Blue-Green and Canary Deployments

Why Deployment Strategies Matter for QA #

How software is deployed directly affects how it should be tested. A big-bang deployment (replacing everything at once) requires different QA approaches than a gradual canary rollout. Understanding deployment strategies helps QA engineers design appropriate validation steps and rollback procedures.

Deployment Strategies Overview #

Big-Bang Deployment #

Replace the old version entirely with the new version at once. Simple but risky — if something goes wrong, all users are affected immediately.

QA approach: Thorough pre-deployment testing. Comprehensive staging validation. Immediate smoke tests post-deployment.

Blue-Green Deployment #

Maintain two identical production environments:

• Blue: Currently serving traffic (old version)
• Green: New version deployed and tested

After green is validated, traffic switches from blue to green instantly. Blue becomes the rollback target.

Before switch:     Users → [Load Balancer] → Blue (v1.0)
                                              Green (v1.1) ← QA validates

After switch:      Users → [Load Balancer] → Green (v1.1)
                                              Blue (v1.0) ← Rollback ready

QA validation steps:

1. Deploy new version to green environment
2. Run full smoke test suite against green
3. Verify database migrations work correctly
4. Check health endpoints and monitoring
5. Switch traffic to green
6. Run production smoke tests immediately
7. Monitor metrics for 15-30 minutes
8. Keep blue running for fast rollback (typically 24-48 hours)

Canary Deployment #

Route a small percentage of traffic to the new version. Gradually increase if metrics are healthy.

Phase 1:  95% → v1.0    5% → v1.1   (canary)
Phase 2:  75% → v1.0   25% → v1.1
Phase 3:  50% → v1.0   50% → v1.1
Phase 4:   0% → v1.0  100% → v1.1   (full rollout)

QA validation at each phase:

• Error rates (compare canary vs. baseline)
• Response times (P50, P95, P99)
• Business metrics (conversion rates, user engagement)
• Infrastructure metrics (CPU, memory, disk)

Rolling Deployment #

Update instances one at a time (or in batches). At any point, some instances run the old version and some run the new version.

QA concerns:

• Users may hit different versions within the same session
• API version compatibility between old and new instances
• Database schema must be compatible with both versions simultaneously

Shadow Deployment #

Deploy the new version alongside production but do not serve real traffic. Instead, mirror (copy) production traffic to the shadow environment and compare responses.

QA validation:

• Compare response bodies between production and shadow
• Check for errors in shadow that do not occur in production
• Validate performance characteristics
• Shadow results do not affect users

Rollback Procedures #

Rollback Criteria #

Define clear, measurable criteria before deployment:

Rollback Testing #

Critical: Test the rollback procedure itself. A rollback that has never been tested is not a rollback plan — it is a hope.

1. Deploy new version to staging
2. Simulate a failure scenario
3. Execute the rollback procedure
4. Verify the old version is serving correctly
5. Verify no data was lost or corrupted during rollback

Exercise: Design Deployment Validation #

Your team is switching from big-bang deployments to canary. Design the validation plan for a 4-phase canary rollout of a payment processing update.

Key Takeaways #

1. Choose deployment strategy based on risk tolerance — critical systems need canary; internal tools can use blue-green
2. Define rollback criteria before deploying — not during a production incident
3. Test the rollback itself — an untested rollback is not a plan
4. Monitor actively during rollout — do not deploy and walk away
5. Canary deployments are QA’s best friend — they limit blast radius and provide real production feedback