A Flash Sale System allows a large number of users to purchase limited-stock items in a short period, often leading to high traffic and race conditions. The system must handle concurrency, scalability, and fairness effectively.
Functional:
-
Product Management:
- Admins can configure products for the flash sale with details like stock, price, and sale start time.
-
User Participation:
- Users can view products and attempt to purchase during the sale.
-
Purchase Handling:
- Ensure fair order allocation based on “first-come-first-served” principles.
- Deduct stock atomically for successful purchases.
- 1 inventory should be sold to only 1 user.
-
Notifications:
- Notify users about successful or failed purchases.
-
Sale Summary:
- Generate a summary of products sold and remaining stock.
NFR:
High availability: System should be available High concurrency: millions of request concurrently Consistency: Ensure no stock is oversold. Use locking mechanisms (e.g., Redis distributed locks) to prevent overselling of stock. Latency: quick responsiveness Fairless : Queue purchase requests to ensure fair processing and avoid overloading the system.
Frontend:
- Keep less web elements on webpage to reduce loading time
- Use pagination to load fast inventory and fetch the next slot as the user scrolls
- use CDN to cache static content
- Use Captcha integration before placing an order to prevent robots
Risk Control at NGINX and API Gateway:
- Have a system check in place to deduct and prevent DDos Attack
- A rate limit should be placed on the number of request from single IP.
- Suspicious IPs should be banned to access flash sale
Over Sale prevention
- Lock inventory once user place an order
- decrement inventory count once payment for an order is successfull.
- Use Redis to add distributed locking
Use of Cache
- Keep flash sale inventory in Cache, and update DB in batch separately
Backend Services
- Availability:
- Use isolated instances for flash sale (If the flash sale instances go down, other normal instances will not be affected).
- Use isolated cache for flash sale (If the flash sale cache goes down, other normal cache will not be affected).
HLD Components
-
API Gateway NGINX:
- Acts as the entry point for all user requests.
- Ensures authentication and rate-limiting.
- Add Circuit Break Hystrix to stop accepting request after certain number of failures to stop catastrophic.
-
Load Balancer NGINX:
- Distributes incoming traffic across multiple app servers.
-
Application Servers:
- Handle user requests (order placement, stock checks).
- Interact with the product catalog and order service.
-
Cache Layer (Redis):
- Stores product inventory for fast access.
- Implements distributed locks for atomic stock deduction.
-
Database:
- Stores persistent product, order, and user data.
- Maintains transaction logs for audit and recovery.
-
Notification Service:
- Sends real-time notifications for order outcomes.
-
Message Queue:
- Queues order requests to ensure sequential processing and avoid overload.
-
Analytics System:
- Tracks user behaviour and generates sales reports.
How RazorPay was able to handle 1500 RPS food flash sale during IPL
-
Keeping ratelimiter to avoid server failures. Used Nginx rate limiter and deployed in
Side car deployment pattern. -
Used connection pooling for Mysql DB using proxySql(also deployed in side car), because there tenants application was build in PHP, which does not support connection pooling due to its process execution model. proxySql handled the connection pooling, query response caching .
-
Avoided Thundered herd problem Used ProxySQL to throttle tenants issuing expensive database queries.
-
Load testing used Graphana K6 load testing tool
-
Auto Scaling Takes 4 min to deploy and run new containner, they prewarm their infrastructure and used baked containers for quick deployments.
-
Smart Routing Used LLM models to decide traffic routing to most operational External gateways to avoid payment failures and retries.
-
Fly Wheel effect Monitor→ find issues → fix → repeat.