Definition: Loosely-coupled services with bounded contexts
2024 Trends:
78% of enterprises use microservices (Docker Survey)
Serverless microservices adoption up 300% since 2022
WASM-based microservices emerging (Fastly, Fermyon)
Uniform Interface: Resources (nouns) vs Actions (HTTP verbs)
Statelessness: Each request contains complete
context
HATEOAS: Hypermedia as the Engine of Application State
GET /orders/123 HTTP/1.1
Accept: application/json
HTTP/1.1 200 OK
{
"id": 123,
"status": "shipped",
"_links": {
"cancel": { "href": "/orders/123", "method": "DELETE" }
}
}
| Pattern | Use Case | Example |
|---|---|---|
| Domain-Driven | Complex business logic | OrderService, PaymentService |
| Strangler | Monolith migration | Incremental service extraction |
| Sidecar | Cross-cutting concerns | Logging, Auth sidecars |
Synchronous: REST (80% usage), gRPC (high perf)
Asynchronous: Kafka (55% adoption), RabbitMQ
Event-Driven: Event sourcing with
CQRS
Performance Benchmark:
gRPC: 7x faster than REST (Protobuf binary)
REST/JSON: Better for web compatibility
Level 0: HTTP as transport (RPC-style)
Level 1: Resources (/users/123)
Level 2: HTTP verbs (GET/POST/PUT/DELETE)
Level 3: HATEOAS (Discoverable APIs)
paths:
/products:
get:
summary: List products
parameters:
- $ref: '#/components/parameters/pageSize'
responses:
200:
description: OK
content:
application/json:
schema:
$ref: '#/components/schemas/ProductCollection'
Toolchain:
Design: Stoplight Studio
Mocking: Prism
Docs: Redocly
FROM openjdk:17-jdk-slim
COPY target/service.jar /app/
EXPOSE 8080
ENTRYPOINT ["java","-jar","/app/service.jar"]
Orchestration:
Kubernetes (78% market share)
Nomad (Lightweight alternative)
Istio: Advanced traffic management
Linkerd: Lightweight (1ms latency overhead)
Consul: Multi-cloud support
Mesh Features:
Circuit breaking
Mutual TLS
Golden metrics monitoring
| Flow | Use Case | 2024 Updates |
|---|---|---|
| Authorization Code | Web apps | PKCE required |
| Client Credentials | Service-to-service | JWT assertion |
| Device | IoT | RFC 8628 |
Rate Limiting: Redis-backed (1000 RPS)
Validation: Spectral rulesets
OWASP Top 10: Injection
protection
# Curl with JWT
curl -H "Authorization: Bearer eyJhbG..." https://api.example.com
RED Method: Requests, Errors, Duration
USE Method: Utilization, Saturation, Errors
Tools: Prometheus + Grafana (65% adoption)
// Spring Cloud Sleuth example
@GetMapping("/")
public String home(Span span) {
span.tag("transaction", "begin-checkout");
return "Hello
World";
}
Tracing Tools:
Jaeger
Zipkin
AWS X-Ray
K8s HPA: CPU/memory autoscaling
Serverless: AWS Lambda (100ms billing)
| Pattern | Description | Use Case |
|---|---|---|
| CQRS | Separate read/write | High-traffic APIs |
| Saga | Eventual consistency | Distributed transactions |
| Sharding | Data partitioning | Global apps |
WebAssembly Microservices: 10μs cold start
AI-Generated APIs: GPT-4 for OpenAPI specs
Quantum-Resistant Cryptography: NIST PQC standards
Books: Building Microservices (Sam Newman)
Courses: Coursera Microservices (Google)
Tools: Apicurio (API design)