book

Continuous Delivery in Java

by Daniel Bryant, Abraham Marín-Pérez

November 2018

Intermediate to advanced

479 pages

13h 15m

English

O'Reilly Media, Inc.

Read now

Unlock full access

Forewords
Preface
Why Did We Write This Book?Why You Should Read This BookWhat This Book Is NotConventions Used in This BookUsing Code ExamplesO’Reilly SafariHow to Contact UsAcknowledgments
1. Continuous Delivery: Why and What
Setting the SceneEnabling Developers: The WhyRapid Feedback Reduces Context SwitchingAutomatic, Repeatable, and Reliable ReleasesCodifying the Definition of “Done”Exploring a Typical Build Pipeline: The WhatCore Build Pipeline StagesImpact of Container TechnologyChanges with Contemporary ArchitecturesSummary
2. Evolution of Java Development
Requirements of Modern Java ApplicationsNeed for Business Speed and StabilityRise of the API EconomyOpportunities and Costs of the CloudModularity Redux: Embracing Small ServicesImpact on Continuous DeliveryEvolution of Java Deployment PlatformsWARs and EARs: The Era of Application Server DominanceExecutable Fat JARs: Emergence of Twelve-Factor AppsContainer Images: Increasing Portability (and Complexity)Function as a Service: The Emergence of “Serverless”Impact of Platforms on Continuous DeliveryDevOps, SRE, and Release EngineeringDevelopment and OperationsSite Reliability EngineeringRelease EngineeringShared Responsibility, Metrics, and ObservabilitySummary
3. Designing Architecture for Continuous Delivery
Fundamentals of Good ArchitectureLoose CouplingHigh CohesionCoupling, Cohesion, and Continuous DeliveryArchitecture for Business AgilityBad Architecture Limits Business VelocityComplexity and Cost of ChangeBest Practices for API-Driven ApplicationsBuild APIs “Outside-In”Good APIs Assist Continuous Testing and DeliveryDeployment Platforms and ArchitectureDesigning Cloud-Native “Twelve-Factor” ApplicationsCultivating Mechanical SympathyDesign and Continually Test for FailureThe Move Toward Small ServicesChallenges for Delivering Monolithic ApplicationsMicroservices: SOA Meets Domain-Driven DesignFunctions, Lambdas, and NanoservicesArchitecture: “The Stuff That’s Hard to Change”Summary
4. Deployment Platforms, Infrastructure, and Continuous Delivery of Java Apps
Functionality Provided by a PlatformEssential Development ProcessesTraditional Infrastructure PlatformsTraditional Platform ComponentsChallenges with Traditional Infrastructure PlatformsBenefits of Being TraditionalCI/CD on Traditional Infrastructure PlatformsCloud (IaaS) PlatformLooking Inside the CloudCloud ChallengesBenefits of the CloudContinuously Delivering into the CloudPlatform as a ServicePeeking Inside a PaaSPaaS ChallengesBenefits of PaaSCI/CD and PaaSContainers (Docker)Container Platform ComponentsContainer ChallengesContainer BenefitsContinuously Delivering ContainersKubernetesCore Concepts of KubernetesKubernetes ChallengesBenefits of KubernetesContinuous Delivery on KubernetesFunction-as-a-Service/Serverless FunctionsFaaS ConceptsChallenges of FaaSFaaS BenefitsCI/CD and FaaSWorking with Infrastructure as CodeSummary
5. Building Java Applications
Breaking Down the Build ProcessAutomating the BuildBuild DependenciesExternal DependenciesMultimodule ProjectsMultiple Repositories (or a Monorepo)?PluginsReleasing and Publishing ArtifactsJava Build Tooling OverviewAntMavenGradleBazel, Pants, and BuckOther JVM Build Tools: SBT and LeiningenMakeChoosing a Build ToolSummary
6. Additional Build Tooling and Skills
Linux, Bash, and Basic CLI CommandsUsers, Permissions, and GroupsWorking with the FilesystemViewing and Editing TextJoining Everything Together: Redirects, Pipes, and FiltersSearching and Manipulating Text: grep, awk, and sedDiagnostic Tooling: top, ps, netstat, and iostatHTTP Calls and JSON ManipulationcurlHTTPiejqBasic ScriptingxargsPipes and FiltersLoopsConditionalsSummary
7. Packaging Applications for Deployment
Building a JAR: Step-by-StepBuilding a Fat Executable “Uber” JARMaven Shade PluginBuilding Spring Boot Uber JARsSkinny JARs—Deciding Not to Build Fat JARsBuilding WAR FilesPackaging for the CloudCooking Configuration: Baking or Frying MachinesBuilding RPMs and DEBs OS PackagesAdditional OS Package Build Tools (with Windows Support)Creating Machine Images for Multiple Clouds with PackerAdditional Tools for Creating Machine ImagesBuilding ContainersCreating Container Images with DockerFabricating Docker Images with fabric8Packaging FaaS Java ApplicationsSummary
8. Working Locally (Like It Was Production)
Challenges with Local DevelopmentMocking, Stubbing, and Service VirtualizationPattern #1: Profiles, Mocks, and StubsMocking with MockitoPattern #2: Service Virtualization and API SimulationVirtualizing Services with HoverflyVMs: Vagrant and PackerInstalling VagrantCreating a VagrantfilePattern #3: Production-in-a-BoxContainers: Kubernetes, minikube, and TelepresenceIntroducing the “Docker Java Shop” Sample AppBuilding Java Applications and Container ImagesDeploying into KubernetesSimple Smoke TestBuilding the Remaining ApplicationsDeploying the Entire Java Application in KubernetesViewing the Deployed ApplicationTelepresence: Working Remotely, LocallyPattern #4: Environment LeasingFaaS: AWS Lamba and SAM LocalInstalling SAM LocalAWS Lambda ScaffoldingTesting AWS Lambda Event HandlingSmoke Testing with SAM LocalFaaS: Azure Functions and VS CodeInstalling Azure Function Core ToolsBuilding and Testing LocallyTesting Remotely, Locally Using VS CodeSummary

9. Continuous Integration: The First Steps in Creating a Build Pipeline
Why Continuous Integration?Implementing CICentralized Versus Distributed Version-Control SystemsGit PrimerCore Git CLI CommandsHub: An Essential Tool for Git and GitHubWorking Effectively with DVCSTrunk-based DevelopmentFeature BranchingGitflowNo One-Size Fits All: How to Choose a Branching StrategyCode ReviewsWhat to Look ForAutomation: PMD, Checkstyle, and FindBugsReviewing Pull RequestsAutomating BuildsJenkinsGetting Your Team OnboardMerge Code Regularly“Stop the Line!”: Managing Broken BuildsDon’t @Ignore TestsKeep the Build FastCI of the Platform (Infrastructure as Code)Summary
10. Deploying and Releasing from the Pipeline
Introducing the Extended Java Shop ApplicationSeparating Deployment and ReleaseDeploying ApplicationsCreating a Container ImageDeployment MechanismsIt All Starts (and Ends) with Health ChecksDeployment StrategiesWorking with Unmanaged ClustersChanging DatabasesReleasing FunctionalityFeature FlagsSemantic Versioning (semver)Backward Compatibility and Versions in APIsMultiple-Phase UpgradesManaging Configuration and Secrets“Baked-In” ConfigurationExternalized ConfigurationHandling SecretsSummary
11. Functional Testing: Correctness and Acceptance
Why Test Software?What to Test? Introducing Agile Testing QuadrantsContinuous TestingBuilding the Right Feedback LoopTurtles All the Way DownSynthetic TransactionsEnd-to-End TestingAcceptance TestingBehavior-Driven DevelopmentStubbing or Virtualizing Third-Party ServicesBringing It All TogetherConsumer-Driven ContractsRESTful API ContractsMessage ContractsComponent TestingEmbedded Data StoresIn-Memory Message QueuesTest DoublesCreating Internal Resources/InterfacesIn-Process Versus Out-Of-ProcessIntegration TestingVerifying External InteractionsTesting Fault ToleranceUnit TestingSociable Unit TestingSolitary Unit TestingDealing with Flaky TestsDataResource That Is Not Available YetNondeterministic EventsIf Nothing Else WorksTesting Outside-In Versus Testing Inside-OutOutside-InInside-OutPutting It All Together Within the PipelineHow Much Testing Is Enough?Summary
12. System-Quality Attributes Testing: Validating Nonfunctional Requirements
Why Test Nonfunctional Requirements?Code QualityArchitectural QualityArchUnit: Unit-Testing ArchitectureGenerate Design-Quality Metrics with JDependPerformance and Load TestingBasic Performance Testing with Apache BenchmarkLoad Testing with GatlingSecurity, Vulnerabilities, and ThreatsCode-Level Security VerificationDependency VerificationDeployment Platform-Specific Security IssuesNext Steps: Threat ModelingChaos TestingCausing Chaos in Production (Bring in the Monkeys)Causing Chaos in PreproductionHow Much NFR Testing Is Enough?Summary
13. Observability: Monitoring, Logging, and Tracing
Observability and Continuous DeliveryWhy Observe?What to Observe: Application, Network, and MachineHow to Observe: Monitoring, Logging, and TracingAlertingDesigning Systems for ObservabilityMetricsType of MetricsDropwizard MetricsSpring Boot ActuatorMicrometerBest Practices with MetricsLoggingForms of LoggingSLF4JLog4j 2Logging Best PracticesRequest TracingTraces, Spans, and BaggageJava Tracing: OpenZipkin, Spring Sleuth, and OpenCensusRecommended Practices for TracingException TrackingAirbrakeSystem-Monitoring ToolingcollectdrsyslogSensuCollection and StoragePrometheusElastic-Logstash-KibanaVisualizationVisualization for BusinessOperational VisualizationVisualization for DevelopersSummary
14. Migrating to Continuous Delivery
Continuous Delivery CapabilitiesPicking Your Migration ProjectSituational AwarenessThe Cynefin Framework and Continuous DeliveryAll Models Are Wrong, Some Are UsefulBootstrapping Continuous DeliveryMeasuring Continuous DeliveryStart Small, Experiment, Learn, Share, and RepeatIncrease Adoption: Leading ChangeAdditional Guidance and TipsBad Practices and Common AntipatternsUgly Architecture: To Fix, or Not to FixSummary
15. Continuous Delivery and Continuous Improvement
Start from Where You AreBuild on Solid Technical FoundationsContinuously Deliver Value (Your Highest Priority)Increase Shared Responsibility of SoftwarePromote Fast Feedback and ExperimentationExpand Continuous Delivery in an OrganizationContinuous ImprovementSummary
Index

Overview

Continuous delivery adds enormous value to the business and the entire software delivery lifecycle, but adopting this practice means mastering new skills typically outside of a developer’s comfort zone. In this practical book, Daniel Bryant and Abraham Marín-Pérez provide guidance to help experienced Java developers master skills such as architectural design, automated quality assurance, and application packaging and deployment on a variety of platforms.

Not only will you learn how to create a comprehensive build pipeline for continually delivering effective software, but you’ll also explore how Java application architecture and deployment platforms have affected the way we rapidly and safely deliver new software to production environments.

Get advice for beginning or completing your migration to continuous delivery
Design architecture to enable the continuous delivery of Java applications
Build application artifacts including fat JARs, virtual machine images, and operating system container (Docker) images
Use continuous integration tooling like Jenkins, PMD, and find-sec-bugs to automate code quality checks
Create a comprehensive build pipeline and design software to separate the deploy and release processes
Explore why functional and system quality attribute testing is vital from development to delivery
Learn how to effectively build and test applications locally and observe your system while it runs in production

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.

Read now

Unlock full access

More than 5,000 organizations count on O’Reilly

O’Reilly covers everything we've got, with content to help us build a world-class technology community, upgrade the capabilities and competencies of our teams, and improve overall team performance as well as their engagement.

Julian F.

Head of Cybersecurity

I wanted to learn C and C++, but it didn't click for me until I picked up an O'Reilly book. When I went on the O’Reilly platform, I was astonished to find all the books there, plus live events and sandboxes so you could play around with the technology.

Addison B.

Field Engineer

I’ve been on the O’Reilly platform for more than eight years. I use a couple of learning platforms, but I'm on O'Reilly more than anybody else. When you're there, you start learning. I'm never disappointed.

Amir M.

Data Platform Tech Lead

I'm always learning. So when I got on to O'Reilly, I was like a kid in a candy store. There are playlists. There are answers. There's on-demand training. It's worth its weight in gold, in terms of what it allows me to do.

Mark W.

Embedded Software Engineer

Hands-On Software Architecture with Java

Publisher Resources

ISBN: 9781491986011Errata Page

Cloud Computing

Data Engineering

Data Science

AI & ML

Programming Languages

Software Architecture

IT/Ops

Security

Design

Business

Soft Skills