Reputation: 576
Azure kubernetes - Application with Session management?
I am planning to deploy the Asp.net application that uses session on Azure kubernetes. How do I make sure that the incoming request goes to the same pod where session is created.
Upvotes: 0
Views: 1061
Answers (1)
Reputation: 129065
It is recommended that apps deployed on Kubernetes has a design following the The Twelve Factor App.
Everything will be easier if the app is stateless and share nothing with other instances. See Twelve Factor App - Processes
Twelve-factor processes are stateless and share-nothing. Any data that needs to persist must be stored in a stateful backing service, typically a database.
Some web systems rely on “sticky sessions” – that is, caching user session data in memory of the app’s process and expecting future requests from the same visitor to be routed to the same process. Sticky sessions are a violation of twelve-factor and should never be used or relied upon. Session state data is a good candidate for a datastore that offers time-expiration, such as Memcached or Redis.
Using Redis is one way to store temporary data belonging to the user.
For authentication, I would recommend to use OpenID Connect with JWT tokens in the Authorization: Bearer <token> header. See e.g. Azure Active Directory B2C for an example of an OpenID Connect provider.
Upvotes: 1
Related Questions
- few instances of same stateful application - not database - in Kubernetes - how is it managed?
- Highly available stateful session implementation with K8S
- Need to run stateful applications on kubernetes cluster bootstrapped with Kubeadm
- Cookie-Based session persistence between pods in kubernetes
- Kubernetes: How to setup sticky session with AWS loadbalancing
- GCE Kubernetes Session Persistence
- Deploying stateful applications in Kubernetes
- Application startup and shutdown based on authenticated user activity
- Maintaining Session State in Azure WebApp
- Select a way for Session Management on Windows Azure