Use of Sidecars to Microservice Communication

 Recently I attended Analysis Design Architcture conference (https://adaconf.org/) where listened to talk named "Future Proof Software Architecture: Microservices". That reminded me my experience of using sidecars as part of a microservice architecture in one of my previous projects( Australian Bank). So I decided to write down some of the key points and insights that came out of that experience. 

firstly, let's start with understanding why we might want to move beyond traditional API gateways. API gateways traditionally handle everything from TLS termination to authentication, authorisation, and traffic routing. They're like the swiss army knife of API management - doing lots of things in one place. But here's the problem - as our microservices architectures grow more complex, having all these responsibilities in a central gateway becomes a bottleneck.

So let's see what are sidecars - think of them as your microservice's personal assistant. Instead of routing all traffic through a central gateway, each service gets its own lightweight proxy that handles network communication, security, and observability. The beauty of this approach? Each service becomes more self-contained and secure.

Here's what makes sidecars particularly powerful:

  • They handle network concerns right next to your service
  • Security becomes distributed rather than centralised
  • Independent upgrades and configurations become possible
  • Integration with service meshes like Istio becomes seamless

If you're working with Kubernetes (and who isn't these days?), implementing sidecars becomes even more straightforward. Service meshes like Istio automatically inject these sidecars into your pods, handling everything from configuration APIs to storage. Pretty simple, ah?

One of the most exciting aspects is how sidecars work with client stubs generated from OpenAPI documents. Rather than enforcing request schemas through API gateways, developers can focus on writing business logic while the stubs handle all the tedious stuff - body serialisation, validation, and other concerns. It's a game-changer for developer productivity.

The cost benefit analysis is crucial here. Yes, implementing service meshes and sidecars adds some overhead, but the benefits in terms of network resiliency and traffic management are substantial. For most use cases, especially in enterprise environments where security and reliability are paramount, the investment pays off.

Let me share a practical tip we learned working on that project, when implementing sidecars, consider using battle-tested HTTP proxies (eg: nginx or Envoy). These tools have proven themselves in production environments and offer the reliability you need for critical systems.

The shift from centralised API gateways to distributed sidecars represents a natural evolution in microservices architecture. For many organisations, especially those dealing with complex security requirements or needing fine-grained control over service-to-service communication, sidecars provide a more flexible and maintainable solution.

Remember, though, that technology choices should always align with your specific requirements and SLAs. While sidecars offer compelling benefits, they're not a silver bullet. Evaluate your needs, consider your team's capabilities, and make the decision that best serves your use case.


Comments

Post a Comment

Popular posts from this blog

MDK Hospital opened in Horana

Image
Horana is getting a brand new private hospital! The M.D.K Healthcare Center & Hospital has just opened its doors on Anguruwathota Road, right next to the HNB bank branch. For years, many had to travel to Colombo for certain medical treatments, but hopes with new private hospital this will change. This new hospital, built by local businessman Mr. M.D. Piyananda Kularathna, comes with all the modern medical equipment we've been hoping for. It's wonderful to see such a major investment in Horana community's health. To makes this even better, I hope they have brought in highly skilled doctors and medical staff. No more long trips to Colombo for routine treatments! The hospital looks quite impressive too - modern and clean, just what you'd expect from a proper healthcare centre. The location is perfect as well. Being on Anguruwathota Road means it's easy to find and get to, whether you're coming from the town centre or surrounding areas. I've already notice...
Read more

Disable single quote Within Forms

This is a good method taught to me by my friend to disable any character in the keyboard Within Forms in your web page/ web application. A simple and effective method to disable specific characters (like single quotes) within form inputs on your webpage or web application. The Code <!DOCTYPE html> <html> <head> <script type="text/javascript"> function stopRKey(evt) { // Normalize the event object evt = evt || window.event; // For debugging - shows the keyCode console.log(evt.keyCode); // Block single quote (39 or 222 depending on browser) if (evt.keyCode == 39 || evt.keyCode == 222) { return false; } } // Attach the event handler to the document document.onkeypress = stopRKey; </script> </head> <body> <h3>Test Area</h3> <textarea rows="5"></text...
Read more

My Docker learning short notes

I had this note from long time in my Evernotes, I thought I should have post it here, so someone might find it useful. This is just Docker basics and commonly used commands that I've collected over time. Why Docker? Docker enables containerization - running applications in containers instead of virtual machines. Important notes: Containers are not VMs - they have different benefits Provides standardization across environments Enables continuous deployment from development to production Ensures consistency using the same container image throughout the deployment process Key Benefits: Self-contained environments Isolated from other applications Runs almost everywhere (especially in the Cloud) Small and lightweight Highly scalable Fast deployment Core Concepts Images An image is an executable package containing everything needed to run an application: ...
Read more