Naver is the popular web portal, handles the half of all web searches in South Korea and also have a messenger service having a billion users. To process the such large scale users, We has built dozens of dev platform, and have hundreds of engineers working on them. However, due to lack of strict dev rules, each platforms have evolved to have its own web interface and authz/authn. These became a mess and it's a common issue in the big company like us. It would be very convenience for developers if these platforms are integrated as a PaaS providing a seamless web interface and role system. This is what our project 'Pasta' does.
In this topic, we will talk about why we adopt the keystone as a unified role system for non-openstack services and how we make it support huge users. In addition, we will show how we applied the microservice architecture using Netfix Zuul to integrate web interface. we will also share how we integrate Kolla to legacy infra and enable the continuous delivery.
In this talk, attendees can learn followings.
* The problem when keystone is applied to large user sets
* How to enable keystone to support huge users with company providing oauth2
* How X-AUTH-TOKEN flows
* How to adopt keystone as a unified role system for non-openstack leagacy services
* Introduce newly styled openstack web console rather than Horizon.
* How to build the console in microservice architecture using Netflic Zuul to integrate legacy platform's web interface for the efficient development.
* How to make kolla/ansible deployed with zero downtime.
* How to make Kolla fit into legacy infrastructue such as company providing L4 and DB.
* How to continuously deliver openstack using Kolla with own plugins.