Our Solution
Suffice to say the above was causing considerable friction and limitations on our partner's business. As experts in legacy migration Flowmoco was asked to come up with an appropriate solution. The big ask was an automated low-risk integration between their existing payment gateway and their AS400 system, without affecting PCI compliance. Their customers expected the ability to make real-time payments online, at any time.
Here’s how we addressed the challenges:
Containerised Middleware for Integration:
To bridge the gap between the payment gateway and the AS400 system, we developed a containerised, headless middleware solution. This middleware received webhooks from the payment gateway whenever a successful payment was made, and used vendor-supplied libraries to interact with the AS400 system.
IBM provide a handy JDBC driver, which we were able to utilise to execute SQL commands against the AS400 database from a JVM-based environment. This ensured data was updated correctly and in real time.
Rapid Deployment via CI/CD Pipelines:
We leveraged the client’s existing DevOps platform and implemented a CI/CD pipeline that integrated with our partner’s on-prem Kubernetes cluster, where the AS400 is hosted. The solution was containerised with Docker for local development and Kaniko for client DevOps, ensuring a smooth and efficient development cycle.
The deployment pipeline was designed to be fully compatible with our partner’s governance and security protocols, including full engagement with DevSecOps teams and integration into their structured monitoring systems.
Compliance with IT Operations and Governance:
As we touched on above, our approach was designed to integrate seamlessly with our partner’s existing monitoring and alerting systems (using Splunk and ServiceNOW), and fit into their existing change control and release processes. Production deployments were carried out by their Release Control team, with full approval from their Change Advisory Board (CAB).
Engagement and Collaboration:
As always we work closely as a strategic development partner, and with their network and DevOps teams. This allowed us to put in place smooth connectivity between the AS400 system and the Kubernetes environment. Additionally, our knowledge of the requirements for DevSecOps engagement allowed for a swift approval process, minimising delays and ensuring timely delivery.
Some details on the Tech Stack
- Containerisation: Docker for local development, with Kaniko for DevOps.
- Languages: Clojure, SQL, JVM, vendor JARs for AS400 interaction.
- Monitoring: Structured JSON logs sent to Kubernetes, with alerting through Splunk and ServiceNOW.
- Governance: CI/CD pipeline integrated, with production deployment via Release Control after CAB approval.
- Hosting: On-prem Kubernetes cluster, interacting directly with the AS400 database.