This project demonstrates how a Django web app can cache PostgreSQL LSNs in Redis to effectively utilize PostgreSQL read-replicas while avoiding returning stale data (previously written in another web/API request from the same user). This is a simplified example of a project completed during my time working on Bitbucket Cloud for Atlassian, covered in this blog post Scaling Bitbucket's Database.
This project shows off Brian Edwards' skills with the following technologies:
- PostgreSQL
- Python and Django
- Redis
WAL's central concept is that changes to data files (where tables and indexes reside) must be written only after those changes have been logged, that is, after log records describing the changes have been flushed to permanent storage.
WAL records are appended to the WAL logs as each new record is written. The insert position is described by a Log Sequence Number (LSN) that is a byte offset into the logs, increasing monotonically with each new record. Values can be compared to calculate the volume of WAL data that separates them, so they are used to measure the progress of replication and recovery.
The docker-compose.yml file defines two PostgreSQL containers named db and replica. PostgreSQL has Log-Shipping Standby Servers capability which basically means the replica can receive a stream of updates to the primary database over a TCP connection.
Bring up the db container and initialize the database. Kill it.
% docker-compose up db
CTRL-C
Move the ./pg_hba.conf file into place with permission for other hosts to replicate the database. Bring db back up. This is not secure.
host replication all 0.0.0.0/0 trust
% cp -v pg_hba.conf data/db
% docker-compose up -d db
Create a replication slot by running the following query on the primary database. It ensures that the WAL isn't cleaned-up until the replica using that slot is caught up.
% docker-compose exec db bash
# psql -U postgres
# select * from pg_create_physical_replication_slot('replica');
The ./replica.conf file in this repository is dropped into place as the PostgreSQL configuration file. It importantly includes the following settings:
primary_conninfo = 'host=db user=postgres password=postgres'
primary_slot_name = 'replica'
hot_standby = on
Shutdown the master and copy over the data directory. A server enters standby mode if a standby.signal file exists in the data directory when the server is started. Start up the replica
% cp -vr data/db data/replica
% touch data/replica/standby.signal
% docker-compose up -d replica; docker-compose logs -f replica
database system is ready to accept read only connections
started streaming WAL from primary at 0/1000000 on timeline 1
Then watch on the primary db...
# select slot_name, slot_type, active, active_pid, restart_lsn, wal_status from pg_replication_slots;
slot_name | replica
slot_type | physical
active | t
active_pid | 35
restart_lsn | 0/15CE420
wal_status | reserved
You can create tables on the primary and see them on the replica.
docker-compose exec web ./manage.py migrate
docker-compose exec web ./manage.py createsuperuser
docker-compose exec replica psql -U postgres -c 'select * from auth_user;'
⚠️ I add complexity later. Checkout this commit to see the initial, simpler version of the changes I describe here.
The intention is for all views (API endpoints) in the web app to automatically use the replica until a write operation is performed. From that point on the primary database is used.
This is achieved with a Django database router in app/router.py. It takes advantage of the fact that Django changes the thread name when servicing each request and stores the state of write_happened in a thread-local variable. This is to overcome the fact that database routers are instantiated only once at startup, so the init method can't be used to store the state in a member variable.
The logging in the router shows that it in fact works as expected.
% http POST localhost:8000/things color=orange
% http POST localhost:8000/things/1 color=blue
HTTP/1.1 200 OK
[
{
"fields": {
"color": "blue"
},
"model": "app.thing",
"pk": 1
}
]
db_for_read replica, 'Thread-6'
db_for_read replica, 'Thread-6'
db_for_read replica, 'Thread-6'
db_for_read default, 'Thread-6'
Note that the view for updating a thing in app/views.py has some senseless read operations in it just to demonstrate this point.
thing = Thing.objects.get(pk=pk)
if request.method == 'POST':
# This is senseless, but simulates three read operations to the replica
thing = Thing.objects.get(pk=pk)
thing = Thing.objects.get(pk=pk)
data = json.loads(request.body.decode('utf-8'))
thing.color = data['color']
thing.save()
# This is senseless, but simulates a read operation to the primary
thing = Thing.objects.get(pk=pk)
As the Bitbucket blog post states...
Replication from the primary to replicas is quite fast but it's not instantaneous. This mean that if we started using replicas we could run into issues with stale data as a result of replication lag. The race condition we mentioned earlier within a single request could happen during multiple requests. Imagine creating a pull-request, then going to the pull request list page and not seeing what you just created, because we chose a replica that didn't have that data yet. We knew we must be careful to choose a replica that is up to date, at least from the point of view of the user making the request.
I added logging to show the additional steps completed to achieve this goal.
% http -a 'root:p' POST localhost:8000/things/1 color=orange
LsnMiddleware before: cached primary LSN = (0, 23492144, '0/1667630')
db_for_read replica, Thread-3, primary (0, 23492144, '0/1667630'), replica (0, 23492432, '0/1667750')
db_for_read replica, Thread-3, primary (0, 23492144, '0/1667630'), replica (0, 23492432, '0/1667750')
db_for_read replica, Thread-3, primary (0, 23492144, '0/1667630'), replica (0, 23492432, '0/1667750')
db_for_read default, Thread-3,
LsnMiddleware after: caching primary LSN = (0, 23493880, '0/1667CF8')
[30/Jun/2021 19:54:49] "POST /things/1 HTTP/1.1" 200 64
As you can see in the additional logging. The middleware is getting the primary lsn value from redis. This value was saved for the user on their last request that included a database write operation.
Additionally, the database router has been extended to compare the last received LSN on the replica to that cached value on the primary from the previous request. In the example about primary=23492144 < replica=23492432, so the router uses the replica. If that did not hold true, it would mean the replica is missing an update from this same user because of replication lag. In that case the database router would use the primary for the read operation even though this current request has yet to do a write operation.