Weblogic Authors: Yeshim Deniz, Elizabeth White, Michael Meiner, Michael Bushong, Avi Rosenthal

Related Topics: Weblogic

Weblogic: Article

A Dynamic Implementation Framework for SOA-Based Applications

The key to SOA Software and Enterprise Apps of the Future

Today's IT environments are increasingly characterized by heterogeneous and complex applications, tight schedules, budgetary constraints, and an ever-changing landscape of business requirements.

Few businesses have been agile enough to enhance their existing infrastructures to meet and overcome these challenges in an effective manner. Even so, to deal with a continuous flow of highly complex and dynamic set of business requirements rapidly and cost effectively, businesses need a flexible and dynamic approach to automate, build, and manage critical business processes.

Solution Approach

Service-oriented architecture (SOA) is often touted as a feasible solution approach to solving the business challenges mentioned above. SOA is a method of conceptualizing, designing, and building applications by using and assembling building blocks, each of which is usually represented as a reusable service. Many current approaches to SOA simply involve wrapping pieces of business functionality and using them within applications, often in ad hoc, static, and inflexible ways. The proposed approach to develop applications and business processes of the future is to employ a formal SOA implementation framework that is dynamic, flexible, and scalable enough to meet changing and complex business requirements. Regardless of whether you buy or build a framework for your SOA implementation, the functionality of this framework will hold good for your solution.

SOA Implementation Framework Overview

The SOA implementation framework is the enabling technology for efficiently building applications and business processes using SOA principles. It provides architects, developers, and administrators with an operational framework and tools to configure, use, and manage enterprise services that form the building blocks for applications and business processes. This framework uses a service-centric approach at all levels and stages of the implementation process and has the following generic characteristics:
  • Ability to dynamically connect clients with services in a highly secure, protocol-independent manner
  • Ability to reliably handle synchronous and asynchronous modes of service execution
  • Ability to define and handle events in a declarative manner
  • Ability to dynamically convert between data formats of clients and services
  • Ability to manage distributed SOA resources (services, configurations, policies, etc.) in a centralized manner
  • Ability to capture and handle exceptions in the service execution process
  • Ability to log and monitor various events and metrics as they arise during the client-service transaction
  • Provide a unified and reusable service invocation code library for use across client applications in the enterprise
  • Support for Web services standards stack to promote wide-scale adoption and interoperability

Framework Components

Service Registry
The service registry is a foundational piece of the SOA-enabled solution for the enterprise. It is used to define, configure, and virtualize business services used by applications in a centralized manner. Most companies fail to realize the full potential of SOA due to the lack of a well-designed and managed service registry. It includes crucial information needed for defining and provisioning the services - services, providers, consumers, service interactions, policies, and all associated configurations. The service registry resides in a high performance data store and can be viewed and managed using the service manager, which is described later.

Service Bus
The service bus is a high-performance component that mediates between client applications and services and adds value by providing generic pieces of functionality on behalf of the clients, as well as the services aimed at promoting unified and reusable technical functionality - a key to real SOA implementations. It enables clients to focus mainly on business logic by providing a standard mechanism to connect to services and encapsulating service implementation details.

The service bus uses a pipeline approach, where the bus can be visualized as a sequence of components - a pipeline. Each stage in the pipeline is essentially a value-add component that takes in a set of inputs, where applicable, from the previous stage, processes the data, and passes on the outputs to the next stage.

The following are the features of the service bus:

  • Dynamic connectivity and routing: Dynamic connectivity is the ability to connect to Web services dynamically without using a separate static API or proxy for each service. Most enterprise applications today operate on a static connectivity mode, requiring some static piece of code for each service. Dynamic service connectivity is key to enterprise agility. The dynamic connectivity API is the same regardless of the service implementation protocol (Web services, JMS, EJB/RMI, POJO, etc.). Client applications access services via URI interfaces that may either directly map to services or be routed based on the context or content of the service request.

  • Reliable messaging: Reliable messaging is the ability to queue service request messages and ensure guaranteed delivery of these messages to the destination. It also includes the ability to respond, if necessary, back to the requestor with response messages. Primarily used for handling events, this capability is crucial for responding to clients in an asynchronous manner, and for a successful SOA implementation. This is typically implemented using reliable JMS queues with store and forward as well as guaranteed delivery capabilities.

  • Security: Generically handling and enforcing security is a key success factor for SOA implementations. The following are the main considerations:
    - Federated authentication: This feature intercepts service requests and adds the appropriate username and credentials. It is also capable of authenticating service requests before dispatching the request for service execution.
    - Authorization: Validates each service request and authorizes it to make sure that the sender has the appropriate privilege to access the service.
    - Encryption/decryption: Encrypts XML content at the element level for both request and response messages and performs decryption for the reverse scenario.

  • Transformation: Needed when a client and a service use different data formats, it is the ability to transform a given source of data into a target format based on specified transformation rules.

  • Caching and performance strategies: Important to improve the performance and quality of services and eventually to enhance overall customer service. It is performed at various levels, including service configurations, service response data services, and other SOA resources, depending on where optimization is needed to achieve high performance. Overall performance can also be improved by using compressed XML-based messages when transporting them across the nodes; the result is reduced bandwidth utilization. To accomplish this, compression and decompression agents are installed at the edges of the SOA grid.

  • Logging: Needed to trace system execution and performance for auditing, troubleshooting, and monitoring purposes. Logging can be done for any of the services and can be done at various severity levels.

  • Monitoring: The ability to track service activities that take place via the bus and provide visibility into various metrics and statistics. Of particular significance is the ability to be able to spot problems and exceptions in the business processes and move toward resolving them as soon as they occur.

  • Service-level agreement (SLA): SLAs specify performance guarantees associated with Web services operations and business processes -such as response times and service availability - that are essential for business-critical operations. Service providers can use SLAs to advertise and create service-level agreements with consumers. This helps them to provide the appropriate amount of resources and prioritize the servicing of requests.

  • Versioning: The ability to version Web services and to proactively assist in the migration of the client applications to use new versions of the Web service as soon as they become available. Versioning support includes being able to register different versions of the same service, to provide the client with the necessary APIs and libraries for all versions, and to help in migrating clients to the new versions. The versioning component has the ability to transform requests to older versions of the service to the newer version using XLST-based transformation.

  • Exception management: Ability to track and handle exceptions as they occur when clients access business services. Exception details such as the exception code, name, reason, and description are captured and logged. Exceptions are also handled appropriately by retrying the connection a predefined number of times, routing to an alternate service, or by simply returning a reason for execution failure.

  • Custom business logic processing: Provides the flexibility to insert custom business logic during service processing. For instance, a specific business logic can be performed either on the service request, prior to submitting the service request for execution, or on the service response, prior to sending the service response back to the client.

    The service bus is itself implemented as a service, using Web service or EJB technologies. This service is deployed to a server pool or cluster and is designed to scale horizontally. Each of the components mentioned above must conform to the corresponding Web services standards.

    Service Manager
    The service manager is a UI-based administration tool that empowers administrators and business managers to define, configure, manage, and monitor business services and related SOA resources used within the applications. It can be thought of as the control center for the SOA implementation, used mainly to provision and monitor services. The following are the two key functions of the service manager:

  • Service configuration management: Using this feature, administrators can onboard and configure services housed in the service registry. Users can define services, locations, binding information, and service configuration settings such as security, cache, transformation, logging, and monitoring. They can also define service providers and consumers and associated service contracts.

  • Service activity monitoring: Provides a dashboard for business managers and administrators to view key metrics and statistics in relation to service activities that take place via the Bus. Users can view and monitor service usage, response times, service exceptions, activity logs, messages, etc.

    The service manager is delivered as a Web-based application and can be accessed without any client-side installation requirements.

    Client SDK
    The Client SDK is software that is needed to connect with the service bus. The SDK - downloadable from the service manager - is packaged and provided in the form of an API. It is an easy-to-use library that application developers can use to discover, access, and utilize business services from their applications and business processes. This significantly enhances developer productivity as it offloads developers from message plumbing tasks that are, in turn, performed by the service bus. The client API does not use service location-dependent, hardwired proxies and stubs to access services. Instead, it uses a dynamic mechanism to connect to the services via the bus.

    SOA Implementation Framework Usage

    The SOA Implementation Framework can be used to develop robust applications and business processes. Figure 2 presents a usage scenario that uses the SOA implementation framework to build a customer self-service application consisting of order management and customer support functions. The application uses the client SDK to connect - via the bus - to core business services in the order and support process, such as purchase order submission, third-party credit verification, order status, support case entry, and support case status. These functions are exposed as either Web services or other Java API by wrapping business logic from existing applications - SAP Order Management and a custom-built customer support application. Further, the credit service is a Web service that is hosted at a partner site.

    This example illustrates the ability for client applications to easily connect to heterogeneous services in a unified and service logistics-independent manner.

    SOA Implementation Best Practices

    Any successful SOA implementation - in addition to using a robust and flexible SOA implementation framework - will require a set of guidelines and best practices at various stages of the development cycle. A core set of guidelines is provided below:
    • The process of onboarding new services must be configuration and discovery process-driven as opposed to having a lengthy and manual process cycle. This ensures that the overall system can scale to future requirements with minimal efforts.
    • An SOA implementation is only as successful as the method used to design the business services. Each service must abstract a coarse-grained piece of business functionality and is designed in a way that is coherent and reusable across the enterprise.
    • Services must be designed as asynchronous where applicable to improve response times and overall user experience.
    • Client applications must use a unified mechanism to access services in a protocol-independent manner and regardless of whether the services are local or remote. Further, the clients must focus mainly on the business logic and any service connectivity logic must be abstracted in the client SDK. This ensures centralized plumbing logic, high levels of application developer productivity, and ease of maintenance.
    • The generic components of the SOA implementation framework must be exposed in standard ways to promote code unification and reuse.
    • Use configuration where possible, instead of customization and code-based business logic. This improves the ability to scale to future business requirements with minimal effort and time.
    • Reuse and wrap existing legacy business application logic with more coarse-grained business-level services. Avoid rewriting legacy implementation logic.


    This article presented a flexible, dynamic SOA implementation framework for building service-oriented applications and business processes of the future. This approach aims to provide enterprises with a highly scalable and dynamic framework for defining, configuring, accessing, and managing enterprise services.
  • More Stories By Arun Candadai

    Arun Candadai is cofounder and CTO of GridScope (www.gridscope.com), and is responsible for the company's technology strategy and product development. Prior to founding GridScope, he was lead architect at BEA Systems where he pioneered the use of Web services and SOA for its enterprise infrastructure. Prior to BEA, he held senior engineering management roles at companies including Asera, Covad, and Lockheed Martin. He holds three software patents and has helped develop key Web services standards.

    Comments (0)

    Share your thoughts on this story.

    Add your comment
    You must be signed in to add a comment. Sign-in | Register

    In accordance with our Comment Policy, we encourage comments that are on topic, relevant and to-the-point. We will remove comments that include profanity, personal attacks, racial slurs, threats of violence, or other inappropriate material that violates our Terms and Conditions, and will block users who make repeated violations. We ask all readers to expect diversity of opinion and to treat one another with dignity and respect.

    @ThingsExpo Stories
    Enterprises have taken advantage of IoT to achieve important revenue and cost advantages. What is less apparent is how incumbent enterprises operating at scale have, following success with IoT, built analytic, operations management and software development capabilities - ranging from autonomous vehicles to manageable robotics installations. They have embraced these capabilities as if they were Silicon Valley startups.
    Poor data quality and analytics drive down business value. In fact, Gartner estimated that the average financial impact of poor data quality on organizations is $9.7 million per year. But bad data is much more than a cost center. By eroding trust in information, analytics and the business decisions based on these, it is a serious impediment to digital transformation.
    The standardization of container runtimes and images has sparked the creation of an almost overwhelming number of new open source projects that build on and otherwise work with these specifications. Of course, there's Kubernetes, which orchestrates and manages collections of containers. It was one of the first and best-known examples of projects that make containers truly useful for production use. However, more recently, the container ecosystem has truly exploded. A service mesh like Istio addr...
    Predicting the future has never been more challenging - not because of the lack of data but because of the flood of ungoverned and risk laden information. Microsoft states that 2.5 exabytes of data are created every day. Expectations and reliance on data are being pushed to the limits, as demands around hybrid options continue to grow.
    As IoT continues to increase momentum, so does the associated risk. Secure Device Lifecycle Management (DLM) is ranked as one of the most important technology areas of IoT. Driving this trend is the realization that secure support for IoT devices provides companies the ability to deliver high-quality, reliable, secure offerings faster, create new revenue streams, and reduce support costs, all while building a competitive advantage in their markets. In this session, we will use customer use cases...
    Business professionals no longer wonder if they'll migrate to the cloud; it's now a matter of when. The cloud environment has proved to be a major force in transitioning to an agile business model that enables quick decisions and fast implementation that solidify customer relationships. And when the cloud is combined with the power of cognitive computing, it drives innovation and transformation that achieves astounding competitive advantage.
    Digital Transformation: Preparing Cloud & IoT Security for the Age of Artificial Intelligence. As automation and artificial intelligence (AI) power solution development and delivery, many businesses need to build backend cloud capabilities. Well-poised organizations, marketing smart devices with AI and BlockChain capabilities prepare to refine compliance and regulatory capabilities in 2018. Volumes of health, financial, technical and privacy data, along with tightening compliance requirements by...
    DevOpsSummit New York 2018, colocated with CloudEXPO | DXWorldEXPO New York 2018 will be held November 11-13, 2018, in New York City. Digital Transformation (DX) is a major focus with the introduction of DXWorldEXPO within the program. Successful transformation requires a laser focus on being data-driven and on using all the tools available that enable transformation if they plan to survive over the long term. A total of 88% of Fortune 500 companies from a generation ago are now out of bus...
    With 10 simultaneous tracks, keynotes, general sessions and targeted breakout classes, @CloudEXPO and DXWorldEXPO are two of the most important technology events of the year. Since its launch over eight years ago, @CloudEXPO and DXWorldEXPO have presented a rock star faculty as well as showcased hundreds of sponsors and exhibitors! In this blog post, we provide 7 tips on how, as part of our world-class faculty, you can deliver one of the most popular sessions at our events. But before reading...
    DXWordEXPO New York 2018, colocated with CloudEXPO New York 2018 will be held November 11-13, 2018, in New York City and will bring together Cloud Computing, FinTech and Blockchain, Digital Transformation, Big Data, Internet of Things, DevOps, AI, Machine Learning and WebRTC to one location.
    DXWorldEXPO LLC announced today that ICOHOLDER named "Media Sponsor" of Miami Blockchain Event by FinTechEXPO. ICOHOLDER give you detailed information and help the community to invest in the trusty projects. Miami Blockchain Event by FinTechEXPO has opened its Call for Papers. The two-day event will present 20 top Blockchain experts. All speaking inquiries which covers the following information can be submitted by email to [email protected] Miami Blockchain Event by FinTechEXPO also offers s...
    DXWorldEXPO | CloudEXPO are the world's most influential, independent events where Cloud Computing was coined and where technology buyers and vendors meet to experience and discuss the big picture of Digital Transformation and all of the strategies, tactics, and tools they need to realize their goals. Sponsors of DXWorldEXPO | CloudEXPO benefit from unmatched branding, profile building and lead generation opportunities.
    Dion Hinchcliffe is an internationally recognized digital expert, bestselling book author, frequent keynote speaker, analyst, futurist, and transformation expert based in Washington, DC. He is currently Chief Strategy Officer at the industry-leading digital strategy and online community solutions firm, 7Summits.
    Digital Transformation and Disruption, Amazon Style - What You Can Learn. Chris Kocher is a co-founder of Grey Heron, a management and strategic marketing consulting firm. He has 25+ years in both strategic and hands-on operating experience helping executives and investors build revenues and shareholder value. He has consulted with over 130 companies on innovating with new business models, product strategies and monetization. Chris has held management positions at HP and Symantec in addition to ...
    Cloud-enabled transformation has evolved from cost saving measure to business innovation strategy -- one that combines the cloud with cognitive capabilities to drive market disruption. Learn how you can achieve the insight and agility you need to gain a competitive advantage. Industry-acclaimed CTO and cloud expert, Shankar Kalyana presents. Only the most exceptional IBMers are appointed with the rare distinction of IBM Fellow, the highest technical honor in the company. Shankar has also receive...
    The best way to leverage your Cloud Expo presence as a sponsor and exhibitor is to plan your news announcements around our events. The press covering Cloud Expo and @ThingsExpo will have access to these releases and will amplify your news announcements. More than two dozen Cloud companies either set deals at our shows or have announced their mergers and acquisitions at Cloud Expo. Product announcements during our show provide your company with the most reach through our targeted audiences.
    The IoT Will Grow: In what might be the most obvious prediction of the decade, the IoT will continue to expand next year, with more and more devices coming online every single day. What isn’t so obvious about this prediction: where that growth will occur. The retail, healthcare, and industrial/supply chain industries will likely see the greatest growth. Forrester Research has predicted the IoT will become “the backbone” of customer value as it continues to grow. It is no surprise that retail is ...
    Andrew Keys is Co-Founder of ConsenSys Enterprise. He comes to ConsenSys Enterprise with capital markets, technology and entrepreneurial experience. Previously, he worked for UBS investment bank in equities analysis. Later, he was responsible for the creation and distribution of life settlement products to hedge funds and investment banks. After, he co-founded a revenue cycle management company where he learned about Bitcoin and eventually Ethereal. Andrew's role at ConsenSys Enterprise is a mul...
    DXWorldEXPO LLC announced today that "Miami Blockchain Event by FinTechEXPO" has announced that its Call for Papers is now open. The two-day event will present 20 top Blockchain experts. All speaking inquiries which covers the following information can be submitted by email to [email protected] Financial enterprises in New York City, London, Singapore, and other world financial capitals are embracing a new generation of smart, automated FinTech that eliminates many cumbersome, slow, and expe...
    Cloud Expo | DXWorld Expo have announced the conference tracks for Cloud Expo 2018. Cloud Expo will be held June 5-7, 2018, at the Javits Center in New York City, and November 6-8, 2018, at the Santa Clara Convention Center, Santa Clara, CA. Digital Transformation (DX) is a major focus with the introduction of DX Expo within the program. Successful transformation requires a laser focus on being data-driven and on using all the tools available that enable transformation if they plan to survive ov...