Oh yes. Forgot to cover that. Had that point in mind. Thanks for adding. Pinning your comment.

Just an example. Could have gone for any partitioned db.

IMHO Cassandra is optimized for writes. And our chat service will be write heavy because when any new message is created it will be sent to receiver over websockets or SSE or any other tech and parallelly it will be written to DB. So reads are actually not happening on chat messages in DB.

A separate DB server per service.

@@AsliEngineering yeah but let say we have 100 gb data spread over 10 collection equally so when we follow database per service for our 10 services is it 10 gb of data or we all service still has all data.

Cross node ref keys are expensive to implement and it is something that application logic needs to handle when databases do not offer it out of the box. Hence in microservices setup people do not implement them.

@AsliEngineering I am continuing by adding an auth guard at my api gateway will that be considered as good idea? I considered about adding something to communicate between my other service and Auth one to validate user id but I felt this may turn out to increase latency

@@jabedzaman yes it will shoot up the latency. Evaluate if you really need this check. What if you don't have it. Would this be a problem.

@AsliEngineering I am making an cloud suite sort of thing I just wanted to assure that my upload table doesn't have unnecessary record for user which doesn't exists... like in general it should not be but just trying to avoid in case if there turns out to be some vulnerability... just implementing an auth guard (kinda a middleware) in my api gateway so only valid authenticated user can use other service... hopefully this works out right?

@@jabedzaman yes. It would work.

Encryption at rest is done by DB

Cloud services like amazon RDS offers encryption at rest out of the box