DEV Community: Shubham Kansal The latest articles on DEV Community by Shubham Kansal (@shubhamkansal). https://dev.to/shubhamkansal https://media2.dev.to/dynamic/image/width=90,height=90,fit=cover,gravity=auto,format=auto/https:%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Fuser%2Fprofile_image%2F3976908%2Fb4ef001b-31b7-4137-a1f2-ad53ba852e90.png DEV Community: Shubham Kansal https://dev.to/shubhamkansal en DevOps Best Practices From the Trenches: What Actually Moves the Needle Shubham Kansal Wed, 10 Jun 2026 04:48:22 +0000 https://dev.to/shubhamkansal/devops-best-practices-from-the-trenches-what-actually-moves-the-needle-2hc7 https://dev.to/shubhamkansal/devops-best-practices-from-the-trenches-what-actually-moves-the-needle-2hc7 <p><strong>TL;DR:</strong> I've run production infrastructure for 14 years, founded DietGhar and NyayX, and cut a client's cloud bill 40% in one sprint. This is not a tool checklist. These are the specific practices — with the numbers — that move real needles.</p> <p>Most DevOps content is a rehashed checklist. Use CI/CD. Write tests. Monitor things. Helpful in the same way "eat less, move more" is helpful for weight loss — technically correct and completely insufficient.</p> <p>I've been building and running production infrastructure for 14 years. I've founded DietGhar (healthtech, live at dietghar.com) and NyayX (legaltech, live at nyayx.com), and I've consulted for teams running everything from two-person startups to platforms handling 2M-product catalogues under Black Friday load. What follows are the practices that actually moved needles, with specific numbers.</p> <h2> CI/CD is only as good as your slowest feedback loop </h2> <p>A pipeline that takes 40 minutes to run is a pipeline nobody trusts. Developers will start merging without waiting. For DietGhar I use GitHub Actions with a staged pipeline:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight yaml"><code><span class="c1"># .github/workflows/ci.yml</span> <span class="na">jobs</span><span class="pi">:</span> <span class="na">lint-typecheck</span><span class="pi">:</span> <span class="na">runs-on</span><span class="pi">:</span> <span class="s">ubuntu-latest</span> <span class="na">timeout-minutes</span><span class="pi">:</span> <span class="m">2</span> <span class="na">steps</span><span class="pi">:</span> <span class="pi">-</span> <span class="na">uses</span><span class="pi">:</span> <span class="s">actions/checkout@v4</span> <span class="pi">-</span> <span class="na">uses</span><span class="pi">:</span> <span class="s">actions/setup-node@v4</span> <span class="na">with</span><span class="pi">:</span> <span class="pi">{</span> <span class="nv">node-version</span><span class="pi">:</span> <span class="s1">'</span><span class="s">20'</span><span class="pi">,</span> <span class="nv">cache</span><span class="pi">:</span> <span class="s1">'</span><span class="s">npm'</span> <span class="pi">}</span> <span class="pi">-</span> <span class="na">run</span><span class="pi">:</span> <span class="s">npm ci</span> <span class="pi">-</span> <span class="na">run</span><span class="pi">:</span> <span class="s">npm run lint &amp;&amp; npm run typecheck</span> <span class="na">unit-tests</span><span class="pi">:</span> <span class="na">runs-on</span><span class="pi">:</span> <span class="s">ubuntu-latest</span> <span class="na">needs</span><span class="pi">:</span> <span class="s">lint-typecheck</span> <span class="na">timeout-minutes</span><span class="pi">:</span> <span class="m">5</span> <span class="na">strategy</span><span class="pi">:</span> <span class="na">matrix</span><span class="pi">:</span> <span class="na">shard</span><span class="pi">:</span> <span class="pi">[</span><span class="nv">1</span><span class="pi">,</span> <span class="nv">2</span><span class="pi">,</span> <span class="nv">3</span><span class="pi">,</span> <span class="nv">4</span><span class="pi">]</span> <span class="c1"># run in parallel</span> <span class="na">steps</span><span class="pi">:</span> <span class="pi">-</span> <span class="na">uses</span><span class="pi">:</span> <span class="s">actions/checkout@v4</span> <span class="pi">-</span> <span class="na">run</span><span class="pi">:</span> <span class="s">npm ci</span> <span class="pi">-</span> <span class="na">run</span><span class="pi">:</span> <span class="s">npm test -- --shard=${{ matrix.shard }}/4</span> <span class="na">integration-tests</span><span class="pi">:</span> <span class="na">runs-on</span><span class="pi">:</span> <span class="s">ubuntu-latest</span> <span class="na">needs</span><span class="pi">:</span> <span class="s">unit-tests</span> <span class="na">timeout-minutes</span><span class="pi">:</span> <span class="m">10</span> <span class="na">services</span><span class="pi">:</span> <span class="na">postgres</span><span class="pi">:</span> <span class="na">image</span><span class="pi">:</span> <span class="s">postgres:16</span> <span class="na">env</span><span class="pi">:</span> <span class="pi">{</span> <span class="nv">POSTGRES_PASSWORD</span><span class="pi">:</span> <span class="nv">test</span> <span class="pi">}</span> <span class="na">redis</span><span class="pi">:</span> <span class="na">image</span><span class="pi">:</span> <span class="s">redis:7</span> <span class="na">steps</span><span class="pi">:</span> <span class="pi">-</span> <span class="na">uses</span><span class="pi">:</span> <span class="s">actions/checkout@v4</span> <span class="pi">-</span> <span class="na">run</span><span class="pi">:</span> <span class="s">npm ci</span> <span class="pi">-</span> <span class="na">run</span><span class="pi">:</span> <span class="s">npm run test:integration</span> </code></pre> </div> <p>Total: 12 minutes from push to green. That speed is intentional. If I let it creep to 30 minutes, the pipeline becomes ceremonial.</p> <p>The second CI/CD failure mode is treating deployment as a one-way door. Every pipeline I build includes an automated rollback trigger: if the health check endpoint returns non-200 for 60 seconds post-deploy, the previous ECS task definition is reactivated automatically:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># In the deploy step — simplified ECS blue/green with health-check rollback</span> <span class="nv">NEW_TASK_DEF_ARN</span><span class="o">=</span><span class="si">$(</span>aws ecs register-task-definition <span class="se">\</span> <span class="nt">--cli-input-json</span> file://task-def.json <span class="se">\</span> <span class="nt">--query</span> <span class="s1">'taskDefinition.taskDefinitionArn'</span> <span class="nt">--output</span> text<span class="si">)</span> aws ecs update-service <span class="se">\</span> <span class="nt">--cluster</span> production <span class="se">\</span> <span class="nt">--service</span> api <span class="se">\</span> <span class="nt">--task-definition</span> <span class="s2">"</span><span class="nv">$NEW_TASK_DEF_ARN</span><span class="s2">"</span> <span class="c"># Wait and verify — roll back if health check fails</span> <span class="k">if</span> <span class="o">!</span> aws ecs <span class="nb">wait </span>services-stable <span class="nt">--cluster</span> production <span class="nt">--services</span> api<span class="p">;</span> <span class="k">then </span><span class="nb">echo</span> <span class="s2">"Deploy failed health check, rolling back..."</span> aws ecs update-service <span class="se">\</span> <span class="nt">--cluster</span> production <span class="se">\</span> <span class="nt">--service</span> api <span class="se">\</span> <span class="nt">--task-definition</span> <span class="s2">"</span><span class="nv">$PREVIOUS_TASK_DEF_ARN</span><span class="s2">"</span> <span class="nb">exit </span>1 <span class="k">fi</span> </code></pre> </div> <p>A bad release never touches more than the seconds between deploy and health check failure.</p> <h2> Infrastructure as code is your documentation </h2> <p>When I inherited a client's AWS account for a cost review, I found: 23 EC2 instances, 11 RDS instances, 6 load balancers. No Terraform, no CDK, no CloudFormation. Nobody knew what half of them did. Three were serving zero traffic. One had been running since 2019.</p> <p>That engagement paid for itself in the first sprint. I wrote Terraform to model what was actually in use, deleted the orphaned resources, rightsized the rest against CloudWatch metrics, and moved batch workloads to Spot. The bill dropped 40% before I touched a single line of application code.</p> <p>My rule: if I cannot recreate the entire environment from the repo in under 30 minutes, the infrastructure is undocumented. A minimal Terraform layout for a typical service:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>infra/ modules/ ecs-service/ # reusable ECS service + ALB target group + autoscaling rds-postgres/ # RDS + PgBouncer sidecar + parameter group sqs-lambda/ # SQS queue + Lambda + IAM role + DLQ envs/ staging/ # tfvars + state config production/ # tfvars + state config </code></pre> </div> <p>One <code>terraform apply</code> per environment. Infrastructure you can't recreate is infrastructure you can't recover.</p> <h2> Observability before you ship, not after something breaks </h2> <p>With NyayX I instrumented the application before I wrote the first feature. Error rates, p95 latency, conversion funnel drop-off — all dashboarded before a single real user hit the system.</p> <p>The payoff came in week two of beta. Onboarding had a 30% drop-off rate at step three. Without instrumentation I would have assumed users weren't interested. With it, I could see the drop-off happened on a specific form where validation errors weren't surfacing. A two-line fix.</p> <p>For the Black Friday platform: three weeks before the event, we ran <code>EXPLAIN ANALYZE</code> on every query over 50ms. Found three queries doing full sequential scans on 2M+ row tables. Added composite indexes. Query times: 800ms to 12ms. No new servers. Observability data led to the right fix before it mattered.</p> <p>Key metrics to track from day one:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>Application layer: - p50 / p95 / p99 response time per route - Error rate (4xx vs 5xx, separated) - Apdex score Infrastructure layer: - Postgres connection count (alert at 80% of max_connections) - Cache hit rate (alert if Redis hit rate drops below 90%) - Lambda error rate + duration p95 Business layer: - Conversion funnel drop-off per step - API error rate per endpoint (for externally-facing APIs) </code></pre> </div> <h2> Database connections are infrastructure, not an afterthought </h2> <p>At 12,000 concurrent users, your application will attempt thousands of simultaneous database connections. PostgreSQL degrades sharply above 200. The solution: PgBouncer in transaction pooling mode, deployed as a sidecar or separate service between your app tier and Postgres.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight ini"><code><span class="c"># pgbouncer.ini — the config that saved Black Friday </span><span class="nn">[pgbouncer]</span> <span class="py">pool_mode</span> <span class="p">=</span> <span class="s">transaction</span> <span class="py">max_client_conn</span> <span class="p">=</span> <span class="s">10000</span> <span class="py">default_pool_size</span> <span class="p">=</span> <span class="s">150</span> </code></pre> </div> <p>Before: 8,000 app-side connections → Postgres under severe load.<br> After: 8,000 app-side connections → 150 Postgres connections → 4x throughput.</p> <p>This is a provisioning concern, not a code concern. The right moment to configure connection pooling is during infrastructure setup — it should be in your Terraform module alongside your RDS resource, not discovered during an incident.</p> <h2> Cloud cost is a product decision </h2> <p>Teams that treat cloud cost as a finance problem consistently overspend. Every architecture decision has a cost consequence:</p> <ul> <li>Synchronous fan-out to 10 services vs an event queue? You're paying for the over-provisioning required to absorb spikes.</li> <li>Polling an API every minute vs webhooks? You're paying for compute that generates mostly empty responses.</li> </ul> <p>For the SP-API platform: the inventory sync originally polled the Catalog Items API for 50,000 SKUs on a 15-minute schedule. The right architecture was subscribing to <code>ITEM_INVENTORY_UPDATE</code> events via the Notifications API, processing changes as they arrived via SQS + Lambda. Sync latency: 24 hours → under 15 minutes. API call volume: down 90%. Compute cost dropped proportionally.</p> <p>Review your cloud bill monthly. Flag any service growing faster than your user base for architectural review. That growth-rate discrepancy is almost always a design problem.</p> <h2> Environment parity prevents bugs that only appear in production </h2> <p>For NyayX, every environment — local, staging, production — runs the same Docker image built from the same Dockerfile:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight yaml"><code><span class="c1"># docker-compose.yml (local development)</span> <span class="na">services</span><span class="pi">:</span> <span class="na">api</span><span class="pi">:</span> <span class="na">build</span><span class="pi">:</span> <span class="s">.</span> <span class="c1"># same Dockerfile as production</span> <span class="na">image</span><span class="pi">:</span> <span class="s">nyayx-api:dev</span> <span class="na">environment</span><span class="pi">:</span> <span class="pi">-</span> <span class="s">NODE_ENV=development</span> <span class="pi">-</span> <span class="s">DATABASE_URL=postgres://postgres:postgres@postgres:5432/nyayx</span> <span class="na">depends_on</span><span class="pi">:</span> <span class="pi">[</span><span class="nv">postgres</span><span class="pi">,</span> <span class="nv">redis</span><span class="pi">]</span> <span class="na">postgres</span><span class="pi">:</span> <span class="na">image</span><span class="pi">:</span> <span class="s">postgres:16</span> <span class="na">redis</span><span class="pi">:</span> <span class="na">image</span><span class="pi">:</span> <span class="s">redis:7-alpine</span> </code></pre> </div> <div class="highlight js-code-highlight"> <pre class="highlight hcl"><code><span class="c1"># ECS task definition (production) — same image, different env vars via Secrets Manager</span> <span class="nx">container_definitions</span> <span class="err">=</span> <span class="nx">jsonencode</span><span class="err">(</span><span class="p">[{</span> <span class="nx">name</span> <span class="p">=</span> <span class="s2">"api"</span> <span class="nx">image</span> <span class="p">=</span> <span class="s2">"${aws_ecr_repository.api.repository_url}:${var.image_tag}"</span> <span class="nx">environment</span> <span class="p">=</span> <span class="p">[</span> <span class="p">{</span> <span class="nx">name</span> <span class="p">=</span> <span class="s2">"NODE_ENV"</span><span class="p">,</span> <span class="nx">value</span> <span class="p">=</span> <span class="s2">"production"</span> <span class="p">}</span> <span class="p">]</span> <span class="nx">secrets</span> <span class="p">=</span> <span class="p">[</span> <span class="p">{</span> <span class="nx">name</span> <span class="p">=</span> <span class="s2">"DATABASE_URL"</span><span class="p">,</span> <span class="nx">valueFrom</span> <span class="p">=</span> <span class="nx">aws_secretsmanager_secret</span><span class="p">.</span><span class="nx">db_url</span><span class="p">.</span><span class="nx">arn</span> <span class="p">}</span> <span class="p">]</span> <span class="p">}]</span><span class="err">)</span> </code></pre> </div> <p>The application code does not know which environment it is in beyond what environment variables tell it. This sounds obvious until you see a team discover that Node.js 16 in production and Node.js 20 in development produce different behaviour — found during a customer demo.</p> <h2> Security is not a phase at the end </h2> <p>NyayX is a legaltech platform handling sensitive legal documents. Security controls that are in production today were in the first pull request that touched each relevant subsystem:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight sql"><code><span class="c1">-- Row-level security: tenants cannot query each other's data</span> <span class="c1">-- regardless of application logic</span> <span class="k">ALTER</span> <span class="k">TABLE</span> <span class="n">documents</span> <span class="n">ENABLE</span> <span class="k">ROW</span> <span class="k">LEVEL</span> <span class="k">SECURITY</span><span class="p">;</span> <span class="k">CREATE</span> <span class="n">POLICY</span> <span class="n">tenant_isolation</span> <span class="k">ON</span> <span class="n">documents</span> <span class="k">USING</span> <span class="p">(</span><span class="n">tenant_id</span> <span class="o">=</span> <span class="n">current_setting</span><span class="p">(</span><span class="s1">'app.tenant_id'</span><span class="p">)::</span><span class="n">uuid</span><span class="p">);</span> <span class="c1">-- Audit log: append-only — no UPDATE or DELETE permission</span> <span class="k">REVOKE</span> <span class="k">UPDATE</span><span class="p">,</span> <span class="k">DELETE</span> <span class="k">ON</span> <span class="n">audit_log</span> <span class="k">FROM</span> <span class="n">api_role</span><span class="p">;</span> </code></pre> </div> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="c1">// S3 objects private by default — pre-signed URLs for time-limited access</span> <span class="kd">const</span> <span class="nx">url</span> <span class="o">=</span> <span class="k">await</span> <span class="nf">getSignedUrl</span><span class="p">(</span><span class="nx">s3Client</span><span class="p">,</span> <span class="k">new</span> <span class="nc">GetObjectCommand</span><span class="p">({</span> <span class="na">Bucket</span><span class="p">:</span> <span class="nx">process</span><span class="p">.</span><span class="nx">env</span><span class="p">.</span><span class="nx">DOCUMENTS_BUCKET</span><span class="p">,</span> <span class="na">Key</span><span class="p">:</span> <span class="nx">documentKey</span><span class="p">,</span> <span class="p">}),</span> <span class="p">{</span> <span class="na">expiresIn</span><span class="p">:</span> <span class="mi">900</span> <span class="p">});</span> <span class="c1">// 15 minutes</span> </code></pre> </div> <p>Retrofitting security into an existing system costs roughly 10x what it costs to design it in. This is the practice most frequently deferred and most frequently regretted.</p> <h2> Backups are a promise you haven't tested </h2> <p>Everyone has backups. Almost nobody has restores. For NyayX, which stores legal documents clients are legally required to retain, an untested backup is not a backup — it is a liability with good intentions.</p> <p>I automate the restore, not just the backup:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c">#!/bin/bash</span> <span class="c"># Runs weekly via EventBridge + Lambda</span> <span class="nb">set</span> <span class="nt">-e</span> <span class="c"># Restore latest snapshot into throwaway DB</span> <span class="nv">SNAPSHOT_ID</span><span class="o">=</span><span class="si">$(</span>aws rds describe-db-snapshots <span class="se">\</span> <span class="nt">--db-instance-identifier</span> nyayx-production <span class="se">\</span> <span class="nt">--query</span> <span class="s1">'DBSnapshots[-1].DBSnapshotIdentifier'</span> <span class="se">\</span> <span class="nt">--output</span> text<span class="si">)</span> aws rds restore-db-instance-from-db-snapshot <span class="se">\</span> <span class="nt">--db-instance-identifier</span> nyayx-restore-test <span class="se">\</span> <span class="nt">--db-snapshot-identifier</span> <span class="s2">"</span><span class="nv">$SNAPSHOT_ID</span><span class="s2">"</span> aws rds <span class="nb">wait </span>db-instance-available <span class="se">\</span> <span class="nt">--db-instance-identifier</span> nyayx-restore-test <span class="c"># Run integrity checks</span> <span class="nv">ROW_COUNT</span><span class="o">=</span><span class="si">$(</span>psql <span class="s2">"</span><span class="nv">$RESTORE_URL</span><span class="s2">"</span> <span class="nt">-t</span> <span class="nt">-c</span> <span class="se">\</span> <span class="s2">"SELECT COUNT(*) FROM documents WHERE created_at &gt; NOW() - INTERVAL '7 days'"</span><span class="si">)</span> <span class="k">if</span> <span class="o">[</span> <span class="s2">"</span><span class="nv">$ROW_COUNT</span><span class="s2">"</span> <span class="nt">-lt</span> 100 <span class="o">]</span><span class="p">;</span> <span class="k">then</span> <span class="c"># Page me — something is wrong</span> aws sns publish <span class="nt">--topic-arn</span> <span class="s2">"</span><span class="nv">$ALERT_TOPIC</span><span class="s2">"</span> <span class="se">\</span> <span class="nt">--message</span> <span class="s2">"Restore check FAILED: only </span><span class="nv">$ROW_COUNT</span><span class="s2"> recent documents"</span> <span class="nb">exit </span>1 <span class="k">fi</span> <span class="c"># Tear down</span> aws rds delete-db-instance <span class="se">\</span> <span class="nt">--db-instance-identifier</span> nyayx-restore-test <span class="se">\</span> <span class="nt">--skip-final-snapshot</span> </code></pre> </div> <p>A backup job succeeding tells me almost nothing. A restore succeeding tells me everything. I learned this the hard way: nightly backups that had been succeeding for months while silently writing zero-byte files — a rotated credential had quietly broken the export. The dashboard stayed green the entire time.</p> <p>If you do one thing after reading this article, schedule a restore test before you schedule another backup.</p> <h2> Incident response needs a script before the incident </h2> <p>For every production system I run, there is a written runbook for the five most likely failure modes:</p> <ol> <li>Database connection exhaustion</li> <li>High error rate on the main API</li> <li>Deployment rollback</li> <li>Third-party API degradation</li> <li>Certificate expiry</li> </ol> <p>Each runbook has a decision tree, the commands to run, and the escalation path. When the SP-API platform went down during a peak sales window because Amazon's Notifications API was delayed, the runbook said: check SQS queue depth → check Lambda error rate → check SP-API status page → switch to polling fallback if SQS depth exceeds threshold. Resolution time: 11 minutes. Without the runbook, I estimate 45.</p> <p>After every incident, write a short post-incident note: what broke, the signal, detection time, resolution time, and the single change that would have prevented it. That SP-API incident produced one action item: alert on SQS queue depth. That alert has fired twice since, both times early enough that nobody downstream noticed.</p> <p>An incident you learn nothing from is just downtime. An incident that produces one concrete prevention is cheap insurance.</p> <h2> The compounding return </h2> <p>Each of these practices compounds:</p> <ul> <li>CI/CD with automated rollbacks → ship confidently at any time</li> <li>Infrastructure as code → rebuild from disaster in 30 minutes</li> <li>Observability before launch → find problems before customers do</li> <li>Connection pooling + cost discipline → scale without re-architecture</li> <li>Security by design → sell to enterprise without a security audit sprint</li> <li>Tested restores → a bad day is an inconvenience, not a closure</li> <li>Runbooks → incidents are learning exercises, not emergencies</li> </ul> <p>I run DietGhar and NyayX as a solo founder-engineer. The only reason that is viable is that the infrastructure runs itself 95% of the time because each of these practices is in place. DevOps best practices are not a tax on your time. They are how you get your time back.</p> <p>Originally published at <a href="https://shubhamkansal.com/blog/devops-best-practices" rel="noopener noreferrer">https://shubhamkansal.com/blog/devops-best-practices</a>. I'm Shubham Kansal, a freelance Full Stack &amp; DevOps engineer — more at <a href="https://shubhamkansal.com" rel="noopener noreferrer">https://shubhamkansal.com</a>.</p> devops aws postgres webdev From 500 to 50,000 Concurrent Users: Architecture Decisions That Actually Scale Shubham Kansal Wed, 10 Jun 2026 04:47:54 +0000 https://dev.to/shubhamkansal/from-500-to-50000-concurrent-users-architecture-decisions-that-actually-scale-4bp0 https://dev.to/shubhamkansal/from-500-to-50000-concurrent-users-architecture-decisions-that-actually-scale-4bp0 <p><strong>TL;DR:</strong> Black Friday on a 2M-product platform. Before adding a single server, EXPLAIN ANALYZE found three queries doing sequential scans — fixing the indexes dropped query times from 800ms to 12ms. PgBouncer multiplexed 8,000 connections down to 150 and gave us 4x throughput. Redis cached the right three things and nothing else. Here's the full picture.</p> <p>Black Friday at 12,000 concurrent users on a platform you migrated from Magento six months ago is a different kind of stress test. The team that ran it before me had a sensible instinct when load spiked: add app servers. That instinct is almost always wrong, and I spent the three weeks before the event proving it.</p> <h2> Start with the database, not the app servers </h2> <p>Every scaling conversation jumps to horizontal app server scaling. The database is almost always the first bottleneck. Before touching anything else, run:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight sql"><code><span class="c1">-- Find slow queries in production (pg_stat_statements must be enabled)</span> <span class="k">SELECT</span> <span class="n">query</span><span class="p">,</span> <span class="n">calls</span><span class="p">,</span> <span class="n">mean_exec_time</span><span class="p">,</span> <span class="n">total_exec_time</span><span class="p">,</span> <span class="k">rows</span> <span class="k">FROM</span> <span class="n">pg_stat_statements</span> <span class="k">WHERE</span> <span class="n">mean_exec_time</span> <span class="o">&gt;</span> <span class="mi">50</span> <span class="c1">-- anything over 50ms is a candidate</span> <span class="k">ORDER</span> <span class="k">BY</span> <span class="n">mean_exec_time</span> <span class="k">DESC</span> <span class="k">LIMIT</span> <span class="mi">20</span><span class="p">;</span> </code></pre> </div> <p>We found three queries. One of them, a product listing query joining categories and inventory:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight sql"><code><span class="c1">-- Before: full sequential scan, 800ms at scale</span> <span class="k">EXPLAIN</span> <span class="k">ANALYZE</span> <span class="k">SELECT</span> <span class="n">p</span><span class="p">.</span><span class="o">*</span><span class="p">,</span> <span class="k">c</span><span class="p">.</span><span class="n">name</span> <span class="k">AS</span> <span class="n">category_name</span><span class="p">,</span> <span class="n">i</span><span class="p">.</span><span class="n">quantity</span> <span class="k">FROM</span> <span class="n">products</span> <span class="n">p</span> <span class="k">JOIN</span> <span class="n">categories</span> <span class="k">c</span> <span class="k">ON</span> <span class="k">c</span><span class="p">.</span><span class="n">id</span> <span class="o">=</span> <span class="n">p</span><span class="p">.</span><span class="n">category_id</span> <span class="k">JOIN</span> <span class="n">inventory</span> <span class="n">i</span> <span class="k">ON</span> <span class="n">i</span><span class="p">.</span><span class="n">product_id</span> <span class="o">=</span> <span class="n">p</span><span class="p">.</span><span class="n">id</span> <span class="k">WHERE</span> <span class="n">p</span><span class="p">.</span><span class="n">status</span> <span class="o">=</span> <span class="s1">'active'</span> <span class="k">AND</span> <span class="k">c</span><span class="p">.</span><span class="n">slug</span> <span class="o">=</span> <span class="s1">'electronics'</span> <span class="k">ORDER</span> <span class="k">BY</span> <span class="n">p</span><span class="p">.</span><span class="n">created_at</span> <span class="k">DESC</span> <span class="k">LIMIT</span> <span class="mi">50</span><span class="p">;</span> <span class="c1">-- Result: Seq Scan on products (cost=0.00..48234.12 rows=2089432)</span> <span class="c1">-- Execution Time: 847.392 ms</span> </code></pre> </div> <p>The fix was a composite index that matched the filter and sort together:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight sql"><code><span class="c1">-- Covering index for the status + category_id + created_at access pattern</span> <span class="k">CREATE</span> <span class="k">INDEX</span> <span class="n">CONCURRENTLY</span> <span class="n">idx_products_status_category_created</span> <span class="k">ON</span> <span class="n">products</span> <span class="p">(</span><span class="n">status</span><span class="p">,</span> <span class="n">category_id</span><span class="p">,</span> <span class="n">created_at</span> <span class="k">DESC</span><span class="p">)</span> <span class="n">INCLUDE</span> <span class="p">(</span><span class="n">id</span><span class="p">,</span> <span class="n">title</span><span class="p">,</span> <span class="n">price</span><span class="p">,</span> <span class="n">slug</span><span class="p">);</span> <span class="c1">-- Separate index for the categories join on slug</span> <span class="k">CREATE</span> <span class="k">INDEX</span> <span class="n">CONCURRENTLY</span> <span class="n">idx_categories_slug</span> <span class="k">ON</span> <span class="n">categories</span> <span class="p">(</span><span class="n">slug</span><span class="p">);</span> </code></pre> </div> <div class="highlight js-code-highlight"> <pre class="highlight sql"><code><span class="c1">-- After: index scan, 12ms</span> <span class="c1">-- Result: Index Scan using idx_products_status_category_created</span> <span class="c1">-- Execution Time: 11.843 ms</span> </code></pre> </div> <p>800ms to 12ms. No new servers, no code changes, no cost increase. Index analysis before Black Friday is table stakes.</p> <h2> Connection pooling is not optional </h2> <p>At 12,000 concurrent users, your Node.js app servers will each maintain a connection pool. Ten ECS tasks, 100 connections each: you're already at 1,000 connections against Postgres. Scale to 20 tasks under load and PostgreSQL starts refusing connections entirely — it degrades sharply above roughly 200 active connections.</p> <p>The fix is a connection pooler sitting between your app tier and Postgres. We used PgBouncer in <strong>transaction pooling mode</strong>:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight ini"><code><span class="c"># pgbouncer.ini </span><span class="nn">[databases]</span> <span class="py">production</span> <span class="p">=</span> <span class="s">host=your-rds-endpoint port=5432 dbname=production</span> <span class="nn">[pgbouncer]</span> <span class="py">listen_addr</span> <span class="p">=</span> <span class="s">0.0.0.0</span> <span class="py">listen_port</span> <span class="p">=</span> <span class="s">5432</span> <span class="py">pool_mode</span> <span class="p">=</span> <span class="s">transaction # key: connection released after each transaction</span> <span class="py">max_client_conn</span> <span class="p">=</span> <span class="s">10000 # app-side connections (generous ceiling)</span> <span class="py">default_pool_size</span> <span class="p">=</span> <span class="s">150 # actual Postgres connections (stay under 200)</span> <span class="py">reserve_pool_size</span> <span class="p">=</span> <span class="s">10</span> <span class="py">reserve_pool_timeout</span> <span class="p">=</span> <span class="s">5</span> <span class="py">server_idle_timeout</span> <span class="p">=</span> <span class="s">600</span> <span class="py">log_connections</span> <span class="p">=</span> <span class="s">0</span> <span class="py">log_disconnections</span> <span class="p">=</span> <span class="s">0</span> </code></pre> </div> <p>Before PgBouncer: 8,000 app-side connections → Postgres melting.<br> After PgBouncer: 8,000 app-side connections → 150 Postgres connections → 4x throughput increase.</p> <p>One caveat with transaction pooling mode: you cannot use <code>SET</code> statements, advisory locks, or <code>LISTEN/NOTIFY</code> across transactions — the connection you get back may not be the same one. Keep that in mind if you rely on session-level state.</p> <h2> Redis: cache the right data and nothing else </h2> <p>Redis is not a general caching layer. The wrong data in Redis creates distributed consistency problems that are much harder to debug than slow queries.</p> <p>We cached exactly three things:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>1. Product page data TTL: 5 minutes 2. User session data TTL: 30 minutes (sliding) 3. Rate limit counters TTL: 1 minute (sliding window) </code></pre> </div> <p>We deliberately did <strong>not</strong> cache inventory counts. Here is why that matters:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="c1">// Wrong: cached inventory leads to overselling</span> <span class="k">async</span> <span class="kd">function</span> <span class="nf">getProductPage</span><span class="p">(</span><span class="nx">productId</span><span class="p">)</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">cached</span> <span class="o">=</span> <span class="k">await</span> <span class="nx">redis</span><span class="p">.</span><span class="nf">get</span><span class="p">(</span><span class="s2">`product:</span><span class="p">${</span><span class="nx">productId</span><span class="p">}</span><span class="s2">`</span><span class="p">);</span> <span class="k">if </span><span class="p">(</span><span class="nx">cached</span><span class="p">)</span> <span class="k">return</span> <span class="nx">JSON</span><span class="p">.</span><span class="nf">parse</span><span class="p">(</span><span class="nx">cached</span><span class="p">);</span> <span class="c1">// inventory count may be stale</span> <span class="kd">const</span> <span class="nx">product</span> <span class="o">=</span> <span class="k">await</span> <span class="nx">db</span><span class="p">.</span><span class="nf">query</span><span class="p">(</span> <span class="s2">`SELECT p.*, i.quantity FROM products p JOIN inventory i ON i.product_id = p.id WHERE p.id = $1`</span><span class="p">,</span> <span class="p">[</span><span class="nx">productId</span><span class="p">]</span> <span class="p">);</span> <span class="k">await</span> <span class="nx">redis</span><span class="p">.</span><span class="nf">setex</span><span class="p">(</span><span class="s2">`product:</span><span class="p">${</span><span class="nx">productId</span><span class="p">}</span><span class="s2">`</span><span class="p">,</span> <span class="mi">300</span><span class="p">,</span> <span class="nx">JSON</span><span class="p">.</span><span class="nf">stringify</span><span class="p">(</span><span class="nx">product</span><span class="p">.</span><span class="nx">rows</span><span class="p">[</span><span class="mi">0</span><span class="p">]));</span> <span class="k">return</span> <span class="nx">product</span><span class="p">.</span><span class="nx">rows</span><span class="p">[</span><span class="mi">0</span><span class="p">];</span> <span class="p">}</span> <span class="c1">// Right: cache everything except the inventory count</span> <span class="k">async</span> <span class="kd">function</span> <span class="nf">getProductPage</span><span class="p">(</span><span class="nx">productId</span><span class="p">)</span> <span class="p">{</span> <span class="kd">const</span> <span class="p">[</span><span class="nx">cachedProduct</span><span class="p">,</span> <span class="nx">liveInventory</span><span class="p">]</span> <span class="o">=</span> <span class="k">await</span> <span class="nb">Promise</span><span class="p">.</span><span class="nf">all</span><span class="p">([</span> <span class="nx">redis</span><span class="p">.</span><span class="nf">get</span><span class="p">(</span><span class="s2">`product:</span><span class="p">${</span><span class="nx">productId</span><span class="p">}</span><span class="s2">`</span><span class="p">),</span> <span class="nx">db</span><span class="p">.</span><span class="nf">query</span><span class="p">(</span><span class="s2">`SELECT quantity FROM inventory WHERE product_id = $1`</span><span class="p">,</span> <span class="p">[</span><span class="nx">productId</span><span class="p">])</span> <span class="p">]);</span> <span class="kd">const</span> <span class="nx">product</span> <span class="o">=</span> <span class="nx">cachedProduct</span> <span class="p">?</span> <span class="nx">JSON</span><span class="p">.</span><span class="nf">parse</span><span class="p">(</span><span class="nx">cachedProduct</span><span class="p">)</span> <span class="p">:</span> <span class="k">await</span> <span class="nf">fetchAndCacheProduct</span><span class="p">(</span><span class="nx">productId</span><span class="p">);</span> <span class="c1">// separate function</span> <span class="k">return</span> <span class="p">{</span> <span class="p">...</span><span class="nx">product</span><span class="p">,</span> <span class="na">quantity</span><span class="p">:</span> <span class="nx">liveInventory</span><span class="p">.</span><span class="nx">rows</span><span class="p">[</span><span class="mi">0</span><span class="p">].</span><span class="nx">quantity</span> <span class="p">};</span> <span class="p">}</span> </code></pre> </div> <p>Stale stock counts cost conversions and cause overselling. Read inventory directly from the database, optimised by index. The indexed <code>inventory</code> read takes 3ms — that is a fine trade for correctness.</p> <h2> Serverless for spiky, stateful for baseline </h2> <p>Not everything needs to survive sustained load. We split the workload by its traffic shape:</p> <p><strong>Kept on ECS (pre-warmed instances):</strong></p> <ul> <li>Checkout pipeline — latency-sensitive, stateful, must not cold-start</li> <li>Product search — sustained load, stateful Elasticsearch client</li> <li>Session API — low latency requirement, high call frequency</li> </ul> <p><strong>Moved to Lambda:</strong></p> <ul> <li>Email notifications — spiky (order confirmation bursts), fully async</li> <li>PDF receipt generation — CPU-intensive but async, nobody waits for it</li> <li>Inventory update event processing — event-driven, SQS-triggered </li> </ul> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>ECS (checkout, search, session) ← baseline traffic, pre-warmed Lambda (email, PDF, inventory) ← burst traffic, event-driven </code></pre> </div> <p>This cut our baseline EC2 spend by 35% while giving us effectively unlimited burst capacity for async workloads. The checkout service never competes for resources with a PDF generation spike.</p> <h2> Load test before you need to </h2> <p>Three weeks before Black Friday we ran k6 against a production-sized staging environment:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="c1">// k6 load test script (simplified)</span> <span class="k">import</span> <span class="nx">http</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">k6/http</span><span class="dl">'</span><span class="p">;</span> <span class="k">import</span> <span class="p">{</span> <span class="nx">check</span><span class="p">,</span> <span class="nx">sleep</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">k6</span><span class="dl">'</span><span class="p">;</span> <span class="k">export</span> <span class="kd">const</span> <span class="nx">options</span> <span class="o">=</span> <span class="p">{</span> <span class="na">stages</span><span class="p">:</span> <span class="p">[</span> <span class="p">{</span> <span class="na">duration</span><span class="p">:</span> <span class="dl">'</span><span class="s1">5m</span><span class="dl">'</span><span class="p">,</span> <span class="na">target</span><span class="p">:</span> <span class="mi">5000</span> <span class="p">},</span> <span class="c1">// ramp up</span> <span class="p">{</span> <span class="na">duration</span><span class="p">:</span> <span class="dl">'</span><span class="s1">10m</span><span class="dl">'</span><span class="p">,</span> <span class="na">target</span><span class="p">:</span> <span class="mi">15000</span> <span class="p">},</span> <span class="c1">// hold at 15k (above our target)</span> <span class="p">{</span> <span class="na">duration</span><span class="p">:</span> <span class="dl">'</span><span class="s1">5m</span><span class="dl">'</span><span class="p">,</span> <span class="na">target</span><span class="p">:</span> <span class="mi">0</span> <span class="p">},</span> <span class="c1">// ramp down</span> <span class="p">],</span> <span class="na">thresholds</span><span class="p">:</span> <span class="p">{</span> <span class="na">http_req_duration</span><span class="p">:</span> <span class="p">[</span><span class="dl">'</span><span class="s1">p95&lt;500</span><span class="dl">'</span><span class="p">],</span> <span class="c1">// 95th percentile under 500ms</span> <span class="na">http_req_failed</span><span class="p">:</span> <span class="p">[</span><span class="dl">'</span><span class="s1">rate&lt;0.01</span><span class="dl">'</span><span class="p">],</span> <span class="c1">// less than 1% errors</span> <span class="p">},</span> <span class="p">};</span> <span class="k">export</span> <span class="k">default</span> <span class="nf">function </span><span class="p">()</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">res</span> <span class="o">=</span> <span class="nx">http</span><span class="p">.</span><span class="nf">get</span><span class="p">(</span><span class="s2">`https://staging.yourdomain.com/products/</span><span class="p">${</span><span class="nf">randomProductId</span><span class="p">()}</span><span class="s2">`</span><span class="p">);</span> <span class="nf">check</span><span class="p">(</span><span class="nx">res</span><span class="p">,</span> <span class="p">{</span> <span class="dl">'</span><span class="s1">status 200</span><span class="dl">'</span><span class="p">:</span> <span class="nx">r</span> <span class="o">=&gt;</span> <span class="nx">r</span><span class="p">.</span><span class="nx">status</span> <span class="o">===</span> <span class="mi">200</span> <span class="p">});</span> <span class="nf">sleep</span><span class="p">(</span><span class="mi">1</span><span class="p">);</span> <span class="p">}</span> </code></pre> </div> <p>The test revealed one non-obvious problem: our CloudFront cache behaviour headers were wrong. Browsers were re-fetching product images on every page load because <code>Cache-Control: no-cache</code> had been set during development and never changed.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>Before fix: ~40% of image requests reached origin After fix: CDN cache hit rate → 94% </code></pre> </div> <p>One CloudFront distribution setting. Under actual Black Friday load, the CDN absorbed 94% of all traffic. Origin never saw the full load.</p> <h2> What actually happened on Black Friday </h2> <ul> <li>Peak concurrent users: ~12,000</li> <li>p95 response time on product pages: 210ms</li> <li>Error rate: 0.3%</li> <li>Database connections at peak: 148 (PgBouncer keeping us safely under 150)</li> <li>Zero rollbacks, zero incidents</li> </ul> <p>The database index changes, PgBouncer, and the CDN cache fix together did more work than any amount of horizontal scaling would have. We added zero new ECS tasks during the event.</p> <h2> The checklist before your next traffic event </h2> <ul> <li>[ ] Run <code>pg_stat_statements</code> analysis — fix any query over 50ms</li> <li>[ ] Deploy PgBouncer in transaction pooling mode between app and Postgres</li> <li>[ ] Audit Redis cache keys — evict anything that must be consistent</li> <li>[ ] Split traffic-shaped workloads: stateful/latency-sensitive on ECS, async/spiky on Lambda</li> <li>[ ] Run a k6 load test at 125% of your peak estimate, three weeks out</li> <li>[ ] Verify CDN cache headers with <code>curl -I</code> on key asset URLs</li> <li>[ ] Set a CloudWatch alarm on Postgres connection count (alert at 80% of <code>max_connections</code>)</li> </ul> <p>Originally published at <a href="https://shubhamkansal.com/blog/scaling-from-500-to-50000-concurrent-users" rel="noopener noreferrer">https://shubhamkansal.com/blog/scaling-from-500-to-50000-concurrent-users</a>. I'm Shubham Kansal, a freelance Full Stack &amp; DevOps engineer — more at <a href="https://shubhamkansal.com" rel="noopener noreferrer">https://shubhamkansal.com</a>.</p> aws postgres redis webdev Amazon SP-API Tutorial: Building Real Marketplace Automation (What No One Tells You) Shubham Kansal Wed, 10 Jun 2026 04:47:09 +0000 https://dev.to/shubhamkansal/amazon-sp-api-tutorial-building-real-marketplace-automation-what-no-one-tells-you-1alf https://dev.to/shubhamkansal/amazon-sp-api-tutorial-building-real-marketplace-automation-what-no-one-tells-you-1alf <p><strong>TL;DR:</strong> I built a platform syncing 50k+ SKUs across 5 Amazon marketplaces. Polling the Catalog API nearly killed it. Switching to event-driven inventory sync (Notifications API → SQS → Lambda) cut sync latency from 24 hours to under 15 minutes and dropped API call volume by 90%. Here's everything I wish I'd known going in.</p> <p>Amazon's Selling Partner API is powerful and genuinely complex. The official docs are long and the gotchas are buried. After building a production platform managing 50,000+ SKUs across 5 marketplaces, this is my ground-level guide — auth, rate limits, sync architecture, and a repricing engine that holds up under real load.</p> <h2> The auth story nobody explains clearly </h2> <p>SP-API does not use IAM credentials the way most AWS services do. The flow is:</p> <ol> <li>Register your app in Seller Central and get an LWA (Login with Amazon) <strong>client ID</strong> and <strong>client secret</strong>.</li> <li>Each seller authorises your app and hands you a <strong>refresh token</strong> scoped to their account.</li> <li>Your app exchanges the refresh token for a short-lived <strong>access token</strong> (valid 1 hour).</li> <li>You attach that access token to every API call via the <code>x-amz-access-token</code> header alongside a standard AWS Signature V4 header for your IAM role. </li> </ol> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="c1">// Minimal LWA token refresh (Node.js)</span> <span class="kd">const</span> <span class="nx">axios</span> <span class="o">=</span> <span class="nf">require</span><span class="p">(</span><span class="dl">'</span><span class="s1">axios</span><span class="dl">'</span><span class="p">);</span> <span class="k">async</span> <span class="kd">function</span> <span class="nf">refreshAccessToken</span><span class="p">(</span><span class="nx">refreshToken</span><span class="p">)</span> <span class="p">{</span> <span class="kd">const</span> <span class="p">{</span> <span class="nx">data</span> <span class="p">}</span> <span class="o">=</span> <span class="k">await</span> <span class="nx">axios</span><span class="p">.</span><span class="nf">post</span><span class="p">(</span><span class="dl">'</span><span class="s1">https://api.amazon.com/auth/o2/token</span><span class="dl">'</span><span class="p">,</span> <span class="p">{</span> <span class="na">grant_type</span><span class="p">:</span> <span class="dl">'</span><span class="s1">refresh_token</span><span class="dl">'</span><span class="p">,</span> <span class="na">refresh_token</span><span class="p">:</span> <span class="nx">refreshToken</span><span class="p">,</span> <span class="na">client_id</span><span class="p">:</span> <span class="nx">process</span><span class="p">.</span><span class="nx">env</span><span class="p">.</span><span class="nx">LWA_CLIENT_ID</span><span class="p">,</span> <span class="na">client_secret</span><span class="p">:</span> <span class="nx">process</span><span class="p">.</span><span class="nx">env</span><span class="p">.</span><span class="nx">LWA_CLIENT_SECRET</span><span class="p">,</span> <span class="p">});</span> <span class="k">return</span> <span class="p">{</span> <span class="na">accessToken</span><span class="p">:</span> <span class="nx">data</span><span class="p">.</span><span class="nx">access_token</span><span class="p">,</span> <span class="na">expiresAt</span><span class="p">:</span> <span class="nb">Date</span><span class="p">.</span><span class="nf">now</span><span class="p">()</span> <span class="o">+</span> <span class="p">(</span><span class="nx">data</span><span class="p">.</span><span class="nx">expires_in</span> <span class="o">-</span> <span class="mi">60</span><span class="p">)</span> <span class="o">*</span> <span class="mi">1000</span><span class="p">,</span> <span class="c1">// refresh 60s early</span> <span class="p">};</span> <span class="p">}</span> </code></pre> </div> <p><strong>Critical:</strong> refresh proactively, not reactively. If you retry a failed request on token expiry you burn your rate limit quota on the retry. Cache the token, check <code>expiresAt</code> before every call, and refresh in the background.</p> <h2> Rate limits are per-plan, per-endpoint </h2> <p>This trips almost everyone. SP-API is not a single rate limit bucket. Every operation has its own burst rate and restore rate:</p> <div class="table-wrapper-paragraph"><table> <thead> <tr> <th>Endpoint</th> <th>Burst</th> <th>Restore rate</th> </tr> </thead> <tbody> <tr> <td><code>getListingsItem</code></td> <td>5 req/s</td> <td>1 req/s</td> </tr> <tr> <td><code>getCompetitivePricing</code></td> <td>10 req/s</td> <td>0.1 req/s</td> </tr> <tr> <td><code>getInventorySummaries</code></td> <td>2 req/s</td> <td>2 req/s</td> </tr> <tr> <td><code>getOrders</code></td> <td>0.0167 req/s</td> <td>0.0167 req/s</td> </tr> </tbody> </table></div> <p>Model each endpoint's rate limit independently using a <strong>token bucket</strong>:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="kd">class</span> <span class="nc">TokenBucket</span> <span class="p">{</span> <span class="nf">constructor</span><span class="p">({</span> <span class="nx">burst</span><span class="p">,</span> <span class="nx">restoreRate</span> <span class="p">})</span> <span class="p">{</span> <span class="k">this</span><span class="p">.</span><span class="nx">tokens</span> <span class="o">=</span> <span class="nx">burst</span><span class="p">;</span> <span class="k">this</span><span class="p">.</span><span class="nx">burst</span> <span class="o">=</span> <span class="nx">burst</span><span class="p">;</span> <span class="k">this</span><span class="p">.</span><span class="nx">restoreRate</span> <span class="o">=</span> <span class="nx">restoreRate</span><span class="p">;</span> <span class="c1">// tokens per second</span> <span class="k">this</span><span class="p">.</span><span class="nx">lastRefill</span> <span class="o">=</span> <span class="nb">Date</span><span class="p">.</span><span class="nf">now</span><span class="p">();</span> <span class="p">}</span> <span class="nf">consume</span><span class="p">()</span> <span class="p">{</span> <span class="k">this</span><span class="p">.</span><span class="nf">_refill</span><span class="p">();</span> <span class="k">if </span><span class="p">(</span><span class="k">this</span><span class="p">.</span><span class="nx">tokens</span> <span class="o">&lt;</span> <span class="mi">1</span><span class="p">)</span> <span class="k">return</span> <span class="kc">false</span><span class="p">;</span> <span class="k">this</span><span class="p">.</span><span class="nx">tokens</span> <span class="o">-=</span> <span class="mi">1</span><span class="p">;</span> <span class="k">return</span> <span class="kc">true</span><span class="p">;</span> <span class="p">}</span> <span class="nf">_refill</span><span class="p">()</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">now</span> <span class="o">=</span> <span class="nb">Date</span><span class="p">.</span><span class="nf">now</span><span class="p">();</span> <span class="kd">const</span> <span class="nx">elapsed</span> <span class="o">=</span> <span class="p">(</span><span class="nx">now</span> <span class="o">-</span> <span class="k">this</span><span class="p">.</span><span class="nx">lastRefill</span><span class="p">)</span> <span class="o">/</span> <span class="mi">1000</span><span class="p">;</span> <span class="k">this</span><span class="p">.</span><span class="nx">tokens</span> <span class="o">=</span> <span class="nb">Math</span><span class="p">.</span><span class="nf">min</span><span class="p">(</span><span class="k">this</span><span class="p">.</span><span class="nx">burst</span><span class="p">,</span> <span class="k">this</span><span class="p">.</span><span class="nx">tokens</span> <span class="o">+</span> <span class="nx">elapsed</span> <span class="o">*</span> <span class="k">this</span><span class="p">.</span><span class="nx">restoreRate</span><span class="p">);</span> <span class="k">this</span><span class="p">.</span><span class="nx">lastRefill</span> <span class="o">=</span> <span class="nx">now</span><span class="p">;</span> <span class="p">}</span> <span class="p">}</span> <span class="c1">// One bucket per endpoint</span> <span class="kd">const</span> <span class="nx">buckets</span> <span class="o">=</span> <span class="p">{</span> <span class="na">getListingsItem</span><span class="p">:</span> <span class="k">new</span> <span class="nc">TokenBucket</span><span class="p">({</span> <span class="na">burst</span><span class="p">:</span> <span class="mi">5</span><span class="p">,</span> <span class="na">restoreRate</span><span class="p">:</span> <span class="mi">1</span> <span class="p">}),</span> <span class="na">getCompetitivePricing</span><span class="p">:</span> <span class="k">new</span> <span class="nc">TokenBucket</span><span class="p">({</span> <span class="na">burst</span><span class="p">:</span> <span class="mi">10</span><span class="p">,</span> <span class="na">restoreRate</span><span class="p">:</span> <span class="mf">0.1</span> <span class="p">}),</span> <span class="p">};</span> </code></pre> </div> <p>HTTP 429 counts against you — throttled calls still consume some quota on Amazon's side. Shape your traffic before it leaves your servers.</p> <h2> The sandbox is not production </h2> <p>This cost me two days. The SP-API sandbox:</p> <ul> <li>Uses static test data that doesn't reflect real catalogue behaviour</li> <li>Accepts certain call patterns that production will reject (e.g. bulk listing submissions with edge-case Unicode in titles)</li> <li>Does not simulate webhook delivery realistically</li> </ul> <p><strong>Always test auth flows, webhook delivery, and edge-case SKU data against a real production test seller account</strong> before going anywhere near live inventory. The sandbox is only useful for verifying your request/response shapes.</p> <h2> Inventory sync: don't poll, stream </h2> <p>Polling the Catalog Items API for 50,000 SKUs every 15 minutes is how you get throttled into oblivion. Our original architecture:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>Cron (every 15 min) → Lambda → SP-API Catalog Items (50k calls) → RDS </code></pre> </div> <p>This hit rate limits constantly, had a sync latency of up to 24 hours under throttling, and cost more than it should. The right architecture:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>SP-API Notifications API ↓ Amazon SQS ↓ Lambda (batch processor) ↓ RDS </code></pre> </div> <p>Step-by-step:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="c1">// 1. Create an SQS destination in SP-API (one-time setup)</span> <span class="kd">const</span> <span class="nx">spApiClient</span> <span class="o">=</span> <span class="k">new</span> <span class="nc">SellingPartnerAPI</span><span class="p">({</span> <span class="cm">/* config */</span> <span class="p">});</span> <span class="k">await</span> <span class="nx">spApiClient</span><span class="p">.</span><span class="nx">notifications</span><span class="p">.</span><span class="nf">createDestination</span><span class="p">({</span> <span class="na">name</span><span class="p">:</span> <span class="dl">'</span><span class="s1">inventory-updates-queue</span><span class="dl">'</span><span class="p">,</span> <span class="na">resourceSpecification</span><span class="p">:</span> <span class="p">{</span> <span class="na">sqs</span><span class="p">:</span> <span class="p">{</span> <span class="na">arn</span><span class="p">:</span> <span class="nx">process</span><span class="p">.</span><span class="nx">env</span><span class="p">.</span><span class="nx">SQS_ARN</span> <span class="p">}</span> <span class="p">}</span> <span class="p">});</span> <span class="c1">// 2. Subscribe to inventory events per marketplace</span> <span class="k">await</span> <span class="nx">spApiClient</span><span class="p">.</span><span class="nx">notifications</span><span class="p">.</span><span class="nf">createSubscription</span><span class="p">({</span> <span class="na">notificationType</span><span class="p">:</span> <span class="dl">'</span><span class="s1">ITEM_INVENTORY_UPDATE</span><span class="dl">'</span><span class="p">,</span> <span class="na">destinationId</span><span class="p">:</span> <span class="nx">destinationId</span><span class="p">,</span> <span class="na">payloadVersion</span><span class="p">:</span> <span class="dl">'</span><span class="s1">1.0</span><span class="dl">'</span><span class="p">,</span> <span class="p">});</span> <span class="c1">// 3. Lambda processes SQS batches — only changed SKUs</span> <span class="nx">exports</span><span class="p">.</span><span class="nx">handler</span> <span class="o">=</span> <span class="k">async </span><span class="p">(</span><span class="nx">event</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">updates</span> <span class="o">=</span> <span class="nx">event</span><span class="p">.</span><span class="nx">Records</span><span class="p">.</span><span class="nf">map</span><span class="p">(</span><span class="nx">r</span> <span class="o">=&gt;</span> <span class="nx">JSON</span><span class="p">.</span><span class="nf">parse</span><span class="p">(</span><span class="nx">r</span><span class="p">.</span><span class="nx">body</span><span class="p">));</span> <span class="k">for </span><span class="p">(</span><span class="kd">const</span> <span class="nx">update</span> <span class="k">of</span> <span class="nx">updates</span><span class="p">)</span> <span class="p">{</span> <span class="k">await</span> <span class="nx">db</span><span class="p">.</span><span class="nf">query</span><span class="p">(</span> <span class="s2">`UPDATE inventory SET quantity = $1, updated_at = NOW() WHERE seller_sku = $2 AND marketplace_id = $3`</span><span class="p">,</span> <span class="p">[</span><span class="nx">update</span><span class="p">.</span><span class="nx">quantity</span><span class="p">,</span> <span class="nx">update</span><span class="p">.</span><span class="nx">sellerSku</span><span class="p">,</span> <span class="nx">update</span><span class="p">.</span><span class="nx">marketplaceId</span><span class="p">]</span> <span class="p">);</span> <span class="p">}</span> <span class="p">};</span> </code></pre> </div> <p>Results after the migration:</p> <ul> <li>Sync latency: 24 hours → under 15 minutes</li> <li>API call volume: down 90%</li> <li>Lambda cost: down proportionally (you only process what changed)</li> </ul> <h2> The repricing engine </h2> <p>The Buy Box is determined by price, fulfilment method (FBA beats FBM in most categories), and seller health metrics — roughly in that order. A minimal repricing loop:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="c1">// EventBridge triggers this Lambda every 15 minutes</span> <span class="nx">exports</span><span class="p">.</span><span class="nx">repricerHandler</span> <span class="o">=</span> <span class="k">async </span><span class="p">()</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">activeSKUs</span> <span class="o">=</span> <span class="k">await</span> <span class="nx">db</span><span class="p">.</span><span class="nf">query</span><span class="p">(</span> <span class="s2">`SELECT seller_sku, floor_price, ceiling_price, current_price FROM listings WHERE repricing_enabled = true`</span> <span class="p">);</span> <span class="k">for </span><span class="p">(</span><span class="kd">const</span> <span class="nx">batch</span> <span class="k">of</span> <span class="nf">chunk</span><span class="p">(</span><span class="nx">activeSKUs</span><span class="p">.</span><span class="nx">rows</span><span class="p">,</span> <span class="mi">10</span><span class="p">))</span> <span class="p">{</span> <span class="c1">// 1. Fetch competitor prices</span> <span class="kd">const</span> <span class="nx">competitiveData</span> <span class="o">=</span> <span class="k">await</span> <span class="nx">spApi</span><span class="p">.</span><span class="nf">getCompetitivePricing</span><span class="p">({</span> <span class="na">marketplaceId</span><span class="p">:</span> <span class="nx">process</span><span class="p">.</span><span class="nx">env</span><span class="p">.</span><span class="nx">MARKETPLACE_ID</span><span class="p">,</span> <span class="na">asins</span><span class="p">:</span> <span class="nx">batch</span><span class="p">.</span><span class="nf">map</span><span class="p">(</span><span class="nx">s</span> <span class="o">=&gt;</span> <span class="nx">s</span><span class="p">.</span><span class="nx">asin</span><span class="p">),</span> <span class="p">});</span> <span class="k">for </span><span class="p">(</span><span class="kd">const</span> <span class="nx">sku</span> <span class="k">of</span> <span class="nx">batch</span><span class="p">)</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">lowestCompetitor</span> <span class="o">=</span> <span class="nf">getLowestOffer</span><span class="p">(</span><span class="nx">competitiveData</span><span class="p">,</span> <span class="nx">sku</span><span class="p">.</span><span class="nx">asin</span><span class="p">);</span> <span class="c1">// 2. Apply floor/ceiling rules</span> <span class="kd">const</span> <span class="nx">newPrice</span> <span class="o">=</span> <span class="nf">clamp</span><span class="p">(</span> <span class="nx">lowestCompetitor</span> <span class="o">-</span> <span class="mf">0.01</span><span class="p">,</span> <span class="c1">// beat by 1 cent</span> <span class="nx">sku</span><span class="p">.</span><span class="nx">floor_price</span><span class="p">,</span> <span class="nx">sku</span><span class="p">.</span><span class="nx">ceiling_price</span> <span class="p">);</span> <span class="k">if </span><span class="p">(</span><span class="nx">newPrice</span> <span class="o">===</span> <span class="nx">sku</span><span class="p">.</span><span class="nx">current_price</span><span class="p">)</span> <span class="k">continue</span><span class="p">;</span> <span class="c1">// no update needed</span> <span class="c1">// 3. Submit price change</span> <span class="k">await</span> <span class="nx">spApi</span><span class="p">.</span><span class="nf">patchListingsItem</span><span class="p">({</span> <span class="na">sellerId</span><span class="p">:</span> <span class="nx">process</span><span class="p">.</span><span class="nx">env</span><span class="p">.</span><span class="nx">SELLER_ID</span><span class="p">,</span> <span class="na">sku</span><span class="p">:</span> <span class="nx">sku</span><span class="p">.</span><span class="nx">seller_sku</span><span class="p">,</span> <span class="na">marketplaceIds</span><span class="p">:</span> <span class="p">[</span><span class="nx">process</span><span class="p">.</span><span class="nx">env</span><span class="p">.</span><span class="nx">MARKETPLACE_ID</span><span class="p">],</span> <span class="na">body</span><span class="p">:</span> <span class="p">{</span> <span class="na">productType</span><span class="p">:</span> <span class="dl">'</span><span class="s1">PRODUCT</span><span class="dl">'</span><span class="p">,</span> <span class="na">patches</span><span class="p">:</span> <span class="p">[{</span> <span class="na">op</span><span class="p">:</span> <span class="dl">'</span><span class="s1">replace</span><span class="dl">'</span><span class="p">,</span> <span class="na">path</span><span class="p">:</span> <span class="dl">'</span><span class="s1">/attributes/purchasable_offer</span><span class="dl">'</span><span class="p">,</span> <span class="na">value</span><span class="p">:</span> <span class="p">[{</span> <span class="na">our_price</span><span class="p">:</span> <span class="p">[{</span> <span class="na">schedule</span><span class="p">:</span> <span class="p">[{</span> <span class="na">value_with_tax</span><span class="p">:</span> <span class="nx">newPrice</span> <span class="p">}]</span> <span class="p">}]</span> <span class="p">}]</span> <span class="p">}]</span> <span class="p">}</span> <span class="p">});</span> <span class="p">}</span> <span class="p">}</span> <span class="p">};</span> </code></pre> </div> <p>Run repricing every 15 minutes. Faster than that and you risk pattern-matching Amazon's bot detection. Slower and you lose the Buy Box to competitors who reprice more aggressively.</p> <h2> Lessons in short </h2> <ul> <li>Build your LWA auth layer around proactive token refresh, not reactive retry</li> <li>Model every endpoint's rate limit as a separate token bucket</li> <li>Never use the sandbox as a proxy for production behaviour</li> <li>Subscribe to Notifications API events instead of polling — the API was designed for this</li> <li>Batch Listings API writes (max 10 per request); batch Competitive Pricing reads similarly</li> <li>Keep your repricer on a 15-minute EventBridge schedule; it's frequent enough without triggering fraud signals</li> </ul> <p>The SP-API ecosystem rewards patience and the event-driven mindset. Once the infrastructure is right, the business logic is the fun part.</p> <p>Originally published at <a href="https://shubhamkansal.com/blog/amazon-sp-api-marketplace-automation" rel="noopener noreferrer">https://shubhamkansal.com/blog/amazon-sp-api-marketplace-automation</a>. I'm Shubham Kansal, a freelance Full Stack &amp; DevOps engineer — more at <a href="https://shubhamkansal.com" rel="noopener noreferrer">https://shubhamkansal.com</a>.</p> aws node webdev javascript