Upgrade to Pro — share decks privately, control downloads, hide ads and more …

STORES へのID基盤の導入と、ユーザーアカウントの移行を振り返って

Avatar for Takuya Matsumoto Takuya Matsumoto
October 22, 2021
Technology
5
3.3k

STORES へのID基盤の導入と、ユーザーアカウントの移行を振り返って

https://kaigionrails.org/2021/talks/upinetree/

Avatar for Takuya Matsumoto

Takuya Matsumoto

October 22, 2021
Tweet

More Decks by Takuya Matsumoto

See All by Takuya Matsumoto
STORES におけるセッションストアへの Amazon MemoryDB for Redis の活用と、移行戦略 / MemoryDB for STORES Session Store
Avatar for Takuya Matsumoto upinetree
2
4.8k
バックエンド基盤チームのお仕事 / The value of the backend base team
Avatar for Takuya Matsumoto upinetree
0
3.8k
CSSの技術的負債との向き合い方 / How to Deal with Technical Debt of CSS (ja)
Avatar for Takuya Matsumoto upinetree
5
4.4k
How to Deal with Technical Debt of CSS
Avatar for Takuya Matsumoto upinetree
1
600
書籍紹介LT:現場で使える Ruby on Rails 5 速習実践ガイド
Avatar for Takuya Matsumoto upinetree
0
220
Introduction to Entering Test Design (Japanese)
Avatar for Takuya Matsumoto upinetree
0
860
Hello React
Avatar for Takuya Matsumoto upinetree
4
300
history of nicorepo gem and me
Avatar for Takuya Matsumoto upinetree
0
170
Visualize team communications on github
Avatar for Takuya Matsumoto upinetree
4
1.3k

Other Decks in Technology

See All in Technology
SaaSの操作主体は人間からAIへ - 経理AIエージェントが目指す深い自動化
Avatar for Motoshi Nishihira nishihira
0
120
Kiro Meetup #7 Kiro アップデート (2025/12/15〜2026/3/20)
Avatar for Katz Ueno katzueno
2
270
なぜarray_firstとarray_lastは採用、 array_value_firstとarray_value_lastは 見送りだったか / Why array_value_first and array_value_last was declined, then why array_first and array_last was accpeted?
Avatar for 02 cocoeyes02
0
290
Microsoft Fabricで考える非構造データのAI活用
Avatar for Ryoma Nagata ryomaru0825
0
470
ADK + Gemini Enterprise で 外部 API 連携エージェント作るなら OAuth の仕組みを理解しておこう
Avatar for Kaz kaz1437
0
230
「AIエージェントで変わる開発プロセス―レビューボトルネックからの脱却」
Avatar for LINEヤフーTech (LY Corporation Tech) lycorptech_jp
PRO
0
190
AIエージェント勉強会第3回 エージェンティックAIの時代がやってきた
Avatar for Y.Miyado ymiya55
0
160
LLMに何を任せ、何を任せないか
Avatar for an cap120
10
6.2k
Zephyr(RTOS)でOpenPLCを実装してみた
Avatar for misoji engineer iotengineer22
0
150
Oracle Cloud Infrastructure(OCI):Onboarding Session(はじめてのOCI/Oracle Supportご利⽤ガイド)
Avatar for oracle4engineer oracle4engineer
PRO
2
17k
QA組織のAI戦略とAIテスト設計システムAITASの実践
Avatar for SansanTech sansantech
PRO
1
260
出版記念イベントin大阪「書籍紹介&私がよく使うMCPサーバー3選と社内で安全に活用する方法」
Avatar for KintoTech_Dev kintotechdev
0
110

Featured

See All Featured
Have SEOs Ruined the Internet? - User Awareness of SEO in 2025
Avatar for Akash Hashmi akashhashmi
0
300
What Being in a Rock Band Can Teach Us About Real World SEO
Avatar for Ade Holder 427marketing
0
200
The Cult of Friendly URLs
Avatar for Andy Hume andyhume
79
6.8k
Tell your own story through comics
Avatar for letsgokoyo letsgokoyo
1
870
I Don’t Have Time: Getting Over the Fear to Launch Your Podcast
Avatar for Joe Casabona jcasabona
34
2.7k
Navigating Team Friction
Avatar for Lara Hogan lara
192
16k
Primal Persuasion: How to Engage the Brain for Learning That Lasts
Avatar for Mike Taylor tmiket
0
300
Prompt Engineering for Job Search
Avatar for Mfonobong Umondia mfonobong
0
240
Building Experiences: Design Systems, User Experience, and Full Site Editing
Avatar for Michelle Schulp Hunt marktimemedia
0
460
The Mindset for Success: Future Career Progression
Avatar for Greg Gifford greggifford
PRO
0
290
[SF Ruby Conf 2025] Rails X
Avatar for Vladimir Dementyev palkan
2
870
Paper Plane
Avatar for Katie Cordina Lindsey katiecoart
PRO
0
48k

Transcript

  1. STORES ΁ͷ ID ج൫ͷ ಋೖͱɺϢʔβʔΞΧ΢ ϯτͷҠߦΛৼΓฦͬͯ 2021.10.22 Kaigi on Rails

    2021

  2. Who? Takuya Matsumoto @upinetree • hey ࣾ • Ruby, EM

    • ☕ , " , # • ڞஶ: ݱ৔Ͱ࢖͑Δ Ruby on Rails 5 ଎श࣮ફΨΠυ, 2018 ϑϩϦμ WDW ʹͯ (2019)

  3. ϓϥοτϑΥʔϜ Platform Photo by Roman Fox on Unsplash https://unsplash.com/photos/-iVNDAOeXn8

  4. ౔୆…ʁ • OSɺϋʔυ΢ΣΞɺήʔϜͱ͔ͷಈ࡞؀ڥ • ࣾ಺ͷج൫γεςϜ • App StoreɺSteam ͷΑ͏ͳ഑৴؀ڥ •

    AWSɺGoogle Workspace ͷΑ͏ͳෳ਺αʔϏεͷू߹ମ 4

  5. ͓ళͷσδλϧΛ·Δͬͱαϙʔτ 5

  6. ϓϥοτϑΥʔϜ͕ఏڙ͍ͨ͠Ձ஋ • STORES ϓϥοτϑΥʔϜͱͯ͠౷߹͞ΕͨମݧΛಘΒΕΔ • ҰճαΠϯΞοϓ͢Ε͹ɺԣஅͰ͍ΖΜͳσδλϧԽͷࢧԉ Λड͚ΒΕΔ 6

  7. ݱ࣌఺Ͱ͸ • ͦΕͧΕͷϓϩμΫτ͕ಠཱͯ͠ଘࡏ͠ɺͦΕͧΕͰαΠϯ Ξοϓ͕ඞཁ • ϓϥοτϑΥʔϜͱͯ͠౷߹͞Εͨମݧ͸ݶఆత • ࠷ॳ͔ΒϓϥοτϑΥʔϜͱͯ͠ઃܭ͞Ε͍ͯͳ͍ͨΊ ٕज़తʹ΋·Δͬͱͭͳ͍͛ͯ͘ඞཁ͕͋Δ 7

  8. ΞΧ΢ϯτͷ౷߹ Photo by Daniel Olah on Unsplash https://unsplash.com/photos/VS_kFx4yF5g

  9. ࠓ೔͓࿩͢Δ͜ͱ • ωοτγϣοϓ࡞੒αʔϏε STORES ΁ͷ ID ج൫ಋೖͷ࿩ • ΍ͬͨ͜ͱ΍ۤ࿑ͨ͜͠ͱΛৼΓฦΓɺֶͼΛڞ༗ •

    ૊৫ؒௐ੔΍ίϛϡχέʔγϣϯͷ࿩͸ࠓճ͸ׂѪ ※νʔϜͷ੒ՌΛɺࢲ͕୅ද͓ͯ͠࿩͠·͢ 9

  10. ΞΧ΢ϯτͷ౷߹ʹඞཁͳ͜ͱ • ID ج൫ͱ͍͏γεςϜΛ࡞Δ • طଘαʔϏεʹ ID ج൫Λಋೖ͢Δ 10

  11. ΞΧ΢ϯτͷ౷߹ʹඞཁͳ͜ͱ ID ج൫ͱ͍͏γεςϜΛ࡞Δ • ։ൃνʔϜ͕ൃ଍ • Go + Next.js ੡

    • ຊൃදͷର৅֎ ! طଘαʔϏεʹ ID ج൫Λಋೖ͢Δ • ࠷ॳͷಋೖઌ͸ɺωοτγϣοϓ ࡞੒αʔϏεͷ STORES • Rails + Nuxt.js ੡ • զʑ͕୲౰ • 3 ਓνʔϜ w/ @HolyGrail, ۀ຿ҕୗͷํ • ຊൃදͰѻ͏಺༰ 11

  12. STORES ΁ͷ ID ج൫ͷಋೖํ਑ • ೝূํࣜͷ௥ՃͰ͸ͳ͘ɺΞΧ΢ϯτҠߦ͠ೝূํࣜΛ੾Γସ͑ Δ • ࠷ॳͷಋೖͳͷͰɺ৽͍͠ೝূํࣜͷૌٻ͸೉͍͠ •

    ͨͱ͑͹ʮSTORES ϓϥοτϑΥʔϜͰϩάΠϯʯ͸ࠞཚͷ΋ ͱ • ΞΧ΢ϯτҠߦͷͨΊʹϢʔβʔૢ࡞ΛٻΊͳ͍ • ཪଆͰ͍͍ײ͡ʹɺͰ͖Ε͹μ΢ϯλΠϜͳ͠Ͱ҆શʹ੾ΓସΘΔ 12

  13. Ͳ͏΍ͬͨͷ͔ 13

  14. ϓϩτίϧ • OpenID Connect (OIDC)1 ४ڌ • OAuth 2.0 ্ʹ৐͔ͬͬͨγϯϓϧͳΞΠσϯςΟςΟϨ

    ΠϠʔ • ID ࿈ܞΛ͍͍ײ͢͡Δϓϩτίϧ • omniauth_openid_connect gem Λར༻ 1 https://openid.net/connect/ 14

  15. ೝূํࣜͷ੾Γସ͑Ͱ΍Δ͜ͱ • ભҠઌ΍ϦμΠϨΫγϣϯͷ੾Γସ͑ • طଘΞΧ΢ϯτͷσʔλҠߦ 15

  16. ભҠઌ΍ϦμΠϨΫγϣϯͷ੾Γସ͑ • Feature Toggle + τϥϯΫϕʔε։ൃ • ! • վमൣғ͕޿ͯ͘΋ڝ߹ͷϦεΫ͕௿

    ͍ • ৽͍͠γεςϜΛฒߦͯ͠࡞Γͳ͕ Βɺஈ֊తʹಋೖͷ४උ͕Մೳ • ϩʔϧόοΫ͕༰қ (σʔλΛআ͍ͯ) 16

  17. طଘΞΧ΢ϯτͷσʔλҠߦ ର৅σʔλ • ϝʔϧΞυϨε • ϋογϡԽࡁΈύεϫʔυ 17

  18. طଘσʔλҠߦͷྲྀΕ 1. ࣄલม׵ 2. ҰׅҠߦ 3. ࡞੒ɾߋ৽ΛϑοΫͯ͠μϒϧϥΠτ 4. ID ج൫͔Βͷσʔλಉظ

    18

  19. 19

  20. 20

  21. 21

  22. 22

  23. ଞʹ΍ͬͨ͜ͱΛ͔͍ͭ·ΜͰ • ೝূೝՄྖҬͷֶश • ։ൃ؀ڥͷ੔උ 23

  24. ೝূೝՄྖҬͷֶश ϦϞʔτษڧձΛ։࠵ • OAuth 2.1 RFC ΛಡΉձ • OpenID Foundation

    Japan ͷΤόϯδΣϦετͷํʑʹ૬ஊ͢Δձ2 ޮՌ • ਖ਼֬ͳཧղͷଅਐɺෆ҆ཁૉͷղফɺΑΓΑ͍ํ๏΁ͷؾ෇͖ • ϝϯόʔͷೝࣝΛ߹Θͤͯڞ௨ݴޠΛ֫ಘ 2 https://www.openid.or.jp/blog/cat170/ 24

  25. ։ൃ؀ڥͷ੔උ • ID ج൫ͱ STORES ͸ͦΕͧΕ docker compose Ͱ։ൃ؀ڥΛߏங •

    ઃఆʹ݁߹఺Λ࡞Γͨ͘ͳ͍ʢΤϯυϙΠ ϯτࢦఆɺϙʔτ൪߸ॏෳճආͳͲʣ • => STORES ͔Β ID ج൫Λ Docker in Docker3 (dind) Ͱىಈ • ࿈ܞ͕ෆཁͳͱ͖͸ೝূϞοΫͰܰྔԽ • ಉظपΓͷ SNS, SQS ͸ localstack Ͱ ϞοΫ 3 https://hub.docker.com/_/docker 25

  26. ۤ࿑ͨ͜͠ͱ 26

  27. ۤ࿑ͨ͜͠ͱ ଓʑͱൃ۷͞ΕΔٕज़తɾ࢓༷తͳෛ࠴ • ͍͟ઃܭํ਑ΛܾΊͯਐΊͯΈΔͱɺͲΜͲΜ໰୊͕ൃ۷͞ Εͯ͘Δ • ٕज़తͳ΋ͷɺ࢓༷తͳ΋ͷͷ྆ํ͋ͬͨ 27

  28. ۤ࿑ͨ͜͠ͱ ๦͛ͱͳΔٕज़తෛ࠴ͨͪ΁ͷରॲ • ෆཁͳػೳɺ࣮૷ • ͲΜͲΜ࡟আͯ͠վमൣғΛڱΊΔ • ෼͔ΓͮΒ͍࣮૷ • ෳࡶੑ͕ߴ·ΔϦεΫΛݮΒ͢Α͏ϦϑΝΫλϦϯά

    28

  29. ۤ࿑ͨ͜͠ͱ ๦͛ͱͳΔ࢓༷ͨͪ΁ͷରॲ • ഇࢭ༧ఆ͕ͩͬͨௐ੔ະ࣮ࢪͷ··ͩͬͨػೳ • ϓϩμΫτνʔϜʹਪਐΛґཔɺҰ෦ר͖औ࣮ͬͯࢪ • ഇࢭݕ౼Ͱ͖ͦ͏ͳػೳ • ࢖༻ঢ়گͷ֬ೝɺඞཁͳௐ੔Λ࣮ࢪ͠ഇࢭ

    • ͳͥ͜͏ͳ͍ͬͯΔͷ͔୭΋෼͔Βͳ͍࢓༷ • ߟݹֶऀͱͳΔ͔ɺߟݹֶऀʹॿ͚ΛٻΊͯɺ͋Δ΂͖ঢ়ଶΛߟܾ͑Ί Λ࡞Δ 29

  30. ۤ࿑ͨ͜͠ͱ طଘσʔλͷ੔ཧ • Ҡߦ͕೉͍͠σʔλͷରॲ • ෆཁͳσʔλΛҠߦ͠ͳ͍ͨΊͷҠߦର৅ͷ੔ཧ • Ҡߦޙͷ੔߹ੑʹϦεΫͷ͋Δσʔλͷௐ੔ 30

  31. ۤ࿑ͨ͜͠ͱ αʔϏεݸผͷࣄ৘ vs ڞ௨ج൫ͷීวੑ • ࠷ॳͷ࿈ܞαʔϏεͱͯ͠ɺࣗવͳϢʔβʔମݧΛఏڙͨ͠ ͍ • Ұ࣌తʹ ID

    ج൫ͱ STORES Ͱີ݁߹ʹͳΔ෦෼͕ੜ͡Δ • ؾ࣋ͪѱ͍͕ɺ୹ظతͳ໨తͷͨΊʹҰఆ͸ڐ༰͠ɺ࣍ͷऔ Γ૊ΈͰղফΛܭը • ID ج൫ʹෛ࠴Λ๊͑ͯ΋Β͍ͬͯΔঢ়گ 31

  32. େ͖ͳτϥϒϧ΋ͳ͘ϦϦʔε׬ྃ Photo by Wil Stewart on Unsplash https://unsplash.com/photos/UErWoQEoMrc

  33. ֶͼ 33

  34. ֶͼ ٕज़తෛ࠴ͱͷ޲͖߹͍ํ • جຊతʹ͸ී௨ͷ։ൃͱಉ͕ͩ͡ɺଟ͘͸ޙ͕ͳ͍ঢ়ଶͰݱΕ Δ • Լखʹଥڠ͢ΔͱγεςϜԣஅͷෛ࠴ʹͳΔ • طଘͷ࣮૷ʹܟҙ͸෷͏͕዁౓͠ͳ͍ •

    ԿΒ͔ͷཧ༝͕͋ͬͯੵΈ্͛ΒΕͨݱঢ়΁ͷܟҙ • ͜Ε͕ਖ਼͍͠ͱࢥ͏ͷͰ͜ΕͰߦ͖·͢ͱ͍͏༐ؾ 34

  35. ֶͼ ਫ໘Լͷ໰୊ͷදग़λΠϛϯά • ҰาਐΉͨͼʹ࣍ʑͱ໰୊͕ൃ۷͞ΕΔͱ͖͕͋Δ • γεςϜҠߦ΍෼ׂʹ͓͍ͯ͸ɺଟ͘ͷ৔߹ͦ͏͍͏΋ͷͰ͋Δ • ӅΕͯͳΜͱ͔ͳ͍ͬͯͨॲཧɺ͍͔ͭ΍Ζ͏ͱอཹ͞Ε͍ͯͨ࢓ ༷ •

    ͜͏ͨ͠ੑ࣭͔Βɺظݶ΁ͷίϛοτ͸ͮ͠Β͍͜ͱΛཧղ͓ͯ͘͠ • ுΓ੾ͬͯ΍͚ͬͭΔνϟϯεͱલ޲͖ʹߟ͑Δ 35

  36. ֶͼ ೉͍͠໰୊ͷམͱ͠ॴΛܾΊΔ • ਫ໘Լ͔Βදग़ͨ͠໰୊ɺγεςϜҠߦʹ൐͏໰୊ • ೉͍͠໰୊͕࣍ʑͱग़͖ͯͯɺϦϦʔεʹͳ͔ͳ͔͚ۙͮͳ͍যΓ • ׬ᘳͳղܾࡦΛߟ͑ͯ͠·͏͜ͱ͕ཪ໨ʹग़Δ͜ͱ΋ • ྫྷ੩ʹɺ໨తʹཱͪฦͬͯஸ౓Α͍མͱ͠ॴΛܾΊΔ

    • ෳࡶͳ໰୊Λγϯϓϧʹղ͘ํ๏Λ୳͢ • ࠷ॳ͸Θ͔Βͳ͍͜ͱ΋ଟ͍͕͜ͷ൑அͷ܁Γฦ͠Ͱਫ਼౓্͕͕͍ͬͯ͘ 36

  37. ֶͼ ن֨ʹ৐Δͱ҆શͰޮ཰͕ྑ͍ • ڞ௨ج൫ͷϓϩτίϧ࡞Γ͸ͱͯ΋೉͍͠໰୊ • OIDC ͷ͓͔͛Ͱզʑ͸Ͳ͏࣮૷͢Δͷ͔ͱ͍͏ݕ౼ʹ஫ྗͰ͖ͨ • طଘͷن͕֨͋Γɺ໨తʹ߹க͍ͯ͠ΔͳΒɺ࢖Θͳ͍ख͸ͳ͍ •

    ଟ͘ͷٞ࿦͕ॏͶΒΕར༻࣮੷ͷ͋Δن֨ΑΓ༏Εͨ΋ͷΛ࡞Δͷ͸೉͠ ͍ • ϥΠϒϥϦ͕ଘࡏ͢Δ͜ͱ΋ଟ͍ • RFC ΛͪΌΜͱಡΜͰ࢓૊ΈΛཧղ͢Δͷ͸ॏཁ 37

  38. ֶͼ ૣΊʹͭͳ͛ͯಈ͔͢ • ࠓճɺͦΕͧΕ͕ϞοΫΛ࡞ͬͯ։ൃΛਐߦ • ॳظͷ࢓༷΍ΞʔΩςΫνϟͷண஍఺͕ෆ࣮֬ͩͬͨͨΊ • ௕͍ؒϞοΫΛཔͬͯ͠·͍࿈ܞʹඞཁͳؾ෇͖͕஗ΕΔ͜ ͱ΋ •

    ෆ׬શͰ΋ྑ͍ͷͰɺૣΊʹͭͳ͛ͯϑΟʔυόοΫΛಘΒ ΕΔঢ়ଶʹͰ͖ͨΒΑ͔ͬͨ 38

  39. ·ͱΊ • ID ج൫ͷ STORES ΁ͷಋೖͱΞΧ΢ϯτͷҠߦΛɺμ΢ϯλΠϜͳ ͠ɺϢʔβʔૢ࡞ෆཁͰߦͬͨࣄྫΛ঺հͨ͠ • औΓ૊ΈͷதͰۤ࿑ͨ͜͠ͱ΍ಘΒΕֶͨͼΛ঺հͨ͠ɻಛʹɺજΜ Ͱ͍ͨ໰୊΁ͷऔΓ૊Έʹ͍͓ͭͯ࿩ͨ͠͠

    • ෳࡶͳ໰୊͕ଓʑͱग़ͯ͘Δͱࠞཚ͢Δ͜ͱ΋͋Δ͕ɺ໨తʹूத͠ ͯγϯϓϧʹղ͘ɺͱ͍͏ͷΛ๨Εͣʹ͍͍ͨ • γεςϜҠߦ΍෼ׂͱ͍ͬͨಉछͷ໰୊΍ɺଞͷ೉͍͠໰୊ʹऔΓ૊ ·ΕΔํͷώϯτʹͳΔͱ͏Ε͍͠ 39

  40. 40