Principles

Many teams discuss the level of logging that should be a part of the software. In addition, many already have some type of alerting in place. If trouble tickets or problem reports come in from customers, that is one sign that the observability sophistication of the system is lacking. Consider the work in this area an insurance policy. It does take investment of effort, time, and some money on products in order to achieve success in this area. This insurance policy has a premium that must be paid for the return on risk avoidance. If this is neglected and the insurance premium not paid, your organization will pay the full losses of a business disruption. This is another instance of the “Shift Left” way of thinking where we can design observability into the system that will yield better service to our customers.

Sam Guckenheimer has discussed observability and the importance of it on an Azure DevOps Podcast interview.²

Architecture for Observability

Is it alive? Heartbeats can come from the outside or be built directly into application components themselves. These are signals and synthetic transactions that are built-in health checks. For example, if a critical integration is between the application and a payment processor, it is useful to know that the connection with the payment processor is functional. Integrations are notorious for breaking, and heartbeats that test these on a constant basis can alert us before a customer, frustrated, notifies us that a software feature is not working.

Figure 10-2 illustrates the architectural model for observability in Azure. While many products exist in the marketplace that can collect, aggregate, and search telemetry, we will focus on the capabilities built into Azure.

Application Insights has the capability to gather a wealth of information from every running component of your application, including the DevOps pipeline itself, which is part of your system. One of the ways we improve the observability of our software is to collect all available information in the same place. Application Insights provides that. If you have never used Application Insights before, referred to also as AppInsights, Microsoft has a great overview in its documentation.³

As you have seen in our DevOps pipeline, we have a stable production environment, one or more UAT environments, and a whole host of TDD environments that are constantly being created and destroyed. You will want the data in AppInsights to be durable across changes to environments. Consider the following environment architecture.

By providing each environment type with an AppInsights instance, we can tune queries for each environment type to the audience. For example, our TDD environment will have environments come and go as new builds are produced. By capturing performance metrics while full-system acceptance tests execute, we might be able to detect when runtimes of transactions change by more than a certain percent. This could be indicative of a performance slowdown from version to version. In addition, our production AppInsights repository should have alerts configured on it. Refer to Figure 10-3.

The intent of AppInsights is for there to be one AppInsights service per application. While you can add custom tags to telemetry to facilitate filtering out environments in a single AppInsights instance, the service was not designed with that in mind. The service was designed to collect telemetry from a single application. That is, one versioned, complete unit of software. If you have broken your software into multiple Git repositories with multiple DevOps pipelines, you can still use a single AppInsights service for the software system running in production. To make this decision, you must ask yourself what kind of queries you will want to execute against the data and how you’d like the data to be segments. For our example application, we have multiple components that will send telemetry to a single AppInsights instance for each environment. In total, we have three AppInsights services, one for each environment. Now that you can see the relationship between application components and AppInsights, let’s begin enabling observability in our software.

Jumpstarting Observability

While we are destroying and recreating TDD environments – and UAT environments from time to time – we want AppInsights to be durable. Because of this, we place the AppInsights services in a separate resource group from the environments that might be destroyed.

These services live in their own resource group “Onion-DevOps-Architecture-diagnostic”. You can name this resource group whatever you like. This resource group will live a long time, in contrast to your pre-production environments, as shown in Figure 10-5. Once we have our AppInsights in place, it is time to prepare the application for the sending of telemetry. First, you will add the AppInsights NuGet packages to your projects in Visual Studio. ASP.NET projects have some quick start tooling to help with this, but you can add these packages to any projects you like. In our Visual Studio solution, we have kept the dependencies of the Core project very minimal – essentially this library contains plain old C# objects (POCOs). Because of these, we will choose the UI and Core.AppStartup projects to receive the AppInsights dependency, as shown in Figure 10-6.

The NuGet package to select is Microsoft.ApplicationInsights.AspNetCore. This package is appropriate for code running in Azure AppServices, including WebJobs and Azure Functions. There are other packages for software running on Windows VMs, but if your application is .NET Core, you just need this one.

By putting a fake value in ApplicationInsights.InstrumentationKey, you will ensure that no telemetry can be sent from local developer workstations. Instead, you can try out and validate your telemetry by running the application in Debug (F5) mode.

The Application Insights Search window can be a bit hard to find, but it allows you to develop your diagnostics capability locally without having to connect to Azure. You’ll want to make sure you are exporting the telemetry that you think you are. When you run the application in debug mode, you can examine not only the telemetry that you add but also the phenomenal amount of data that is automatically captured for you. Refer to Figure 10-7.

(Refer to Figure 10-9).

If you run the preceding command from the folder of the acceptance tests assemblies, you can amass quite a bit of telemetry to search. You will want to take a break for a cup of tea or coffee as you wait for your browser window to stop flashing across your screen as all the Selenium tests exercise your application as fast as it will go.

It’s interesting to note that Application Insights does not automatically capture any data, parameters, or arguments. Therefore, you will have to add code to explicitly do that. When you do, take care that you are exporting any sensitive data field to a monitoring system that might have different data security controls that the production database. Then, once you are satisfied that you have a useful iteration of telemetry for your application, it’s time to link the application with the various environment specific AppInsights services in your Azure subscription.

Application Insights does not automatically capture any user data or SQL parameters. If you need parameters captured, you will add that directly, taking care of sensitive data fields.

For the execution of our deployment, it’s important to know when new release candidates were promoted from one environment to another. For this, you will add a Release Annotation task to your deployment steps.

You will want to place this as the first task so that even if the deployment fails, Application Insights receives a marker that a deployment was started. In this way, AppInsights records that a version started deploying even if the deployment fails in the middle. At some later date when reviewing a period of exceptions and bad failures, you won’t have to strain your memory to remember that a bad deployment was associated with a period of elevated exceptions. Within the “UI Deploy” step, you will also add the appsettings.json file to the JSON variable substitution text area so that your variables will be evaluated for JSON substitution.

Once this is configured, and after adding a properly named variable with the InstrumentationKey per environment, your release configuration is ready to deploy. Refer to Figure 10-12.

When your next release runs, you’ll be able to see release markers and telemetry from each of the environments. Beyond the production observability you gain, it can also be useful to find nonfunctional defects like scalability issues. As your acceptance tests run, your release candidate receives its first full-system exercise.

Our example application has only a handful of acceptance tests, so the data captured is only from those; however, when you have multiple feature branches executing releases in parallel, and you have multiple TDD environments created an operating at once, you’ll see all that in Figure 10-13. The searches will be able to correlate versions.

Stamping and embedding version numbers in every .NET assembly in your application have downstream benefits and consequences. The telemetry in Application Insights records version numbers. Make sure the version number is available.

If you click the release marker within the Azure portal, you can see detailed information about the release that deployed the application that is responsible for the recorded telemetry.

The release marker includes hyperlinks back to the release and the Azure DevOps project for the application that is emitting the telemetry, as shown in Figure 10-14. The BuildNumber, which originated in the continuous integration build, is here with every bit of telemetry recorded in Application Insights. You have now connected code in Visual Studio, stored in Git with live captured usage data in Azure environments.

Wrap Up

You did it! You’ve been through the entire DevOps process on .NET for Azure. The term “DevOps Process” is discussed in some circles as if it is a simple thing. You can see from this text that there are numerous concepts, decisions, and steps that all go together in order to make the “DevOps Process” function. When put together properly, the team moves fast, can make changes when needed, and is able to operate the software well. You may wish to do some of the steps differently than the guidance in this book. If you already have a fully operational DevOps environment with at least all the capabilities illustrated in this book, then you are on your way to mastery. Implement your ideas. If you do not yet have a fully functioning DevOps environment with at least these capabilities, this author’s recommendation is to implement DevOps “by the book.” Then, once you can operate in very short cycles of code changes to stable deployments in a production environment, make your changes. Use the concept of ShuHaRi⁴ as you progress down your DevOps journey. Refer back frequently to the online public project that accompanies this book at https://dev.azure.com/clearmeasurelabs/Onion-DevOps-Architecture .

Bibliography

Fowler, M. (n.d.). ShuHaRi. Retrieved from MartinFowler.​com: www.martinfowler.com/bliki/ShuHaRi.html

Guckenheimer, S. (2018, 9 24). Sam Guckenheimer on Testing, Data Collection, and the State of DevOps Report. (J. Palermo, Interviewer) Retrieved from http://azuredevopspodcast.clear-measure.com/sam-guckenheimer-on-testing-data-collection-and-the-state-of-devops-report-episode-003

Hexter, E. (n.d.). DevOps Diagnostics w/ Eric Hexter (Azure DevOps User Group). Retrieved from www.youtube.com/watch?v=6O-17phQMJo

Microsoft. (n.d.). What is Application Insights? Retrieved from Microsoft Docs: https://docs.microsoft.com/en-us/azure/azure-monitor/app/app-insights-overview