Skip to content

Latest commit

 

History

History
234 lines (188 loc) · 9.85 KB

12factor_app.md

File metadata and controls

234 lines (188 loc) · 9.85 KB
date tags external file
2024-12-02T15:37+03:00
blog
SR-base
./articles/12factor_-_12factor.epub

The Twelve-Factor App

Twelve-Factor application is metodology to build web apps (SaaS), required for (main concepts):

  • Declartive automation configurations, to minimize time and cost fow new developers joining the project.
  • Provide portability between execution enviroments.
  • Allow to deploy on modern cloud platforms.
  • Minimal differences between development and production, enable continuous deployment.
  • Support easy scaling and maintenance.
  • Universal, can be used with any programming language.

1. Codebase

Application always tracked in [[version_control]] system.

Can different applications share the same code?
There is only one codebase per app, multiple app's can't share same code (need to use libraries if needed).

App support many deploys (running instance of app).

2. Dependencies

A twelve-factor app never relies on implicit existence of system-wide package, need to use dependency isolation tools (avoid "leak in").

Do I need to isolate curl if it used somewhere in application?
Yes, always need to use dependency declaration and isolation, it also simplifies setup for new developers. This is actual for system tools too, you need to ship imagemagik in your app if your app use it.

3. Config

Where to store environtment specific files?
Anything which have different value for different environment (dev, test, prod), should be stored in repository (schemas, config files, credentials, etc.).

How to store config?
Need strict separation of config from code. Validation rule: app could be made open source at any moment, without compromising security.

Where to store config (various parameters)?
The twelve-factor app stores config in environment variables, which have granular (change only specific config of component). Need to avoid "production", "staging" and "development" like group-based configurations/variables, instead we can use DEBUG=True, DISABLED_TASK=xxxx, etc.

4. Backing services

What's an attacheble resource?
External services (consumed over network) used as part of normal operation - MySQL, RabbitMQ, Redis, SMTP, etc. They are attacheble resources, and need to use same rules as for local resources. Resources are attacheble and detacheble, anytime you can replace broken resource with new one (restored from backup or re-initialized).

Is ther different between local and third party services (attacheble resources)?
The code for a twelve-factor app makes no distinction between local and third party services, you can change local backing service with remote anytime by changing configuration.

5. Build, release, run

Non-develpoment deployment process go through three stages:

  1. Build stage - transform specific code virsion (fixed commit) into build.
  2. Release stage - combine build with deploys current config and make release ready for immediate execution.
  3. Run stage - running the app in the execution environment (one or multiple processes).

The twelve-factor app uses strict separation between the build, release, and run stages.

Would be good to have some rollback mechanism (depending on releasing tools).

Every release should always have a unique release ID, such as a timestamp of the release (such as 2011-04-06-20:32:17) or an incrementing number (such as v100).

Can I change someting in release?
Release cannot be mutated once it is created. Any change must create a new release.

Run stage should be kept to as few moving parts as possible and should be automatically restarted if it crashes.

6. Processes

The app is executed in the execution environment as one or more processes.

What's stateless app?
A stateless app is an application program that does not save client data generated in one session for use in the next session with that client. Twelve-factor processes are stateless and share-noting. Any data that needs to persist must be stored in a stateful backing service (typicaly a database).

Can I assume that something is cached on disk and will be aviable on a future request or job?
The twelve-factor app never assumes that anything cached in memory or on disk will be available on a future request or job.

Can I compile assets at runtime with twelve-factor app?
No, twelve-factor prefer to compile assets during the build stage, rather than at runtime.

Sticky sessions are a violation of twelve-factor and should never be used or relied upon. Session state data is a good candidate for a datastore that offers time-expiration, such as Memcached or Redis.

7. Port binding

What's port binding in twelve-factor app?
The twelve-factor app is completely self-contaned (does not rely on runtime injection) and exports HTTP (maybe other protocol) as a service by binding to a port and listening to requests coming in on that port. This is usually requiring to add webserver library into app to serve requests. Port-binding approach also means that one app can become the backing service for another app, by providing the URL to the backing app as a resource handle in the config for the consuming app.

8. Concurrency

How we work with processes with twelve-factor app?
In the twelve-factor app, processes are a first class citizen. Each application task type can be executed with own process (diverse workloads, many process types are good). This is unix process model for running service daemons.

Application can run many processes (process formation) in single runtime (==1;;vertical== scaling), but it must also be able to span multiple processes running on multiple physical machines (==1;;horizontal== scaling).

Twelve-factor app processes should never daemonize or write PID files. Instead, rely on the operating system's process manager (systemd?, distributed process manager on a cloud platform) to manage output streams, respond to crached processes and handle user-intiated restarts and shutdowns.

9. Disposability

What is process disposability (sort of one-time processes) in twelve-factor app?
Processes should be disposable, they can be started or stopped a moment's notice, have a minimal startup time, shut down gracefully with SIGTERM event and be ready to sudden death (hardware failures). Graceful shutdown and sudden death sustainability could be tricky for specific process types, you need to think about architecture and design of your application which support this (job returns, lock auto-release, atomic transaction or idempotent jobs, etc.).

10. Dev/prod parity

Twelve-factor app is designed for continuous deployment by keeping the gap between development and production environment small, which gap types you know?

  • Time - changes ready to go from local to prod, should be minimal (hours).
  • Personnel - developer write code, ops engineer deploy it (ship app), developers closely involved in ops and able to watch thier work in production (same peoples able to deploy).
  • Tools - developer use stack X, on production used gap Y, should be as similar as possible.

Can I use different backing services on deveopment and production?
We should not use different backing services (Redis/RabbitMQ, MySQL/SQlite) on deveopment and production, even if possible to use adapaters to mix them with some abstractions (Celery, SQLAlchemy).

11. Logs

Do twelve-factor app manage own logs?
Twelve-factor app never concerns itself with routing or storage of its output stream (logs data). It should not attempt to write to or manage logfiles. Each running process writes its event stream, unbuffered, to stdout.

How logs are managed with twelve-factor app?
In staging or production deploys, each process’ stream will be captured by the execution environment, collated together with all other streams from the app, and routed to one or more final destinations for viewing and long-term archival (log routers, log indexing and analysis system), app even can't accss to final logs destinations.

12. Admin processes

How to execute one-time admin processes with twelve-factor app?
One-off admin processes should be run in an identical environment as the regular long-running processes of the app. They run against a release, using the same codebase and config (equal enviroment) as any process run against that release. Admin code must ship with application code to avoid synchronization issues. The same dependency isolation techniques should be used on all process types. How you run usuall processes (through some wrapper, or tool), you also run admin processes. Python program using Virtualenv should use the vendored bin/python for running both the webserver and any manage.py admin processes.

Is REPL shell required for twelve-factor app?
Twelve-factor strongly favors languages which provide a REPL shell out of the box, and which make it easy to run one-off scripts. In a local deploy, developers invoke one-off admin processes by a direct shell command inside the app’s checkout directory. In a production deploy, developers can use ssh or other remote command execution mechanism provided by that deploys execution environment to run such a process.