Your assignment must satisfy the following requirements:
- The implementation must clearly demonstrate contributions from every group member.
- All design decisions and assumptions must be thoroughly documented in a README.md file.
- The implementation must be done in a public GitHub repository.
Your team has been hired to design and implement the backend of an e-commerce platform specializing in second-hand items. The platform allows users to
- List items for sale
- Browse listings
- Place orders
- Review sellers
Key design considerations include:
- NoSQL Database: Efficient handling of user-generated listings, flexible schema requirements for varying item types, and rapid scalability.
- Cloud Storage: Reliable and scalable storage for item images and multimedia content.
- Caching: Improve performance by caching frequently accessed data such as item listings, user profiles, and search results.
- CQRS (Command Query Responsibility Segregation): Separate read and write operations to enhance scalability, performance, and maintainability.
- Transactions: Ensure consistency and reliability when users perform critical operations like placing an order or updating listings.
You must clearly outline and justify your design choices addressing the following questions:
-
- Identify and justify the selection of databases (relational and NoSQL) for various parts of your application.
- Define the data models and storage strategies you will use.
- Clearly document how you will store and manage different kinds of data (listings, user profiles, orders, reviews).
As is a common practice in the CQRS pattern, we have chosen to use two different databases for the read and write sides of the application. This allows optimization of each database for its specific purpose, and allows us to use different technologies for each side.
For the write side, we have chosen a traditional relational database, PostgreSQL, which allows us to use transactions and ensure data integrity.
The main benefits of using a relational database for this purpose include:
- Performing data validation and ensuring data integrity through the use of foreign keys and constraints.
- We can ensure that a listing cannot be created without a valid user, and that a review cannot be created without a valid listing and user.
- Using transactions to ensure that all operations are completed successfully or none at all, which is crucial for maintaining data consistency.
- For example, when a user places an order, we need to ensure that the order is created, the listings are updated, and cannot be bought by another user.
As for read operations, we went with MongoDB, which is a NoSQL database that allows for flexible schema design and rapid scalability.
Since it is a document-based database, it allows quicker retrieval of data, especially when we leverage the denormalization of data.
That is why there are four collections in the database:
public IMongoCollection<ListingReadEntity> Listings { get; }
public IMongoCollection<OrderReadEntity> Orders { get; }
public IMongoCollection<UserReadEntity> Users { get; }
public IMongoCollection<ReviewReadEntity> Reviews { get; }The Users collections is, however, not utilized for access to users, but rather just to allow users to exist without having a listing or order, and
to allow referencing users in the Review and Order collections. We thought these shouldn't be stored on the User collection, but rather have their own collections.
It could be argued that the reviews could be stored in the User collection, since they are related to the user, but that probably depends on the use case and how the data is accessed (mainly the UI design).
This would also raise the question, do we store the reviews written for the user, or the reviews written by the user? There could be arguments for both, and it would depend on the use case.
Rather than that, we have decided to denormalize the data in the Review collection, and store the user that wrote the review, as that would enable fetching the whole comment/review in one go.
The Listings collection is used to store the listings, and is denormalized to include the user that created the listing, as well as the media (images), so all relevant data can be retrieved in one lookup.
The Orders collection is used to store the orders, and is denormalized to include the listings that were ordered. The user is not included, as the user would only be able to see their own orders,
so if they're logged in, we most likely already have the user data that we need.
-
- Describe how you will integrate cloud storage for images and other media.
- Include a clear explanation of interactions between cloud storage and your databases.
MinIO is used as an S3 bucket for storing images, which are uploaded by users. This is because databases are not famous for their performance in storing large binary files.
Therefore, the database is used to store metadata about the images, and the generated object key, which references the image in the MinIO bucket.
When the images are retrieved, the application creates a presigned URL for the image, allowing users to access it. The URL is only valid for a limited time, ensuring security and privacy.
On the write side, there is a simple1:0...* relationship between Media and the Listing.
In terms of the read side, the media do not have their own collection. Instead, they are stored on the Listing for quick retrieval.
-
- Define your caching approach, including technologies used, cache invalidation strategy, and which data will be cached.
Redis is used as a caching solution. The cache is used to store frequently accessed data, such as item listings, and orders.
We tried to map out the data that would most likely be accessed frequently (e.g., a user's listings) and store that in the cache for quick retrieval.
Since both the MongoDb and Redis repositories are implemented using the IListingReadRepository, we are using a decorator pattern to register both repositories.
This enables the service to only have IListingReadRepository as a dependency (and in this case the Redis repository is actually injected), as the Redis repository wraps the MongoDb repository.
We also don't run into issues with the dependency injection container, as we are not trying to register the same interface twice.
There could be arguments made for not letting the infrastructure layer not be responsible for deciding which repository to contact for the data, as it could be seen as a business decision. However, we believe that this is a good approach, as it abstracts away the data access layer completely from the application layer, and allows us to easily switch out the implementation if needed.
Registration of the repositories:
services.AddScoped<ListingReadMongoRepository>();
services.AddScoped<IListingReadRepository>(provider =>
{
var mongoRepository = provider.GetService<ListingReadMongoRepository>()
?? throw new ArgumentNullException(nameof(ListingReadMongoRepository),
"Mongo repository is null");
var redisContext = provider.GetService<RedisContext>()
?? throw new ArgumentNullException(nameof(RedisContext), "Redis context is null");
return new ListingReadRedisRepository(redisContext, TimeSpan.FromSeconds(30), mongoRepository);
});Example of how the Redis repository is used to cache the data, or delegate to the MongoDb repository if the data is not in the cache:
public async Task<ListingReadEntity?> GetByIdAsync(string id, bool includeDeleted = false)
{
var cachedListing = await Db.StringGetAsync(id);
if (cachedListing.IsNullOrEmpty)
{
var result = await persistentRepository.GetByIdAsync(id, includeDeleted);
if (result == null)
{
return null;
}
await IndexAsync(result);
return result;
}
return JsonSerializer.Deserialize<ListingReadEntity>(cachedListing!, JsonSerializerOptions);
}The cache is invalidated through the use of domain events and corresponding handlers, like the listing event handler that is responsible for listening to events published by the ListingWriteService and invalidating the cache when a listing is modified.
-
- Explain your approach to separating read and write operations, if applicable.
- Clarify how this impacts the application's scalability and complexity.
Our implementation follows the Command Query Responsibility Segregation (CQRS) pattern by strictly separating read and write operations throughout the application architecture. We have made commands which are responsible for write operations, and queries which are responsible for read operations.
We've created distinct command and query objects in the application layer:
- Commands: Represent write operations like
CreateOrderCommand,UpdateOrderCommand, andDeleteOrderCommand -
public class CreateOrderCommand : ICommand<OrderWriteEntity>{ [MaxLength(24)] public required string UserId { get; set; } public required List<string> Listings { get; set; } = []; }
- Queries: Represent read operations like
GetOrderByIdQueryandGetOrdersByUserIdQuery -
Then these are mapped to the corresponding command and query handlers, which are responsible for executing the operations. In here we can use the unit of work pattern to ensure that all operations are executed in a single transaction, and that the data is consistent. For instance when we are doing write operations for update and creating orders, we set the isolation level to Serializable, which makes sure that no other transactions can read or write to the data until the transaction is completed. In this way we make sure the same order is not created twice, and that the data is consistent.
public class GetOrderByIdQuery : IQuery<OrderReadEntity> { public required string OrderId { get; set; } }
Our API endpoints follow this separation as demonstrated in the OrderApi:
- Write operations: POST, PUT, and DELETE endpoints that accept command objects
- Read operations: GET endpoints that use query objects
Example from OrderApi:
// Write operation
api.MapPost("/", CreateOrderAsync)
.WithName("CreateOrder");
// Read operation
api.MapGet("/{orderId:length(24)}", GetOrderByIdAsync)
.WithName("GetOrderById");Scalability: By separating read and write operations, we can independently scale the read and write sides of the application. For example, the read side can be optimized for fast data retrieval using caching and denormalized data, while the write side ensures data integrity with transactional operations.
Complexity: This approach introduces additional complexity, as it requires maintaining separate models, databases, and handlers for the read and write sides. Eventual consistency must also be managed between the two sides, requiring careful design and implementation of synchronization mechanisms.
Eventual Consistency: We ensure that the read side is eventually consistent with the write side by using domain events to synchronize data between the two sides. For example, when a new order is created, an event is published to update the read side with the new order information.
To ensure data consistency throughout our application, we implemented a robust transaction management strategy. This was particularly critical for marketplace operations where multiple database changes must succeed or fail together.
We built our transaction management around the Unit of Work pattern with a straightforward interface:
public interface IUnitOfWork
{
Task BeginTransactionAsync(IsolationLevel isolationLevel);
Task CommitAsync();
Task RollbackAsync();
}Our PostgreSQL implementation leverages Entity Framework Core's transaction capabilities:
public class UnitOfWork(PostgresDbContext context) : IUnitOfWork, IDisposable
{
public void Dispose()
{
context.Dispose();
GC.SuppressFinalize(this);
}
public async Task<IDbContextTransaction> BeginTransactionAsync(IsolationLevel isolationLevel)
{
var transaction = await context.Database.BeginTransactionAsync(isolationLevel);
return transaction;
}
public async Task CommitAsync()
{
await context.Database.CommitTransactionAsync();
}
public async Task RollbackAsync()
{
await context.Database.RollbackTransactionAsync();
}
public async Task SaveChangesAsync()
{
await context.SaveChangesAsync();
}
}Transactions are integrated directly into our command handlers, which aligns perfectly with our CQRS architecture. Each command handler establishes appropriate isolation levels based on the operation's requirements:
1. Creating Orders (Using Serializable Isolation)
The OrderCommandHandler demonstrates our most complex transaction scenario:
public async Task<OrderWriteEntity> HandleAsync(CreateOrderCommand command)
{
try
{
await unitOfWork.BeginTransactionAsync(IsolationLevel.Serializable);
var orderId = ObjectId.GenerateNewId().ToString();
var listings = new List<ListingWriteEntity>();
var totalPrice = 0m;
foreach (var listingId in command.Listings)
{
var listing = await listingWriteRepository.GetByIdAsync(listingId);
if (listing is null)
{
throw new NotFoundException($"Listing with ID {listingId} not found.");
}
if (listing.UserId == command.UserId)
{
throw new CustomValidationException($"User {command.UserId} cannot buy their own listing.");
}
if (listing.OrderId != null)
{
throw new AlreadyBoughtException($"Listing with ID {listingId} is already bought.");
}
totalPrice += listing.Price;
listing.OrderId = orderId;
listings.Add(listing);
}
var order = new OrderWriteEntity
{
Id = orderId,
UserId = command.UserId,
Listings = listings,
IsDeleted = false,
TotalPrice = totalPrice
};
var createdOrder = await orderWriteRepository.AddAsync(order);
await unitOfWork.CommitAsync();
return createdOrder;
}
catch
{
await unitOfWork.RollbackAsync();
throw;
}
}In a real-world scenario, we would also have to integrate payment processing here, but for simplicity, we are just creating the order and marking the listings as sold.
We use Serializable isolation here to prevent race conditions where multiple users might try to purchase the same listing concurrently.
2. User Management (Using ReadCommitted Isolation)
For operations like user creation where concurrent conflicts are less likely:
public async Task<UserWriteEntity> HandleAsync(CreateUserCommand command)
{
try
{
await unitOfWork.BeginTransactionAsync(IsolationLevel.ReadCommitted);
var existingUser = await userWriteRepository.GetByEmailAsync(command.Email);
if (existingUser is not null)
{
throw new InsertionConflictException($"User with email {command.Email} already exists.");
}
var user = new UserWriteEntity
{
Name = command.Name,
Email = command.Email,
IsDeleted = false
};
var createdUser = await userWriteRepository.AddAsync(user);
await unitOfWork.CommitAsync();
return createdUser;
}
catch
{
await unitOfWork.RollbackAsync();
throw;
}
}Our transaction management strategy has delivered several concrete benefits:
-
Consistent Data Integrity: We ensure that when users place orders, the entire process (checking availability, marking listings as sold, and creating the order record) either fully completes or fully rolls back.
-
Natural CQRS Integration: Transactions are applied exclusively on the write side, maintaining the clean separation in our CQRS architecture.
-
Clean Error Handling: When exceptions occur, our rollback mechanism ensures the database remains in a consistent state, simplifying error recovery.