Skip to content

ThomasVitale/spring-cloud-gateway-resilience-security-observability

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

33 Commits
.github
.github
 
 
book-service
book-service
 
 
edge-service
edge-service
 
 
platform/keycloak
platform/keycloak
 
 
.gitignore
.gitignore
 
 
.sdkmanrc
.sdkmanrc
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
compose.yml
compose.yml
 
 

Repository files navigation

Spring Cloud Gateway - Resilience, Security, and Observability

Do you want to use a microservices architecture? Are you looking for a solution to manage access to single services from clients? How can you ensure resilience and security for your entire system? Spring Cloud Gateway is a project based on Reactor, Spring WebFlux, and Spring Boot which provides an effective way to route traffic to your APIs and address cross-cutting concerns.

In this session, I'll show you how to configure an API gateway to route traffic to your microservices architecture and implement solutions to improve the resilience of your system with patterns like circuit breakers, retries, fallbacks, and rate limiters using Spring Cloud Circuit Breaker and Resilience4J. Since the gateway is the entry point of your system, it’s also an excellent candidate to implement security concerns like user authentication. I'll show you how to do that with Spring Security, OAuth2, and OpenID Connect, relying on Spring Redis Reactive to manage sessions. Finally, I'll show you how to improve the observability of your system using Spring Boot Actuator, Micrometer, and OpenTelemetry.

Stack

  • Java 25
  • Spring Boot 3.5
  • Podman/Docker

Usage

First, run Keycloak from the project root folder, using either Podman or Docker.

podman compose up -d

Then, you can reach of the Spring Boot applications using Gradle:

./gradlew bootRun

Alternatively, you can use the Arconia CLI to start each application in development mode:

arconia dev

The Edge Service application is exposed on port 9000 while Book Service on port 9001. The applications require authentication through OAuth2/OpenID Connect. You can log in as Isabelle (isabelle/password) or Bjorn (bjorn/password).

Observability Stack

Both Spring Boot applications are observable, as any cloud native application should. Using Arconia OpenTelemetry, both applications are configured to export logs, metrics, and traces automatically to an OpenTelemetry backend.

Arconia Dev Services streamline your development workflow by automatically provisioning external services your application depends on during development and testing. No manual setup is required. With Arconia OpenTelemetry, you can leverage the Grafana LGTM Dev Service to automatically start a complete Grafana observability platform based on OpenTelemetry, allowing you to visualize and explore your application’s telemetry data during development and testing.

The application logs will show you the URL where you can access the Grafana observability platform.

...o.t.grafana.LgtmStackContainer: Access to the Grafana dashboard: http://localhost:38125

By default, logs, metrics, and traces are exported via OTLP using the HTTP/Protobuf format.

In Grafana, you can query the telemetry from the "Drilldown" and "Explore" sections.

About

Example with Spring Boot 3 focused on resilience, security and observability. It uses Spring Cloud Gateway, Spring Security and Spring Cloud Circuit Breaker.

Topics

redis microservices spring-boot keycloak spring-cloud grafana prometheus spring-security spring-cloud-gateway grafana-loki opentelemetry grafana-tempo

Resources

Readme

License

Apache-2.0 license
Activity

Stars

79 stars

Watchers

2 watching

Forks

39 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors

Languages