Software as a product

Cloud & SaaS Architecture

The cloud changes the unit of architecture from servers to managed services and events, and SaaS changes the unit of value to a multi-tenant product. This track covers serverless-first design and the discipline of multi-tenancy — isolation, control planes, onboarding, tiering and metering.

Start the journey →

Your cloud & SaaS progress

Mark a topic “learned” on its page and watch the bars fill.

Skill map

Learned nodes light up — the glowing one is your next step. Click any node to jump in.

Serverless

What Is Serverless? Serverless-First Design Event-Driven Serverless Patterns The Well-Architected Lens Testing Serverless Observability and Cost

Multi-Tenant SaaS

SaaS Foundations Control Plane vs. Application Plane Tenant Isolation Models Tenant Onboarding and Identity Tiering, Metering, and Noisy Neighbors

Serverless

Architecting on managed services — functions and events, serverless-first design, the well-architected lens, testing, observability and cost.

1 · Start here What Is Serverless?

Serverless is not just FaaS — it is an ecosystem of fully managed services you compose rather than program, billed per use and scaled to zero.

✦ Complete · ⏱ 4 min 2 · Beginner Serverless-First Design

Serverless-first means choosing serverless as the best-fit first option — reached through a sequence of X-first disciplines, not as a dogmatic must.

✦ Complete · ⏱ 4 min 3 · Intermediate Event-Driven Serverless Patterns

Compose serverless systems from named patterns — storage-first, functionless integration, gatekeeper bus, choreography vs. orchestration — over an event-driven backbone.

✦ Complete · ⏱ 5 min 4 · Intermediate The Well-Architected Lens

The AWS Well-Architected Framework's six pillars — plus the Serverless Lens — give a shared vocabulary for reviewing trade-offs across security, cost, reliability, and sustainability.

✦ Complete · ⏱ 4 min 5 · Intermediate Testing Serverless

Serverless needs a novel test approach: don't re-couple decoupled services — aim for maximum confidence in minimum time across business logic, integration points, and data contracts.

✦ Complete · ⏱ 4 min 6 · Advanced Observability and Cost

Operating pay-per-use systems: infer internal state from metrics, logs, and traces, and treat the monthly bill as a direct measure of architectural efficiency.

✦ Complete · ⏱ 5 min

Multi-Tenant SaaS

Building software as a product — tenant isolation models, the control plane vs application plane, onboarding, tiering, metering and noisy neighbors.

7 · Beginner SaaS Foundations

SaaS is a business model first — a unified, single-version service experience for tenants — and multi-tenancy means collective management, not necessarily shared infrastructure.

✦ Complete · ⏱ 4 min 8 · Intermediate Control Plane vs. Application Plane

Every SaaS environment divides into a control plane that orchestrates all tenants and an application plane where the multi-tenant product features live.

✦ Complete · ⏱ 5 min 9 · Advanced Tenant Isolation Models

Silo, pool, and bridge express how resources map to tenants — but deployment is not isolation; true isolation needs a separate gatekeeper scoped by tenant context.

✦ Complete · ⏱ 5 min 10 · Intermediate Tenant Onboarding and Identity

Start with onboarding and identity: a fully automated front door that binds every user to a tenant and carries tenant context downstream as a JWT.

✦ Complete · ⏱ 5 min 11 · Advanced Tiering, Metering, and Noisy Neighbors

Tiers turn multi-tenant levers — deployment, throughput, isolation — into priced value boundaries, while metering and throttling tame the noisy-neighbor problem.

✦ Complete · ⏱ 5 min

☁️ In SaaS, the tenant is the architecture

Multi-tenancy isn’t a feature you add later — it shapes data, identity, deployment, billing and operations from day one. Decide your isolation model (silo, pool, or bridge) per tier, separate the control plane from the application plane, and make every request tenant-aware. Retrofitting tenancy is one of the hardest migrations there is.