E-commerce project (grain mall)

Keywords: Java Maven RabbitMQ Redis Spring


E-commerce project summary

E-commerce project (grain mall)

1, Project objectives:

Cereal mall is a B2C e-commerce project, which sells self operated goods to customers.

2, Project architecture

1. Technical architecture

The grain mall adopts the front and rear end separation development, which is a micro service project

Front end development with vue

The backend is developed with springboot + springcloud + springalibaba

For the business module, we use spring boot development

  • Since there are calls between microservices between modules, we introduce openFeign to communicate between microservices

  • Using feign requires service registration and service discovery, so we use nacos to register and discover micro services

  • When our service goes online, it is very troublesome to change the configuration, so we can use nacos as the configuration center for unified configuration

  • We use getWay gateway for dynamic routing and reverse proxy request filtering

  • In case of service call timeout and service unavailability, or large user access to prevent service avalanche, we use sentinel for service fusing and service degradation

  • Use sleuth and zipkin to track the service to see if the service is wrong and slow, so as to modify it

  • Using oauth2 and spring security as authentication and authorization services

  • Simplify our development with mybatisPlus

For data storage

  • mysql is used for data persistence in order to make the service faster

  • We use redis as cache

  • Because we want to do full-text search and data analysis for the whole goods on the shelf, we use elastic search to do full-text search and data analysis

  • Because it is a microservice architecture, there should be distributed transactions. We adopt flexible transactions + maximum notification + final consistency to realize distributed transactions

    The delay queue and dead letter queue of rabbitMQ are used for distributed transactions.

  • We also introduced Alibaba cloud oss as the storage of images and objects

2. Service Architecture

The front end consists of two services: background management page and user page

Background we divide it into background management and commodity service inventory service user service order service shopping cart service retrieval service payment service central authentication service spike service

The front-end page sends http requests through the gateway first, and then the gateway filters and routes them to the specified service

1. Development of back-end management system:

1. We need to unify the encapsulation of returned results. It can be divided into success and failure

2. We also write a unified return exception information, which is divided into status code and exception reason. The status code is five digits. The first two digits represent module information, and the last three digits represent exception type (through enumeration)

 * Error code and error message definition class
 * 1. The error code definition rule is 5 numbers
 * 2. The first two digits represent the business scenario, and the last three digits represent the error code. For example: 100001. 10: General 001: system unknown exception
 * 3. After maintaining the error code, you need to maintain the error description and define them as enumeration
 * Error code list:
 *  10: currency
 *      001: Parameter format verification
 *  11: commodity
 *  12: order
 *  13: Shopping Cart
 *  14: logistics
public enum BizCodeEnume {
    UNKNOW_EXCEPTION(10000,"System unknown exception"),
    VAILD_EXCEPTION(10001,"Parameter format verification failed"),
    PRODUCT_EXCEPTION(11000,"Abnormal listing of goods");

    private int code;
    private String msg;
    BizCodeEnume(int code,String msg){
        this.code = code;
        this.msg = msg;

    public int getCode() {
        return code;

    public String getMsg() {
        return msg;

  1. Unified global exception handling

    Use RestControllerAdvice to operate the controller uniformly

    Add handlerException annotation for unified exception handling

    @RestControllerAdvice(basePackages = "com.atguigu.gulimall.product.controller")
    public class GulimallExceptionControllerAdvice {
        @ExceptionHandler(value= MethodArgumentNotValidException.class)
        public R handleVaildException(MethodArgumentNotValidException e){
            log.error("There is a problem with data verification{},Exception type:{}",e.getMessage(),e.getClass());
            BindingResult bindingResult = e.getBindingResult();
            Map<String,String> errorMap = new HashMap<>();
            return R.error(BizCodeEnume.VAILD_EXCEPTION.getCode(),BizCodeEnume.VAILD_EXCEPTION.getMsg()).put("data",errorMap);
        @ExceptionHandler(value = Throwable.class)
        public R handleException(Throwable throwable){
            return R.error(BizCodeEnume.UNKNOW_EXCEPTION.getCode(),BizCodeEnume.UNKNOW_EXCEPTION.getMsg());

Database structure commodity library inventory Library

The inventory table needs to show how many items there are

A commodity has two attributes: sku and spu. spu describes a kind of commodity and sku describes a kind of commodity. Huawei mobile phone is spu Huawei mobile phone sapphire blue 8+64G fashion mobile phone is his sku.

Therefore, the database is designed from the two aspects of spu and sku, which will cover all the information of goods. spuInfo skuInfo spuAttr skuAttr images

Firstly, it compiles the attributes of three-level commodity classification sku and spu, and classifies sku, spu and three-level commodity shelf function and member management

The function of putting goods on the shelf is divided into filling in basic information, filling in specification parameters, sales attributes (spu) and entering sku. Finally, it is saved to the commodity library and inventory library

The user module needs to write whether the member level growth experience is mail free or disabled.

All their requests are sent by vue to reach the background service through the gateway

2. Back end page

3. Performance optimization

Product details page

First display the three-level classification. Query the display of goods according to the three-level classification. Here, you need to switch between sales attributes. Query all SKUs according to the id of spu, and then display

The id and spu of the bag of sku can get the details of the goods.

The product details page is displayed to users as soon as they enter, so there will be a large number of visits and high concurrency. So we need to optimize the system,

  • Optimization should start from sql and be divided into two types

One is to optimize sql, use indexes as much as possible, reduce the rows and columns of queries, and reduce the associated sub databases and sub tables of large tables to reduce the pressure on a single point

Second, reduce the number of database queries. We can introduce caching and use redis as caching. When displaying data, we first cache the query data. If there is no data in the cache, we query the data in the database, and the queried data is added to the cache. If there is data in the cache, it is returned directly.

4. Full text search

In the commodity search service, we need to search and query many attributes, such as commodity attribute, price function, screen size, length, cpu, memory camera, etc. at this time, mysql can not adapt to this function. We have introduced ElasticSearch for full-text search and data analysis.

When we save the elasticSearch, we save the information of the spu, because the sku is too large. The spu is the sum of a class of goods.

Query the basic information and product specification inventory information of spu products according to spuid, and store them in elastic search.

5. Cache

  • Cache should be stored in time, and data consistency is not required

  • Read write less data

data = cache.load(info); //Load data from cache
	if(data == null){
        data = db.load(info);  //Load data from database
        cache.put(id,data,ttl); //Put it in the cache and set the expiration time
return data;

The expiration time must be set for the data in the cache to avoid that the data is not actively updated or can trigger automatic update to avoid data crash and inconsistency forever.

Store json data in the cache (recommended), because json is easy to read across platforms

  • Caching has three problems

  • Buffer breakdown

  • Cache avalanche

  • Cache penetration

    • Cache breakdown is a large number of requests to query a data (hotspot data). If the key of this data expires, query the database

    • Cache avalanche means that a batch of data fails at the same time. A large number of requests to query the data enter the database, resulting in the unavailability of the system

    • The cache penetrates a large number of requests to query a nonexistent data. You need to do io queries in the database all the time to increase the performance consumption of the system.

      Buffer breakdown plus distributed lock

      Cache avalanche randomly set expiration time

      Cache through empty results, and set a very short expiration time

  • Cache inconsistency

    • When modifying the database in double write mode, modify the cache
    • Delete cache when modifying database in failure mode
    • Add expiration time to cache
    • Add read / write lock

6. Distributed lock

redisson is used for distributed locking.

When many requests query a commodity, because there is no in the cache at this time, they will query in the database. At this time, the database is under great pressure and consumes a lot of resources.

We can lock him at this time. Everyone gets the lock when they come in. Whoever gets it will go to the database, and those who don't get it will continue to wait. This solves the problem of cache penetration.

  • Reentrant Lock

When there is no lock, everyone grabs the lock. Whoever grabs it is who owns it

The watchdog mechanism is implemented inside redisson. If the redisson instance is not closed, the lock time will be automatically extended for 30s

// Automatically unlock 10 seconds after locking
// There is no need to call the unlock method to unlock manually
lock.lock(10, TimeUnit.SECONDS);

// Try to lock, wait for 100 seconds at most, and unlock automatically 10 seconds after locking
boolean res = lock.tryLock(100, 10, TimeUnit.SECONDS);
if (res) {
   try {
   } finally {
  • fair lock

    When there are multiple threads to acquire the lock, priority will be given to the thread that makes the request first. If the thread goes down, redisson will wait 5s to try another thread.

    First come, first served

    RLock fairLock = redisson.getFairLock("anyLock");
    // Most common usage
  • Fair lock with timeout

    // Automatic unlocking after 10 seconds
    // There is no need to call the unlock method to unlock manually
    fairLock.lock(10, TimeUnit.SECONDS);
    // Try to lock, wait for 100 seconds at most, and unlock automatically 10 seconds after locking
    boolean res = fairLock.tryLock(100, 10, TimeUnit.SECONDS);
  • Asynchronous fair lock

    RLock fairLock = redisson.getFairLock("anyLock");
    fairLock.lockAsync(10, TimeUnit.SECONDS);
    Future<Boolean> res = fairLock.tryLockAsync(100, 10, TimeUnit.SECONDS);
  • Interlock (MultiLock)

    All locks are locked successfully

    RLock lock1 = redissonInstance1.getLock("lock1");
    RLock lock2 = redissonInstance2.getLock("lock2");
    RLock lock3 = redissonInstance3.getLock("lock3");
    RedissonMultiLock lock = new RedissonMultiLock(lock1, lock2, lock3);
    // Simultaneous locking: lock1 lock2 lock3
    // All locks are locked successfully.


RedissonMultiLock lock = new RedissonMultiLock(lock1, lock2, lock3);
// Lock lock1, lock2 and lock3. If they are not unlocked manually, they will be unlocked automatically after 10 seconds
lock.lock(10, TimeUnit.SECONDS);

// Wait for 100 seconds for locking and unlock automatically after 10 seconds of successful locking
boolean res = lock.tryLock(100, 10, TimeUnit.SECONDS);
  • red lock

    Multiple services, one user can only have one request at the same time

    RLock lock1 = redissonInstance1.getLock("lock1");
    RLock lock2 = redissonInstance2.getLock("lock2");
    RLock lock3 = redissonInstance3.getLock("lock3");
    RedissonRedLock lock = new RedissonRedLock(lock1, lock2, lock3);
    // Simultaneous locking: lock1 lock2 lock3
    // Red locks are successful when they are successfully locked on most nodes.
  • Read write lock

    Read / write locks allow multiple read locks and one write lock

    Read locks are shared locks and write locks are exclusive locks

    RReadWriteLock rwlock = redisson.getReadWriteLock("anyRWLock");
    // Most common usage
    // or
    // Automatic unlocking after 10 seconds
    // There is no need to call the unlock method to unlock manually
    rwlock.readLock().lock(10, TimeUnit.SECONDS);
    // or
    rwlock.writeLock().lock(10, TimeUnit.SECONDS);
    // Try to lock, wait for 100 seconds at most, and unlock automatically 10 seconds after locking
    boolean res = rwlock.readLock().tryLock(100, 10, TimeUnit.SECONDS);
    // or
    boolean res = rwlock.writeLock().tryLock(100, 10, TimeUnit.SECONDS);
  • Semaphore

    An initial value can be set for semaphores. All threads can obtain semaphores. One thread consumes one semaphore. If the semaphore is negative, the semaphore cannot be obtained. After the thread executes, the semaphore should be released

    RSemaphore semaphore = redisson.getSemaphore("semaphore");
    semaphore.tryAcquire(23, TimeUnit.SECONDS);
    semaphore.tryAcquireAsync(23, TimeUnit.SECONDS);

7. Asynchronous

We want to get the detailed information of the product, the introduction of spu, the specifications and parameters of spu, whether to participate in the discount or not. These are queried, encapsulated with an object, and then returned

Introduction to spu whether the specification parameters of spu participate in the discount depends on the basic information of the commodity, while the picture can be queried directly. The specification parameters of spu and whether to participate in the discount spu introduction do not affect each other. Therefore, we can arrange them asynchronously to make the user experience better.

 * @Description: Thread pool configuration class

public class MyThreadConfig {

    public ThreadPoolExecutor threadPoolExecutor(ThreadPoolConfigProperties pool) {
        //Number of core threads, maximum number of threads, idle thread lifetime, time unit, thread blocking queue, factory for creating threads, rejection policy
        return new ThreadPoolExecutor(
                new LinkedBlockingDeque<>(100000),
                new ThreadPoolExecutor.AbortPolicy()

    public SkuItemVo item(Long skuId) throws ExecutionException, InterruptedException {

        SkuItemVo skuItemVo = new SkuItemVo();

        CompletableFuture<SkuInfoEntity> infoFuture = CompletableFuture.supplyAsync(() -> {
            //1. Acquisition of SKU basic information pms_sku_info
            SkuInfoEntity info = this.getById(skuId);
            return info;
        }, executor);

        CompletableFuture<Void> saleAttrFuture = infoFuture.thenAcceptAsync((res) -> {
            //3. Get the sales attribute combination of spu
            List<SkuItemSaleAttrVo> saleAttrVos = skuSaleAttrValueService.getSaleAttrBySpuId(res.getSpuId());
        }, executor);

        CompletableFuture<Void> descFuture = infoFuture.thenAcceptAsync((res) -> {
            //4. Get introduction PMS of SPU_ spu_ info_ desc
            SpuInfoDescEntity spuInfoDescEntity = spuInfoDescService.getById(res.getSpuId());
        }, executor);

        CompletableFuture<Void> baseAttrFuture = infoFuture.thenAcceptAsync((res) -> {
            //5. Get the specification parameter information of spu
            List<SpuItemAttrGroupVo> attrGroupVos = attrGroupService.getAttrGroupWithAttrsBySpuId(res.getSpuId(), res.getCatalogId());
        }, executor);

        // Long spuId = info.getSpuId();
        // Long catalogId = info.getCatalogId();

        //2. Picture information PMS of SKU_ sku_ images
        CompletableFuture<Void> imageFuture = CompletableFuture.runAsync(() -> {
            List<SkuImagesEntity> imagesEntities = skuImagesService.getImagesBySkuId(skuId);
        }, executor);

        CompletableFuture<Void> seckillFuture = CompletableFuture.runAsync(() -> {
            //3. Remotely call to query whether the current sku participates in the second kill discount
            R skuSeckilInfo = seckillFeignService.getSkuSeckilInfo(skuId);
            if (skuSeckilInfo.getCode() == 0) {
                //query was successful
                SeckillSkuVo seckilInfoData = skuSeckilInfo.getData("data", new TypeReference<SeckillSkuVo>() {

                if (seckilInfoData != null) {
                    long currentTime = System.currentTimeMillis();
                    if (currentTime > seckilInfoData.getEndTime()) {
        }, executor);

        //Wait until all the tasks are completed

        return skuItemVo;

thenApply receives the return value of the previous thread and has its own return value

thenAccept receives the return value of the previous thread. It has no return value

ThenRun does not accept the previous return value and runs itself directly

8. Certification services

We have done the unified authentication login function. Use spring security to control authentication and login.

9. Shopping Cart Service

We save the goods in redis and select Map < string, map < string, string > > as the data structure

Each user should have its own independent shopping cart, with user id as key and commodity information as value. Each user can crud the content in the shopping cart, so value is also a map, with the commodity id as the key and the commodity parameter as the value

10. Message queue rabbitMQ

There are three confirmation mechanisms for rabbitMQ messages: confirmCallback, returnCallBack and ack

confirmCallBack is a callback triggered when a message is sent to the switch

returnCallBack is the callback triggered when the message reaches the queue

ack is a callback triggered by the message from the queue to the consumer

Ack() acknowledgement message will be deleted by the queue

nack() message processing error messages will be processed by others and can be processed in batches

reject() error messages will be handled by others

After the customer places an order, the order status has unpaid, paid, shipped, received and cancelled the fifth middle school

If the customer has not paid within 3 hours after placing the order, we will not place the order for it. We should cancel the order and reduce the inventory. When placing the order, we can send a message to enter the delay queue. If no one handles the message after it expires, it means that the customer has cancelled the order. At this time, we can listen to the messages in the dead letter queue. If the employees in the dead letter queue have messages, we will unlock the inventory according to the messages in the dead letter queue.

11. Interface idempotency

The effect of one-time interface execution is the same as that of multiple executions (for example, we can't limit the deduction of payment)

  • token mechanism solves interface idempotency

When we execute the business, we can generate a token, store the token in redis and put it in the request header. When requesting the interface, we obtain the token and query redis. If there is a token in redis, it is the first request. We delete the token in redis and execute the business. If there is no token, the interface is requested many times, and we directly return the duplicate tag node client

token  =  server.createToken
    token = request.header.get(payId)
            Execute business;
            redis.del(payId);   //The acquisition, comparison and deletion of token s should be atomic and can be implemented by lua script
        	return data;
            redis.put(payId,token);  //Delete the token first. If the business execution fails, set the token here to request
             Re request
	return repeatMark
"if redis.call('get',KEYS[1]) == ARGV[1] then return redis.call('del',KEYS[1]) else return 0 end"     //The acquisition, comparison and deletion of token s should be atomic and can be implemented by lua script

Optimistic lock of database

Distributed lock

set anti duplication of redis

MD5 = Generate from data MD5 

MD5 = request.header.get(MD5)
  First request
  Execute business

Save the globally unique request ID to redis (set)

12. Services

Four characteristics (acid) atomicity consistency isolation persistence

Four isolation levels read uncommitted (dirty read) read committed (non repeatable read) repeatable (phantom read) serialization

Propagation mechanism of transaction

propagation required if there is no transaction, create a transaction. If there is a transaction, join the transaction

propagation support if there is a transaction, join the transaction. If there is no transaction, execute it in a non transactional manner

If there is a transaction, join the transaction. If there is no transaction, throw an exception

Propagation requirements news creates a new transaction anyway

propagation no support does not support suspending transactions when they exist

The propagation never runs in a non transactional manner,

13. Distributed transactions

CAP principle consistency availability partition tolerance partition tolerance

The CAP principle can only support two, not three. Using RAFT algorithm

Raft (thesecretlivesofdata.com)

Based on base theory

We adopt the ap principle to achieve weak consistency in distributed transactions

Final consistency of basic available soft state

We use the flexible transaction based on base theory = = reliable message + best effort notification + final consistency scheme

14. Second kill service

Because the second kill has a very large traffic, we should put the goods on the shelves in advance into the cache

  • The single responsibility principle and independent deployment are highly concurrent services, so we should follow the single responsibility principle and deploy independently

We have opened a new micro service to deal with second kill business

  • Second kill links should be encrypted

    Prevent someone from participating in the second kill before it starts

  • Inventory preheating, quick deduction

    We should not deduct inventory during the second kill. We should set a semaphore whose value is the amount of inventory

    The semaphore is over, and the second kill is over

  • If the malicious request is intercepted (at the gateway) more than 10 times a second, we will judge it as a malicious request

  • For traffic peak shaving, we can set the verification code mechanism to allow users to access the verification code during the second kill, and disperse the requests at various time nodes

  • When the current limiting fuse downgrades to 1 million requests in one second, we let him wait for flower girl 2s to receive the request; When the service call takes a long time, we let it fail quickly instead of waiting there; If the traffic is too large, we can direct part of the traffic to a degraded page

  • When the queue peak shaving request comes in, we ask him to grab the semaphore, grab the semaphore, and then send a message to the queue to let him execute the second kill service

Scheduled task @ schedule (seconds, minutes, hours, days, months, weeks) write either day or week? All right

  • Goods on the shelf

We can use scheduled tasks to put goods on the shelves

Query seckill information (activity id, activity start time, activity end time list < Product >)

There are two maps in redis

A map key stores the start time and end time, and value is stored as a commodity id

the other one Map storage key Is the number of commodity events__id,value  Details of inventory items

We should set a token in the product information, which can prevent some people from attacking seckill products with malicious scripts

When they come to request, they must bring this token to request

We should set a distributed semaphore for the goods to be killed second. The semaphore is the goods Skell+stock+token, and the value is the inventory of the goods.

When products are on the shelf, we should ensure the idempotency of the interface

We can set the distributed lock when the scheduled task is opened to obtain the locked services and goods on the shelf

When adding a product to redis, we can judge that the key already exists. If it does not exist, we will set the product

  • Query items for activity time

Send the information of the second kill order (order number, commodity information, member information) to MQ. The order service monitors the queue of MQ and gets the information of the second kill order to create an order for the user.

You need to deduct inventory when creating an order, but you can also cancel the order; It is also possible that after the inventory deduction is successful, the remote call fails due to network reasons and the order is rolled back.

  • We create an order. If the order is not paid within 30 minutes, we think it has been closed

After we lock the inventory for 40 minutes, if the order has not been paid, we should unlock the inventory

  • When creating an order, call inventory and send a message to MQ (order number);

The customs service listens to MQ, obtains the order number, and queries the order status. If the order status is unpaid, the order will be closed; Then send a message to MQ that the order has been closed,

The unlock inventory service listens to this queue and unlocks the inventory after receiving the customs clearance message

  • Locking inventory is a transaction

If the inventory is locked successfully, send a message to MQ (inventory locking detail sheet id)

The inventory unlocking service listens to MQ to get the inventory detail id, query the inventory id, and query the inventory detail document according to the inventory id. if not, the inventory has not been locked successfully, and there is no need to unlock; If there is inventory, query the order status according to the order id. if there is an order and the order status is cancelled, unlock the inventory. If it has been paid, there is no need to unlock (handle the manual ack mechanism; Ensure message reliability (delivery)

Posted by jbol on Sat, 04 Sep 2021 19:33:06 -0700