Welcome!

Microservices Expo Authors: Elizabeth White, Pat Romanski, Liz McMillan, Harry Trott, Mamoon Yunus

Related Topics: Microservices Expo, Java IoT, Industrial IoT, Machine Learning , Agile Computing

Microservices Expo: Book Review

Book Review: SOA with REST

Principles, Patterns & Constraints for Building Enterprise Solutions with REST

This book does what it patterns book should do. It defines a language for enterprises to use to develop SOA solutions using REST.

The book starts off with two chapters. The first chapter is an introduction and shows how the book is laid out. Chapter 2 introduces two case studies that are used throughout the book to provide examples of how the patterns can be applied to real-world situations.

After the first two chapters of the book is broken down into six parts. I have listed the parts below with their associated chapters.

Chapter 1: Introduction
Chapter 2: Case Study Background

Part I: Fundamentals Chapter 3: Introduction to Services
Chapter 4: SOA Terminology and Concepts
Chapter 5: REST Design Constraints and Goals

Part II: RESTful Service-Orientation
Chapter 6: Service Contracts with REST
Chapter 7: Service-Orientation and REST

Part III: Service-Oriented Analysis and Design with REST
Chapter 8: Mainstream SOA Methodology
Chapter 9: Analysis and Service Modeling with REST
Chapter 10: Service-Oriented Design with REST

Part IV: Service Composition with REST
Chapter 11: Fundamental Service Composition with REST
Chapter 12: Advanced Service Composition with REST
Chapter 13: Service Composition with REST Case Study

Part V: Supplemental
Chapter 14: Design Patterns for SOA with REST
Chapter 15: Service Versioning with REST
Chapter 16: Uniform Contract Profiles

Part VI: Appendices
Appendix A: Case Study Conclusion
Appendix B: Industry Standards Supporting the Web
Appendix C: REST Constraints Reference
Appendix D: Service-Orientation Principles Reference
Appendix E: SOA Design Patterns Reference
Appendix F: State Concepts and Types
Appendix G: The Annotated SOA Manifesto
Appendix H: Additional Resources

In Chapter 14, Design Patterns for SOA with REST, the author introduces seven new patterns. They include Reusable Contract, Lightweight Endpoint, Entity Linking, Endpoint Redirection, Content Negotiation, Idempotent Capability, and Uniform Contract. All of the new patterns are nicely tied to currently existing patterns that appear in the author's other books.

One of my favorite parts of the book is that it shows the relationship between SOA and REST. REST architecture provides a medium by which service oriented architecture can be implemented. This book does an excellent job of clearly defining the relationship.

Another thing I really like the book is the low-level granularity that it goes into when describing the pattern languages Used for implementing SOA using REST.

The author does a great job of showing how the goals of the rest architectural style meet certain quality attributes. Quality attributes he covers include performance, scalability, simplicity, modifiability, visibility, portability, and reliability.

I would have liked to see more coverage of security. Although mentioned several times, it was not really covered. It would have been nice to see them cover hash-based message authentication code as one of the patterns used in REST architecture. Maybe it isn't used as widely as it appears to be used.

The author does have a Visio stencil available for download that includes all of the modeling symbols used in his SOA books, but does not appear to have updated with the REST symbols yet.

I believe this book did a nice job of filling in an existing gap in the SOA pattern books.

All in all if you are considering learning REST or SOA you should make this book part of your library. I felt the author did a good job of introducing both SOA and REST in the beginning of the book, so this book is perfect for the beginner. I also felt the author went deep enough into detail to make this book valuable to the more experienced developer.

Most importantly I feel the author nailed the goal of a pattern book and accomplished creating a reference for the language of SOA with REST for development teams to have a common vocabulary to communicate with.

SOA with REST: Principles, Patterns & Constraints for Building Enterprise Solutions with REST

More Stories By Tad Anderson

Tad Anderson has been doing Software Architecture for 18 years and Enterprise Architecture for the past few.

@MicroservicesExpo Stories
While some vendors scramble to create and sell you a fancy solution for monitoring your spanking new Amazon Lambdas, hear how you can do it on the cheap using just built-in Java APIs yourself. By exploiting a little-known fact that Lambdas aren’t exactly single-threaded, you can effectively identify hot spots in your serverless code. In his session at @DevOpsSummit at 21st Cloud Expo, Dave Martin, Product owner at CA Technologies, will give a live demonstration and code walkthrough, showing how ...
Did you know that you can develop for mainframes in Java? Or that the testing and deployment can be automated across mobile to mainframe? In his session and demo at @DevOpsSummit at 21st Cloud Expo, Dana Boudreau, a Senior Director at CA Technologies, will discuss how increasingly teams are developing with agile methodologies, using modern development environments, and automating testing and deployments, mobile to mainframe.
As DevOps methodologies expand their reach across the enterprise, organizations face the daunting challenge of adapting related cloud strategies to ensure optimal alignment, from managing complexity to ensuring proper governance. How can culture, automation, legacy apps and even budget be reexamined to enable this ongoing shift within the modern software factory?
@DevOpsSummit at Cloud Expo taking place Oct 31 - Nov 2, 2017, at the Santa Clara Convention Center, Santa Clara, CA, is co-located with the 21st International Cloud Expo and will feature technical sessions from a rock star conference faculty and the leading industry players in the world. The widespread success of cloud computing is driving the DevOps revolution in enterprise IT. Now as never before, development teams must communicate and collaborate in a dynamic, 24/7/365 environment. There is ...
With Cloud Foundry you can easily deploy and use apps utilizing websocket technology, but not everybody realizes that scaling them out is not that trivial. In his session at 21st Cloud Expo, Roman Swoszowski, CTO and VP, Cloud Foundry Services, at Grape Up, will show you an example of how to deal with this issue. He will demonstrate a cloud-native Spring Boot app running in Cloud Foundry and communicating with clients over websocket protocol that can be easily scaled horizontally and coordinate...
Most companies are adopting or evaluating container technology - Docker in particular - to speed up application deployment, drive down cost, ease management and make application delivery more flexible overall. As with most new architectures, this dream takes a lot of work to become a reality. Even when you do get your application componentized enough and packaged properly, there are still challenges for DevOps teams to making the shift to continuous delivery and achieving that reduction in cost ...
There are several reasons why businesses migrate their operations to the cloud. Scalability and price are among the most important factors determining this transition. Unlike legacy systems, cloud based businesses can scale on demand. The database and applications in the cloud are not rendered simply from one server located in your headquarters, but is instead distributed across several servers across the world. Such CDNs also bring about greater control in times of uncertainty. A database hack ...
In his session at 20th Cloud Expo, Scott Davis, CTO of Embotics, discussed how automation can provide the dynamic management required to cost-effectively deliver microservices and container solutions at scale. He also discussed how flexible automation is the key to effectively bridging and seamlessly coordinating both IT and developer needs for component orchestration across disparate clouds – an increasingly important requirement at today’s multi-cloud enterprise.
DevOps at Cloud Expo, taking place October 31 - November 2, 2017, at the Santa Clara Convention Center in Santa Clara, CA, is co-located with 21st Cloud Expo and will feature technical sessions from a rock star conference faculty and the leading industry players in the world. The widespread success of cloud computing is driving the DevOps revolution in enterprise IT. Now as never before, development teams must communicate and collaborate in a dynamic, 24/7/365 environment. There is no time to w...
API Security is complex! Vendors like Forum Systems, IBM, CA and Axway have invested almost 2 decades of engineering effort and significant capital in building API Security stacks to lockdown APIs. The API Security stack diagram shown below is a building block for rapidly locking down APIs. The four fundamental pillars of API Security - SSL, Identity, Content Validation and deployment architecture - are discussed in detail below.
IT organizations are moving to the cloud in hopes to approve efficiency, increase agility and save money. Migrating workloads might seem like a simple task, but what many businesses don’t realize is that application migration criteria differs across organizations, making it difficult for architects to arrive at an accurate TCO number. In his session at 21st Cloud Expo, Joe Kinsella, CTO of CloudHealth Technologies, will offer a systematic approach to understanding the TCO of a cloud application...
API Security has finally entered our security zeitgeist. OWASP Top 10 2017 - RC1 recognized API Security as a first class citizen by adding it as number 10, or A-10 on its list of web application vulnerabilities. We believe this is just the start. The attack surface area offered by API is orders or magnitude larger than any other attack surface area. Consider the fact the APIs expose cloud services, internal databases, application and even legacy mainframes over the internet. What could go wrong...
Cloud adoption is often driven by a desire to increase efficiency, boost agility and save money. All too often, however, the reality involves unpredictable cost spikes and lack of oversight due to resource limitations. In his session at 20th Cloud Expo, Joe Kinsella, CTO and Founder of CloudHealth Technologies, tackled the question: “How do you build a fully optimized cloud?” He will examine: Why TCO is critical to achieving cloud success – and why attendees should be thinking holistically ab...
Web services have taken the development world by storm, especially in recent years as they've become more and more widely adopted. There are naturally many reasons for this, but first, let's understand what exactly a web service is. The World Wide Web Consortium (W3C) defines "web of services" as "message-based design frequently found on the Web and in enterprise software". Basically, a web service is a method of sending a message between two devices through a network. In practical terms, this ...
Docker is on a roll. In the last few years, this container management service has become immensely popular in development, especially given the great fit with agile-based projects and continuous delivery. In this article, I want to take a brief look at how you can use Docker to accelerate and streamline the software development lifecycle (SDLC) process.
The goal of Continuous Testing is to shift testing left to find defects earlier and release software faster. This can be achieved by integrating a set of open source functional and performance testing tools in the early stages of your software delivery lifecycle. There is one process that binds all application delivery stages together into one well-orchestrated machine: Continuous Testing. Continuous Testing is the conveyer belt between the Software Factory and production stages. Artifacts are m...
We define Hybrid IT as a management approach in which organizations create a workload-centric and value-driven integrated technology stack that may include legacy infrastructure, web-scale architectures, private cloud implementations along with public cloud platforms ranging from Infrastructure-as-a-Service to Software-as-a-Service.
In his session at @DevOpsSummit at 20th Cloud Expo, Kelly Looney, director of DevOps consulting for Skytap, showed how an incremental approach to introducing containers into complex, distributed applications results in modernization with less risk and more reward. He also shared the story of how Skytap used Docker to get out of the business of managing infrastructure, and into the business of delivering innovation and business value. Attendees learned how up-front planning allows for a clean sep...
In IT, we sometimes coin terms for things before we know exactly what they are and how they’ll be used. The resulting terms may capture a common set of aspirations and goals – as “cloud” did broadly for on-demand, self-service, and flexible computing. But such a term can also lump together diverse and even competing practices, technologies, and priorities to the point where important distinctions are glossed over and lost.
Enterprise architects are increasingly adopting multi-cloud strategies as they seek to utilize existing data center assets, leverage the advantages of cloud computing and avoid cloud vendor lock-in. This requires a globally aware traffic management strategy that can monitor infrastructure health across data centers and end-user experience globally, while responding to control changes and system specification at the speed of today’s DevOps teams. In his session at 20th Cloud Expo, Josh Gray, Chie...