微服务架构
微服务架构概述
微服务架构是一种将复杂应用程序拆分为小型、独立部署的服务的软件架构风格。每个服务都围绕特定的业务能力构建,并通过轻量级通信机制(通常是HTTP REST API)相互协作。
与单体架构相比,微服务架构提供了更好的灵活性、可扩展性和可维护性,特别适合大型复杂应用程序的开发和部署。
微服务架构的核心概念
服务拆分
服务拆分是微服务架构的基础,它涉及将单体应用程序分解为多个小型、独立的服务。服务拆分应遵循以下原则:
- 按业务领域拆分:根据业务功能边界划分服务,每个服务负责一个特定的业务领域。
- 单一职责原则:每个服务只关注自己的核心功能,避免职责过重。
- 松耦合、高内聚:服务之间应该是松耦合的,而服务内部应该是高内聚的。
- 独立部署:每个服务都应该能够独立部署和扩展。
示例:
# 一个电商应用的服务拆分示例
- 用户服务:负责用户管理、身份验证和授权
- 产品服务:负责产品目录、库存管理
- 订单服务:负责订单处理、支付集成
- 购物车服务:负责购物车管理
- 通知服务:负责发送电子邮件、短信通知
服务通信
在微服务架构中,服务之间需要进行通信以协作完成业务功能。常见的通信方式包括:
同步通信
- HTTP/REST:使用HTTP协议和RESTful API进行通信,是最常见的同步通信方式。
- gRPC:高性能的远程过程调用(RPC)框架,基于Protocol Buffers。
异步通信
- 消息队列:使用消息队列(如RabbitMQ、Kafka)进行异步通信,实现服务解耦。
- 事件驱动:基于事件的发布/订阅模式,服务可以发布事件,其他服务订阅并响应这些事件。
服务发现
在微服务环境中,服务实例可能会动态变化(启动、停止、扩展),因此需要一种机制来帮助服务找到彼此。服务发现机制包括:
- 客户端发现:客户端负责查找可用的服务实例,通常通过查询服务注册表实现。
- 服务端发现:客户端将请求发送到负载均衡器,负载均衡器负责查询服务注册表并将请求路由到可用的服务实例。
配置管理
在微服务架构中,配置管理变得更加复杂,因为需要管理多个服务的配置。集中式配置管理系统(如Spring Cloud Config、etcd、Consul)可以帮助解决这个问题。
容错处理
微服务架构中的故障传播是一个重要问题。为了提高系统的弹性,需要实现以下容错模式:
- 断路器模式:防止故障级联传播,当检测到故障时快速失败并提供回退机制。
- 服务降级:在系统负载过高或部分服务不可用时,提供简化的功能或响应。
- 服务熔断:当服务连续失败次数超过阈值时,暂时停止对该服务的请求。
- 限流:限制对服务的请求速率,防止服务过载。
Node.js与微服务架构
Node.js非常适合构建微服务架构,主要原因包括:
- 轻量级:Node.js应用程序通常占用较少的资源,适合运行多个小型服务。
- 高性能:Node.js的非阻塞I/O模型和事件驱动架构使其能够高效处理并发请求。
- JavaScript生态:丰富的npm包和工具使开发和部署微服务变得更加容易。
- 快速开发:Node.js的简洁语法和强大的异步编程模型加快了开发速度。
Node.js微服务框架
以下是一些流行的Node.js微服务框架:
Express.js
Express.js是一个轻量级的Web框架,虽然不是专门为微服务设计的,但它的简洁性和灵活性使其成为构建微服务的流行选择。
基本用法:
const express = require('express');
const app = express();
const port = 3000;
app.use(express.json());
// 健康检查端点
app.get('/health', (req, res) => {
res.status(200).json({ status: 'UP' });
});
// 业务端点
app.get('/api/products/:id', async (req, res) => {
try {
const product = await getProductById(req.params.id);
res.json(product);
} catch (error) {
res.status(500).json({ error: 'Internal server error' });
}
});
app.listen(port, () => {
console.log(`Product service running on port ${port}`);
});
Fastify
Fastify是一个高性能的Web框架,专为API设计,提供了更好的性能和更多的内置功能。
基本用法:
const fastify = require('fastify')({
logger: true
});
// 健康检查端点
fastify.get('/health', async (request, reply) => {
return { status: 'UP' };
});
// 业务端点
fastify.get('/api/products/:id', async (request, reply) => {
const { id } = request.params;
try {
const product = await getProductById(id);
return product;
} catch (error) {
reply.status(500).send({ error: 'Internal server error' });
}
});
// 启动服务器
const start = async () => {
try {
await fastify.listen({ port: 3000 });
fastify.log.info(`Server running on ${fastify.server.address().port}`);
} catch (err) {
fastify.log.error(err);
process.exit(1);
}
};
start();
NestJS
NestJS是一个功能丰富的框架,基于TypeScript,提供了完整的微服务支持,包括服务发现、负载均衡、消息传递等。
基本用法:
import { NestFactory } from '@nestjs/core';
import { AppModule } from './app.module';
async function bootstrap() {
const app = await NestFactory.create(AppModule);
await app.listen(3000);
}
bootstrap();
// app.module.ts
import { Module } from '@nestjs/common';
import { ProductController } from './product.controller';
import { ProductService } from './product.service';
@Module({
controllers: [ProductController],
providers: [ProductService],
})
export class AppModule {}
// product.controller.ts
import { Controller, Get, Param } from '@nestjs/common';
import { ProductService } from './product.service';
@Controller('api/products')
export class ProductController {
constructor(private readonly productService: ProductService) {}
@Get(':id')
findOne(@Param('id') id: string) {
return this.productService.findOne(id);
}
}
Node.js服务发现和配置管理
Consul
Consul是一个开源的服务发现和配置管理工具,可以与Node.js应用程序集成。
使用consul-node客户端:
const Consul = require('consul');
const consul = new Consul({
host: 'localhost',
port: 8500
});
// 服务注册
consul.agent.service.register({
name: 'product-service',
address: 'localhost',
port: 3000,
check: {
http: 'http://localhost:3000/health',
interval: '10s'
}
}, (err) => {
if (err) throw err;
console.log('Service registered with Consul');
});
// 服务发现
consul.agent.service.list((err, services) => {
if (err) throw err;
console.log(services);
});
// 配置获取
consul.kv.get('config/product-service', (err, result) => {
if (err) throw err;
const config = JSON.parse(result.Value);
console.log(config);
});
etcd
etcd是一个分布式键值存储,可用于服务发现和配置管理。
使用node-etcd客户端:
const Etcd = require('node-etcd');
const etcd = new Etcd(['localhost:2379']);
// 设置配置
etcd.set('/config/product-service', JSON.stringify({
database: {
host: 'localhost',
port: 5432
},
logging: {
level: 'info'
}
}));
// 获取配置
etcd.get('/config/product-service', (err, result) => {
if (err) throw err;
const config = JSON.parse(result.node.value);
console.log(config);
});
// 监听配置变化
etcd.watch('/config/product-service', (err, result) => {
if (err) throw err;
const updatedConfig = JSON.parse(result.node.value);
console.log('Configuration updated:', updatedConfig);
});
Node.js容错处理
断路器模式实现
可以使用opossum库来实现断路器模式:
const CircuitBreaker = require('opossum');
const axios = require('axios');
// 创建断路器
const circuitBreakerOptions = {
timeout: 3000, // 3秒超时
errorThresholdPercentage: 50, // 错误率超过50%时触发断路
resetTimeout: 10000 // 10秒后尝试半开状态
};
// 被保护的函数
const callUserService = async (userId) => {
const response = await axios.get(`http://user-service/api/users/${userId}`);
return response.data;
};
// 创建断路器包装的函数
const circuitBreaker = new CircuitBreaker(callUserService, circuitBreakerOptions);
// 使用断路器包装的函数
const getUser = async (userId) => {
try {
return await circuitBreaker.fire(userId);
} catch (error) {
if (error.name === 'CircuitOpenError') {
// 断路器打开,提供降级响应
return getCachedUser(userId) || { id: userId, name: 'Guest' };
}
throw error;
}
};
// 监听断路器事件
circuitBreaker.on('open', () => {
console.log('Circuit breaker opened');
});
circuitBreaker.on('close', () => {
console.log('Circuit breaker closed');
});
circuitBreaker.on('halfOpen', () => {
console.log('Circuit breaker half-open');
});
Node.js微服务通信
HTTP/REST通信
使用axios库进行HTTP/REST通信:
const axios = require('axios');
// 创建axios实例,配置基础URL和超时
const apiClient = axios.create({
baseURL: 'http://api-gateway',
timeout: 5000,
headers: {
'Content-Type': 'application/json'
}
});
// 添加请求拦截器
apiClient.interceptors.request.use(
(config) => {
// 添加认证令牌等
const token = getAuthToken();
if (token) {
config.headers.Authorization = `Bearer ${token}`;
}
return config;
},
(error) => {
return Promise.reject(error);
}
);
// 添加响应拦截器
apiClient.interceptors.response.use(
(response) => {
return response.data;
},
(error) => {
// 统一错误处理
if (error.response) {
// 服务器返回错误状态码
console.error(`API Error: ${error.response.status} - ${error.response.data}`);
} else if (error.request) {
// 请求已发送但没有收到响应
console.error('No response received from server');
} else {
// 设置请求时发生错误
console.error(`Request error: ${error.message}`);
}
return Promise.reject(error);
}
);
// 使用API客户端
async function createOrder(orderData) {
try {
const response = await apiClient.post('/orders', orderData);
return response;
} catch (error) {
// 处理错误或向上抛出
throw error;
}
}
消息队列通信
使用RabbitMQ进行消息队列通信:
const amqp = require('amqplib');
class RabbitMQClient {
constructor() {
this.connection = null;
this.channel = null;
}
async connect() {
try {
this.connection = await amqp.connect('amqp://localhost');
this.channel = await this.connection.createChannel();
console.log('Connected to RabbitMQ');
} catch (error) {
console.error('Failed to connect to RabbitMQ:', error);
throw error;
}
}
async publish(queue, message) {
if (!this.channel) {
await this.connect();
}
await this.channel.assertQueue(queue, { durable: true });
this.channel.sendToQueue(queue, Buffer.from(JSON.stringify(message)), {
persistent: true
});
console.log(`Message published to queue ${queue}`);
}
async consume(queue, callback) {
if (!this.channel) {
await this.connect();
}
await this.channel.assertQueue(queue, { durable: true });
this.channel.consume(queue, (msg) => {
if (msg !== null) {
try {
const message = JSON.parse(msg.content.toString());
callback(message);
this.channel.ack(msg);
} catch (error) {
console.error('Error processing message:', error);
this.channel.nack(msg);
}
}
});
console.log(`Consuming messages from queue ${queue}`);
}
async close() {
if (this.channel) {
await this.channel.close();
}
if (this.connection) {
await this.connection.close();
}
console.log('RabbitMQ connection closed');
}
}
// 使用示例
const rabbitClient = new RabbitMQClient();
// 发布消息
async function publishOrderCreated(order) {
await rabbitClient.publish('order.created', {
orderId: order.id,
customerId: order.customerId,
amount: order.amount,
createdAt: new Date().toISOString()
});
}
// 消费消息
async function startOrderProcessing() {
await rabbitClient.consume('order.created', async (message) => {
console.log('Processing order:', message);
// 处理订单逻辑
try {
await processOrder(message.orderId);
await rabbitClient.publish('order.processed', message);
} catch (error) {
await rabbitClient.publish('order.failed', {
...message,
error: error.message
});
}
});
}
gRPC通信
使用gRPC进行高性能RPC通信:
首先,定义服务接口(使用Protocol Buffers):
// product.proto
syntax = "proto3";
package product;
service ProductService {
rpc GetProduct (GetProductRequest) returns (Product);
rpc ListProducts (ListProductsRequest) returns (ListProductsResponse);
rpc CreateProduct (CreateProductRequest) returns (Product);
}
message GetProductRequest {
string id = 1;
}
message Product {
string id = 1;
string name = 2;
string description = 3;
double price = 4;
int32 stock = 5;
}
message ListProductsRequest {
int32 page = 1;
int32 page_size = 2;
}
message ListProductsResponse {
repeated Product products = 1;
int32 total = 2;
int32 page = 3;
int32 page_size = 4;
}
message CreateProductRequest {
string name = 1;
string description = 2;
double price = 3;
int32 stock = 4;
}
然后,实现gRPC服务器:
const grpc = require('@grpc/grpc-js');
const protoLoader = require('@grpc/proto-loader');
const path = require('path');
// 加载proto文件
const productProtoPath = path.join(__dirname, 'proto', 'product.proto');
const packageDefinition = protoLoader.loadSync(productProtoPath, {
keepCase: true,
longs: String,
enums: String,
defaults: true,
oneofs: true
});
const productProto = grpc.loadPackageDefinition(packageDefinition).product;
// 模拟数据库
const products = [];
let nextId = 1;
// 实现服务方法
const productService = {
getProduct: (call, callback) => {
const product = products.find(p => p.id === call.request.id);
if (product) {
callback(null, product);
} else {
callback({ code: grpc.status.NOT_FOUND, details: 'Product not found' });
}
},
listProducts: (call, callback) => {
const page = call.request.page || 1;
const pageSize = call.request.page_size || 10;
const startIndex = (page - 1) * pageSize;
const endIndex = startIndex + pageSize;
const paginatedProducts = products.slice(startIndex, endIndex);
callback(null, {
products: paginatedProducts,
total: products.length,
page: page,
page_size: pageSize
});
},
createProduct: (call, callback) => {
const newProduct = {
id: nextId.toString(),
name: call.request.name,
description: call.request.description,
price: call.request.price,
stock: call.request.stock
};
products.push(newProduct);
nextId++;
callback(null, newProduct);
}
};
// 创建和启动服务器
function startServer() {
const server = new grpc.Server();
server.addService(productProto.ProductService.service, productService);
const port = '0.0.0.0:50051';
server.bindAsync(port, grpc.ServerCredentials.createInsecure(), (err, port) => {
if (err) {
console.error('Failed to bind server:', err);
return;
}
server.start();
console.log(`gRPC server running on port ${port}`);
});
}
startServer();
创建gRPC客户端:
const grpc = require('@grpc/grpc-js');
const protoLoader = require('@grpc/proto-loader');
const path = require('path');
// 加载proto文件
const productProtoPath = path.join(__dirname, 'proto', 'product.proto');
const packageDefinition = protoLoader.loadSync(productProtoPath, {
keepCase: true,
longs: String,
enums: String,
defaults: true,
oneofs: true
});
const productProto = grpc.loadPackageDefinition(packageDefinition).product;
// 创建客户端
const client = new productProto.ProductService(
'localhost:50051',
grpc.credentials.createInsecure()
);
// 使用客户端
function getProduct(productId) {
return new Promise((resolve, reject) => {
client.getProduct({ id: productId }, (error, product) => {
if (error) {
reject(error);
} else {
resolve(product);
}
});
});
}
async function main() {
try {
const product = await getProduct('1');
console.log('Product:', product);
} catch (error) {
console.error('Error getting product:', error);
}
}
main();
微服务数据管理
分布式事务
在微服务架构中,实现分布式事务是一个挑战。以下是一些常见的分布式事务模式:
SAGA模式
SAGA模式将一个大事务分解为多个小事务,每个小事务由一个服务负责。如果某个步骤失败,可以执行补偿事务来撤销之前的操作。
实现示例:
class OrderSaga {
constructor(orderService, paymentService, inventoryService, notificationService) {
this.orderService = orderService;
this.paymentService = paymentService;
this.inventoryService = inventoryService;
this.notificationService = notificationService;
}
async createOrder(orderData) {
let orderId;
try {
// 1. 创建订单
const order = await this.orderService.create(orderData);
orderId = order.id;
try {
// 2. 预留库存
await this.inventoryService.reserve(orderData.items);
try {
// 3. 处理支付
await this.paymentService.charge(orderData.paymentDetails, orderData.totalAmount);
// 4. 确认订单
await this.orderService.confirm(orderId);
// 5. 发送确认通知
await this.notificationService.sendOrderConfirmation(orderId);
return { success: true, orderId };
} catch (paymentError) {
// 支付失败,回滚库存
await this.inventoryService.release(orderData.items);
throw paymentError;
}
} catch (inventoryError) {
// 库存预留失败,取消订单
await this.orderService.cancel(orderId);
throw inventoryError;
}
} catch (error) {
// 发送失败通知
if (orderId) {
await this.notificationService.sendOrderFailure(orderId, error.message);
}
throw error;
}
}
}
两阶段提交(2PC)
两阶段提交是一种更严格的分布式事务协议,但在微服务环境中通常不推荐使用,因为它会降低系统的可用性和性能。
CQRS模式
命令查询责任分离(CQRS)模式将数据的读取(查询)和写入(命令)操作分离到不同的模型中。
实现示例:
// 命令模型 - 处理写操作
class OrderCommandHandler {
constructor(orderRepository, eventPublisher) {
this.orderRepository = orderRepository;
this.eventPublisher = eventPublisher;
}
async handleCreateOrder(command) {
// 创建订单实体
const order = new Order({
id: generateId(),
customerId: command.customerId,
items: command.items,
totalAmount: calculateTotal(command.items),
status: 'PENDING'
});
// 保存订单
await this.orderRepository.save(order);
// 发布领域事件
await this.eventPublisher.publish(new OrderCreatedEvent({
orderId: order.id,
customerId: order.customerId,
totalAmount: order.totalAmount
}));
return { orderId: order.id };
}
}
// 查询模型 - 处理读操作
class OrderQueryHandler {
constructor(orderReadModelRepository) {
this.orderReadModelRepository = orderReadModelRepository;
}
async handleGetOrder(query) {
return await this.orderReadModelRepository.findById(query.orderId);
}
async handleListOrders(query) {
return await this.orderReadModelRepository.findByCustomerId(query.customerId, {
page: query.page,
pageSize: query.pageSize
});
}
}
// 事件处理器 - 更新读模型
class OrderEventHandler {
constructor(orderReadModelRepository) {
this.orderReadModelRepository = orderReadModelRepository;
}
async handleOrderCreated(event) {
const orderReadModel = {
id: event.orderId,
customerId: event.customerId,
totalAmount: event.totalAmount,
status: 'PENDING',
createdAt: new Date().toISOString()
};
await this.orderReadModelRepository.save(orderReadModel);
}
}
微服务监控与可观测性
日志聚合
在微服务环境中,日志分布在多个服务实例中,需要集中收集和分析。
使用Winston和ELK Stack:
const winston = require('winston');
const ElkTransport = require('winston-elk');
// 创建Logger
const logger = winston.createLogger({
level: 'info',
format: winston.format.combine(
winston.format.timestamp({
format: 'YYYY-MM-DD HH:mm:ss.SSS'
}),
winston.format.json()
),
defaultMeta: {
service: process.env.SERVICE_NAME || 'unknown-service',
environment: process.env.NODE_ENV || 'development',
instanceId: process.env.INSTANCE_ID || 'local'
},
transports: [
// 控制台输出
new winston.transports.Console({
format: winston.format.combine(
winston.format.colorize(),
winston.format.simple()
)
}),
// 文件输出
new winston.transports.File({
filename: 'error.log',
level: 'error'
}),
new winston.transports.File({
filename: 'combined.log'
}),
// ELK输出 (生产环境)
process.env.NODE_ENV === 'production' ? new ElkTransport({
level: 'info',
elk: {
client: {
node: process.env.ELASTICSEARCH_URL || 'http://localhost:9200'
}
}
}) : null
].filter(Boolean)
});
// 使用Logger
function logRequest(req, res, next) {
const start = Date.now();
logger.info('Request started', {
method: req.method,
url: req.originalUrl,
headers: {
'user-agent': req.headers['user-agent'],
'x-request-id': req.headers['x-request-id']
},
body: req.body
});
res.on('finish', () => {
const duration = Date.now() - start;
logger.info('Request completed', {
method: req.method,
url: req.originalUrl,
statusCode: res.statusCode,
duration: duration,
'x-request-id': req.headers['x-request-id']
});
});
next();
}
指标监控
使用Prometheus和Grafana进行指标监控:
const express = require('express');
const client = require('prom-client');
// 创建Express应用
const app = express();
// 创建Prometheus注册表
const register = new client.Registry();
// 启用默认指标
client.collectDefaultMetrics({ register });
// 创建自定义指标
const httpRequestDurationMicroseconds = new client.Histogram({
name: 'http_request_duration_seconds',
help: 'Duration of HTTP requests in seconds',
labelNames: ['method', 'route', 'code'],
buckets: [0.1, 0.3, 0.5, 0.7, 1, 3, 5, 10]
});
const httpRequestCounter = new client.Counter({
name: 'http_requests_total',
help: 'Total number of HTTP requests',
labelNames: ['method', 'route', 'code']
});
// 注册自定义指标
register.registerMetric(httpRequestDurationMicroseconds);
register.registerMetric(httpRequestCounter);
// 中间件 - 记录请求指标
app.use((req, res, next) => {
const start = Date.now();
res.on('finish', () => {
const duration = (Date.now() - start) / 1000; // 转换为秒
const route = req.route ? req.route.path : req.originalUrl;
httpRequestDurationMicroseconds.observe(
{ method: req.method, route: route, code: res.statusCode },
duration
);
httpRequestCounter.inc({ method: req.method, route: route, code: res.statusCode });
});
next();
});
// 指标端点
app.get('/metrics', async (req, res) => {
try {
res.set('Content-Type', register.contentType);
res.end(await register.metrics());
} catch (error) {
res.status(500).end(error.message);
}
});
// 其他路由
app.get('/api/products', (req, res) => {
// 处理请求
res.json([{ id: 1, name: 'Product 1' }]);
});
// 启动服务器
const PORT = process.env.PORT || 3000;
app.listen(PORT, () => {
console.log(`Server running on port ${PORT}`);
});
分布式追踪
使用Jaeger进行分布式追踪:
const { NodeTracerProvider } = require('@opentelemetry/sdk-trace-node');
const { SimpleSpanProcessor } = require('@opentelemetry/sdk-trace-base');
const { JaegerExporter } = require('@opentelemetry/exporter-jaeger');
const { ExpressInstrumentation } = require('@opentelemetry/instrumentation-express');
const { HttpInstrumentation } = require('@opentelemetry/instrumentation-http');
const { registerInstrumentations } = require('@opentelemetry/instrumentation');
const opentelemetry = require('@opentelemetry/api');
// 创建跟踪提供者
const provider = new NodeTracerProvider();
// 创建Jaeger导出器
const exporter = new JaegerExporter({
endpoint: 'http://localhost:14268/api/traces'
});
// 添加处理器到提供者
provider.addSpanProcessor(new SimpleSpanProcessor(exporter));
// 注册提供者
provider.register();
// 注册自动检测
registerInstrumentations({
instrumentations: [
new HttpInstrumentation(),
new ExpressInstrumentation()
],
tracerProvider: provider
});
// 获取跟踪器
const tracer = opentelemetry.trace.getTracer('product-service');
// 在Express应用中使用
const express = require('express');
const app = express();
app.get('/api/products/:id', (req, res) => {
// 创建自定义跨度
const span = tracer.startSpan('get-product-details', {
attributes: {
'product.id': req.params.id
}
});
try {
// 模拟数据库查询
setTimeout(() => {
span.setAttribute('db.query', 'SELECT * FROM products WHERE id = ?');
// 模拟调用其他服务
const inventorySpan = tracer.startSpan('check-inventory', {
attributes: {
'product.id': req.params.id
}
});
setTimeout(() => {
inventorySpan.end();
res.json({ id: req.params.id, name: 'Product', stock: 100 });
span.end();
}, 100);
}, 200);
} catch (error) {
span.recordException(error);
span.end();
res.status(500).json({ error: error.message });
}
});
app.listen(3000, () => {
console.log('Server running on port 3000');
});
微服务部署与容器化
Docker容器化
将Node.js微服务容器化:
创建Dockerfile:
# 使用官方Node.js镜像作为基础镜像
FROM node:16-alpine
# 设置工作目录
WORKDIR /app
# 复制package.json和package-lock.json
COPY package*.json ./
# 安装依赖
RUN npm ci --only=production
# 复制源代码
COPY . .
# 暴露端口
EXPOSE 3000
# 设置环境变量
ENV NODE_ENV=production
ENV PORT=3000
# 运行应用
CMD ["node", "index.js"]
创建.dockerignore文件:
node_modules
npm-debug.log
Dockerfile
.dockerignore
.env
.git
.gitignore
构建和运行Docker镜像:
# 构建镜像
docker build -t product-service .
# 运行容器
docker run -p 3000:3000 --name product-service-container product-service
# 运行容器并挂载卷(开发模式)
docker run -p 3000:3000 -v $(pwd):/app -e NODE_ENV=development product-service
Docker Compose编排
使用Docker Compose编排多个微服务:
创建docker-compose.yml文件:
version: '3.8'
services:
# API网关
api-gateway:
build: ./api-gateway
ports:
- "8080:8080"
depends_on:
- user-service
- product-service
- order-service
environment:
- NODE_ENV=development
- USER_SERVICE_URL=http://user-service:3001
- PRODUCT_SERVICE_URL=http://product-service:3002
- ORDER_SERVICE_URL=http://order-service:3003
networks:
- microservices-network
# 用户服务
user-service:
build: ./user-service
ports:
- "3001:3001"
depends_on:
- user-db
- rabbitmq
environment:
- NODE_ENV=development
- DB_HOST=user-db
- DB_PORT=5432
- DB_USER=user
- DB_PASSWORD=password
- DB_NAME=user_db
- RABBITMQ_URL=amqp://rabbitmq:5672
networks:
- microservices-network
# 产品服务
product-service:
build: ./product-service
ports:
- "3002:3002"
depends_on:
- product-db
- rabbitmq
environment:
- NODE_ENV=development
- DB_HOST=product-db
- DB_PORT=5432
- DB_USER=user
- DB_PASSWORD=password
- DB_NAME=product_db
- RABBITMQ_URL=amqp://rabbitmq:5672
networks:
- microservices-network
# 订单服务
order-service:
build: ./order-service
ports:
- "3003:3003"
depends_on:
- order-db
- rabbitmq
environment:
- NODE_ENV=development
- DB_HOST=order-db
- DB_PORT=5432
- DB_USER=user
- DB_PASSWORD=password
- DB_NAME=order_db
- RABBITMQ_URL=amqp://rabbitmq:5672
networks:
- microservices-network
# 数据库服务
user-db:
image: postgres:13-alpine
environment:
- POSTGRES_USER=user
- POSTGRES_PASSWORD=password
- POSTGRES_DB=user_db
volumes:
- user-db-data:/var/lib/postgresql/data
networks:
- microservices-network
product-db:
image: postgres:13-alpine
environment:
- POSTGRES_USER=user
- POSTGRES_PASSWORD=password
- POSTGRES_DB=product_db
volumes:
- product-db-data:/var/lib/postgresql/data
networks:
- microservices-network
order-db:
image: postgres:13-alpine
environment:
- POSTGRES_USER=user
- POSTGRES_PASSWORD=password
- POSTGRES_DB=order_db
volumes:
- order-db-data:/var/lib/postgresql/data
networks:
- microservices-network
# 消息队列
rabbitmq:
image: rabbitmq:3-management-alpine
ports:
- "5672:5672"
- "15672:15672"
volumes:
- rabbitmq-data:/var/lib/rabbitmq
networks:
- microservices-network
# 监控工具
prometheus:
image: prom/prometheus:latest
ports:
- "9090:9090"
volumes:
- ./prometheus.yml:/etc/prometheus/prometheus.yml
networks:
- microservices-network
grafana:
image: grafana/grafana:latest
ports:
- "3000:3000"
volumes:
- grafana-data:/var/lib/grafana
networks:
- microservices-network
depends_on:
- prometheus
# 网络定义
networks:
microservices-network:
driver: bridge
# 卷定义
volumes:
user-db-data:
product-db-data:
order-db-data:
rabbitmq-data:
grafana-data:
启动所有服务:
docker-compose up -d
微服务安全
API网关认证与授权
使用API网关集中处理认证和授权:
const express = require('express');
const jwt = require('jsonwebtoken');
const axios = require('axios');
const app = express();
// JWT密钥
const JWT_SECRET = process.env.JWT_SECRET || 'your-secret-key';
// 服务配置
const SERVICES = {
user: 'http://user-service:3001',
product: 'http://product-service:3002',
order: 'http://order-service:3003'
};
// 认证中间件
const authenticate = (req, res, next) => {
const authHeader = req.headers.authorization;
if (!authHeader) {
return res.status(401).json({ error: 'Authorization header is required' });
}
const token = authHeader.split(' ')[1];
try {
const decoded = jwt.verify(token, JWT_SECRET);
req.user = decoded;
next();
} catch (error) {
res.status(401).json({ error: 'Invalid or expired token' });
}
};
// 授权中间件
const authorize = (requiredRoles) => {
return (req, res, next) => {
const userRoles = req.user.roles || [];
const hasRequiredRole = requiredRoles.some(role => userRoles.includes(role));
if (!hasRequiredRole) {
return res.status(403).json({ error: 'Insufficient permissions' });
}
next();
};
};
// API网关路由 - 用户服务
app.get('/api/users/:id', authenticate, async (req, res) => {
try {
const response = await axios.get(`${SERVICES.user}/api/users/${req.params.id}`, {
headers: {
'x-user-id': req.user.id,
'x-user-roles': req.user.roles
}
});
res.json(response.data);
} catch (error) {
handleError(error, res);
}
});
// API网关路由 - 产品服务
app.get('/api/products', authenticate, async (req, res) => {
try {
const response = await axios.get(`${SERVICES.product}/api/products`);
res.json(response.data);
} catch (error) {
handleError(error, res);
}
});
// API网关路由 - 订单服务(需要admin角色)
app.post('/api/orders', authenticate, authorize(['admin']), async (req, res) => {
try {
const response = await axios.post(`${SERVICES.order}/api/orders`, req.body, {
headers: {
'x-user-id': req.user.id
}
});
res.status(response.status).json(response.data);
} catch (error) {
handleError(error, res);
}
});
// 错误处理
function handleError(error, res) {
if (error.response) {
res.status(error.response.status).json(error.response.data);
} else if (error.request) {
res.status(503).json({ error: 'Service unavailable' });
} else {
res.status(500).json({ error: 'Internal server error' });
}
}
// 启动服务器
const PORT = process.env.PORT || 8080;
app.listen(PORT, () => {
console.log(`API Gateway running on port ${PORT}`);
});
服务间通信安全
保护服务间通信:
const axios = require('axios');
const https = require('https');
// 创建HTTPS代理,用于验证证书
const agent = new https.Agent({
rejectUnauthorized: process.env.NODE_ENV === 'production' // 生产环境拒绝无效证书
});
// 创建带安全配置的axios实例
const secureApiClient = axios.create({
httpsAgent: agent,
timeout: 5000,
headers: {
'Content-Type': 'application/json'
}
});
// 添加请求拦截器 - 服务间认证
secureApiClient.interceptors.request.use(
(config) => {
// 从环境变量或密钥管理服务获取服务账号凭证
const serviceToken = getServiceToken();
if (serviceToken) {
config.headers['x-service-token'] = serviceToken;
}
// 添加请求ID用于追踪
config.headers['x-request-id'] = generateRequestId();
return config;
},
(error) => {
return Promise.reject(error);
}
);
// 添加响应拦截器 - 验证响应签名
secureApiClient.interceptors.response.use(
(response) => {
// 验证响应签名(可选)
// if (process.env.NODE_ENV === 'production') {
// verifyResponseSignature(response);
// }
return response;
},
(error) => {
// 记录安全相关错误
if (error.response && (error.response.status === 401 || error.response.status === 403)) {
console.error('Security error:', error.response.data);
}
return Promise.reject(error);
}
);
// 生成服务令牌
function getServiceToken() {
// 在实际应用中,应该从安全的密钥存储中获取
// 这里只是一个示例
return process.env.SERVICE_TOKEN;
}
// 生成请求ID
function generateRequestId() {
return Date.now().toString(36) + Math.random().toString(36).substr(2);
}
// 验证响应签名(示例实现)
function verifyResponseSignature(response) {
// 实现响应签名验证逻辑
// 这通常涉及使用公钥验证响应内容的签名
const signature = response.headers['x-response-signature'];
if (!signature) {
throw new Error('Missing response signature');
}
// 验证逻辑...
}
微服务测试策略
单元测试
使用Jest进行单元测试:
// product.service.js
class ProductService {
constructor(productRepository) {
this.productRepository = productRepository;
}
async getProduct(id) {
if (!id) {
throw new Error('Product ID is required');
}
const product = await this.productRepository.findById(id);
if (!product) {
throw new Error('Product not found');
}
return product;
}
async createProduct(productData) {
// 验证数据
this.validateProductData(productData);
// 创建产品
return await this.productRepository.create(productData);
}
validateProductData(data) {
if (!data.name || data.name.trim() === '') {
throw new Error('Product name is required');
}
if (!data.price || typeof data.price !== 'number' || data.price < 0) {
throw new Error('Valid product price is required');
}
}
}
module.exports = ProductService;
// product.service.test.js
const ProductService = require('./product.service');
// Mock repository
jest.mock('./product.repository', () => ({
findById: jest.fn(),
create: jest.fn()
}));
const ProductRepository = require('./product.repository');
describe('ProductService', () => {
let productService;
let mockProduct;
beforeEach(() => {
productService = new ProductService(ProductRepository);
mockProduct = {
id: '1',
name: 'Test Product',
price: 99.99,
stock: 100
};
// 重置mock
jest.clearAllMocks();
});
describe('getProduct', () => {
it('should return product when found', async () => {
// Arrange
ProductRepository.findById.mockResolvedValue(mockProduct);
// Act
const result = await productService.getProduct('1');
// Assert
expect(result).toEqual(mockProduct);
expect(ProductRepository.findById).toHaveBeenCalledWith('1');
expect(ProductRepository.findById).toHaveBeenCalledTimes(1);
});
it('should throw error when product not found', async () => {
// Arrange
ProductRepository.findById.mockResolvedValue(null);
// Act & Assert
await expect(productService.getProduct('999')).rejects.toThrow('Product not found');
expect(ProductRepository.findById).toHaveBeenCalledWith('999');
});
it('should throw error when id is not provided', async () => {
// Act & Assert
await expect(productService.getProduct()).rejects.toThrow('Product ID is required');
expect(ProductRepository.findById).not.toHaveBeenCalled();
});
});
describe('createProduct', () => {
it('should create product with valid data', async () => {
// Arrange
const productData = {
name: 'New Product',
price: 49.99,
stock: 50
};
ProductRepository.create.mockResolvedValue({ ...productData, id: '2' });
// Act
const result = await productService.createProduct(productData);
// Assert
expect(result).toEqual({ ...productData, id: '2' });
expect(ProductRepository.create).toHaveBeenCalledWith(productData);
});
it('should throw error when name is missing', async () => {
// Arrange
const invalidData = {
price: 49.99,
stock: 50
};
// Act & Assert
await expect(productService.createProduct(invalidData)).rejects.toThrow('Product name is required');
expect(ProductRepository.create).not.toHaveBeenCalled();
});
it('should throw error when price is invalid', async () => {
// Arrange
const invalidData = {
name: 'Invalid Product',
price: -10,
stock: 50
};
// Act & Assert
await expect(productService.createProduct(invalidData)).rejects.toThrow('Valid product price is required');
expect(ProductRepository.create).not.toHaveBeenCalled();
});
});
});
集成测试
测试服务与数据库的集成:
const request = require('supertest');
const mongoose = require('mongoose');
const app = require('../app');
const Product = require('../models/product');
describe('Product API Integration Tests', () => {
beforeAll(async () => {
// 连接测试数据库
await mongoose.connect('mongodb://localhost:27017/testdb', {
useNewUrlParser: true,
useUnifiedTopology: true
});
});
beforeEach(async () => {
// 清除测试数据
await Product.deleteMany({});
// 创建测试数据
await Product.create([
{
name: 'Product 1',
price: 99.99,
stock: 100
},
{
name: 'Product 2',
price: 199.99,
stock: 50
}
]);
});
afterAll(async () => {
// 断开数据库连接
await mongoose.connection.close();
});
describe('GET /api/products', () => {
it('should return all products', async () => {
const response = await request(app).get('/api/products');
expect(response.status).toBe(200);
expect(Array.isArray(response.body)).toBe(true);
expect(response.body.length).toBe(2);
});
});
describe('GET /api/products/:id', () => {
it('should return product by id', async () => {
const product = await Product.findOne({ name: 'Product 1' });
const response = await request(app).get(`/api/products/${product._id}`);
expect(response.status).toBe(200);
expect(response.body.name).toBe('Product 1');
expect(response.body.price).toBe(99.99);
});
it('should return 404 when product not found', async () => {
const nonExistentId = mongoose.Types.ObjectId();
const response = await request(app).get(`/api/products/${nonExistentId}`);
expect(response.status).toBe(404);
expect(response.body.error).toBe('Product not found');
});
});
describe('POST /api/products', () => {
it('should create a new product', async () => {
const newProduct = {
name: 'New Product',
price: 299.99,
stock: 75
};
const response = await request(app)
.post('/api/products')
.send(newProduct)
.set('Accept', 'application/json');
expect(response.status).toBe(201);
expect(response.body.name).toBe(newProduct.name);
expect(response.body.price).toBe(newProduct.price);
// 验证数据库中是否存在新创建的产品
const createdProduct = await Product.findById(response.body._id);
expect(createdProduct).not.toBeNull();
expect(createdProduct.name).toBe(newProduct.name);
});
it('should return 400 when required fields are missing', async () => {
const invalidProduct = {
price: 299.99
// 缺少name字段
};
const response = await request(app)
.post('/api/products')
.send(invalidProduct)
.set('Accept', 'application/json');
expect(response.status).toBe(400);
expect(response.body.error).toBe('Product name is required');
});
});
});
契约测试
使用Pact进行微服务契约测试:
消费者端(订单服务):
const { Pact } = require('@pact-foundation/pact');
const { Matchers } = require('@pact-foundation/pact');
const path = require('path');
const axios = require('axios');
const { getProductById } = require('../product.client');
const { like } = Matchers;
// 创建Pact提供者
const provider = new Pact({
consumer: 'order-service',
provider: 'product-service',
port: 1234,
log: path.resolve(process.cwd(), 'logs', 'pact.log'),
dir: path.resolve(process.cwd(), 'pacts'),
logLevel: 'INFO'
});
describe('Product Service Client', () => {
beforeAll(async () => {
await provider.setup();
// 设置环境变量,指向Pact mock服务
process.env.PRODUCT_SERVICE_URL = 'http://localhost:1234';
});
afterAll(async () => {
await provider.finalize();
});
afterEach(async () => {
await provider.verify();
});
describe('getProductById', () => {
it('should return product when found', async () => {
// 定义预期的交互
const productId = '1';
const expectedProduct = {
id: productId,
name: 'Test Product',
price: 99.99,
stock: 100
};
await provider.addInteraction({
state: 'a product with ID 1 exists',
uponReceiving: 'a request to get product by ID',
withRequest: {
method: 'GET',
path: `/api/products/${productId}`,
headers: {
'Accept': 'application/json'
}
},
willRespondWith: {
status: 200,
headers: {
'Content-Type': 'application/json'
},
body: like(expectedProduct)
}
});
// 调用被测函数
const product = await getProductById(productId);
// 验证结果
expect(product).toEqual(expectedProduct);
});
it('should throw error when product not found', async () => {
// 定义预期的交互
const productId = '999';
await provider.addInteraction({
state: 'a product with ID 999 does not exist',
uponReceiving: 'a request to get non-existent product',
withRequest: {
method: 'GET',
path: `/api/products/${productId}`,
headers: {
'Accept': 'application/json'
}
},
willRespondWith: {
status: 404,
headers: {
'Content-Type': 'application/json'
},
body: {
error: 'Product not found'
}
}
});
// 验证抛出错误
await expect(getProductById(productId)).rejects.toThrow('Request failed with status code 404');
});
});
});
提供者端(产品服务):
const { Verifier } = require('@pact-foundation/pact');
const path = require('path');
const app = require('../app');
const Product = require('../models/product');
// 启动测试服务器
let server;
beforeAll(async () => {
// 连接测试数据库
await require('../config/database').connect();
// 启动API服务器
server = app.listen(3000);
});
afterAll(async () => {
// 关闭服务器
await server.close();
// 断开数据库连接
await require('../config/database').disconnect();
});
describe('Pact Verification', () => {
it('should validate the pact between order-service and product-service', async () => {
const options = {
provider: 'product-service',
providerBaseUrl: 'http://localhost:3000',
pactUrls: [path.resolve(__dirname, '..', '..', 'order-service', 'pacts', 'order-service-product-service.json')],
publishVerificationResult: true,
providerVersion: '1.0.0',
// 状态处理函数 - 用于设置测试数据
stateHandlers: {
'a product with ID 1 exists': async () => {
// 清除并创建测试数据
await Product.deleteMany({});
await Product.create({
id: '1',
name: 'Test Product',
price: 99.99,
stock: 100
});
return 'Product with ID 1 created';
},
'a product with ID 999 does not exist': async () => {
// 确保ID为999的产品不存在
await Product.deleteMany({ id: '999' });
return 'Product with ID 999 removed';
}
},
// 日志配置
logLevel: 'INFO'
};
// 验证契约
await new Verifier(options).verifyProvider();
});
});
微服务最佳实践
1. 服务拆分策略
- 按业务能力拆分,而不是技术层
- 保持服务的大小适中,避免服务过细或过粗
- 定义清晰的服务边界和API契约
- 优先考虑业务领域驱动设计(DDD)原则
2. 数据管理策略
- 每个服务拥有自己的数据存储
- 避免跨服务直接访问数据库
- 使用API进行服务间数据交换
- 考虑最终一致性而非强一致性
- 适当使用事件驱动架构进行数据同步
3. 服务通信最佳实践
- 优先使用异步通信,减少服务间耦合
- 为所有API定义明确的版本控制策略
- 实现服务熔断、降级和限流机制
- 为API提供全面的文档
- 考虑使用API网关统一管理外部请求
4. 安全最佳实践
- 实施端到端加密
- 使用OAuth 2.0和JWT进行认证和授权
- 实现细粒度的访问控制
- 定期进行安全审计和漏洞扫描
- 保护服务间通信安全
5. 部署和运维最佳实践
- 采用基础设施即代码(IaC)
- 实现自动化CI/CD流水线
- 使用容器化和编排工具
- 实施全面的监控和告警机制
- 建立完善的日志聚合和分析系统
- 实现蓝绿部署或金丝雀发布策略
6. 测试最佳实践
- 为每个服务编写全面的单元测试
- 实施集成测试验证服务间通信
- 使用契约测试确保服务间兼容性
- 进行性能测试评估系统瓶颈
- 考虑混沌工程测试系统弹性
总结
微服务架构为构建复杂、可扩展的应用程序提供了强大的框架,但它也带来了一系列挑战,如服务拆分、分布式事务、服务发现、监控等。Node.js作为一种轻量级、高性能的运行时,非常适合构建微服务应用。
通过本文介绍的Node.js微服务框架、服务通信方式、数据管理策略、监控方案、安全实践和测试方法,您可以构建出健壮、可扩展的微服务系统。
在实施微服务架构时,记住"没有银弹",应该根据具体的业务需求和团队情况选择合适的技术栈和架构模式。持续学习和实践是掌握微服务架构的关键。