%20rotate(128)%20scale(520%20420)%22%3E%3Cstop%20stop-color%3D%22%234f46e5%22%20stop-opacity%3D%220.7%22%2F%3E%3Cstop%20offset%3D%221%22%20stop-color%3D%22%234f46e5%22%20stop-opacity%3D%220%22%2F%3E%3C%2FradialGradient%3E%3C%2Fdefs%3E%3Crect%20width%3D%221600%22%20height%3D%22900%22%20rx%3D%2248%22%20fill%3D%22url(%23bg)%22%2F%3E%3Crect%20width%3D%221600%22%20height%3D%22900%22%20rx%3D%2248%22%20fill%3D%22url(%23glow)%22%2F%3E%3Crect%20x%3D%2288%22%20y%3D%2288%22%20width%3D%221424%22%20height%3D%22724%22%20rx%3D%2236%22%20fill%3D%22rgba(15%2C23%2C42%2C0.78)%22%20stroke%3D%22rgba(248%2C250%2C252%2C0.12)%22%2F%3E%3Crect%20x%3D%2288%22%20y%3D%2288%22%20width%3D%221424%22%20height%3D%2216%22%20fill%3D%22url(%23accent)%22%2F%3E%3Ctext%20x%3D%2288%22%20y%3D%22176%22%20fill%3D%22rgba(248%2C250%2C252%2C0.72)%22%20font-family%3D%22JetBrains%20Mono%2C%20Arial%2C%20sans-serif%22%20font-size%3D%2228%22%20font-weight%3D%22700%22%20letter-spacing%3D%226%22%3EAZURE%20ARCHITECTURE%3C%2Ftext%3E%3Ctext%20x%3D%2288%22%20y%3D%22366%22%20fill%3D%22%23f8fafc%22%20font-family%3D%22JetBrains%20Mono%2C%20Arial%2C%20sans-serif%22%20font-size%3D%2268%22%20font-weight%3D%22700%22%3EMonolith%20to%3C%2Ftext%3E%3Ctext%20x%3D%2288%22%20y%3D%22452%22%20fill%3D%22%23f8fafc%22%20font-family%3D%22JetBrains%20Mono%2C%20Arial%2C%20sans-serif%22%20font-size%3D%2268%22%20font-weight%3D%22700%22%3EMicroservices%3C%2Ftext%3E%3Ctext%20x%3D%2288%22%20y%3D%22770%22%20fill%3D%22rgba(248%2C250%2C252%2C0.52)%22%20font-family%3D%22JetBrains%20Mono%2C%20Arial%2C%20sans-serif%22%20font-size%3D%2226%22%20letter-spacing%3D%223%22%3Eabhinavyadav.dev%20%2F%20blog%3C%2Ftext%3E%3C%2Fsvg%3E)
Why the Monolith Had to Go
Every engineering org reaches the same inflection point: the codebase that once shipped features in a weekend now requires a war room to deploy. That was the reality at Foetron when we started planning the migration of a multi-tenant SaaS platform from a single-process Django/PostgreSQL monolith to a load-balanced microservices topology on Azure.
This post is the playbook we wish we'd had.
The Decision Framework: What Gets Split First?
The cardinal rule of microservice decomposition: split onbusiness capability, not on technical layer.
The wrong approach is to extract "the database layer" or "the API layer." The right approach is to draw boundaries around things that change for different reasons.
We used the following decision matrix:
| Service Candidate | Change Frequency | Team Ownership | Data Coupling | Decision |
|---|---|---|---|---|
| Auth & Identity | Low | Platform | Isolated | ✅ Split early |
| Billing & Subscriptions | Medium | Finance | Isolated | ✅ Split early |
| Core VM Provisioning | High | Engineering | Deeply coupled | ⚠️ Split last |
| Reporting & Analytics | Medium | Data | Read-heavy | ✅ Split early |
| Notifications | Low | Platform | Isolated | ✅ Split early |
The provisioning engine was the most tempting to split (it was the biggest bottleneck) but it was also the most coupled to shared state. We left it for last and built the strangler fig around it.
Database Workload vs. Compute Node Splitting
This is where most migrations go wrong. Teams focus on containerizing application code but leave a single monolithic PostgreSQL instance underneath — and it becomes the new bottleneck.
Splitting Compute First (The Strangler Fig)
We routed traffic through an Azure Application Gateway and incrementally extracted services behind it:
Each extracted service got its own Azure Container Apps environment with autoscale rules. The monolith kept running, handling everything not yet migrated.
Splitting the Database Workload
Once compute was separated, we tackled data. The pattern we used:
Phase 1 — Read replicas for analytics
Azure Database for PostgreSQL Flexible Server supports read replicas natively. We pointed the reporting service at the read replica immediately — zero code change on the monolith, instant load reduction.
Phase 2 — Schema-per-service with logical isolation
Each new service got its own schema within the same Flexible Server instance first. This reduced operational overhead while providing logical isolation.
Phase 3 — Physical database separation for high-churn services
The billing service was moved to its own Flexible Server instance. Reasons: PCI compliance requirements, independent backup/restore, and significantly different IOPS profile.
Don't rush Phase 3. Physical database separation introduces distributed transaction complexity. Make sure your services are truly decoupled before splitting storage.
The Load Balancer Configuration That Tripped Us Up
Azure Application Gateway uses backend health probes. Every service needs a endpoint, or the gateway will mark it unhealthy and drop traffic. Simple in theory, painful to retrofit across 6 services simultaneously.
Traffic Migration: The 10/50/100 Rule
We never cut over 100% of traffic at once. The pattern:
- 10% to new service via Application Gateway weighted routing — monitor error rates for 48 hours
- 50% if error rate is within 0.1% of baseline
- 100% after 7 days at 50% with no regressions
- Decommission the monolith handler only after 30 days at 100%
Results
After six months of incremental migration:
- Deploy frequency: from 1x/week to 15+ deploys/day
- Mean time to recovery: from 45 minutes to 4 minutes
- Database CPU at peak: from 94% (monolith PostgreSQL) to 38% average across distributed instances
- P99 API latency: improved 40% due to right-sized compute per service
The migration is never "done" — but the strangler fig pattern meant production was never at risk. Users didn't notice a thing.