Chaos engineering, fault injection testing, resiliency patterns, designing for failure - so many design principles and topics and still is reliability often times an afterthought.
Let us run together a "game day" for resilience validation of our sample Azure application: Contonance - Awesome Ship Maintenance, a subsidary of Contoso Group.
Take a look how we use Azure App Configuration to toggle various resilience scenarios, and how we measure, understand, and improve resilience against real-world incidents using resiliency patterns and fault injections in code. We will also show you how you can use Azure Monitor with Application Insights to compare and understand the availability impact of your patterns.
Note
This sample was also presented at the Microsoft Azure Solution Summit at 27./28. September
e.g. possible reagions:
'westcentralus,eastus,westus,centralus,uksouth,westeurope,japaneast,northcentralus,eastus2'
PROJECT_NAME="asresapp1"
LOCATION="westeurope"
GITHUB_REPO_OWNER="jplck"
IMAGE_TAG="latest"
bash ./deploy-infra.sh $PROJECT_NAME $LOCATION $GITHUB_REPO_OWNER $IMAGE_TAGPROJECT_NAME="asresapp1"
bash ./create-config.sh $PROJECT_NAME- create azure resources by running infra script
- create local config by running create config script or adjust environment variables in local.env accordingly
- launch debug and open Contonance WebPortal at https://localhost:7217
- Queue-Based Load Leveling
Use a queue that acts as a buffer between a task and a service that it invokes, to smooth intermittent heavy loads - Throttling
Control the consumption of resources by an instance of an application, an individual tenant, or an entire service - Rate Limiting
Avoid or minimize throttling errors related to throttling limits and to more accurately predict throughput - Circuit Breaker
Handle faults that might take a variable amount of time to fix when connecting to a remote service or resource - Retry
Enable an application to handle anticipated, temporary failures when it tries to connect to a service or network resource by transparently retrying an operation that's previously failed - Fault Injections
Validating that systems will perform as designed in the face of failures is possible only by subjecting them to those failures. Fault injecting services before they go to production, e.g. with service-specific load stress and failures
- Open the Contonance WebPortal, show all three pages, recognize that everything executes without errors
- Show the architecture diagram
- Show Azure Application Insights Application Map
- Show source code of WebPortal.Server Program.cs L23, explain how
AddAzureAppConfigurationuses settings push model and no restarts are required - Show source code of WebPortal.Server ContonanceBackendClient.cs L28, explain configuration of the patterns
RetryandCircuitBreakerand the order of them in the pipeline ofHttpClient - Open Azure App Configuration Feature manager UI, enable
Contonance.WebPortal.Server:InjectRateLimitingFaults - Show Contonance WebPortal Repair Tasks and how it crashes
- Open Azure App Configuration Feature manager UI, enable
Contonance.WebPortal.Server:EnableRetryPolicy
- Show Contonance WebPortal Repair Tasks and try until it crashes, explain added retry latency and shown Correlation ID
- Show source code of WebPortal.Server ContonanceBackendClient.cs L50 and explain the injection machanisms
- Show Azure Application Insights Transaction search, show end-to-end transaction details and how the
RetryandInjectResultis visible
