Skip to content

UsingTheBlueGreenPlugin.md

Latest commit

 

History

History
190 lines (148 loc) · 20.1 KB

UsingTheBlueGreenPlugin.md

File metadata and controls

190 lines (148 loc) · 20.1 KB

Blue/Green Deployment Plugin

Plugin Availability

The plugin is available since version 2.6.0.

What is Blue/Green Deployment?

The Blue/Green Deployment technique enables organizations to release applications by seamlessly shifting traffic between two identical environments running different versions of the application. This strategy effectively mitigates common risks associated with software deployment, such as downtime and limited rollback capability.

The AWS Advanced JDBC Wrapper leverages the Blue/Green Deployment approach by intelligently managing traffic distribution between blue and green nodes, minimizing the impact of stale DNS data and connectivity disruptions on user applications.

Prerequisites

  • AWS cluster and instance endpoints must be directly accessible from the client side
  • ⚠️ Extra permissions are required for non-admin users so that the blue/green metadata table/function can be properly queried. If the permissions are not granted, the metadata table/function will not be visible and blue/green plugin functionality will not work properly. Please see the Connecting with non-admin users section below.

Warning

Currently Supported Database Deployments:

  • Aurora MySQL and PostgreSQL clusters
  • RDS MySQL and PostgreSQL instances

Unsupported Database Deployments and Configurations:

  • RDS MySQL and PostgreSQL Multi-AZ clusters
  • Aurora Global Database for MySQL and PostgreSQL

Additional Requirements:

  • Connecting to database nodes using CNAME aliases is not supported

Blue/Green Support Behaviour and Version Compatibility:

The AWS Advanced JDBC Wrapper now includes enhanced full support for Blue/Green Deployments. This support requires a minimum database version that includes a specific metadata table. The metadata will be accessible provided the green deployment satisfies the minimum version compatibility requirements. This constraint does not apply to RDS MySQL.

For RDS Postgres, you will also need to manually install the rds_tools extension using the following DDL so that the metadata required by the wrapper is available:

CREATE EXTENSION rds_tools;

If your database version does not support this table, the driver will automatically detect its absence and fallback to its previous behaviour. In this fallback mode, Blue/Green handling is subject to the same limitations listed above.

No action is required if your database does not include the new metadata table -- the driver will continue to operate as before. If you have questions or encounter issues, please open an issue in this repository.

Supported RDS PostgreSQL Versions: rds_tools v1.7 (17.1, 16.5, 15.9, 14.14, 13.17, 12.21) and above.
Supported Aurora PostgreSQL Versions: Engine Release 17.5, 16.9, 15.13, 14.18, 13.21 and above.
Supported Aurora MySQL Versions: Engine Release 3.07 and above.

What is Blue/Green Deployment Plugin?

During a Blue/Green switchover, several significant changes occur to your database configuration:

  • Connections to blue nodes terminate at a specific point during the transition
  • Node connectivity may be temporarily impacted due to reconfigurations and potential node restarts
  • Cluster and instance endpoints are redirected to different database nodes
  • Internal database node names undergo changes
  • Internal security certificates are regenerated to accommodate the new node names

All factors mentioned above may cause application disruption. The AWS Advanced JDBC Wrapper aims to minimize the application disruption during Blue/Green switchover by performing the following actions:

  • Actively monitors Blue/Green switchover status and implements appropriate measures to suspend, pass-through, or re-route database traffic
  • Prior to Blue/Green switchover initiation, compiles a comprehensive inventory of cluster and instance endpoints for both blue and green nodes along with their corresponding IP addresses
  • During the active switchover phase, temporarily suspends execution of JDBC calls to blue nodes, which helps unload database nodes and reduces transaction lag for green nodes, thereby enhancing overall switchover performance
  • Substitutes provided hostnames with corresponding IP addresses when establishing new blue connections, effectively eliminating stale DNS data and ensuring connections to current blue nodes
  • During the brief post-switchover period, continuously monitors DNS entries, confirms that blue endpoints have been reconfigured, and discontinues hostname-to-IP address substitution as it becomes unnecessary
  • Automatically rejects new connection requests to green nodes when the switchover is completed but DNS entries for green nodes remain temporarily available
  • Intelligently detects switchover failures and rollbacks to the original state, implementing appropriate connection handling measures to maintain application stability

Verify plugin compatibility within your driver configuration using the compatibility guide.

How do I use Blue/Green Deployment Plugin with the AWS Advanced JDBC Wrapper?

To enable the Blue/Green Deployment functionality, add the plugin code bg to the wrapperPlugins parameter value. The Blue/Green Deployment Plugin supports the following configuration parameters:

Parameter Value Required Description Example Value Default Value
bgdId String If using multiple Blue/Green Deployments, yes; otherwise, no This parameter is optional and defaults to 1. When supporting multiple Blue/Green Deployments (BGDs), this parameter becomes mandatory. Each connection string must include the bgdId parameter with a value that can be any number or string. However, all connection strings associated with the same Blue/Green Deployment must use identical bgdId values, while connection strings belonging to different BGDs must specify distinct values. 1234, abc-1, abc-2 1
bgConnectTimeoutMs Integer No Maximum waiting time (in milliseconds) for establishing new connections during a Blue/Green switchover when blue and green traffic is temporarily suspended. 30000 30000
bgBaselineMs Integer No The baseline interval (ms) for checking Blue/Green Deployment status. It's highly recommended to keep this parameter below 900000ms (15 minutes). 60000 60000
bgIncreasedMs Integer No The increased interval (ms) for checking Blue/Green Deployment status. Configure this parameter within the range of 500-2000 milliseconds. 1000 1000
bgHighMs Integer No The high-frequency interval (ms) for checking Blue/Green Deployment status. Configure this parameter within the range of 50-500 milliseconds. 100 100
bgSwitchoverTimeoutMs Integer No Maximum duration (in milliseconds) allowed for switchover completion. If the switchover process stalls or exceeds this timeframe, the driver will automatically assume completion and resume normal operations. 180000 180000
bgSuspendNewBlueConnections Boolean No Deprecated. New blue connection requests are always suspended during switchover for versions v2.6.7+.

Enables Blue/Green Deployment switchover to suspend new blue connection requests while the switchover process is in progress.		 false false
bgDropBlueConnections Boolean No If set to true, allows to drops all connections to blue cluster when Blue/Green switchover starts. false, true true

The plugin establishes dedicated monitoring connections to track Blue/Green Deployment status. To apply specific configurations to these monitoring connections, add the blue-green-monitoring- prefix to any configuration parameter, as shown in the following example:

final Properties properties = new Properties();
// Configure the timeout values for all, non-monitoring connections.
properties.setProperty("connectTimeout", "30000");
properties.setProperty("socketTimeout", "30000");
// Configure different timeout values for the Blue/Green monitoring connections.
properties.setProperty("blue-green-monitoring-connectTimeout", "10000");
properties.setProperty("blue-green-monitoring-socketTimeout", "10000");

Warning

Always ensure you provide a non-zero socket timeout value or a connect timeout value to the Blue/Green Deployment Plugin

Connecting with non-admin users

Warning

The following permissions are required for every non-admin user account connecting to the DB instance/cluster. If the permissions are not granted, the metadata table/function will not be visible and blue/green plugin functionality will not work properly.

Environment Required permission statements
Aurora Postgresql None
RDS Postgresql GRANT USAGE ON SCHEMA rds_tools TO your_user;
GRANT EXECUTE ON ALL FUNCTIONS IN SCHEMA rds_tools TO your_user;
Aurora MySQL GRANT SELECT ON mysql.rds_topology TO 'your_user'@'%';
FLUSH PRIVILEGES;
RDS MySQL GRANT SELECT ON mysql.rds_topology TO 'your_user'@'%';
FLUSH PRIVILEGES;

Important

Grant permissions before creating the Blue/Green Deployment. The easiest approach is to grant the required permissions on the source DB instance/cluster before creating the Blue/Green Deployment. During creation, the target environment receives all users and privileges from the source, so the permissions will be automatically available on both sides.

In MySQL, you can leverage MySQL Role to grant the required permissions to multiple users at once to reduce operational overhead before switchover. See instructions in Using Roles in MySQL 8.0 to Grant Privileges to mysql.rds_topology.

Granting permissions on the target (green cluster) after the Blue/Green Deployment is created (MySQL)

If you forgot to grant the required permissions before creating the Blue/Green Deployment, granting SELECT on mysql.rds_topology on the source DB instance will not automatically replicate to the target DB instance. This behavior is governed by MySQL replication and is not within the driver's control.

To still use the reduced switchover downtime support of the JDBC driver, you need to manually grant the privilege to the user on the target (green cluster):

GRANT SELECT ON mysql.rds_topology TO '<user>'@'<host>';

Since the target DB instance is in read_only mode, you can use one of the following options to execute the grant statement:

Option 1: Temporarily disable read_only mode

Disable the global read_only mode, execute the grant, and immediately re-enable it:

CALL mysql.rds_set_read_only(0);
GRANT SELECT ON mysql.rds_topology TO '<user>'@'<host>';
CALL mysql.rds_set_read_only(1);

Option 2 (Preferred): Use a user with CONNECTION_ADMIN privileges

Connect to the target (green cluster) using a user that has CONNECTION_ADMIN privileges or has inherited it from the rds_super_user_role (such as your admin user), and execute the grant statement. Log out immediately afterwards.

This option is preferred because it minimizes the risk of accidentally writing other content to the database.

Warning

With both options there is a risk of writing to the target database, which may cause replication errors. To prevent breaking replication, make sure to only execute the GRANT statement (or CREATE USER if needed) and disable write access immediately afterwards — either by calling CALL mysql.rds_set_read_only(1); (for option 1) or by logging out (for option 2).

Plan your Blue/Green switchover in advance

To optimize Blue/Green switchover support with the AWS Advanced JDBC Wrapper, advance planning is essential. Please follow these recommended steps:

  1. Create a Blue/Green Deployment for your database.
  2. If you're planning to connect with a non-admin user, add the necessary permissions to allow the plugin to access Blue/Green metadata. Make sure that permissions are granted on both blue and green clusters.
  3. Configure your application by incorporating the bg plugin along with any additional parameters of your choice, then deploy your application to the corresponding environment.
  4. The order of steps 1 and 3 is flexible and can be performed in either sequence.
  5. Allow sufficient time for the deployed application with the active Blue/Green plugin to collect deployment status information. This process typically requires several minutes.
  6. Initiate the Blue/Green Deployment switchover through the AWS Console, CLI, or RDS API.
  7. Monitor the process until the switchover completes successfully or rolls back. This may take several minutes.
  8. Review the switchover summary in the application logs. This requires setting the log level to FINE for either the entire package software.amazon.jdbc.plugin.bluegreen or specifically for the class software.amazon.jdbc.plugin.bluegreen.BlueGreenStatusProvider.
  9. We recommend removing the bg plugin from your application configuration after the switchover completes. Note that an active Blue/Green plugin produces no adverse effects once the switchover has been completed. See Resource Considerations for details. Since Blue/Green switchovers are scheduled migration events, you have flexibility in timing this change. That is, there is no urgency to remove the plugin immediately after switchover.
  10. Delete the Blue/Green Deployment through the appropriate AWS interface.
  11. The sequence of steps 9 and 10 is flexible and can be executed in either order based on your preference.

Here's an example of a switchover summary. Time zero corresponds to the beginning of the active switchover phase. Time offsets indicate the start time of each specific switchover phase.

[2025-11-14 15:59:52.084] [INFO   ] [pool-2-thread-1] [software.amazon.jdbc.plugin.bluegreen.BlueGreenStatusProvider logSwitchoverFinalSummary] : [bgdId: '1']
---------------------------------------------------------------------------------------
timestamp                         time offset (ms)                                event
---------------------------------------------------------------------------------------
    2025-11-14T23:58:18.519Z             -28178 ms                          NOT_CREATED
    2025-11-14T23:58:19.172Z             -27525 ms                              CREATED
    2025-11-14T23:58:39.279Z              -7418 ms                          PREPARATION
    2025-11-14T23:58:46.697Z                  0 ms               Monitors reset - start
    2025-11-14T23:58:46.697Z                  0 ms                          IN_PROGRESS
    2025-11-14T23:58:49.788Z               3090 ms                                 POST
    2025-11-14T23:59:03.373Z              16675 ms               Green topology changed
    2025-11-14T23:59:03.374Z              16677 ms      Monitors reset - green topology
    2025-11-14T23:59:19.815Z              33117 ms                     Blue DNS updated
    2025-11-14T23:59:52.081Z              65383 ms                    Green DNS removed
    2025-11-14T23:59:52.082Z              65384 ms                            COMPLETED
---------------------------------------------------------------------------------------

Resource Considerations

Leaving the bg plugin enabled will not break your application or interfere with normal driver functionality, even when no Blue/Green Deployment exists. The plugin operates transparently and does not conflict with other driver features. However, the plugin maintains dedicated monitoring threads and connections to continuously track Blue/Green Deployment status. If you are not planning a Blue/Green switchover in the near future, removing the plugin from your configuration is recommended to conserve these resources.

Since Blue/Green switchovers are scheduled migration events, there is no urgency to remove the plugin immediately. You can plan the configuration change at your convenience.