigMaps, Secrets, Ingress, and cert-manager
Verifying that the microservices work without Kubernetes
Summary
Questions
18
Using a Service Mesh to Improve Observability and Management
chevron up
Using a Service Mesh to Improve Observability and Management
Technical requirements
Introducing service meshes using Istio
Simplifying the microservice landscape
Deploying Istio in a Kubernetes cluster
Creating the service mesh
Observing the service mesh
Securing a service mesh
Ensuring that a service mesh is resilient
Performing zero-downtime updates
Running tests with Docker Compose
Summary
Questions
19
Centralized Logging with the EFK Stack
Centralized Logging with the EFK Stack
Technical requirements
Introducing Fluentd
Deploying the EFK stack on Kubernetes
Trying out the EFK stack
Summary
Questions
20
Monitoring Microservices
Monitoring Microservices
Technical requirements
Introduction to performance monitoring using Prometheus and Grafana
Changes in source code to collect application metrics
Building and deploying the microservices
Monitoring microservices using Grafana dashboards
Setting up alarms in Grafana
Summary
Questions
21
Installation Instructions for macOS
Installation Instructions for macOS
Technical requirements
Installing tools
Accessing the source code
Summary
22
Installation Instructions for Microsoft Windows with WSL 2 and Ubuntu
Installation Instructions for Microsoft Windows with WSL 2 and Ubuntu
Technical requirements
Installing tools
Accessing the source code
Summary
23
Native-Complied Java Microservices
Native-Complied Java Microservices
Technical requirements
When to native-compile Java source code
Introducing the GraalVM project
Introducing the Spring’s AOT engine
Handling problems with native compilation
Changes in the source code
Testing and compiling Native Images
Testing with Docker Compose
Testing with Kubernetes
Summary
Questions
24
Other Books You May Enjoy
Other Books You May Enjoy
25
Index
Index

Securing a service mesh

In this section, we will learn how to use Istio to improve the security of a service mesh. We will cover the following topics:

  • How to protect external endpoints with HTTPS and certificates
  • How to require that external requests are authenticated using OAuth 2.0/OIDC access tokens
  • How to protect internal communication using mutual authentication (mTLS)

Let’s now understand each of these in the following sections.

Protecting external endpoints with HTTPS and certificates

From the Setting up access to Istio services and Content in the _istio_base.yaml template sections, we learned that the gateway objects use a TLS certificate stored in a Secret named hands-on-certificate for its HTTPS endpoints.

The Secret is created by the cert-manager based on the configuration in the istio-system Helm chart. The chart’s template, selfsigned-issuer.yaml, is used to define an internal self-signed CA and has the following...

Unlock full access

Continue reading for free

A Packt free trial gives you instant online access to our library of over 7000 practical eBooks and videos, constantly updated with the latest in tech
Start a 7-day FREE trial
End of Section 8
Next Section
bookmark search playlist download
font-size

Change the font size

margin-width

Change margin width

day-mode

Change background colour

Close icon Search
Country selected
Close icon Your notes and bookmarks

Delete Bookmark

Modal Close icon
Are you sure you want to delete it?
Cancel
Yes, Delete

Confirmation

Modal Close icon
claim successful
Order Page Read Now

Buy this book with your credits?

Modal Close icon
Are you sure you want to buy this book with one of your credits?
Close
YES, BUY