Manchester Airports Group: Serverless multi-merchant retail marketplace

As Manchester Airports Group’s digital agency, MAG-O’s aim is to empower airports to grow non-aeronautical revenue streams through an airport-centric ecosystem made up of platforms and services that deliver market-leading e-commerce for any airport. MAG-O’s products consist of:

go.retail: A multi-merchant marketplace that empowers passengers to shop how and when they want.
go.airport: A reservations system for parking, hospitality and ancillary products such as lounges and security fast-track.
go.travel: A booking system for onward connections across modal types (rail, taxis, buses) to provide customers with the definitive answer for how to easily get to/from the airport.
Revenue Management for airport car parking to maximize returns by applying advanced forecasting techniques and a proprietary RMS system handling 450,000 pricing decisions per day.
Management of all digital marketing channels to enhance performance and profitability, handled by specialists in paid media and organic search who work closely with affiliates and CRM systems.
Distribution platform which provides international comparison and distribution of airport car parking and transfers via dedicated businesses, Looking4.com and SkyParkSecure, thus unlocking additional revenue channels.

Our new Multi-Tenanted go.retail platform enables us to deliver our multi-merchant marketplace into any airport in the world. In choosing Serverless, we have removed concerns around scalability and infrastructure maintenance, allowing us to focus on delivering value to end users. We are able to accurately model our costs based on projected usage and our ability to respond to opportunities and threats has significantly improved. We have adopted a ‘Serverless First’ approach whereby we will look to leverage Serverless Technologies for all future projects.

Ian ArmitageHead Of Technology at MAG-O

MAG-O already had a retail platform that had proved its worth across their three airports. However they desired to offer the platform to other airports around the world. They realised that to facilitate this, the platform would need extensive re-architecting, due to the solution’s limited support for multi-tenancy. A multi-tenant solution would require support for multiple languages, currencies, and feature flags.

With demand already present from external airports for a retail platform, the group decided to seize this opportunity. The solution needed to enable MAG to bring these new tenants onboard their platform in a few hours instead of weeks.

The key requirement was to create a platform that would allow each tenant a large amount of creative freedom, enabling not just their own content team but any tenant’s content team to create unique pages, drive sales, and increase conversion, without the need for development work.

Without delivering this solution, customer demand would be unmet, leading to a loss of revenue for the group.

Serverless technology allows rapid scalability without constant management

Infinity Works proposed a solution which was divided into three main streams of work:

Build a new Order Management Service (OMS).
Build a new web application for customers to use.
A migration from the existing platform.

Serverless technology was selected to allow rapid scalability without constant management. Infinity Works proposed the use of Step Functions, Lambda and SQS to orchestrate the complex order workflow.

The solution needed to allow multiple airports to be rapidly onboarded. Each airport needed to maintain a catalogue of products, each of which could come from a number of retailers.

Infinity Works proposed using a SaaS solution, Pimberly, which was chosen to take various product data feeds and sanitize the data in a unified format which would then be saved into an S3 bucket. The S3 bucket receiving a new file would trigger a lambda which takes the artifact from Pimberly, populating a Amazon ElasticSearch index for that tenant.

The front end solution is a React/NextJs application served up by a NodeJS Express server running inside a Lambda and exposed via an API Gateway. This single Lambda would be responsible for serving all of the tenants in the region. The front end is configured per tenant using DynamoDB, ensuring that a single codebase can support multiple tenants. When combined with a facade composed of styled components, this makes it possible to theme the storefronts and enable or disable features for individual tenants.

The storefront codebase comprises styled components and layouts, driven by DatoCMS, which is a headless Content Management Service (CMS). Each tenant has their own CMS instance, allowing large amounts of control and variation for the look and feel of their own store, while providing a library of well tested and robust components.

A number of different data sources are combined and queried from the front end solution, via an AppSync GraphQL API. These sources include data from DynamoDB, which provides tenant configuration data, ElasticSearch for the product data, HTTP integrations allowing a connection to the DatoCMS instance for content as well as Lambda integrations for authentication, basket and checkout operations.

AppSync’s tools for providing data resolvers and resolver pipelines, gave us a great deal of flexibility when it came to querying and shaping our data. In the case of the CMS, the HTTP endpoint datasource was used to pass GraphQL queries through to the Dato GraphQL API. As product page content from the CMS was largely the same, out of the box AWS tooling such as the per-resolver caching available with AppSync also meant that we could control the load on downstream services, such as reducing the requests being sent to the CMS.

In addition to the caching in the AppSync data layer, a CloudFront distribution was deployed in front of each tenant. This provided page level caching to the main application, but also allowed us to seamlessly link to static assets in an S3 bucket via an additional CloudFront origin.

Number of Lambda functions	18
Events per month	2 million per tenant
Framework	CloudFormation
Languages	NodeJS C#
AWS Services	AWS Lambda, Amazon SQS, SNS, AWS Step Functions, Amazon API Gateway, WAF, Amazon Kinesis, DynamoDB, Amazon ElasticSearch, Amazon S3
External Services	DatoCMS Raygun TrackJS Pimberly

Deployment

Storefront architecture

MAG-O had some concerns around using Serverless, especially around using it for serving the storefront in a highly competitive ecommerce setting. By extensive usage of caching, as well as using correct frameworks, languages and optimisations of the Serverless AWS services we were using, we were able to deliver a large performance increase compared to their existing platform, while reducing the costs of having EC2 instances always deployed.

For infrastructure and application deployment it was initially planned to use the Serverless Application Model (SAM) CLI for deploying the required lambda functions, and this was an acceptable solution for the start of the project. However as the project progressed and the CI/CD pipeline was developed, it was decided to use CloudFormation, CodeBuild, CodeDeploy and Octopus Deploy, to more closely align this solutions deployment with the deployment process MAG-O uses for the rest of their projects. The final deployment solution allowed best practices for building and deploying, while having Octopus manage some configuration settings and the release management.

Solution Characteristics

As an e-commerce platform, the storefront was the main component to be performance tested, as page load times as well as the ability to scale to serve thousands of customers was of utmost importance to MAG-O. This was achieved using the Gatling testing tool to make randomised page requests, carefully designing tests to ensure we had a realistic mix of hits and misses from the caching layer to maximise load on our services rather than CloudFront.

Throughout load testing, we were able to prove that load on the system actually had performance benefits for the storefront, reducing page load times as cold starts were less impactful, getting page load times below 300ms for a non cached, server side rendered page.

As the Lambda Functions we developed had specific use cases, each one was given limited permissions to access other AWS resources. Each Lambda Function started life with no permissions then, as the need arose, the least amount of privileges required to perform required operations on specified resources were added. This least-privileged approach ensured we kept the services secure, minimising external attack vectors, keeping systems compliant and reducing misconfiguration incidents.

Due to the use of caching for the storefront and the architecture of the OMS, concurrency limiting wasn’t required for either of the solutions. Step Functions also allowed the system to replay failed executions if required, ensuring customers orders were fulfilled.

A number of monitoring tools were implemented, logs were monitored from CloudWatch, then CloudWatch Alerts were created to monitor usage and error states. Step Function failures were monitored from CloudWatch and displayed on an internal dashboard, allowing key stakeholders to react quickly to any possible issues. As well as this AWS tooling other systems were used including using Raygun to track .NET exceptions and TrackJS to monitor front end JavaScript errors.

This service was developed to replace a series of existing systems which ran within a VPC, isolating internal APIs from the public internet. The Serverless tooling we chose to use meant we minimised the need to place new infrastructure inside the VPC, however integrations into other systems required one Lambda Function for authentication to be in the same VPC as an internal authentication service.

Easy and quick auto-scaling

MAG-O have moved from an e-commerce platform that supported their current portfolio of in house tenants, to a platform that can scale to hundreds of tenants easily, quickly, and while minimising total cost of ownership. The maintenance of EC2 instances, the management of auto scaling, the complexities of tenant specific code have all been removed.

Improved onboading speed

The major benefits include the improved speed of onboarding these new tenants, or even creating test tenants to showcase the platform to potential clients. The turnaround time for producing a new tenant has gone from weeks of work, to an hour or two, a few clicks and some content creation in a SaaS CMS. The only new infrastructure that needs to be created is a CloudFront instance, the rest is shared between every other tenant in that region, reducing overall cost.

Serverless and scalable

The order management service has been migrated to a fully multi-tenanted, serverless, scalable solution, allowing new tenants with similar retail offerings to be onboarded extremely quickly. This system can now scale to meet MAG-O’s ambitions while keeping costs low.