Skip to content

harsh-aghara/Yoink

BranchesTags

Repository files navigation

Yoink! 🛒⚡

A high-performance Node.js e-commerce backend engineered to expose, benchmark, and eliminate inventory race conditions under extreme spike load — simulating real-world flash sales with 1,000+ concurrent buyers.

📖 Read the Full Engineering Case Study — A detailed breakdown of how I broke this system with k6, uncovered silent data divergence under load, and evolved the architecture from naive CRUD to a resilient Redis + BullMQ event-driven system.

📋 Table of Contents

🔥 The Problem

Flash sales are a perfect storm for distributed systems. When thousands of users simultaneously attempt to purchase the last few units of a product, naive implementations suffer from a classic read-modify-write race condition:

Thread A: READ stock = 1   ─┐
Thread B: READ stock = 1   ─┤ Both threads see stock as available
Thread A: WRITE stock = 0  ─┤
Thread B: WRITE stock = 0  ─┘ Oversell — both purchases succeed!

This project was built to reproduce this failure in a controlled environment, measure its impact at scale, and implement a production-grade solution that guarantees inventory integrity without sacrificing throughput.

🏗️ Architecture Overview

The system evolved through four architectural generations, ultimately resulting in the highly resilient, event-driven design below.

               (Incoming Requests)
                       │
                       ▼
         ┌───────────────────────────┐
         │     Express.js API        │
         │   (Rate Limiting, Auth)   │
         └───────┬───────────┬───────┘
      1. Lua     │           │ 2. Enqueue Job
      Decrement  │           │    (If Success)
                 ▼           ▼
      ┌─────────────┐     ┌─────────────┐
      │    Redis    │     │   BullMQ    │
      │   (Stock)   │     │   (Queue)   │
      └──────▲──────┘     └──────┬──────┘
             │                   │ 3. Process Job
             │                   ▼
             │            ┌─────────────┐
             │            │   Worker    │──── 4. Write to DB ────┐
             │            └──────┬──────┘       (Success)        │
             │                   │                               ▼
             │                   │ (Job Failed)           ┌──────────────┐
  5. Rollback│                   ▼                        │  PostgreSQL  │
   Stock     │            ┌─────────────┐                 │   (Orders)   │
             └────────────│ DLQ Worker  │                 └──────────────┘
                          └─────────────┘

Request Lifecycle:

  1. Request hits the Express API, which validates input and checks rate limits.
  2. A Lua script executes atomically in Redis — decrementing inventory only if stock > 0.
  3. On success, the API returns 202 Accepted immediately, and a BullMQ job is enqueued.
  4. A background worker processes the job, safely persisting the order to PostgreSQL at a controlled rate (Concurrency: 5).
  5. If the DB write fails permanently, a Dead Letter Queue (DLQ) worker rolls back the Redis decrement to prevent stock loss.

🚀 Features

  • Concurrency Control: Solves the classic read-modify-write race condition using Redis as an atomic counter via a single-operation Lua script.
  • High Throughput: The Redis + Lua layer decouples the hot path from slow PostgreSQL write latency, processing ~10,000 inventory decrements per second.
  • Asynchronous Processing: Successful inventory claims are buffered as jobs in a BullMQ queue. Workers drain this queue at a controlled concurrency limit, entirely protecting the database from connection pool exhaustion (P2028 errors).
  • Fault Tolerance & DLQ: Implements a Dead Letter Queue pattern to prevent "ghost reservations." If a database write permanently fails, a DLQ worker issues a compensating Redis increment to restore the stock.
  • Full Observability: Prometheus scrapes custom metrics (queue depth, Redis ops/s, HTTP latency), visualized on real-time Grafana dashboards.

🛠️ Tech Stack

Layer Technology Purpose
Runtime Node.js Async I/O, non-blocking concurrency
Web Framework Express.js HTTP API, middleware, routing
Primary Database PostgreSQL Durable order ledger, source of truth
ORM Prisma Type-safe DB access, migrations
Cache / Atomic Ops Redis Atomic inventory counter via Lua
Job Queue BullMQ Async DB write buffering, DLQ support
Load Testing k6 Spike load simulation, SLA assertions
Observability Prometheus & Grafana Time-series metrics & Dashboards

📁 Project Structure

yoink/
├── benchmarks/k6/        # k6 flash sale load test scripts
├── docs/                 # Full engineering case study
├── lua/                  # Atomic inventory decrement Lua script
├── monitoring/           # Prometheus configuration
├── prisma/               # Database schema & migrations
├── scripts/              # Database seeder (products, stock)
├── src/
│   ├── config/           # Redis, Prisma, and security configs
│   ├── controllers/      # V1-V4 buy logic implementations
│   ├── middleware/       # Error handling & Prometheus metrics
│   ├── queues/workers/   # BullMQ order worker and DLQ worker
│   ├── routes/           # Versioned API routes (v1_v2, v3, v4)
│   ├── services/         # Business logic for inventory strategies
│   ├── app.js            # Express app configuration
│   └── server.js         # Entry point
└── docker-compose.yml    # Infrastructure orchestration

📦 Installation & Setup

Prerequisites

  • Node.js v18+
  • Docker & Docker Compose
  • k6 (for load testing)

1. Clone & Configure

git clone https://github.com/harsh-aghara/Yoink.git
cd Yoink
cp .env.example .env
npm install

2. Spin Up Infrastructure

Start PostgreSQL, Redis, Prometheus, and Grafana:

docker-compose up -d

3. Migrate, Seed, and Run

# Apply database schema
npx prisma migrate dev

# Seed products and initial inventory levels
node scripts/seed.js

# Start the Express server
npm run dev

The API will be available at http://localhost:3000.

4. Start Workers (Required for V4)

The V4 architecture requires background workers to process the BullMQ queue:

# Start the Place Order Worker (processes orders from BullMQ → Postgres)
npm run dev:worker

# Start the DLQ Rollback Worker (rolls back failed orders in Redis)
npm run dev:dlqworker

📡 API Reference

Each architecture version has its own buy endpoint:

Version Endpoint Strategy
V1 POST /api/v1/buy Read-Modify-Write (broken under load)
V2 POST /api/v2/buy Atomic WHERE stock >= 1
V3 POST /api/v3/buy Redis Lua + Sync Postgres write
V4 POST /api/v4/buy Redis Lua + BullMQ async pipeline

POST /api/v4/buy (Production)

The Hot Path. Attempts to purchase one unit. Executes the atomic Redis Lua script and enqueues a BullMQ job.

Request Body:

{
  "productId": "clx1...",
  "userId": "usr_abc123"
}
  • 202 Accepted: Inventory claimed in Redis. Order job enqueued for async processing.
  • 400 Bad Request: Out of stock, or missing userId / productId.

📊 Load Testing & Observability

Run the k6 spike test to simulate a flash sale (requires database to be seeded first):

k6 run benchmarks/k6/yoink-spike.js

Monitor the Chaos in Grafana: Navigate to http://localhost:3001 (Credentials: admin / admin). Watch the real-time order throughput, Redis decrement rate, queue depth, and database write lag on the pre-built dashboards.

🔬 How It Works (Under the Hood)

The Lua Script (Atomic Decrement)

The core concurrency solution is a Lua script executed in Redis. Because Redis is single-threaded, the script evaluates atomically. No two concurrent requests can interleave and read stock = 1 simultaneously.

-- lua/decrementScript.lua
local stock = tonumber(redis.call('GET', KEYS[1]))

if stock == nil then
  return -2  -- Product not found in cache
end

if stock <= 0 then
  return -1  -- Out of stock
end

redis.call('DECR', KEYS[1])
return stock - 1

The DLQ Rollback Flow

If the database write fails, we must ensure the item isn't permanently lost from inventory.

 ┌─────────────────┐
 │   BullMQ Job    │
 └────────┬────────┘
          │
          ▼
 ┌─────────────────┐
 │  Worker DB Try  │──(Success)──► Postgres Order Saved
 └────────┬────────┘
          │
      (Failure) 
          │
          ▼
 ┌─────────────────┐
 │  Retries (x3)   │
 └────────┬────────┘
          │
    (Exhausted)
          ▼
 ┌─────────────────┐
 │   DLQ Worker    │
 │ redis.incr(id)  │──► Compensating Rollback (Redis Stock Restored)
 └─────────────────┘

📈 Benchmarks

Results from representative k6 spike tests (1,000 VUs, 30s ramp-up) across all four architectural generations. All values sourced from k6 summaries and Grafana dashboards — see the full case study for detailed analysis.

Metric V1 — Naive CRUD V2 — Atomic DB V3 — Redis + Lua (Sync) V4 — Redis + BullMQ
Inventory Integrity ❌ ~23,486 oversold ✅ 0 oversold ⚠️ 6,601 ghost reservations ✅ 0 — perfect sync
P95 Latency 3,600 ms 1,390 ms 2,110 ms 7.62 ms (5k stock) / 36.7 ms (10M stock)
Throughput¹ ~516 req/s ~719 req/s (5k) / ~1,459 req/s (10M)
DB Connection Errors P2028 pool exhaustion P2028 under contention P2028 flood at scale None
5xx Error Rate ~0.92% Significant at high stock 0%
Self-Healing (DLQ) ✅ Tested under DB outage

¹ Throughput values are Prometheus rate() averages over the scrape interval, not instantaneous peaks. Actual k6 burst peaks were higher (e.g., 1,000 req/s averaged to ~580 req/s in Grafana).

📄 License

MIT © harsh-aghara

About

Demonstrating and solving race conditions in e-commerce inventory systems. 50 users, 1 item—watch it break, then fix it with Redis Lua atomic operations.

Resources

Readme
Activity

Stars

3 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors

Languages