A Phoenix/Elixir microservices proof-of-concept addressing three core challenges:
- Service Communication: Event-driven architecture with NATS JetStream and Broadway
- Debugging Distributed Systems: Full observability with OpenTelemetry (traces, logs, metrics)
- Failure Handling: Message durability, automatic retries, and load balancing via JetStream
We demonstrate both CPU-intensive (PNG-to-PDF conversion with S3 streaming) and I/O-bound (email sending) workloads.
What we DON'T cover: Data consistency (sagas, event sourcing), deployment orchestration beyond docker-compose, or service discovery (service mesh).
Technologies:
- NATS JetStream - Persistent, at-least-once message delivery
- Broadway - Data processing pipelines with back-pressure
- MinIO - S3-compatible object storage
- Protobuf - Typed message contracts
- OpenTelemetry - Distributed tracing and metrics
- Grafana Stack - Data visualisation tool using the following data sources: Loki (logs), Prometheus (time series database for metrics), Jaeger (traces)
NATS is a lightweight messaging platform providing:
- Pub/Sub messaging between services
- Load-balanced queues across multiple instances of a service
- Message replay on failure or cache rebuilding
Elixir library: gnat (core NATS)
Q: Can JetStream replace Oban?:
Short answer: No, they solve different problems. Use both.
JetStream ⭐️:
- Service-to-service messaging: When service A needs to tell service B something happened
- Fire-and-forget tasks: Send an email, resize an image, process a webhook
- High-throughput workloads: Processing thousands of events per second across multiple servers
- Event replay: Need to rebuild a cache? Replay all past events
Oban ⭐️:
- Business-critical jobs: Billing, payments, subscription renewals
- Scheduled/recurring jobs: "Send invoice on the 1st of each month"
- Jobs that need retries with complex rules: "Retry 3 times, then notify admin"
- Jobs that must run exactly once: Database-backed uniqueness prevents duplicates
Q: Why not JetStream for critical jobs?
JetStream lacks:
- Database-backed guarantees: Postgres transactions, unique constraints, ACID compliance
- Advanced job management: Dashboard, job status tracking, scheduled/cron jobs
- Complex retry policies: Exponential backoff, max attempts per job, custom retry logic
- Idempotency: Deduplication based on unique job parameters (Oban does this via DB constraints)
- Auditability: Full job history with timestamps and state transitions
Q: What JetStream does better than Oban:
- Free horizontal scaling: Add more servers, get automatic load balancing (no Postgres bottleneck)
- Message replay: Your cache service crashed? Replay all past events to rebuild it
- High throughput: Handle 10,000+ messages/sec across multiple servers easily
Example: Message Replay for Cache Rehydration:
# Create a consumer that replays ALL messages from the beginning
%{
stream_name: "IMAGES",
durable_name: "cache_rehydrator",
deliver_policy: :all, # Start from the first message
replay_policy: :instant, # Deliver as fast as possible (not :original timing)
ack_policy: :explicit
}Real-world decision guide:
| What you're building | Use this | Why |
|---|---|---|
| Send welcome email after signup | JetStream | If it fails, retry is fine. Don't need exactly-once |
| Charge customer's credit card | Oban | Must run exactly once. Need audit trail |
| Resize uploaded images | JetStream | High volume, can process across many servers |
| Send monthly invoice (1st of month) | Oban | Needs cron scheduling |
| Process webhook from Stripe | JetStream | Fast, async, can replay if service was down |
| Upgrade user to paid plan | Oban | Database transaction required (update user + create subscription) |
| Rebuild analytics cache | JetStream | Replay all past events to recalculate everything |
This demo runs on Docker with Livebook for interactive exploration.
Features:
- All services are Erlang-distributed (you can use
:erpc.call/4from Livebook to reach any service) - Observability UIs accessible in browser (see SERVICES.md for port mappings)
- Livebook provides a code runner and custom UI to access observability dashboards
Note
Security: This demo uses unencrypted TCP without authentication (JWT) and runs behind Caddy reverse proxy on port 8080. In production, enable TLS and NATS authentication.
- Microservices with Elixir, NATS JetStream, and Observability
- About NATS.io
- Running the Demo
- Table of Contents
- Architecture Overview
- The Problem
- What This Demo Covers
- Prerequisites
- Quick Start
- Services Overview
- NATS JetStream + Broadway
- Message Flow Examples
- Storage Management
- Protobuf Contracts
- OpenTelemetry Distributed Tracing
- Observability Stack
- Production Considerations
- Testing Strategy
- Sources
architecture-beta
group api(cloud)[API]
service lvb(cloud)[LiveBook] in api
service nats(internet)[NATS JetStream] in api
service client(internet)[Client] in api
service s3(disk)[S3 MinIO] in api
service user(server)[User Gateway] in api
service email(internet)[Email Service] in api
service image(disk)[Image Service] in api
lvb:R -- L:client
client:T -- B:nats
image:R -- L:nats
email:L -- R:nats
nats:T -- B:user
s3:R -- L:user
image:T -- B:s3
Event-Driven Communication: Services communicate asynchronously via NATS JetStream subjects:
user.*- User operations (create, convert images)email.*- Email delivery requestsimage.*- Image conversion jobsclient.*- Client callbacks
Broadway Pipelines: The "email" and "image" services run Broadway pipelines that consume from JetStream with:
- Automatic retries and error handling
- Parallel processing (configurable concurrency)
- Back-pressure management
- At-least-once delivery guarantees
Goal: Build a system for high-volume PNG-to-PDF conversion with email notifications.
Challenge: Image conversion is CPU-intensive and can become a bottleneck. How do you:
- Identify where the bottleneck is?
- Scale efficiently?
- Ensure reliability (no lost messages)?
- Trace requests across services?
- Replay events if the process fails?
Answer: Event-driven microservices with comprehensive observability.
Before you can optimize or scale, you need visibility:
- Traces: Which service is slow?
- Metrics: CPU/memory consumption?
- Logs: What errors occurred and when?
This demo shows how to build and instrument such a system and how to use the async message broker nats.io.
- Event-driven messaging with NATS JetStream (persistent, ordered delivery)
- Broadway pipelines for scalable stream processing
- Pub/Sub communication replacing HTTP request/response
- S3 streaming for large file handling (presigned URLs or Eexternalized pattern)
- Protobuf serialization for type-safe, efficient message encoding
- Distributed tracing with Jaeger (continuous traces across async boundaries)
- Structured logging with Loki + Promtail
- Metrics collection with Prometheus + PromEx
- Unified dashboards in Grafana
- Span links for async callback correlation
- Docker and Docker Compose (for containerized services)
- Protocol Buffers Compiler (
protoc) - Installation guide - ImageMagick and Ghostscript (for image processing)
-
Start all services:
docker compose -f docker-compose-all.yml up -d
or to start two instances of the Image service with automatic load balancing:
docker compose -f docker-compose-lb-image.yml up -d
-
Access services: the Livebook (http://localhost:8080) gives you access to Grafana, Jaeger UI and the MinIO console (minioadmin@minioadmin)
-
Connect to a service:
docker exec user_svc bin/user_svc remote -
Test the system (from LiveBook or remote shell):
# Send an email to "user2@com": iex> Email.create(2, :wlcome) # Convert an image to PDF iex> Image.convert_png(File.read!("test.png), "user@example.com")
-
View traces in Jaeger: click on JAEGER in the Livebook
-
**explorer the Grafana dashboards: click on GRAFANA in the Livebook
- Purpose: External client interface for testing
- Key Features:
- Triggers user creation with concurrent requests
- Initiates PNG-to-PDF conversion jobs
- Receives workflow completion callbacks via NATS
- Purpose: Entry gateway and workflow orchestration
- Key Features:
- User creation and email job dispatch
- Image upload to MinIO with presigned URLs
- Workflow coordination (request → process → callback)
- MinIOCleaner: Periodic S3 cleanup (every 15 min, deletes files >1h old)
- Purpose: Email delivery via Broadway
- Key Features:
- Two Broadway pipelines: Welcome emails and Notifications
- Swoosh integration for SMTP delivery
- Email templates with dynamic variables
- Delivery status callbacks
- Purpose: Image processing with S3 streaming
- Key Features:
- Two Broadway pipelines: Binary-to-PDF and URL-to-PDF
- S3 streaming (download → convert → upload) for memory efficiency
- ImageMagick process streaming
- Automatic cleanup of source images after conversion
In a classic microservice architecture, you use HTTP requests and most probably Oban to run background jobs and retires.
JetStream is NATS with persistence and stream processing capabilities. We previously discussed about JetStream capability to replace in part Oban.
JetStream is useful in the client pull model. Classic pub/sub is a server push model.
Unlike core NATS (fire-and-forget), JetStream provides:
- ✅ At-least-once delivery - Messages persist until acknowledged
- ✅ Automatic retries - Failed messages are redelivered
- ✅ Message ordering - Preserves publication order
- ✅ Consumer acknowledgments - Explicit success/failure tracking
- ✅ Message replay - Reprocess historical messages if needed
- ✅ Horizontal scaling - Add more consumers for parallelism
Broadway is the perfect complement:
- Consumes from JetStream subjects
- Handles back-pressure automatically
- Provides configurable concurrency
- Built-in error handling and retries
There is a concept of queue group and durable consumer in NATS.
- Queue Groups (core NATS): Load balancing for server-push subscriptions, no persistence
- Durable Consumers (JetStream): Load balancing for client-pull subscriptions, with persistence and replay
- Both provide "one message to one instance" semantics, but durable consumers require JetStream
TLDR: If you use pub/sub (server push), use
Gnat.ConsumerSupervisorwith a queue group for load balancing. If you use client pull (polling), enable JetStream and use Broadway with a durable consumer.
Streams are defined in configuration files and set up automatically at service startup. Example: Image conversion stream (libs/jetstream_setup/priv/image_svc.exs). We define the stream "IMAGES" with two durable consumers.
# config/jetstream_setup.exs for image_svc
%{
streams: [
%{
name: "IMAGES",
subjects: ["image.>"],
# Matches image.convert, image.converted, etc.
retention: :work_queue,
max_age: 3600, # Messages expire after 1 hour
storage: :file # Persistent storage
}
],
consumers: [
%{
stream_name: "IMAGES",
durable_name: "binary_to_pdf",
filter_subject: "image.convert.binary",
deliver_policy: :new, # Only process new messages
ack_policy: :explicit,
max_ack_pending: 1000
},
%{
stream_name: "IMAGES",
durable_name: "url_to_pdf",
filter_subject: "image.convert.url",
deliver_policy: :new,
ack_policy: :explicit
}
]
}Key Configuration Options:
| Option | Values | Description |
|---|---|---|
deliver_policy |
new, all, last |
Which messages to deliver on startup |
ack_policy |
explicit, none, all |
How consumers acknowledge messages |
max_ack_pending |
integer | Max unacknowledged messages in-flight |
retention |
work_queue, limits |
How messages are retained |
Stream Setup Flow:
- Service starts and connects to NATS
JetstreamSetup.setup_from_config/2reads config frompriv/<service>.exs- Creates streams if they don't exist
- Creates durable consumers for each Broadway pipeline
- Broadway pipelines auto-start consuming
Debugging JetStream (from remote shell):
# Check stream status
{:ok, %{body: body}} = Gnat.request(:gnat, "$JS.API.STREAM.INFO.IMAGES", "", receive_timeout: 2000)
Jason.decode!(body) |> Map.get("state")
# => %{"messages" => 42, "bytes" => 1024, ...}
# Purge stream (delete all messages)
{:ok, _} = Gnat.request(:gnat, "$JS.API.STREAM.PURGE.IMAGES", Jason.encode!(%{}))Broadway provides structured data processing with automatic back-pressure and error handling.
Example: Email notification pipeline (apps/email_svc/lib/nats/broadway_notification.ex):
defmodule Broadway.Emails.Notification do
use Broadway
require Logger
require OpenTelemetry.Tracer, as: Tracer
def start_link(_opts) do
Broadway.start_link(__MODULE__,
name: __MODULE__,
producer: [
module: {
OffBroadway.Jetstream.Producer,
connection_name: :gnat,
stream_name: "EMAILS",
consumer_name: "notification_mailer",
max_number_of_messages: 50,
# Fetch 50 messages per batch
receive_interval: 10
# Poll every 10ms for low latency
},
concurrency: 2
# 2 producer processes
],
processors: [
mailer: [concurrency: 2]
# 2 parallel email senders
]
)
end
@impl true
def handle_message(:mailer, msg, _ctx) do
%Broadway.Message{data: binary_body} = msg
# Decode protobuf message
%Mcsv.V3.EmailRequest{} = req = Mcsv.V3.EmailRequest.decode(binary_body)
case send_email(req) do
:ok ->
{:ack, "ok"} # ACK message
{:error, reason} ->
{:nack, reason}
end
end
endBroadway Configuration Tuning:
# High-throughput configuration (Image Service)
producer: [
concurrency: 2,
# Multiple producers for pulling messages
module: {
OffBroadway.Jetstream.Producer,
max_number_of_messages: 50,
# Large batches
receive_interval: 10
# Frequent polling (10ms)
}
],
processors: [
im: [concurrency: 8]
# 8 parallel image conversions
]
# vs. Low-latency configuration (Email Service)
producer: [
concurrency: 2,
module: {
OffBroadway.Jetstream.Producer,
max_number_of_messages: 50,
receive_interval: 10
}
],
processors: [
mailer: [concurrency: 4] # 4 parallel email senders
]The observability UIs are key for you to optimise the settings.
NATS provides built-in load balancing through two mechanisms:
| Mechanism | NATS Type | Model | JetStream Required? | Persistence |
|---|---|---|---|---|
| Queue Groups | Core NATS | Server Push | ❌ No | ❌ No |
| Durable Consumers | JetStream | Client Pull | ✅ Yes | ✅ Yes |
Both provide work queue semantics (one message → one instance), but durable consumers add persistence, replay, and acknowledgments.
Key Concept: Durable consumers act as a shared subscription point. Multiple service instances can consume from the same durable consumer, and JetStream automatically distributes messages across them.
Load Balancing Model:
flowchart TB
Publisher[Publisher] -->|pub| Stream[NATS Stream: IMAGES]
Stream -->|distribute| Consumer[Durable Consumer: url_to_pdf]
Consumer -->|msg 1, 3, 5...| Instance1[Image Service 1<br>Broadway Pipeline]
Consumer -->|msg 2, 4, 6...| Instance2[Image Service 2<br>Broadway Pipeline]
Consumer -->|msg 7, 9...| Instance3[Image Service 3<br>Broadway Pipeline]
Guarantee: Each message is delivered to exactly one service instance (work queue semantics).
How it works:
- Each Broadway instance connects to the same durable consumer
- Each instance pulls messages independently via
JetStream.Pull - JetStream tracks which messages are delivered to which instance
- Unacknowledged messages are automatically redelivered
Configuration (identical across all instances):
# Both image_svc_1 and image_svc_2 use the same config
Broadway.start_link(
__MODULE__,
name: __MODULE__,
producer: [
module: {
OffBroadway.Jetstream.Producer,
connection_name: :gnat,
stream_name: "IMAGES",
consumer_name: "url_to_pdf",
# ← SAME durable consumer name
max_number_of_messages: 50,
receive_interval: 10
},
concurrency: 2
],
processors: [
im: [concurrency: 8]
]
)Load Distribution:
- Instance 1 pulls 50 messages → starts processing
- Instance 2 pulls 50 messages (different messages) → starts processing
- As each instance ACKs completed messages, it pulls more
- Faster instances automatically process more messages
Advantages:
- ✅ Automatic back-pressure (instances only pull when ready)
- ✅ Fair distribution (slow instances don't slow down fast ones)
- ✅ No configuration needed (just use the same
consumer_name) - ✅ Fault tolerance (if instance 1 crashes, its messages are redelivered to instance 2)
How it works:
- Each service instance subscribes to the same queue group
- NATS pushes each message to one random member of the queue group
- Messages are distributed round-robin or randomly
Configuration (identical across all instances):
# Both email_svc_1 and email_svc_2 use the same config
Gnat.ConsumerSupervisor.start_link(
%{
connection_name: :gnat,
module: EmailService.MessageHandler,
subscription_topics: [
%{
topic: "email.send",
queue_group: "email_workers" # ← SAME queue group
}
]
},
name: EmailService.ConsumerSupervisor
)Load Distribution:
- Message 1 → pushed to Instance 1
- Message 2 → pushed to Instance 2
- Message 3 → pushed to Instance 1
- Message 4 → pushed to Instance 2
- ...
Advantages:
- ✅ Low latency (no polling, messages pushed immediately)
- ✅ Simple configuration (just specify queue group name)
- ✅ Automatic distribution (NATS handles routing)
Disadvantages compared to client-pull:
⚠️ No automatic back-pressure (NATS keeps pushing even if instance is overloaded)⚠️ Less control over batch sizes
1. Start services with 2 image_svc instances:
docker compose -f docker-compose-lb-image.yml up -dThis starts:
image_svc_1on port 8084image_svc_2on port 8094- Both connect to the same durable consumer:
url_to_pdf
2. Monitor logs from both instances:
# Terminal 1
docker compose -f docker-compose-lb-image.yml logs -f image_svc_1
# Terminal 2
docker compose -f docker-compose-lb-iamge.yml logs -f image_svc_23. Publish 100 image conversion jobs:
# From livebook or remote shell
Task.async_stream(
1..100,
fn i ->
# Publish image conversion request
binary_request =
%Mcsv.V3.ImageConversionRequest{
user_id: "user_#{i}",
user_email: "user#{i}@example.com",
source: {:s3_ref, %{bucket: "msvc-images", key: "test.png"}},
input_format: "png",
pdf_quality: "high",
job_id: "job_#{i}"
}
|> Mcsv.V3.ImageConversionRequest.encode()
:ok = Gnat.pub(:gnat, "image.convert.url", binary)
end,
max_concurrency: 10,
ordered: false
)
|> Stream.run()4. Observe load balancing:
You'll see logs like this:
# image_svc_1 logs
[Broadway] Processing URL/streaming message # job_1
[Broadway] Processing URL/streaming message # job_3
[Broadway] Processing URL/streaming message # job_5
...
# image_svc_2 logs
[Broadway] Processing URL/streaming message # job_2
[Broadway] Processing URL/streaming message # job_4
[Broadway] Processing URL/streaming message # job_6
...5. Verify in Jaeger:
Open Jaeger UI (http://localhost:16686) and search for traces. You'll see:
- Some traces show
image_svc_1as the service - Other traces show
image_svc_2as the service - Work is distributed roughly 50/50
You can scale up further!
1. Durable Consumer Name Must Be Unique Per Pipeline:
# ❌ WRONG: Different pipelines with same consumer name
consumer_name: "image_processor" # url_to_pdf pipeline
consumer_name: "image_processor" # binary_to_pdf pipeline (CONFLICT!)
# ✅ CORRECT: Different pipelines with unique names
consumer_name: "url_to_pdf" # url_to_pdf pipeline
consumer_name: "binary_to_pdf" # binary_to_pdf pipeline2. Consumer Name Must Be Same Across Instances:
# ✅ CORRECT: All instances of url_to_pdf use same name
# image_svc_1
consumer_name: "url_to_pdf"
# image_svc_2
consumer_name: "url_to_pdf"
# image_svc_3
consumer_name: "url_to_pdf"3. Stream Name Must Be Same:
# ✅ CORRECT: All instances consume from same stream
stream_name: "IMAGES"| Model | Use Case | Advantages |
|---|---|---|
| Client Pull | CPU-intensive batch processing | Back-pressure, fair distribution |
| Client Pull | High-throughput pipelines | Batching, parallel processing |
| Server Push | Low-latency event handling | Immediate delivery, simplicity |
| Server Push | Lightweight message processing | No polling overhead |
Publishing messages (with trace context):
# In user_svc: Publish image conversion request
defp publish_image_conversion(user_id, image_url) do
request = %Mcsv.V3.ImageConversionRequest{
user_id: user_id,
source: {:s3_ref, %{bucket: "msvc-images", key: image_url}},
input_format: "png",
pdf_quality: "high",
job_id: generate_job_id()
}
binary = Mcsv.V3.ImageConversionRequest.encode(request)
# Inject trace context into NATS headers
trace_headers = OtelNats.inject()
Gnat.pub(:gnat, "image.convert.url", binary, headers: trace_headers)
endConsuming messages (Broadway handler):
@impl true
def handle_message(:im, msg, _ctx) do
# Extract trace context from incoming message
headers = msg.metadata[:headers] || []
_token = OtelNats.extract_and_attach(headers)
%Broadway.Message{data: binary_body} = msg
# Process message within a traced span
Tracer.with_span "Broadway.Images.UrlToPdf.handle_message" do
%Mcsv.V3.ImageConversionRequest{} = req =
Mcsv.V3.ImageConversionRequest.decode(binary_body)
perform_conversion(req)
end
# Broadway automatically ACKs on success, NACKs on error
msg
endIdempotency (preventing duplicate processing):
defp publish_email_request(user_request) do
binary = Mcsv.V2.EmailRequest.encode(user_request)
# Generate deterministic message ID
msg_id = :crypto.hash(:sha256, "#{user_request.user_id}-#{user_request.email}-email")
|> Base.encode16(case: :lower)
Jetstream.publish(:gnat, "email.send", binary,
headers: [
{"Nats-Msg-Id", msg_id}, # Deduplication by JetStream
{"trace-id", get_trace_id()} # Distributed tracing
]
)
endsequenceDiagram
Client->>+NATS: pub <br> user.send.email
NATS-->>+User: sub
User->>NATS: pub <br> email.send
NATS-->>+Email: pull (Broadway)
Email->>Email: Send via Swoosh
Email->>NATS: pub <br> user.email.sent
NATS-->>User: sub
User->>NATS: pub <br> client.email.sent
NATS-->>Client: sub (callback)
Key Features:
- Async processing after job enqueue
- Broadway automatic retries for failed emails
- Callback chain for status tracking
- Full trace propagation through NATS headers
sequenceDiagram
Client->>+NATS: pub <br> user.convert.image
NATS-->>+User: sub
User->>+S3: Upload image + presigned URL
User->>NATS: pub <br> image.convert.url
NATS-->>Image: pull (Broadway)
Image->>S3: Stream download
Image->>Image: ImageMagick convert
Image->>S3: Upload PDF
Image->>NATS: pub <br> user.image.converted
NATS-->>User: sub
User->>NATS: pub <br> client.image.converted
NATS-->>Client: sub
Pull Model / Presigned URLs via External storage:
- Large binaries never pass through message queue
- Only metadata (URLs, job IDs) transmitted
- Services fetch data on-demand via presigned S3 URLs
- Reduces message size and improves throughput
All services use the libs/storage library for S3 operations via ReqS3Storage:
# Upload file to S3
{:ok, result} = ReqS3Storage.store(
pdf_binary,
"msvc-images",
"job_#{job_id}.pdf",
"application/pdf",
s3_opts
)
# Generate presigned URL (valid for 1 hour)
url = ReqS3Storage.generate_presigned_url(
"msvc-images",
result.key,
s3_opts
)
# List objects in bucket
{:ok, objects} = ReqS3Storage.list_objects("msvc-images", s3_opts)
# => [%{key: "job_123.pdf", size: 1024000, last_modified: ~U[2025-11-19 15:30:00Z]}]
# Delete object
:ok = ReqS3Storage.delete("msvc-images", "job_123.pdf", s3_opts)Two cleanup mechanisms work in tandem:
-
MinIOCleaner (Periodic Cleanup): Runs in
user_svcevery 15 minutes, deletes files older than 1 hour. apps/user_svc/lib/user_svc/minio_cleaner.ex: -
Broadway Cleanup Task (Immediate Cleanup): Deletes source images immediately after successful PDF conversion via a supervised Task. apps/image_svc/lib/nats/broadway_image_url_to_pdf.ex:
Cleanup Timeline:
- User uploads image → stored in S3
- Image service converts to PDF → new PDF in S3
- Immediate: Broadway cleanup task deletes original image
- Periodic: MinIOCleaner deletes old PDFs (>1h old)
Protobuf provides type-safe, efficient serialization for inter-service communication.
All .proto files live in libs/protos and are compiled as a Mix dependency.
Structure:
libs/protos/
├── proto_defs/
│ ├── V1/
│ │ └── email.proto
│ └── V3/
│ └── image.proto
├── lib/protos/
│ ├── V1/
│ │ └── email.pb.ex (generated)
│ └── V3/
│ └── image.pb.ex (generated)
└── mix.exsCompilation (automatic via Mix compiler):
# libs/protos/mix.exs
def project do
[
compilers: Mix.compilers() ++ [:proto_compiler],
proto_compiler: [
source_dir: "proto_defs/V3",
output_dir: "lib/protos/V3"
]
]
end
# Custom Mix compiler task
defmodule Mix.Tasks.Compile.ProtoCompiler do
use Mix.Task.Compiler
def run(_args) do
System.cmd("protoc", [
"--elixir_out=lib/protos/V3",
"proto_defs/V3/image.proto"
])
:ok
end
endUsage in services:
# apps/image_svc/mix.exs
defp deps do
[
{:protos, path: "../../libs/protos"}, # Just add dependency
{:protobuf, "~> 0.15.0"}
]
endlibs/protos/proto_defs/V3/image.proto:
syntax = "proto3";
package mcsv.v3;
message ImageConversionRequest {
string user_id = 1;
string user_email = 2;
oneof source {
bytes binary = 3; // In-memory binary data
S3Reference s3_ref = 4; // S3 presigned URL reference
}
string input_format = 5; // "png", "jpeg"
string pdf_quality = 6; // "low", "high"
string job_id = 7;
bool strip_metadata = 8;
int32 max_width = 9;
int32 max_height = 10;
}
message S3Reference {
string bucket = 1;
string key = 2;
}
message ImageConversionResponse {
bool success = 1;
string message = 2;
int64 input_size = 3;
int64 output_size = 4;
int32 width = 5;
int32 height = 6;
string job_id = 7;
string pdf_url = 8;
string user_email = 9;
}Encoding (before publishing to NATS):
request = %Mcsv.V3.ImageConversionRequest{
user_id: "user_123",
user_email: "[email protected]",
source: {:s3_ref, %{bucket: "msvc-images", key: "image.png"}},
input_format: "png",
pdf_quality: "high",
job_id: "job_#{System.unique_integer()}"
}
binary = Mcsv.V3.ImageConversionRequest.encode(request)
Gnat.pub(:gnat, "image.convert.url", binary)Decoding (in Broadway handler):
@impl true
def handle_message(:im, msg, _ctx) do
%Broadway.Message{data: binary_body} = msg
# Decode with pattern matching for type safety
%Mcsv.V3.ImageConversionRequest{
source: {:s3_ref, %{bucket: bucket, key: key}},
input_format: format,
pdf_quality: quality,
job_id: job_id
} = Mcsv.V3.ImageConversionRequest.decode(binary_body)
# Process the request...
endVersioning (namespace isolation):
def MyApp.MixProject do
def application do
[
...,
proto_compiler: [
source_dir: "proto_defs/#{protos_version()}",
output_dir: "lib/protos/#{protos_version()}"
]
]
end
defp protos_version, do: "V3" # <-- current version
endUsage:
- In the proto files, use:
package msvc.v3 - In the code, namespace with
V3:
# New version (current)
%Mcsv.V3.ImageConversionRequest{user_id: id, user_email: email, pdf_quality: "high"}Updating Proto Versions:
# 1. Create new version folder
mkdir libs/protos/proto_defs/V4
# 2. Update mix.exs
# Change: protos_version: "V4"
# 3. Clean and recompile
mix deps.clean protos --build
mix deps.get
mix compile --forceDependencies (add to all services):
defp deps do
[
# OpenTelemetry core
{:opentelemetry_api, "~> 1.5"},
{:opentelemetry, "~> 1.7"},
{:opentelemetry_exporter, "~> 1.10"},
# Auto-instrumentation
{:opentelemetry_phoenix, "~> 2.0"},
{:opentelemetry_bandit, "~> 0.3.0"},
{:opentelemetry_req, "~> 1.0"},
{:opentelemetry_ecto, "~> 1.2"}, # If using database
# Metrics
{:prom_ex, "~> 1.11.0"}
]
endApplication config (apps/user_svc/lib/user_svc_web/telemetry.ex):
defmodule UserServiceWeb.Telemetry do
use Supervisor
def init(_arg) do
Logger.info("[UserService.Telemetry] Setting up OpenTelemetry instrumentation")
children = [
{:telemetry_poller, measurements: periodic_measurements(), period: 10_000}
]
:ok = setup_opentelemetry_handlers()
Supervisor.init(children, strategy: :one_for_one)
end
defp setup_opentelemetry_handlers do
# Auto-instrument Phoenix HTTP requests
:ok = OpentelemetryPhoenix.setup(adapter: :bandit)
# Auto-instrument Bandit web server
:ok = OpentelemetryBandit.setup(opt_in_attrs: [])
:ok
end
endRelease config (apps//mix.exs):
defp releases do
[
user_svc: [
applications: [
opentelemetry_exporter: :permanent,
opentelemetry: :temporary # Start after application
]
]
]
endRuntime config (apps/user_svc/config/runtime.exs):
# OpenTelemetry exporter configuration
otel_protocol = System.get_env("OTEL_EXPORTER_OTLP_PROTOCOL", "http") # or "grpc"
otel_endpoint = System.get_env("OTEL_EXPORTER_OTLP_ENDPOINT", "http://jaeger:4318")
config :opentelemetry_exporter,
otlp_protocol: (if otel_protocol == "grpc", do: :grpc, else: :http_protobuf),
otlp_endpoint: otel_endpointOtelNats Helper (libs/otel_nats/lib/otel_nats.ex):
Custom module for trace context propagation through NATS headers with conversion between OTel 5HTTP) and NATS tuples.
defmodule OtelNats do
@moduledoc """
OpenTelemetry trace context propagation for NATS messages.
Converts between OTel headers (HTTP format) and NATS tuples.
"""
# Extract trace context from incoming NATS message
def extract_and_attach(headers) do
ctx = :otel_propagator_text_map.extract(headers)
OpenTelemetry.Ctx.attach(ctx)
ctx
end
# Inject trace context into outgoing NATS message
def inject do
:otel_propagator_text_map.inject([])
end
# Inject trace context + span link for async callbacks
def inject_with_link do
ctx = OpenTelemetry.Ctx.get_current()
span_ctx = :otel_tracer.current_span_ctx(ctx)
trace_id = :otel_span.trace_id(span_ctx) |> encode_trace_id()
span_id = :otel_span.span_id(span_ctx) |> encode_span_id()
:otel_propagator_text_map.inject([
{"x-span-id", span_id},
{"x-trace-id", trace_id}
])
end
# Extract span link from headers (for callbacks)
def extract_link(headers) do
span_id = List.keyfind(headers, "x-span-id", 0) |> elem(1) |> decode_span_id()
trace_id = List.keyfind(headers, "x-trace-id", 0) |> elem(1) |> decode_trace_id()
OpenTelemetry.link(%{
trace_id: trace_id,
span_id: span_id,
attributes: [],
tracestate: []
})
end
defp encode_span_id(span_id), do: :io_lib.format("~16.16.0b", [span_id]) |> IO.iodata_to_binary()
defp encode_trace_id(trace_id), do: :io_lib.format("~32.16.0b", [trace_id]) |> IO.iodata_to_binary()
defp decode_span_id(hex_string), do: String.to_integer(hex_string, 16)
defp decode_trace_id(hex_string), do: String.to_integer(hex_string, 16)
endUsage patterns:
| Function | Use Case | When to Use |
|---|---|---|
inject() |
Standard context propagation | Request forwarding |
inject_with_link() |
Context + span ID | Response messages |
extract_and_attach() |
Extract incoming context | All message handlers |
extract_link() |
Extract span link | Response handlers |
Publishing with trace context:
Tracer.with_span "UserService.publish_image_request" do
binary = Mcsv.V3.ImageConversionRequest.encode(request)
# Inject current trace context into NATS headers
trace_headers = OtelNats.inject()
Gnat.pub(:gnat, "image.convert.url", binary, headers: trace_headers)
endConsuming with trace context:
def handle_message(:im, msg, _ctx) do
# Extract and attach trace context from incoming message
headers = msg.metadata[:headers] || []
_token = OtelNats.extract_and_attach(headers)
# This span is now part of the distributed trace
Tracer.with_span "ImageService.handle_conversion" do
process_image(msg.data)
end
endProblem: Async callbacks don't maintain parent-child relationships.
Solution: Use span links to visually connect async return paths.
Forward path (request):
Client → User → Image
(normal parent-child trace)Return path (response):
Image → User → Client
(linked spans, not parent-child)Implementation:
1. Image service completes conversion (publish with link):
# After successful conversion
response_binary = build_response(job_id, pdf_url)
# Inject trace context + current span_id for linking
trace_headers = OtelNats.inject_with_link()
:ok = Gnat.pub(:gnat, "user.image.converted", response_binary, headers: trace_headers)2. User service receives callback (extract link):
def handle_message(%{topic: "user.image.converted", body: body, headers: headers}) do
# Extract span link from headers
link = OtelNats.extract_link(headers)
# Create span with link to Image service span
Tracer.with_span "UserService.handle_image_converted", links: [link] do
process_callback(body)
end
end3. Visualize in Jaeger:
- Forward path: solid lines (parent-child)
- Return path: dotted lines (span links)
- All spans in same trace (same trace_id)
- Visual continuity shows complete async round-trip
architecture-beta
group logs(cloud)[Observability]
service loki(server)[Loki] in logs
service promtail(server)[Promtail] in logs
service jaeger(server)[Jaeger] in logs
service prom(server)[Prometheus] in logs
service graf(cloud)[Grafana] in logs
promtail:B --> T:loki
loki:R --> L:graf
jaeger:B --> T:graf
prom:T --> B:graf
Purpose: Visualize request flow across services
Model: PUSH (services send spans via OTLP)
Format: Protobuf (efficient binary encoding)
Storage: In-memory (or Tempo with MinIO for persistence)
Access: http://localhost:16686
Flow:
flowchart LR
Service[Service<br>OpenTelemetry SDK] -->|batch ~5s<br>POST :4317<br>protobuf| Jaeger
Jaeger -->|GET 16686<br>/api/traces| Grafana
Browser -->|:16686| Jaeger
Browser -->|:3000| Grafana
Example trace (Email workflow):
Key metrics:
- Total request duration: 142ms
- Spans: 7 (Client → User → Email → callbacks)
- Slowest span: Email.send (95ms)
Purpose: Centralized log aggregation and search
Model: PUSH (Promtail ships logs to Loki)
Format: JSON (structured logging)
Storage: MinIO S3 (loki-chunks bucket)
Access: Grafana → Explore → Loki datasource
Flow:
flowchart LR
Code[Code<br>Logger.info] -->|async| Logger[Elixir Logger]
Logger -->|write| Stdout[stdout<br>Docker]
Stdout -->|scrape| Promtail
Promtail -->|HTTP push<br>3100| Loki
Loki -->|query| Grafana
Configuration (o11y_configs/promtail/promtail.yml):
scrape_configs:
- job_name: docker
docker_sd_configs:
- host: unix:///var/run/docker.sock
refresh_interval: 5s
relabel_configs:
- source_labels: ['__meta_docker_container_name']
target_label: 'container'
- source_labels: ['__meta_docker_container_log_stream']
target_label: 'stream'Querying logs (LogQL):
# All errors in last hour
{container="msvc-image-svc"} |= "error"
# Image conversion logs
{container="msvc-image-svc"} |= "Broadway"
# Logs for specific trace
{container=~"msvc-.*"} | json | trace_id="abc123"
Purpose: Time-series metrics for performance analysis
Why PromEx: Automatically collects and exposes application metrics in Prometheus format by hooking into Elixir's :telemetry system. Solves the challenge of instrumenting distributed systems without manual metric tracking.
What PromEx Provides:
- Automatic
/metricsendpoint - Prometheus scrapes this every 15s - Pre-built plugins - Out-of-box metrics for Application, BEAM VM, Phoenix, Broadway, Ecto, Oban
- Pre-built Grafana dashboards - Ready-to-import JSON dashboards matching plugin metrics
- Custom plugin support - Build your own metrics from any
:telemetryevents
Model: PULL (Prometheus scrapes /metrics endpoints)
Storage: Prometheus TSDB (time-series database)
Flow:
flowchart LR
Code[Code<br> Libraries] -->|emit events| Telemetry[Erlang telemetry]
Telemetry -->|subscribe| PromEx[PromEx<br>Metrics Exporter]
PromEx -->|expose| Endpoint[/metrics endpoint]
Endpoint -->|GET every 15s<br>PULL| Prometheus
Prometheus -->|PromQL| Grafana
Each service configures PromEx via its prom_ex.ex module (example: apps/user_svc/lib/user_svc/prom_ex.ex):
1. Plugin Selection - Which metrics to collect:
defmodule UserService.PromEx do
use PromEx, otp_app: :user_svc
@impl true
def plugins do
[
# Pre-built PromEx plugins (come with exportable dashboards)
PromEx.Plugins.Application, # Uptime, memory, process count
PromEx.Plugins.Beam, # Schedulers, atoms, ports
PromEx.Plugins.Phoenix, # HTTP request metrics
PromEx.Plugins.Broadway, # Pipeline throughput, latency
# Custom plugins (manually designed dashboards)
PromExPlugin.OsMetrics, # Polling: CPU, memory via :os_mon
PromExPlugin.NatsMetrics, # Event: NATS pub/sub via Gnat telemetry
PromExPlugin.ImageConversionMetrics # Event: Image conversion duration/size
]
end
end2. Dashboard Export Configuration - Which pre-built dashboards to generate:
@impl true
def dashboards do
[
# Only pre-built plugins support export
{:prom_ex, "application.json"},
{:prom_ex, "beam.json"},
{:prom_ex, "broadway.json"}
# Custom plugins require manual dashboard creation in Grafana
]
end3. Datasource Configuration - Grafana connection settings:
@impl true
def dashboard_assigns do
[
datasource_id: "prometheus", # Must match Grafana datasource UID
default_selected_interval: "30s"
]
end| Type | Export Command Works? | Dashboard Source | Metric Collection |
|---|---|---|---|
| Pre-built (Application, Beam, Phoenix, Broadway, Ecto, Oban) | ✓ Yes | mix prom_ex.dashboard.export |
Automatic (telemetry) |
| Custom (OsMetrics, NatsMetrics, ImageConversionMetrics) | ✗ No | Create manually in Grafana, export JSON | Manual (polling or events) |
# Export single dashboard
cd apps/user_svc
mix prom_ex.dashboard.export \
--dashboard application.json \
--module UserService.PromEx \
--stdout > ../../o11y_configs/grafana/dashboards/user_svc_application.json
# Batch export for all services
for service in user_svc image_svc email_svc client_svc; do
cd apps/$service
mix prom_ex.dashboard.export --dashboard beam.json \
--module "${service^}.PromEx" \
--stdout > ../../o11y_configs/grafana/dashboards/${service}_beam.json
cd ../..
doneWe built three custom plugins using different telemetry approaches:
1. Polling-based: OS Metrics (libs/metrics/lib/os_metrics.ex)
Polls :os_mon every 5 seconds for CPU and memory:
defmodule PromExPlugin.OsMetrics do
use PromEx.Plugin
@impl true
def polling_metrics(_opts) do
Polling.build(
:os_metrics_polling,
5_000, # Poll every 5s
{__MODULE__, :execute_os_metrics, []},
[
last_value("prom_ex.os_mon.cpu_util",
event_name: [:prom_ex, :os_mon, :cpu],
measurement: :utilization
)
]
)
end
def execute_os_metrics do
cpu = :cpu_sup.util() |> List.first()
:telemetry.execute([:prom_ex, :os_mon, :cpu], %{utilization: cpu}, %{})
end
end2. Event-based: NATS Metrics (libs/metrics/lib/nats_metrics.ex)
Subscribes to Gnat telemetry events (published on every NATS operation):
defmodule PromExPlugin.NatsMetrics do
use PromEx.Plugin
@impl true
def event_metrics(_opts) do
[
Event.build(
:gnat_telemetry,
[
distribution("gnat.pub.duration.microseconds",
event_name: [:gnat, :pub],
measurement: :duration,
tags: [:topic],
unit: {:native, :microsecond}
),
counter("gnat.message.received.total",
event_name: [:gnat, :message_received],
tags: [:topic]
)
]
)
]
end
end3. Event-based: Image Conversion Metrics (apps/image_svc/lib/prom_ex_plugins/image_conversion_metrics.ex)
Subscribes to custom telemetry events emitted during image processing:
defmodule PromExPlugin.ImageConversionMetrics do
use PromEx.Plugin
@impl true
def event_metrics(_opts) do
[
Event.build(
:image_conversion,
[
distribution("image_conversion.duration.milliseconds",
event_name: [:image_svc, :conversion, :complete],
measurement: :duration,
tags: [:quality, :method],
unit: :millisecond
),
distribution("image_conversion.output_size.bytes",
event_name: [:image_svc, :conversion, :complete],
measurement: :size_bytes,
tags: [:quality]
),
counter("image_conversion.total",
event_name: [:image_svc, :conversion, :complete],
tags: [:quality, :method]
)
]
)
]
end
endDashboard example:
Managing Custom Dashboards: See o11y_configs/grafana/dashboards/README.md for import instructions.
Purpose: Track messaging layer performance with NATS (Gnat) telemetry events
Why this matters: Separates NATS communication latency from application processing time when debugging slow workflows.
Metrics exposed via PromExPlugin.NatsMetrics (libs/nats_metrics/lib/nats_metrics.ex):
| Metric | Type | Description |
|---|---|---|
gnat_pub_duration_microseconds |
Histogram | How long does Gnat.pub() take? |
gnat_message_received_total |
Counter | Messages received per topic |
gnat_request_duration_microseconds |
Histogram | Request/reply latency |
gnat_subscription_total |
Counter | Subscriptions created |
gnat_unsubscription_total |
Counter | Unsubscriptions |
Example PromQL queries:
# Average publish latency per topic
rate(gnat_pub_duration_microseconds_sum{job="user_svc"}[1m]) /
rate(gnat_pub_duration_microseconds_count{job="user_svc"}[1m])
# Message throughput per topic (messages/sec)
rate(gnat_message_received_total[1m])
# P95 publish latency
histogram_quantile(0.95,
rate(gnat_pub_duration_microseconds_bucket[1m])
)
# Total messages published vs received (detect message loss)
sum(rate(gnat_pub_duration_microseconds_count[5m]))
by (topic)
-
sum(rate(gnat_message_received_total[5m]))
by (topic)
Debugging scenario: "Why is email_svc slow?":v With NATS metrics:
gnat_pub_duration_microseconds{topic="email.send"} → 5ms (NATS is fast ✅)
gnat_message_received_total{topic="email.send"} → 100/sec (throughput OK ✅)
email_svc processing time → 495ms (⚠️ Email sending is the bottleneck!)
Load balancing validation (verifying 50/50 split between image_svc_1 and image_svc_2):
# Messages received by each instance
sum(rate(gnat_message_received_total{topic="image.convert.url"}[1m]))
by (instance)
# Expected output:
# image_svc_1: 50/sec
# image_svc_2: 50/sec
Purpose: Unified visualization for traces, logs, and metrics
Access: http://localhost:3000 (admin/admin)
Datasources:
- Prometheus (metrics)
- Loki (logs)
- Jaeger (traces)
Key dashboards:
- Application: Service health, uptime, dependencies
- BEAM VM: Erlang processes, memory, schedulers
- Phoenix: HTTP requests, response times, error rates
- Custom: OS metrics, image conversion metrics
Dashboard provisioning (o11y_configs/grafana/provisioning/dashboards/dashboards.yml):
apiVersion: 1
providers:
- name: 'default'
orgId: 1
folder: ''
type: file
disableDeletion: false
updateIntervalSeconds: 10
allowUiUpdates: true
options:
path: /var/lib/grafana/dashboards # JSON files auto-loaded from hereCorrelating observability data:
- Start in Grafana metrics: Identify high latency spike
- Drill down to logs: Filter by service and timestamp
- Find trace ID in logs:
trace_id=abc123 - Jump to Jaeger: View full distributed trace
- Identify bottleneck: Slowest span in trace
Image Service (CPU-bound bottleneck):
-
Horizontal scaling: Add more Image service instances
- Load balancer distributes NATS consumers
- Broadway handles parallel processing automatically
- No code changes needed
-
Vertical scaling: Increase CPU/memory per instance
- Tune Broadway concurrency settings
- Adjust ImageMagick thread count
Broadway tuning (based on workload):
# High-throughput (large batches, high parallelism)
producer: [
concurrency: 4,
module: {
OffBroadway.Jetstream.Producer,
max_number_of_messages: 100,
receive_interval: 5
}
],
processors: [
im: [concurrency: 16] # More parallel workers
]
# Low-latency (small batches, fast polling)
producer: [
concurrency: 2,
module: {
OffBroadway.Jetstream.Producer,
max_number_of_messages: 10,
receive_interval: 1
}
],
processors: [
im: [concurrency: 4]
]Reduce overhead:
- Trace sampling: 10% of successful requests, 100% of errors
- Log sampling: Sample verbose logs, keep all errors/warnings
Environment config:
# Use gRPC for lower latency
OTEL_EXPORTER_OTLP_PROTOCOL=grpc
OTEL_EXPORTER_OTLP_ENDPOINT=http://jaeger:4317
# Sample 10% of traces
OTEL_TRACES_SAMPLER=parentbased_traceidratio
OTEL_TRACES_SAMPLER_ARG=0.1
# Increase batch size
OTEL_BSP_MAX_QUEUE_SIZE=4096
OTEL_BSP_MAX_EXPORT_BATCH_SIZE=512Managed services (eliminate self-hosting):
- Datadog (traces + logs + metrics)
- New Relic (full observability suite)
- Grafana Cloud (managed Loki/Prometheus/Tempo)
Production checklist:
- Enable authentication for Grafana, MinIO, Jaeger
- Use TLS for all service communication
- Rotate S3 access keys
- Implement API rate limiting
- Add input validation and sanitization
- Use secrets management (Vault, AWS Secrets Manager)
Message durability (JetStream):
- File-based storage (survives NATS restart)
- Consumer acknowledgments (at-least-once delivery)
- Automatic retries with exponential backoff
Error handling (Broadway):
# NACK message on error (will be retried)
def handle_message(:im, msg, _ctx) do
case process_image(msg.data) do
{:ok, result} ->
msg # ACK (success)
{:error, :transient_error} ->
Broadway.Message.failed(msg, :transient) # NACK + retry
{:error, :permanent_error} ->
# Send to dead letter queue
publish_to_dlq(msg)
msg # ACK (don't retry)
end
end-
Unit Tests (fast, isolated)
test "S3.generate_presigned_url/2 returns valid URL" do url = S3.generate_presigned_url("bucket", "key.pdf") assert String.starts_with?(url, "http://") assert String.contains?(url, "X-Amz-Expires") end
-
Integration Tests (within service)
test "ImageSvc.convert_to_pdf/1 streams from S3" do {:ok, pdf_binary} = ImageSvc.convert_to_pdf(%{ source: {:s3_ref, %{bucket: "test", key: "image.png"}}, format: "png" }) assert byte_size(pdf_binary) > 0 assert String.starts_with?(pdf_binary, "%PDF-") end
-
Contract Tests (service boundaries)
test "user_svc and image_svc agree on protobuf schema" do request = %Mcsv.V3.ImageConversionRequest{user_id: "123", ...} binary = Mcsv.V3.ImageConversionRequest.encode(request) # Simulate sending over NATS decoded = Mcsv.V3.ImageConversionRequest.decode(binary) assert decoded.user_id == "123" end
-
Property-Based Tests (edge cases)
use ExUnitProperties property "protobuf encoding round-trips correctly" do check all user_id <- string(:alphanumeric), email <- email_address() do request = %Mcsv.V3.ImageConversionRequest{ user_id: user_id, user_email: email } binary = Mcsv.V3.ImageConversionRequest.encode(request) decoded = Mcsv.V3.ImageConversionRequest.decode(binary) assert decoded == request end end
-
E2E Tests (full workflows)
test "end-to-end image conversion workflow" do # Start all services in Docker # POST image to client_svc # Verify PDF appears in MinIO # Verify confirmation email sent # Verify trace in Jaeger end
-
Load Tests (performance)
# Using k6 k6 run --vus 100 --duration 30s load_test.js
Connect to service:
docker-compose -f docker-compose-all.yml exec user_svc bin/user_svc remoteTest bulk email sending:
iex> Task.async_stream(1..1000, fn i ->
Email.create("user#{i}@example.com", "User #{i}")
end, max_concurrency: 10, ordered: false)
|> Stream.run()Test image conversion:
iex> {:ok, img} = Vix.Vips.Operation.worley(5000, 5000)
iex> Vix.Vips.Image.write_to_file(img, "test.png")
iex> Image.convert_png("test.png", "[email protected]")Load test (sustained throughput):
iex> Stream.interval(100) # Every 100ms
|> Stream.take(1200) # 2 minutes
|> Task.async_stream(fn i ->
Image.convert_png("test.png", "user#{i}@example.com")
end, max_concurrency: 10, ordered: false)
|> Stream.run()