Powered by
.svg){kind=logo}
For executives
For digital leaders
For developers
Recommended for you
How a Composable DXP drives experimentation, innovation and digital transformation
Today's era of relentless technological evolution is challenging companies to break free from the cookie-cutter molds of monolithic solutions and embrace technologies that harmonize their digital strategy with unrivaled agility.To keep pace with customer needs, businesses are no longer playing it safe but instead embracing experimentation and innovation to forge ahead in the race of digital transformation.Enter composable DXPs. A composable digital experience platform (DXP) can be the game-changer your marketing and creative content teams have been waiting for. As businesses strive to provide customers with personalized digital experiences across all channels, the need for a robust, scalable and adaptable technology stack becomes paramount.In this article, we'll explore what a composable DXP is, how it can revolutionize your approach to content and digital experiences, and the benefits it offers your business.What is a Composable DXPA composable DXP is a modern approach to building digital experiences. With a composable architecture, businesses can create, manage and deliver digital experiences across various channels and platforms by leveraging a range of interoperable, modular tools. The fundamental components of a composable DXP are:Headless CMS: A content management system (CMS) that allows content creation, easy updating, and management separately from the front-end layer your customers see.Composable technology: Imagine being able to build your content strategy from a set of building blocks that can be easily configured and reconfigured to work best for you. Composable technology enables businesses to use modular and lightweight components to build tailored digital solutions quickly.Composable architecture: A flexible and adaptable framework that supports the rapid integration of business-critical applications and tools, empowering teams to build better customer experiences.How to leverage a DXP for better contentWith an expansive catalog of configurations, applications, and diverse components, a composable DXP empowers marketing and creative teams to experiment with various combinations to achieve the desired results. This capability helps foster innovation and allows teams to respond quickly to changing customer needs. Here are five ways a composable DXP can drive better content:Personalized digital experiences: Leverage customer data, behavior analysis, and customer journey mapping to deliver highly-personalized, relevant experiences across all your digital channels.Omnichannel: Enable seamless content delivery and interactions across every device and touchpoint you rely on to reach your customers.Experimentation: Empower your teams to innovate and experiment with different tools, solutions, and content strategies, all from a single environment.Collaboration: Streamline collaboration between departments, teams, and individuals by using a centralized platform that fosters efficient workflows and automates manual tasks, enabling your teams to create faster.Scalability: Leverage the scalability of the DXP to quickly adapt to market changes, drive growth, and maintain your competitive edge.Benefits of a Composable DXPBeyond producing better content and creating more space for innovation, a Composable DXP offers businesses the digital tools to create meaningful customer experiences. Companies that migrate away from their rigid technologies and uplevel their digital capabilities have a full toolbelt for swiftly responding to market demands, improving customer satisfaction, increasing operational efficiency and maintaining a competitive edge in the market. How, you might ask?1. Speed-to-marketComposable DXPs enable businesses to respond quickly to changing market dynamics, customer needs, and technology advancements. By adopting a composable architecture, you can minimize time spent on complex integrations and cumbersome traditional CMS systems. As a result, your teams can build and launch new digital experiences much faster.2. FlexibilityA composable DXP provides the foundation for a flexible tech stack that can continuously evolve and adapt, as your business evolves. Businesses can choose best-of-breed technologies that align with their unique requirements, allowing them to build, experiment, and adjust their strategies in real time.3. Cost-efficiencyGone are the days of being locked into vendor agreements and limiting technologies. Businesses can select the tools they need according to budget and requirements. This facilitates better resource allocation, helping organizations operate in a leaner, more efficient manner.4. Innovation and experimentationA composable DXP fosters a culture of innovation by empowering marketing and creative teams to experiment and iterate. This leads to accelerated digital transformation and triggers an innovation domino effect across the organization.Grow faster, scale better, experience more ROIA composable DXP can be a crucial driver of experimentation, innovation and digital transformation for businesses. By leveraging a headless CMS and composable architecture, businesses can unlock the true potential of their digital ecosystem, experience greater ROI from increased customer loyalty and, ultimately, stay ahead of the curve by delivering exceptional digital experiences that drive growth and success.About the authorMarina Rusinow is a Senior Manager of Solutions Marketing at Contentstack with over a decade of product marketing experience.Learn more about Marina
REI's composable transformation advice
Kat Valdre and Jason Greely from the REI Platform engineering team share their composable transformation story. They discuss the challenges they faced while decomposing their monolithic architecture and their approach to building trust across the organization as they embark on a years-long transformation. Their transparent and refreshing perspective on tech transformation will resonate with anyone who feels their progress is slower than they (or their organization) would like to move. Kat and Jason provide valuable insights and advice for any business making a major technological shift. Timestamps:1:41 What were things like at REI before they decided to go composable04:06 What pushed REI to start their composable transformation?06:25 The importance of introducing changes in manageable parts07:54 What composable will enable for the business11:17 Advice for companies embarking on composable transformation12:55 Dealing with differing opinions and disagreements13:57 The importance of documentation16:41 Hurdles and challenges REI has faced along the way 18:50 Managing expectations and maintaining morale when transformation takes a long time
Drive Seamless Digital Customer
Experiences with Composable UX
Disjointed customer experiences are a widespread marketing pain point. Delivering seamless digital user experiences across the touchpoints of the customer journey is tough, and a traditional channel mentality won’t get you there.
Read the reportExecutives
Leverage composable tech to drive business forward
Why MACH architecture matters
Have you been hearing about MACH lately? It’s currently one of the biggest buzzwords out there — and for good reason. The acronym has spread like wildfire throughout the digital world. Endorsed by analysts and IT experts; frowned upon by not-quite-as-tech-savvy business folks; initially belittled, now heavily embraced by the monoliths who are trying to MACH-wash their offerings and avoid extinction. But what exactly is MACH architecture? How does it compare to monolithic platforms? And where does composable fit into all of this? If you’ve been wondering lately, keep reading. You’re about to get the inside scoop. What is MACH architecture?MACH stands for Microservices, API-first, Cloud-native, and Headless. Let’s look at each individual term. Microservices: Microservices bring together loosely coupled, independently deployable small components or "services" to compose a more integrated application. They are exposed via well-defined APIs as the communication method between frontends and backends. They deliver faster responses, are more reliable, and can be deployed more frequently. API-first: Through APIs, best-of-breed components can be combined into a custom application built for specific business needs. Cloud-native: Being cloud-native in MACH architecture means leveraging cloud-based infrastructure and services, resulting in significant cost advantages by avoiding the high costs of maintaining on-premises infrastructure, such as hosting, site acceleration, security and uptime. Headless: Headless describes the decoupling of the front end from the back end. The front end can be anything customer-facing, from a web shop to social media to mobile apps. The backend is the layer where all the systems, processes and tools run to handle operations, including product information management, checkout and more.Headless vs composable vs MACHHeadless is all about decoupling the front end and the back end so they can operate independently and achieve higher flexibility and agility. Nowadays, you see many legacy platforms claiming to be headless when really all they offer is a few APIs. Don’t be fooled. If a monolithic, non-microservices-based architecture is lurking behind the scenes, you won’t be able to unlock the freedom that a true MACH architecture has to offer.Composable is yet another term that is being thrown around, many times used interchangeably with MACH. They are not the same though. Composable is a modular development approach and enables brands to “compose” unique customer experiences by plugging best-of-breed building blocks like cart, checkout and payments into their technology stack. Those components, though, are not required to be MACH-compliant.Assembling a composable architecture using MACH-compliant building blocks is the only way to truly embrace the power of composable technology. Essentially, composable takes a step beyond headless. It breaks down the entire platform into individual components that can be independently plugged in, customized and even replaced. That allows companies to integrate curated best-of-breed components to tailor their technology stack and, consequently, the customer experience. What are the benefits of MACH technology?MACH-based architecture provides the technical backbone to make businesses future-fit. It creates an environment in which every component is pluggable, scalable, replaceable and can be continuously improved through agile development to meet the ever-evolving business requirements.When combined, the technologies that provide the foundation of MACH architecture provide remarkable advantages:Flexibility: Decoupling of frontend and backend allows for more agile development and deployment.Scalability: Auto-scaling ensures seamless handling of traffic peaks with zero downtime. No more Black Friday outages!Speed: Allows for faster iteration and testing, and the cloud provides instant provisioning and deployment of resources.Lower costs: Reduces the need for costly and frequent investments in hardware, software and infrastructure.Resilience: Reduces the risk of application downtime; has built-in redundancy and failover mechanisms.If you want to go further, faster, a MACH architecture will get you there.MACH architecture vs. monolithsThe time of the monolithic giants — think the likes of SAP, Oracle and Salesforce — is coming to an end. No monolithic platform can deliver the same speed, functionality and performance that a MACH architecture can deliver. What may seem like a blessing when you sign on with a monolith (you only buy once, with one contract and one point of contact) quickly becomes a curse if you want anything but the standard procedure. Thinking about an innovative, unique customer experience? You’ll need to beg the monolith to create it for you, and chances are slim they will unless you’re the biggest customer in their portfolio. With a MACH architecture, you are in the driver’s seat. You’ve got a brilliant idea for a thrilling new customer experience? Plug and play the best-of-breed solutions and watch your business thrive. With a monolith? Wait until the trend has passed to even get a response to your request. Is your business ready for MACH?Now that I’ve gotten you curious about the whole MACH thing, how do you know if MACH is right for your business? Start with an assessment of your current systems, processes and goals. Then, check the statements below. If you agree with any or all of them, it is time to make a move. Your current system is holding you back because it is too inflexible and slow to move at the speed necessary to keep up with shifting customer expectations and industry trends.You're looking to decrease TCO and increase ROI as you are currently paying for resources you don't need.You want to improve customer experiences, but you are struggling to provide cohesive and personalized omnichannel experiences.You want to stay ahead of the competition by staying agile and responsive to market demands, but you're finding you can't keep up with your competitors.The bottom lineIn today’s uncertain market conditions, the only constant is change. Moving to a MACH architecture will not only make your business more agile and adaptable, it also reduces the total cost of ownership (TCO) often associated with outdated pricing and licensing models employed by the monoliths.A modern tech stack is key to making your business future fit. Make the move from monolith to MACH. Tailor your tech stack to your individual business needs and create that unique customer experience that will put you ahead of your competition — time and again.About the authorJasmin Guthmann is the Head of Corporate Communication at Contentstack and Vice President of the MACH Alliance.Learn more about Jasmin
REI's composable transformation advice
Kat Valdre and Jason Greely from the REI Platform engineering team share their composable transformation story. They discuss the challenges they faced while decomposing their monolithic architecture and their approach to building trust across the organization as they embark on a years-long transformation. Their transparent and refreshing perspective on tech transformation will resonate with anyone who feels their progress is slower than they (or their organization) would like to move. Kat and Jason provide valuable insights and advice for any business making a major technological shift. Timestamps:1:41 What were things like at REI before they decided to go composable04:06 What pushed REI to start their composable transformation?06:25 The importance of introducing changes in manageable parts07:54 What composable will enable for the business11:17 Advice for companies embarking on composable transformation12:55 Dealing with differing opinions and disagreements13:57 The importance of documentation16:41 Hurdles and challenges REI has faced along the way 18:50 Managing expectations and maintaining morale when transformation takes a long time
What is a Composable Digital Experience Platform? With PostNL's Jurre van Ruth
What is a composable digital experience platform? What are the key capabilities that it must represent? Where do you start in building one? How do you know if you are successful - what metrics should you look at when, and how do you communiate to business and IT stakeholders along the way? Dutch postal service PostNL's Jurre van Ruth (Strategic Program Manager, Composable DXP) has the answers. In this episode, he tells the story of the company's digital transformation from monolithic technology to a Composable DXP and how that has made PostNL one of the country's most innovative digital businesses. Timestamps:0:54 What is PostNL?1:38 Jurre's role and responsibility2:20 Defining a Composable DXP4:12 What was the digital capabilty landscape like inside PostNL before going composable?6:03 Where to start? How the company decided where to begin the transformation.7:22 What they did instead of a roadshow to get buy-in for the Composable DXP concept8:38 "Zooming out" strategy to prepare a business for a big change10:49 Metrics Jurre's team uses to measure success of the Composable DXP13:41 How the team uses these metrics to create momentum14:19 A simple but huge benefit of Composable DXP: creating a common language
How composable technology improves experiences in financial services
The financial services industry is one of the most advanced sectors when it comes to using digital technology. However, companies in this space are constantly competing for customers at every level, from large investment firms to small, independent banks.To stay ahead of the competition and satisfy customer needs, financial institutions must take advantage of the most advanced solutions available to optimize customer experiences. Composable digital experience platforms provide an easy-to-implement suite of tools and features that allow businesses to execute complex tasks quickly and cost efficiently. In this blog, we’ll explain what a composable DXP is, then look at how financial services companies rely on this technology. We’ll also cover the major benefits of composable DXPs and give you questions to ask when selecting a DXP.What is a composable digital experience platform (DXP)?In a legacy platform, a suite of features and capabilities are built into the software by the vendor. You pay for everything in the suite, even features you don’t want. To add functionality, you must choose vendor-approved, third-party plug-ins. There’s no freedom to choose the ideal solutions for your business as you grow.Composable DXPs differ. They’re “composed” of best-in-breed solutions that work together via APIs to deliver omnichannel content and digital experiences. With composable, you’re no longer locked into features and capabilities chosen by the vendor. Instead, you can compose a unique DXP with the right mix of tools for your business.Many types of software can be integrated into a composable DXP such as:E-commerce toolsAsset managementCustomer managementOmnichannel managementMarketing automation and analyticsContent workflowsCustomer engagementAI toolsThe architecture of legacy and composable DXPs also differs. With a legacy platform, developers create HTML code to control how a website’s front-end display looks. This is great for managing content like photos, text, art, and videos on one website. However, it’s inefficient when using content across multiple websites and channels like social media sites and native apps.With legacy systems, users must manage content separately for each channel. This is difficult, time-consuming and also increases the risk of human error. Legacy systems simply can’t provide the level of agility financial organizations require to deliver the meaningful content experiences required to be competitive.Composable DXPS are built on composable architecture with headless content management systems at the core. With headless, the front-end display and back end are disconnected. Because of this separation, content for multiple channels is managed from one central hub. Then it’s pushed to websites, mobile apps and social media on demand. When integrated with tools like real-time customer data and analytics, organizations become more agile. This leads to greater customer satisfaction along the customer journey.How financial services companies use composable technologyTo understand how financial companies rely on composable technology, let’s consider their customers. According to the Forbes Advisor: 2022 Digital Banking Survey, nearly 80% of adults in the U.S. prefer using a mobile app or website for banking rather than banking in person at a physical location.That’s not surprising when digital is more accessible and convenient. With digital, customers can bank 24/7 from anywhere in the world on any device. They no longer have to leave home to make a deposit, get a loan or even close on a new house.New digital-only banks have also disrupted the market. These non-traditional banks offer fast, convenient mobile banking solutions and payment services. And they have left some traditional banks struggling to keep up.Advances in digital technology aren’t limited to banking either. E-commerce is booming. According to the U.S. Census Bureau, e-commerce sales in 2022 were estimated to total $1.03 billion. Payment providers, acquiring banks and card schemes like Mastercard work behind the scenes to enable these transactions.Customer expectations of financial services organizations have evolved along with technology. Customers now expect options that make it easy to manage their banking, conduct financial business and make purchases quickly and conveniently. This has increased competition between financial services companies trying to seize their share of the market.Competition is actually responsible for furthering banking along the digital journey toward digitized processes and digital revenue. In fact, according to Gartner’s CIO Survey 2021, it’s further along than any other industry.That's why robust DXPs are must-have technology for financial services companies trying to seize their share of the pie. By robust, we mean composable DXPs that support personalization, marketing automation, data and analytics, and other tools your tech stack may require to keep pace with customers expectations.Benefits of a composable DXP for financial services Increased flexibility Banks, payment providers and other financial services companies gain the freedom to keep existing systems and solutions they require to do business, while integrating new solutions they want to leverage for customer engagement and other purposes. Put simply, they can choose the best mix of tools for their unique success story.From one composable platform, this mix of best-in-breed solutions will connect and communicate seamlessly. Many complex processes that were once slow, time-consuming and left room for error become automated and streamlined.Agility Composable empowers financial organizations to move faster. They could mean pushing important information to multiple channels quickly or adding a new product ahead of a competitor. This agility enables financial organizations to scale faster while still keeping up with customer expectations and regulatory requirements.Composable DXPs can even help financial organizations to grow as it enables them to deliver much better content experiences. This not only helps to attract brand new customers, but builds customer satisfaction and customer loyalty among existing customers. Enhanced security Composable enables faster implementation of security updates. This minimizes both disruption and vulnerability to cyber attacks. Financial organizations are very susceptible to cyberthreats from criminals trying to access financial assets or personal information to target customers. And the slow process of updating security protocols with traditional, legacy DXPs can result in lengthy downtimes. During these times, secure systems are more vulnerable to cyber threats.Not only do government regulations require that financial organizations take security measures to protect their customers from cyberthreats, customers have similar expectations. They want security when they bank or conduct any business through a financial services provider. This is true whether they’re banking on their phone or making a purchase on an e-commerce site.What to consider when implementing a composable DXPBefore choosing a DXP, it’s crucial to first consider who will be using the platform and how they will use it. Be sure to loop in stakeholders from marketing, IT and business. Developing specific use cases will provide a clearer picture of what you require from a platform.Next, it’s time to begin searching for a DXP to fulfill your requirements. Be sure to ask these four questions: Does it have a headless CMS? A headless CMS is important because it enables composable DXPs to manage content from one location, then push it out to multiple channels like your website, social media and native apps.Is it easy to use? Composable DXPs should enable content creators and other nontechnical users to create and edit content without any coding skills or assistance from IT. Select a platform that’s easy to use and intuitive.How configurable is it? Regardless of how easy a platform is to use, it isn’t going to be the right fit unless it can be customized to align with user requirements and business objectives. Choose a DXP that offers the customization options your business needs, as well as the capability to integrate the best-in-breed solutions you may want to leverage both now and later as your organization scales.How good is the customer support? Transitioning from a monolithic platform to a composable DXP is a unique experience for every organization. Making the switch is often done in phases with different capabilities and features being rolled out over time with minimal disruption. You’ll need technical support throughout the transition. Make sure your provider is willing to listen and comprehend your use cases and business objectives and will be there when needed.How financial services companies use composable DXPsHere are three examples showing how banks and financial services companies are using composable DXPs:Composable banking: Many banks have already adapted to composable banking, which makes it easy to quickly adapt to changes in the market. With composable banking, products and services are broken down into separate components that are managed independently. Composable DXPs support composable banking by making it easy to launch new products and services at the right time without disrupting other services.Managing content across channels: Banks with multiple locations, divisions and different suites of products and services for personal and commercial banking customers are using composable DXPs to manage all their content from one central hub. When an interest rate changes, for instance, a composable DXP enables content teams to quickly push the new rate out to multiple channels in a matter of minutes. Whereas in the past, someone had to go into each piece of content and manually update the rate. This was not only tedious and time-consuming, but increased the risk of human error.Personalization: Some larger banks are focusing heavily on enhancing personalization through better technology to deliver a better customer experience. Composable DXPs enable banks to seamlessly integrate and connect sophisticated automated and AI-powered tools that communicate and share data. For instance, localization tools can determine a customer’s location and deliver personalized content in their language, while feedback from analytics tools ensures the message is relevant to them.Learn moreLearn more about the advantages you can expect from our composable DXP in our blog, “Contentstack demonstrated 295% ROI in Forrester study.” To see how Contentstack’s composable DXP can help your digital transformation, schedule a free demo.
Enterprise MACHified
The MACH Alliance supports companies who want to take advantage of the most innovative and flexible enterprise technologies available — and to break the release cycle. Read the most recent research report.
DownloadDigital leaders
Learn how to deliver better digital experiences, faster
How a Composable DXP drives experimentation, innovation and digital transformation
Today's era of relentless technological evolution is challenging companies to break free from the cookie-cutter molds of monolithic solutions and embrace technologies that harmonize their digital strategy with unrivaled agility.To keep pace with customer needs, businesses are no longer playing it safe but instead embracing experimentation and innovation to forge ahead in the race of digital transformation.Enter composable DXPs. A composable digital experience platform (DXP) can be the game-changer your marketing and creative content teams have been waiting for. As businesses strive to provide customers with personalized digital experiences across all channels, the need for a robust, scalable and adaptable technology stack becomes paramount.In this article, we'll explore what a composable DXP is, how it can revolutionize your approach to content and digital experiences, and the benefits it offers your business.What is a Composable DXPA composable DXP is a modern approach to building digital experiences. With a composable architecture, businesses can create, manage and deliver digital experiences across various channels and platforms by leveraging a range of interoperable, modular tools. The fundamental components of a composable DXP are:Headless CMS: A content management system (CMS) that allows content creation, easy updating, and management separately from the front-end layer your customers see.Composable technology: Imagine being able to build your content strategy from a set of building blocks that can be easily configured and reconfigured to work best for you. Composable technology enables businesses to use modular and lightweight components to build tailored digital solutions quickly.Composable architecture: A flexible and adaptable framework that supports the rapid integration of business-critical applications and tools, empowering teams to build better customer experiences.How to leverage a DXP for better contentWith an expansive catalog of configurations, applications, and diverse components, a composable DXP empowers marketing and creative teams to experiment with various combinations to achieve the desired results. This capability helps foster innovation and allows teams to respond quickly to changing customer needs. Here are five ways a composable DXP can drive better content:Personalized digital experiences: Leverage customer data, behavior analysis, and customer journey mapping to deliver highly-personalized, relevant experiences across all your digital channels.Omnichannel: Enable seamless content delivery and interactions across every device and touchpoint you rely on to reach your customers.Experimentation: Empower your teams to innovate and experiment with different tools, solutions, and content strategies, all from a single environment.Collaboration: Streamline collaboration between departments, teams, and individuals by using a centralized platform that fosters efficient workflows and automates manual tasks, enabling your teams to create faster.Scalability: Leverage the scalability of the DXP to quickly adapt to market changes, drive growth, and maintain your competitive edge.Benefits of a Composable DXPBeyond producing better content and creating more space for innovation, a Composable DXP offers businesses the digital tools to create meaningful customer experiences. Companies that migrate away from their rigid technologies and uplevel their digital capabilities have a full toolbelt for swiftly responding to market demands, improving customer satisfaction, increasing operational efficiency and maintaining a competitive edge in the market. How, you might ask?1. Speed-to-marketComposable DXPs enable businesses to respond quickly to changing market dynamics, customer needs, and technology advancements. By adopting a composable architecture, you can minimize time spent on complex integrations and cumbersome traditional CMS systems. As a result, your teams can build and launch new digital experiences much faster.2. FlexibilityA composable DXP provides the foundation for a flexible tech stack that can continuously evolve and adapt, as your business evolves. Businesses can choose best-of-breed technologies that align with their unique requirements, allowing them to build, experiment, and adjust their strategies in real time.3. Cost-efficiencyGone are the days of being locked into vendor agreements and limiting technologies. Businesses can select the tools they need according to budget and requirements. This facilitates better resource allocation, helping organizations operate in a leaner, more efficient manner.4. Innovation and experimentationA composable DXP fosters a culture of innovation by empowering marketing and creative teams to experiment and iterate. This leads to accelerated digital transformation and triggers an innovation domino effect across the organization.Grow faster, scale better, experience more ROIA composable DXP can be a crucial driver of experimentation, innovation and digital transformation for businesses. By leveraging a headless CMS and composable architecture, businesses can unlock the true potential of their digital ecosystem, experience greater ROI from increased customer loyalty and, ultimately, stay ahead of the curve by delivering exceptional digital experiences that drive growth and success.About the authorMarina Rusinow is a Senior Manager of Solutions Marketing at Contentstack with over a decade of product marketing experience.Learn more about Marina
Transformation through Automation: Keith Mazanec, Brad's Deals
Keith Mazanec (Director Software Engineering, Brad's Deals) returns to share the company's in-depth transformation story, highlighting the content lifecycle automations that made the biggest different for content teams as the company moved from legacy to composable. This session was recorded live at ContentCon 2023.
How to create a 5-star content strategy: Tips from Juliette Olah of Booking.com
When it comes to content strategy, Juliette Olah knows that a key part of reaching a vision is planning a smooth journey to get there. As senior manager, Editorial at Booking.com, she skillfully blends the needs of customers, technologies and creative teams to define the editorial roadmap for the global travel brand. Olah recently spoke with us about creating high-value content, getting organization-wide support for change, and the advice she has for other leaders driving editorial strategy. Keep the focus on the customer When Olah joined Booking.com in 2020, the editorial content was mainly used for paid social media ads. She quickly saw an opportunity to use these long-form articles in a much broader way to support the brand’s own social, organic and email channels.“I wanted to show that potential but, at the same time, keep focus so that it didn’t seem like I was trying to solve all content challenges through editorial,” Olah said. “If you go too broad, too quickly your message can start to become lost.”A key part of defining and keeping a focused content strategy is taking a customer-first approach — creating a roadmap and choosing themes based on what is most valuable for your audience and then figuring out how to tightly weave business objectives and marketing goals into the plan instead of the other way around. “A customer-first approach is essential; otherwise you lose relevance and value very quickly,” Olah said. “Audiences are incredibly sensitive and perceptive to anything that is slightly off or slightly irrelevant. If your content and your messaging isn’t coming across seamlessly you’ll lose attention immediately, and you’ll also lose trust.” Maximize the value of each piece “Editorial content does take a lot of resources to produce,” Olah said, discussing the research, writing, visuals and translation work required. “So if we’re going to do this, we need to make each and every story work to serve needs and fill gaps so that we’re supporting the brand rather than just adding more content.” Maximizing the value of content starts in the planning phase. For Olah and her team, this includes working with in-house researchers to identify travel trends, with localization specialists to make sure ideas are culturally relevant and with the social and email teams to create pieces that can serve the strategies of multiple channels. It’s also key to set up content for long-term value. This can include structuring content on the back end in a way that makes it easy to reuse across different channels, or enhancing the tagging and taxonomy of your archive to get more out of the content you’ve already invested in. “Editorial at Booking.com has been going on for many years, so we have thousands of pieces of content,” Olah said. “Surfacing that content in a relevant way, being able to curate it, to search through it and filter it efficiently is now really important for audiences to be able to get the most value out of it.” Build a 360 business case for technology change To reach their multichannel ambitions, Olah knew the editorial team needed a technology solution that would let them create, curate and optimize content more efficiently than would be possible with their incumbent, homegrown platform. Having worked with a headless content management system (CMS) in previous roles, Olah started exploring if this approach was a right fit for Booking.com. Through many discussions with tech and product leaders, as well as the creatives on her team, she built a business case that looked at the technology justification and functionality needs, as well as the impact on efficiency and editorial strategy. “The business case is part showing a comprehensive, 360 view of the technical benefits of the platform and part showing that you’ve done your homework on a robust content strategy,” Olah said. “From examples of execution, to tying in brand storytelling and campaign amplification, to details around distribution and channel use cases of the content.” Presenting an aligned, measurable plan for change was key to getting different stakeholders to understand the potential of editorial content and to get the buy-in needed to make the change successful. “Advocacy is needed at all levels and functions, from a leadership level that signs off to the people that are actually involved in using the products and the systems day-to-day,” Olah said. “They need to be happy and settled and feel confident that this is going to make their jobs easier and more efficient.” Don’t change for change’s sake To ensure the move to the new content solution went smoothly, Olah was careful to avoid a common stumbling block she’d seen at other organizations. “When companies launch a new platform, there’s a tendency to launch 10 other things at the same time— a new platform plus new brand guidelines, or an entirely new content strategy, or a refresh of everything that’s associated with the particular platform,” Olah explained. “I was very conscious of not doing that because that is extremely stressful and, in my opinion, unnecessary.” Instead, change was rolled out in stages and, where possible, tied in existing ways of working to make people feel comfortable during the transition. For example, the editorial team was very happy with the workflow that was created around the previous content platform. While a headless CMS might be able to support more efficient processes, Olah decided it was best for the team to first roll out the new platform in a way that worked with the existing workflow. “Don’t try to change everything under the sun at the same time,” Olah advised. “If something is working, keep it, and keep the business case focused on the current challenges that need to be solved.” Plan for potential Breaking transformation into independent steps, rather than a big-bang approach, is also an opportunity to create a content and technology framework that supports continuous change. “Once we launch, there’s still a lot of potential for editorial at Booking.com, and what we’ve been able to do with this platform is build for that potential so that the structures are in place,” Olah explained. For instance, with an API-first approach Booking.com is able to structure content so that it isn’t locked into only being presented as a static long-form article on the site. As the team explores new channels, third party syndication, testing tools and further optimization for local markets they can adapt existing content and processes to meet new needs. “This is a huge benefit of headless,” Olah said. “We don’t know what we will necessarily need in another five years, but we absolutely need something that is flexible and adaptable enough to accommodate that.”“There’s only so far ahead that you can possibly plan for,” she continued. “You need a system that helps you to flex and change in this environment.”
4 questions for e-commerce brands considering composable
There’s a lot of confusion in the market when it comes to composable architectures. A company says one thing and their competitor says something different — all the while, the people who hunger for change inside complex organizations struggle.We see this in potential e-commerce customers all the time, knowing they need a change but not really understanding what composable can do for them. Emma Sleep, one of the fastest-growing D2C sleep brands in the world, was one of those organizations.Andreas Westendörpf, chief technology officer of Emma Sleep, talked about why they chose composable and what it did for them on the latest “People Changing Enterprises” podcast. Hearing him speak about the differences between traditional environments and composable inspired me to create this litmus test. Ideally, this will help provide clarity for e-commerce organizations wondering if composable is the right move for them.Are you aiming to grow quickly?For organizations trying to scale quickly, traditional CMS and legacy systems are far more complicated than composable architectures. They are less flexible and take more developer intervention to launch new markets, products, and content. Composable wasn’t in Andreas’ original plans. But when Emma Sleep introduced their ambitious growth goals, they were operating from a highly customized legacy system. Doubling business every one or two years in vastly different markets would be difficult, frustrating and extremely error-prone with these technologies. They also wouldn’t be able to support personalized content for each market — what works for European audiences doesn’t work for Asia or Latin America. If you are a scaling organization, you need composable. Other options are too rudimentary and inflexible for you. You will have to manipulate and create custom code to force things to work, which is not only a huge risk — as it will most likely break often — but inefficient when efficiency is required.Are you outsourcing the problem to the vendor?Andreas made a good point in the podcast. E-commerce was one of the first ways to make money on the internet, which is why many platforms still follow the architectural design principles of the ’90s and early 2000s when they were founded. While that’s changing, it’s happening slowly. In the meantime, e-commerce organizations are struggling with monolithic technology.The common solution is outsourcing your development to the same vendor you’re struggling with — a tricky catch-22. The problem doesn’t change. Instead, it comes with long consulting timelines and following industry “best practices” that actually aren’t best, like planning out your project five years in advance (more on that to come).Composable solves two problems at once: providing a more flexible, agile technology stack and by bringing control back in-house.Do you need to make room for innovation?I recently read a great piece that nails down what innovation really is: riding a wave. Mary Kay Ash didn’t invent cosmetics; she rode the direct-sales wave. Henry Ford didn’t invent the automobile; he rode the assembly line wave. Steve Jobs didn’t invent computers; he rode the digital wave. So on and so forth.Here’s what I’m trying to get at: Are you equipped to ride the wave?E-commerce brands must ride the wave more than most. They ride the waves of public opinion, of social media, of what customers need when they need it. But the thing about waves is they disappear quickly. If you don’t catch it, you sink. E-commerce organizations don’t have the luxury of submitting a developer ticket or a feature request and waiting around for six months until the request becomes a reality; the wave could be gone by then. Yet that’s often what happens with legacy technology — so many missed opportunities.In the podcast, Andreas expresses his desire to experiment quickly and figure out what works versus what doesn’t. In a composable architecture, their team can integrate up-and-coming tools like ChatGPT for use pretty quickly. Emma Sleep also tests new platforms for new markets beforehand and implements them when ready. That was not possible for them in their previous environment.Do you need to transform quickly?“The five-year plan is dead.”That might be my favorite quote from a “People Changing Enterprises” podcast so far, and Andreas is absolutely right. Why stretch your timelines out that long, especially when you can reap value much earlier?Andreas added: “Don't plan for a five-year project. If you are trying to implement within a five-year timeframe, things change too much. So plan for two years. Two years is a good time horizon. If two years becomes two and a half, fair enough. But you need to somehow have the most critical work done at the end of two years, like 90%.”Enterprises choose to make the transition from monolith to composable in different ways, but one thing all successful transformations have in common is that they don’t push it too far down the road.The litmus test is done. If you answered “yes” to most — or all — of these questions, then it’s time to talk with us about moving from monolith to composable. Here’s the good news: When you choose to make the transition to composable, you’re future-proofing your organization. According to Andreas, “it’s the last replatform you’re going to need.”
Adopt a Modern Digital-first Marketing Strategy
Content is consumed everywhere by everyone all at once. If only we lived in a multiverse, where multiple versions of your marketing team could crank out personalized omnichannel content at the speed your customers demand. Watch this webinar to learn how a composable DXP gives your teams the (multiversal) powers and tools they need to create the content you need to get the results you want.
Developers
Learn how to build better digital experiences
Building a scalable DXP - Part 1
Scale is one of the most common and fundamental problems digital teams have to confront in order to grow their businesses. But more than just a key to unlocking growth, how a team thinks about scale can affect costs, ongoing resource capacity, feature roadmaps, and even an organization’s overall pace of innovation. In the universe of digital experience (DX), which spans all the way from the devices at the frontier of your audience’s senses all the way to the cloud and hardware that powers your company’s back-of-house operations, scale applies in some way to nearly every facet between these two ends. Understanding how the systems, people and processes that make up this end-to-end DX assembly line fit together and affect each other is key to unlocking that scale.This article aims to explain how to scale your digital experience platform (DXP). In it, we will discuss the meaning of scale, how to approach scale within your organization, and why it’s important. What exactly does it mean to scale?Simply put, scale is the relationship between the inputs and outputs of a given system. When people refer to scaling a business, they are typically talking about increasing outputs, like sales and revenue, while holding constant or decreasing inputs, like costs and materials. In an engineering-oriented team, scale often refers to hardware and software, such as the ability to flex or expand capacity to process more operations. If you work on a content or marketing team, scale usually refers to growing your audience, increasing engagement, and publishing more and better content. On the business and leadership teams, scale usually means increasing revenue.But these definitions of scale are oversimplified because they focus only on the outputs of these systems while ignoring the inputs. Or to put it another way, when we are talking only about increasing the outputs of a system, we’re talking about growth. When we talk about increasing outputs relative to the inputs, we are talking about scale.A “scalable” case studyConsider a digital agency as a hypothetical case study. The agency builds highly engaging promotional websites, and its revenue is directly tied to the number of websites it can implement for its customers. Let’s assume the agency is high touch and that each website takes a total of 1,000 hours to successfully design, build and launch. Let’s also assume that the agency employs 10 people, for a total of 20,000 available hours per year (ignoring PTO) and enough resources and the proper staffing configuration to successfully sell and deploy a maximum of 20 new sites per year.A blunt approach to scaling this business model would be to demand more than 20 sites out of the talent. In this approach, leadership sees the staff as the enemies of scale and demands more output from them in the form of working faster and staying late to meet aggressive goals. Indeed many companies attempt this strategy at the cost of talent attrition, sloppy work, constant training of new employees, missed deadlines and lost customers. Launching just two additional sites per year would require every employee to work an average of about one extra half-day every week of the year, leaving scant time for family as well as the occasional urgent customer support request.Another approach is hiring additional talent and slowly scaling up output while demand catches up to the newly increased capacity. Although this approach is common, it comes with the risk of increasing investment before increasing revenue, and when applied responsibly it can take some time to pay off. Leaders who choose this tactic will hire, say, two more staff with the aim of selling and launching about four additional sites per year. While this approach is intuitive, once the full cost of two FTEs, the opportunity costs of training them, and the revenue from four additional sites are factored into the balance sheet, it’s easy to see that this approach could be slow to take off and perhaps actually decrease the agency’s profit margin over time if it doesn’t go well.Now consider a third approach, where leadership recommends that each team looks for opportunities to repurpose generic work developed for other customers in order to reduce the number of hours required to implement new websites. Over the course of building the next few sites, the teams are able to develop reusable components of their work, for example, in the form of code and design libraries for commonly requested solutions, which in turn results in an average reduction of 200 hours across all website deliverables. This means that the agency can now produce 20 sites of the same or better quality in only 16,000 hours, which increases output capacity to 25 websites in the same original 20,000 available hours without adding staff or increasing costs.Scale smarter, not harderWhile each of these three examples are strategies for how an agency might approach scaling up output, the third example is a clear frontrunner because it has the highest impact on increasing output while at the same time holding inputs relatively constant. The third approach is also the only example out of the three that can lead to economies of scale. Economies of scale describe the state of a relationship between an input, such as cost per unit, and an output, say, the number of units produced, where the cost per unit actually goes down as you create more units. This relationship between inputs and outputs is what people typically mean when they say they want to scale something. It is not just that they want outputs to grow, but that they want outputs to grow and the cost of inputs to stay flat or decrease at the same time.Although this case study centers around an agency and looks at three simplified approaches to scaling the overall business outputs, it’s useful to shed light on the fundamental concepts of scale before unpacking the specifics of scaling a DXP. Here we’ve highlighted two essential tenets that will benefit digital leaders as they work to scale nearly any system: There are many ways to approach a problem of scale, some sustainable and some unsustainable. Scaling on the backs of employees, for instance, is not a sustainable approach. There is nothing wrong with hustling to achieve a goal, but hustle alone lacks the strategic thinking that unlocks scale, which leads us to our second tenet.Effective and durable scaling centers around creativity and is founded upon understanding — not brute force. But don’t be discouraged if you feel you or your team lacks creativity or your processes are too complex for anyone to understand. As we will see in the following articles, there are some tried and true methods for creating the conditions for creativity to emerge, and if you apply them with your teams you will have a higher likelihood of successfully achieving scale, no matter what it is you wish to scale.What’s next? Now that we’ve established a baseline understanding of scale, in Part 2 we will set the agency example aside and explore specifically what it means to scale a DXP. Stay tuned!About the authorDean Haddock is a Senior Product Manager at Contentstack who focuses on platform, hosting and data engineering.Learn more about Dean
Headless commerce vs. composable: What you need to know
The online world is constantly evolving, so companies must change how they work and develop new ideas to meet customers' changing needs. The e-commerce sector has witnessed the rise of two unique models: headless commerce and composable commerce. While they might appear similar at the outset, a deeper examination reveals critical distinctions.In this article, we'll demystify the two approaches, spotlight their respective pros and cons. And provide insights for organizations pondering a transition to a composable architecture.How headless commerce beganIn the early days of online shopping, businesses had two ways to sell their products: physical stores and online platforms. But as technology advanced, many companies didn't keep up with the changes. This made it hard for them to stay up with what customers wanted and take advantage of new trends. The problem was that their technology wasn't flexible enough to adapt to new ideas.To serve customers better, stores began separating their online behind-the-scenes system from what the public sees on their websites. They did this by using APIs to access the back end, which made their operations more flexible.Headless commerce is a way for brands to keep their complicated commerce systems while making the front end more flexible to changes in the market.Composable architecture means that each part of the system works independently and can be customized to fit a brand's specific needs. This gives businesses the power to choose which parts of their digital services to use to meet their unique business requirements best.Examining headless commerce architectureHeadless is a new way of handling e-commerce that separates the parts that users see (the interface) from the parts that do the work behind the scenes (data, operations, applications). Most e-commerce systems combine these two parts, making it hard to keep up with the constantly changing digital market. Headless, by contrast, allows the front- and back-end systems to function independently. Benefits of headless architectureAdopting a headless system introduces several advantages:It delivers a flexible and customizable front end. With the visual layer decoupled, developers are no longer tied to the constraints of the back end, allowing for the creation of custom user experiences. It enables seamless integration with other systems. The back end operates independently, communicating simultaneously with multiple front ends. This allows businesses to provide a consistent omnichannel experience across various platforms like websites, mobile apps, smartwatches, and IoT devices. For instance, should a brand face difficulties in producing content for new products due to the constraints of its content model, the headless commerce system allows the integration of a different content management system with adjustable content models. This flexibility ensures a smoother operation by effectively mitigating the identified issue.It accelerates the speed of innovation. Changes to the front end won't impact the back end, and vice versa. This promotes quicker updates, experiments and iterations, all critical components in today's fast-paced digital landscape.Drawbacks of headless architectureWhile headless offers clear benefits, it also carries some drawbacks:This way of setting up a system can be challenging to handle. It needs someone with technical knowledge to take care of the different parts and keep them working.While the freedom to customize front-end interfaces is a benefit, it also means that businesses are responsible for designing and developing these interfaces, which can be time-consuming and costly.Depending on the chosen system, limited support or functionalities may be available.Understanding composable architectureComposable is an approach to building digital services that allows each component to exist independently. This includes things like managing product information, content and customer relationships. Businesses can choose which parts they need to create a custom digital platform.Advantages of composable architectureComposable e-commerce offers significant advantages.It provides extreme flexibility. Since all components are separate, they can be independently updated, replaced or reconfigured, enabling a truly agile e-commerce platform. This architecture allows for continuous optimization without fear of disrupting the entire system.Composable future-proofs your DXP stack by implementing task-oriented packaged business capabilities (PBCs), which are essential for faster time to market and better adoption of a digital experience. With the ability to add or replace components as needed, businesses can keep pace with technological advancements, customer demands or changes in business strategy.It promotes the best-of-breed approach. Businesses are no longer confined to the capabilities of a single vendor. They can select the best software for each component, maximizing functionality, efficiency and performance.Pivoting toward composable architecture: Points to ponderEmbracing composable commerce vs. headless architecture is a significant decision you should not take lightly. Businesses should thoroughly analyze their current and future needs, evaluating whether the flexibility and adaptability of composable commerce align with their strategic goals.The appeal of composable architecture lies in its flexibility and potential for success. However, it's important to remember that just because something is possible doesn't mean it's a good idea. Composable architecture can be compared to Lego blocks, as it allows for the creation of many different structures. But the challenge lies in deciding what to build and how to make it happen.The challenge is twofold. First, there's the job of putting together all the components. Second, it's essential to ensure that each element chosen is not just a fun extra but helps create the desired digital experience is essential. It's crucial to tell the difference between the "must-have" and "nice-to-have" features. Focusing too much on the latter can take away your IT team's attention and resources from the essential functions.It's important to think about how much technical knowledge is needed. Composable gives you a lot of choices for customization. Still, it takes a skilled technical team to handle everything and ensure it works well. If you're thinking about using composable, you should ensure you have the right resources or get help from experts to make it easier.Additionally, companies must evaluate their current system's limitations. Are you finding it challenging to innovate due to a rigid, tightly coupled e-commerce platform? Does your business plan to expand into new channels or markets that your current platform cannot support? These pivotal questions can help determine if the transition to composable is warranted.When picking technology partners, it's crucial for organizations to choose carefully. The best partners will offer a variety of components that can be easily swapped out and will provide support and updates over time. The goal is to create an e-commerce platform that can grow and change as the business and customers do.Learn moreLearn more about transitioning to composable in this episode of "Contentstack LIVE!" featuring Contentstack Vice President of Technical Services Pete Larsen.Schedule a free demo to see how Contentstack's composable digital experience platform can help your organization achieve its e-commerce goals.
The beauty of a composable digital experience platform: It can be whatever you need
Have you ever tried designing a website from a template? It can be challenging. First, there are so many options to scroll through (that all somehow look the same) your head will spin. When you do pick a template, you have to build it the way you want, meaning a lot of customization. When that doesn’t work — because inevitably, you always hit the end of what the template can offer — you have to puzzle your way through custom code. That can become a tangled web very quickly.Imagine that process for an established enterprise like Sephora or even a fast-growing start-up. Think about the manual process of integrating each tool needed for e-commerce or inventory management. You think you are “done” building, but wait — the market is evolving and you need to start selling on a new-ish platform like TikTok or BeReal.A traditional legacy CMS environment is tricky: Change one thing and you risk the entire machine stalling. The beauty of composable architecture is that your website can become whatever you want, whenever you need it — easily. Jurre van Ruth, digital strategy consultant at PostNL, came on our podcast, “People Changing Enterprises,” to discuss how the company took that concept to heart and made their composable DXP work for them. But to make it work for your company like PostNL did, we need to level-set definitions and expectations. There’s a lot of confusion in the market about composable architectures — like what is a “composable DXP” in the first place — that I want to clear up. What is a composable DXP?I like how van Ruth said it in the podcast: “We see [composable] as an ecosystem of technologies that aim to create and offer a consistent digital experience for all our customer segments across all digital touchpoints.” I specifically love the word "ecosystem" he uses. CMSWire describes a composable DXP as providing “integrated, consistent solutions that are modular and tailored to microservices and yet connect the gaps of digital experience. This is a unified and seamless approach that eliminates siloed user experiences and all-in-one solutions.”To further flesh out that picture, I often describe composable architecture as a Lego tower: Each block is a tech tool and they each function together to make up one, larger tower, aka the customer’s digital experience. However, unlike a sculpture — or legacy enterprise suites — you can more easily change the look and function of the entire tower by swapping out each block within. For example, if your next marketing goal is to target potential consumers with more personalized advertising and content, those tools are easier to plug into a composable environment than traditional suites. Creative teams get to pursue the digital experience platform of their dreams, and there is much less frustration, less custom code and fewer heavy integration requirements for IT to handle on the back end.Then where does headless — AKA a headless CMS like Contentstack — come in? It’s simply a cornerstone block in your Lego tower. For a marketing environment, the headless CMS acts as a foundation. Every tool — like e-commerce, automated translation, or SEO tools — can integrate into it to make content the central hub of your ecosystem.Moving beyond one-size-fits-allEvery enterprise is different, which means that the capabilities they need will also be different. However, when it comes to traditional legacy martech systems, it tends to be one-size-fits-all. The problem is that one size actually doesn’t fit all, and those environments are slow and difficult to change. It takes extreme customization via code, contacting multiple vendors for help, and a lot of inter-dependencies that aren’t always caught until something breaks. One of the best benefits of composable is that integration is much easier and more natural with APIs inherent to a composable environment. Like clicking a Lego into place, that tool is now part of the environment. For PostNL, they invested in tools for headless content and digital experience analytics, which were easily plugged into their composable environment.An e-commerce enterprise can integrate all the tools they require, whether it’s an online storefront platform, a product catalog with elements like descriptions or visual assets, or any personalization tools it might need. But, for example, a hospitality service will need a different set of tools, and they can have them inside a composable environment.Enterprises are no longer satisfied with a one-size-fits-all approach. The beauty of composable architectures is that, in a market that changes like the wind, organizations’ digital experiences can also evolve just as easily.
From legacy systems to microservices: Transforming auth architecture
Contentstack receives billions of API requests daily, and every request must be validated to be a valid Contentstack identity. It is a common industry practice to achieve this using some sort of “identity token" for every request. Imagine having multiple types of identity tokens, such as session tokens, OAuth tokens, delivery tokens, management tokens, etc. The problem of securing billions of API requests daily can be challenging. We decided to address this by spinning up a new team that handles the complex problems of user authentication and authorization in a token-agnostic platform.Our transition journey Contentstack started as an API-first headless CMS platform that allowed content managers to create and manage content while simultaneously and independently enabling developers to use Contentstack's delivery API to pull that content and render it to create websites and applications. This means that Contentstack’s traffic increases proportionately to the traffic received by our customers' websites and applications.With increased traffic and usage, we catered to various new use cases by developing new features. These features were powered by a set of microservices, each catering to a particular feature domain and needing support for processing multiple identity tokens that had roles and permissions associated with them. The whole system had turned out to be quite complex, and performing auth had become a great challenge. This prompted us to redesign our auth architecture, which addressed the issues of being a token-agnostic and low-latency platform.Read on to learn more about this journey and how we have been able to:Transition from a monolith to a low latency microservices-based auth (authentication plus authorization) and rate-limiting architecture.Set up centralized authentication for multiple (any domain) microservices that are part of the same Kubernetes cluster.Set up decentralized and self-serviced, policy-based authorization for internal services and teams.Increasing feature sets increased domain microservices, which increased the complexity of performing auth.Monolithic auth architectureMonolithic architectures can be difficult to maintain, scale and deploy. In a monolithic architecture, user authentication and authorization are typically tightly coupled with the application code, making it difficult to implement and maintain robust security measures. Monolithic architectures often rely on a single authentication and authorization mechanism for the entire application, which can limit the flexibility of the system to accommodate different types of users or access levels.Performing auth in a typical monolithic architecture.In monolithic architectures, the steps involved in auth are the following:Users use their credentials at the client to generate a session token or use an existing identity token to generate other identity tokens.Users then use the generated identity token to perform a business operation by making a request to the application server.Once a request is received at the application server, the authentication middleware authenticates the token and forwards the request to the business module.The business module performs the business operation based on the authorization rules applied to the user identity.Problems with monolithic auth architecture:Authentication and authorization logic is mixed with the business logic.Changing the way an identity performs an operation on a resource involves a change in the associated auth-related logic.Each domain individually implements the authorization logic, causing a difference in implementation.Since authorization logic is deeply nested in business logic, we lack visibility into authorization rules applied to a resource.Shipping of new authorization logic requires a fresh deployment of the application image.New microservices require knowledge of various identity tokens and resource authorization rules to be applied.Microservices auth architectureMicroservices offer a more flexible, modular approach that allows for easier maintenance, scalability and deployment. With microservices, each service can be developed, deployed and scaled independently, allowing for faster time-to-market, improved fault tolerance, and better alignment with modern development practices. Additionally, microservices offer more efficient use of resources and better support for diverse technology stacks.AuthenticationWhy centralized authentication?Centralized authentication is a security model in which a central authority manages authentication, such as a server or service, rather than it being distributed across multiple systems or applications. There are several reasons why centralized authentication is commonly used and considered advantageous, including increased security, simplified management, improved user experience and lower costs. While there are some drawbacks to centralized authentication, such as the increased risk of a single point of failure and increased complexity in managing the central authority, the benefits often outweigh the risks. Centralized authentication and rate-limiting at the edge of the service mesh.The steps involved in the centralized authentication process are the following:Any incoming request to the Kubernetes cluster first lands at the Istio ingress gateway.The request containing the identity token is proxied to a central authentication gRPC service with the help of envoyproxy's external authorization filter.The central authentication service queries Redis with the identity token and metadata associated with the request.Redis responds with the identity associated with the token and the current rate-limit count based on the request metadata.The central authentication service responds to Istio with either of the following:Authenticated response with user context attached to the request in the form of request headersUnauthenticated responseRatelimit exceeded responseAn authenticated request containing the user context is then forwarded to the upstream service.Advantages over the monolithic architecture:Easier to onboard newer microservices to central authentication service by using label based istio-injection.All requests are authenticated and rate-limited at the edge of the service mesh, ensuring that each request entering the cluster is always rate-limited and authenticated.The request forwarded to the upstream microservice has user identity context attached to it in the request headers, which can be further used for applying authorization rules.Keeping centralized authentication eliminates the problem of multiple mutations performed by the upstream microservices on the identity of the token.Authorization Centralized authorizationWe tried a model where along with authentication and rate limiting, we also added authorization as a responsibility of the central authentication and rate limiting service. The service would first identify the incoming request’s identity from the token and apply rate limiting based on the request metadata. Once the user identity is known, authorization rules could be applied to the user’s identity, thereby performing the entire Auth at the edge of the service mesh. Problems with this model are the following:This model could only perform basic authorization at the edge based on the request metadata provided, such as validating organizations, stacks, etc. However, it could not perform fine-grained authorization, such as finding out which content types the logged-in user had access to.For RBAC, each domain has its roles and permissions associated with it; performing authorization for such requests requires knowledge of the upstream domain and leads to the addition of domain-specific logic in the centrally managed domain-agnostic platform.With newer domain microservice additions, this again would lead to the problem of lacking visibility into authorization rules applied to a resource.Distributed authorization with central authorization serviceWe then tried implementing a model where we distributed authorization to the upstream microservices where each upstream microservice makes a call to a central authorization service. The authorization service has access to all the roles and permissions of different domains and was able to give appropriate authorization results. Authorization could now be performed from the upstream service’s business module by making a network request using Kubernetes cluster networking to avoid making a call over the internet.Problems with this model are the following:The central authorization service becomes a single point of failure.Any change in the API contract defined by the central authorization service requires all the upstream services to abide by it and makes shipping these changes independently a complex task.Performing authorization adds a network hop, thereby increasing the latency.Distributed authorization with the sidecar patternLearning from the previously discussed disadvantages, we wanted to build a model that had authorization distributed, low latency and made shipping authorization logic an independent activity. ArchitectureThe architecture involves the following components:Auth sidecarCentral policy serviceAuth SDKArchitecture for authorizing an authenticated request with the sidecar pattern.Auth sidecarThe auth sidecar is a gRPC service that gets injected along with the microservice’s application container in the same Kubernetes pod. Let’s understand how this architecture helped us tackle the previously mentioned problems.Single point of failure: The auth sidecar service runs with the application container in the same pod, and any case of failure is only limited to the current pod. Restarting the pod gives us a fresh set of application and auth sidecar containers.Independent delivery: Since the auth sidecar service container is shipped along with the application container, the application service can decide which version of the sidecar image to use, thereby making the delivery of newer versions of the authorization sidecar independent.Low latency: There is no network hop involved in making a gRPC call to the auth sidecar running in the same pod. This helps the application to get the authorization result with very low latency (in a few milliseconds).Updating authorization logic: The auth sidecar periodically downloads fresh policy bundles; any time there is a change in policy bundle coming from the central policy service, the auth sidecar updates its local policy cache with the new bundle.This way, updating authorization logic does not involve a fresh deployment/restart of the application container.Components involved in auth sidecar Responsibilities of the components involved in the authorization sidecar.Aggregator: The responsibility of the aggregator is to fetch authorization-related data for the current identity based on the metadata provided by the application service in the gRPC call. It then aggregates it to be evaluated against the authorization policy.OPA Engine: We use OPA (Open Policy Agent) to periodically download fresh policies and evaluate the policy path mentioned in the gRPC call against the aggregated data.Central policy serviceThe central policy service is a repository of policy bundles (*.rego files) which are independently managed by the domain microservices. The maintainers of the domain microservices create these policies for various resources that need authorization. Since these policies only involve rules, it greatly increases the visibility of authorization rules being applied to a particular resource.Auth SDKThe auth-sdk is an internal library that we developed that helps the developers of upstream microservices to easily communicate with different auth components. It can do the following:Extract user identity and other useful information attached in the request headers by the central authentication serviceDiscover various auth components and streamline communicating with themExpose different helper methods to perform any auth-related activity on behalf of the application serviceRedesigned (new) architecture:Tracing the request lifecycle in our redesigned auth architecture.ConclusionMicroservices-based architectures can help address some of these challenges of monolithic architecture by separating user authentication and authorization into individual services, which can be developed, deployed and maintained independently. This approach can provide greater flexibility, scalability and security for user authentication and authorization.However, it's important to note that transitioning to a microservices-based architecture can also come with some challenges, such as increased complexity and a need for more advanced DevOps practices. Proper planning, implementation and ongoing maintenance are crucial to ensuring a successful transition.