Building Scalable APIs with Go: A Startup’s Guide to Not Overengineering
Every startup engineering conversation eventually arrives at: “But what if we need to scale?”
Here’s the uncomfortable truth: you won’t. Not in the way Twitter or Uber scaled. The infrastructure decisions that make sense for 100 million users are actively harmful at 1,000.
This post is about right-sizing your API architecture. We’ll do the math on when you actually need to worry about scale, why containerization beats serverless for most APIs, and how to build systems that are simple enough to debug at 3 AM but robust enough to grow with you.
The Scale Math Most Startups Ignore
Let’s start with numbers. Engineers love talking about “millions of requests,” but let’s break down what that actually means.
AWS Lambda limits (as of 2024):
- 1,000 concurrent executions (default, can request increase)
- 10,000 concurrent executions (typical raised limit)
- 15-minute maximum execution time
- ~$0.20 per million requests + compute time
GCP Cloud Run limits:
- 1,000 concurrent requests per instance (configurable)
- Up to 1,000 instances per service (default)
- No execution time limit for HTTP
- ~$0.40 per vCPU-hour + requests
Now let’s work backwards from “I need more than Lambda can handle”:
| Timeframe | Requests | Requests/sec | Reality Check |
|---|---|---|---|
| 1 month | 10M | ~4/sec | Seed stage SaaS |
| 1 month | 100M | ~40/sec | Growing startup |
| 1 month | 1B | ~400/sec | Series B+ |
| 1 month | 10B | ~4,000/sec | You have a scaling team |
With 10,000 concurrent Lambda executions and assuming 100ms average response time, you can handle:
10,000 concurrent × (1000ms / 100ms) = 100,000 requests/secondThat’s 8.6 billion requests per month.
Unless you’re building the next TikTok, Lambda can handle your traffic. The question isn’t whether serverless can scale—it’s whether it should be your architecture.
Decision Framework: Serverless vs Containers
The choice isn’t about scale—both can handle massive traffic. It’s about development workflow and cost structure.
Choose Lambda (or Cloud Functions, Azure Functions) when:
- ✅ Event-driven workloads (S3 triggers, queue consumers, webhooks)
- ✅ Infrequent, bursty traffic (cron jobs, admin tools)
- ✅ Very low traffic (<1M requests/month) where pay-per-invocation wins
- ✅ Simple, single-purpose functions (image resizing, data transformation)
- ✅ You’re already deep in AWS/GCP/Azure and want native integrations
Choose Containers (Cloud Run, ECS Fargate, ACA) when:
- ✅ User-facing APIs where latency consistency matters
- ✅ Long-running operations (>15 minutes, websockets, streaming)
- ✅ Local development is critical (same container runs everywhere)
- ✅ VPC/database access (containers handle this more cleanly)
- ✅ Predictable traffic (>5M requests/month) where reserved capacity is cheaper
The Hybrid Approach (Recommended)
Use both. Containers for your API. Serverless for background jobs.
Example:
- Containers: User-facing API endpoints
- Serverless: S3-triggered processing, scheduled cleanup jobs
- Serverless: Webhook handlers for Stripe, SendGrid, etc.
Each tool for its strength.
Why Containers Often Win for APIs
For user-facing APIs, managed containers (Cloud Run, ECS Fargate, Azure Container Apps) typically beat serverless functions. Here’s why:
Consistent Latency
Lambda cold starts range from 100ms (Go, Node.js) to several seconds (Java, C#, Python with heavy dependencies). For a CLI tool or batch job, this is fine. For an API where p99 latency matters, cold starts show up in your metrics and user complaints.
Managed containers keep instances warm by default. Your p99 latency stays consistent because you’re not paying the cold start tax on the first request after idle.
Typical latency profiles:
| Metric | Lambda (with cold starts) | Managed Containers |
|---|---|---|
| p50 | 50ms | 45ms |
| p95 | 150ms | 120ms |
| p99 | 800ms (cold start) | 180ms |
Local Development That Matches Production
A Dockerfile that works locally works in production:
# Local
docker run -p 8080:8080 -e DATABASE_URL=... my-service
# Production (Cloud Run)
gcloud run deploy my-service --image=gcr.io/project/my-service
# Production (ECS)
aws ecs update-service --service my-service --force-new-deployment
# Production (Azure)
az containerapp update --name my-service --image myregistry.azurecr.io/my-serviceLambda requires SAM CLI, LocalStack, or other emulators. The development environment never quite matches production. Containers are the same everywhere.
Easier Debugging
When something breaks in production:
- Pull the exact container image that’s running
- Run it locally with production environment variables
- Reproduce the issue
- Fix it
Lambda’s execution environment is opaque. You’re debugging through CloudWatch logs and educated guesses about what the runtime environment looks like.
No Vendor Lock-In
Containers are portable. Your Cloud Run service can move to ECS, Kubernetes, or a VPS with minimal changes. Lambda functions require rewriting for each provider’s API.
When Lambda Still Wins
Lambda is better for:
Event-driven workloads (S3 triggers, SQS consumers) Infrequent, bursty traffic (webhooks, cron jobs) Cost optimization at very low scale (<1M requests/month) Use the right tool for each job.
Choosing Your Managed Container Platform All three major cloud providers offer managed containers:
| Feature | Cloud Run (GCP) | ECS Fargate (AWS) | Azure Container Apps |
|---|---|---|---|
| Pricing | $0.40/vCPU-hour | $0.04/vCPU-hour + $0.004/GB-hour | $0.40/vCPU-hour |
| Free tier | 2M requests/month | None | 180,000 vCPU-seconds/month |
| Max timeout | 60 min (HTTP), unlimited (jobs) | No limit | 30 min |
| Autoscaling | 0 to 1000 instances | 0 to many (configure) | 0 to 30 instances |
| Cold starts | Minimal (keeps warm) | Minimal | Minimal |
| Complexity | Lowest | Medium (task definitions) | Low-medium |
Decision factors:
Choose Cloud Run if:
- You’re on GCP or starting fresh
- You want the simplest deployment experience
- You value scale-to-zero with minimal cold starts
Choose ECS Fargate if:
- You’re already on AWS
- You need tight integration with AWS services (RDS, S3, etc.)
- You want more control over networking/security
Choose Azure Container Apps if:
- You’re on Azure or use .NET heavily
- You want Kubernetes-like features without Kubernetes
- You need DAPR integration
All three are good choices. Pick based on your existing cloud provider, not container platform features.
The Simplest Architecture That Works
Here’s what a simple, scalable API architecture looks like:
┌─────────────────┐
│ Load Balancer │
│ (Cloud LB/ALB) │
└────────┬────────┘
│
┌───────────────────┼───────────────────┐
│ │ │
▼ ▼ ▼
┌─────────────────┐ ┌─────────────────┐ ┌─────────────────┐
│ Auth Service │ │ Billing Service │ │ API Service │
│ (Container) │ │ (Container) │ │ (Container) │
└────────┬────────┘ └────────┬────────┘ └────────┬────────┘
│ │ │
└───────────────────┼───────────────────┘
│
┌────────▼────────┐
│ Database │
│ (Managed SQL) │
└─────────────────┘That’s it. No Kubernetes (yet). No service mesh. No API gateway. No message queues for synchronous operations.
Each service:
- Is a single Go binary in a Docker container
- Connects directly to the database
- Handles its own authentication via shared middleware
- Scales independently based on CPU/memory
- Start here. Add complexity when metrics force you to, not before.
What You Probably Don’t Need
Kubernetes. Managed container platforms (Cloud Run, ECS Fargate, Azure Container Apps) give you orchestration, autoscaling, and load balancing without operational overhead. When you need K8s features (custom networking, stateful workloads, multi-cloud), you’ll know. Until then, skip it.
API Gateway. Managed containers provide HTTPS endpoints, SSL termination, and basic routing. Authentication can live in shared middleware. Rate limiting can live in middleware or at the load balancer. Add Kong or AWS API Gateway when you need centralized policy management—not before.
Service Mesh. Your services can talk via HTTP. Istio adds observability, traffic management, and security—but also complexity. Start with simple HTTP calls and structured logging. Add a mesh when debugging distributed systems becomes painful (typically 10+ services, 5+ engineers).
Event Bus for Sync Operations. If Service A needs data from Service B right now, make an HTTP call. Don’t wrap everything in Pub/Sub or Kafka. Use event buses for async operations (notifications, analytics, fan-out), not request/response.
Go Patterns That Actually Matter
Forget the “high-throughput” patterns you read about for building the next trading platform. Here’s what actually matters for startup APIs:
Bounded Concurrency
The one pattern worth implementing properly: don’t spawn unbounded goroutines.
// Bad: unbounded goroutine creation
func ProcessRequests(requests <-chan Request) {
for req := range requests {
go handleRequest(req) // This will kill you under load
}
}
// Good: worker pool with bounded concurrency
func ProcessWithPool(requests <-chan Request, numWorkers int) {
for i := 0; i < numWorkers; i++ {
go func() {
for req := range requests {
handleRequest(req)
}
}()
}
}For most APIs, you won’t need this. HTTP servers handle concurrency for you. But for background processing, batch jobs, or fan-out operations, bounded concurrency prevents OOM kills.
Timeouts on Everything
Every external call needs a timeout. Every database query. Every HTTP request. No exceptions.
ctx, cancel := context.WithTimeout(ctx, 5*time.Second)
defer cancel()
result, err := db.QueryContext(ctx, query)
if err != nil {
if errors.Is(err, context.DeadlineExceeded) {
return fmt.Errorf("query timeout: %w", err)
}
return err
}The default timeout should be aggressive. 5 seconds for HTTP calls. 10 seconds for database queries. If you need longer, make it explicit and justify it.
Circuit Breakers for External Services
When calling third-party APIs (Stripe, SendGrid, external services), implement circuit breakers:
type CircuitBreaker struct {
failures int
maxFailures int
resetAfter time.Duration
lastFailure time.Time
mu sync.Mutex
}
func (cb *CircuitBreaker) Execute(fn func() error) error {
cb.mu.Lock()
if cb.failures >= cb.maxFailures {
if time.Since(cb.lastFailure) < cb.resetAfter {
cb.mu.Unlock()
return ErrCircuitOpen
}
cb.failures = 0 // Reset after timeout
}
cb.mu.Unlock()
err := fn()
if err != nil {
cb.mu.Lock()
cb.failures++
cb.lastFailure = time.Now()
cb.mu.Unlock()
}
return err
}When Stripe has an outage, you don’t want every request in your system waiting 30 seconds for a timeout. Circuit breakers fail fast after detecting problems.
Structured Logging from Day One
Not a performance pattern, but critical for debugging:
logger.Info("request processed",
"user_id", userID,
"duration_ms", duration.Milliseconds(),
"status", status,
)Use slog (Go 1.21+) or zerolog. JSON output. Structured fields. When you’re debugging at 3 AM, grep and jq are your friends.
What Actually Causes Scale Problems
In my experience, scale problems at startups are rarely about request volume. They’re about:
N+1 Queries
Your API fetches a list of 100 users, then makes 100 database queries to get their profiles. This is 101 queries instead of 2.
// Bad: N+1
users, _ := db.Query("SELECT id FROM users LIMIT 100")
for users.Next() {
var id int
users.Scan(&id)
profile, _ := db.Query("SELECT * FROM profiles WHERE user_id = ?", id)
// ...
}
// Good: Single query with JOIN or IN clause
query := `
SELECT u.id, p.*
FROM users u
LEFT JOIN profiles p ON p.user_id = u.id
LIMIT 100
`
rows, _ := db.Query(query)N+1 queries are the #1 cause of slow APIs I’ve seen. Use query logging in development to catch them.
Unbounded Result Sets
// Bad: fetching all records
users, _ := db.Query("SELECT * FROM users")
// Good: always paginate
users, _ := db.Query("SELECT * FROM users LIMIT 100 OFFSET ?", offset)
If a table can grow unboundedly, every query needs a LIMIT.
Missing Indexes
Your query is slow? Check EXPLAIN ANALYZE. Add an index. This solves 90% of database performance issues.
-- Check query plan
EXPLAIN ANALYZE SELECT * FROM orders WHERE user_id = 123;
-- Add index if missing
CREATE INDEX idx_orders_user_id ON orders(user_id);Synchronous External Calls
Don’t call Stripe, send emails, or hit external APIs in the request path if you can avoid it. Queue the work, return immediately, process async.
// Bad: synchronous email in request handler
func HandleSignup(w http.ResponseWriter, r *http.Request) {
user := createUser(r)
sendWelcomeEmail(user) // This blocks the response
json.NewEncoder(w).Encode(user)
}
// Good: async via queue
func HandleSignup(w http.ResponseWriter, r *http.Request) {
user := createUser(r)
queue.Publish("send-welcome-email", user.ID)
json.NewEncoder(w).Encode(user)
}Measuring Success: Metrics That Matter
Track these four metrics. Ignore everything else until they tell you to optimize:
1. Request Latency (p50, p95, p99)
// Middleware to track latency
func LatencyMiddleware(next http.Handler) http.Handler {
return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
start := time.Now()
next.ServeHTTP(w, r)
duration := time.Since(start)
logger.Info("request",
"path", r.URL.Path,
"method", r.Method,
"duration_ms", duration.Milliseconds(),
)
})
}What to watch:
- p50 < 100ms: Good
- p95 < 200ms: Good
- p99 < 500ms: Acceptable for most APIs
- p99 > 1000ms: Investigate
2. Error Rate
5xx responses as a percentage of total requests.
Acceptable thresholds:
- <0.1%: Excellent
- 0.1-1%: Good
- 1-5%: Needs attention
- 5%: On fire
3. Database Query Time
Slow queries kill APIs. Log all queries over 100ms:
func SlowQueryLogger(ctx context.Context, query string, duration time.Duration) {
if duration > 100*time.Millisecond {
logger.Warn("slow query",
"query", query,
"duration_ms", duration.Milliseconds(),
)
}
}4. Saturation (CPU/Memory)
CPU > 80%: You’re at capacity, need to scale Memory > 80%: Check for leaks
When to add more metrics:
- You have 5+ services: Add distributed tracing
- You have 10+ engineers: Add service-level SLOs
- You have paying customers: Add business metrics
Start simple. Add complexity when the simple metrics stop being enough.
The Migration Path: When to Evolve
You don’t have to choose your architecture forever. Here’s the typical evolution:
Phase 1: Start with Serverless (Month 1-6)
- Deploy Lambda functions (or equivalent)
- No container knowledge required
- Pay-per-invocation pricing
- Fast time to market
Move to Phase 2 when:
- Cold starts affect user experience (p95 > 500ms)
- Local development is slowing your team
- You need VPC/database access
- You’re processing >5M requests/month
Phase 2: Migrate to Managed Containers (Month 6-24+)**
- Containerize your services
- Deploy to Cloud Run/Fargate/ACA
- Same autoscaling, lower operational burden than K8s
Most startups stay here for years
Move to Phase 3 when:
- You have 5+ engineers dedicated to platform
- You need multi-region active-active
- You need custom networking/service mesh
- You’re running 20+ services
Phase 3: Kubernetes (Year 2+)
- Move to GKE, EKS, or AKS
- Full control, full complexity
- Requires dedicated platform team
Most startups stay in Phase 2 for years. That’s success, not failure. Kubernetes is not a goal—it’s a tool for specific problems.
The Anti-Patterns to Avoid
Don’t Prematurely Distribute
If your services are in the same monorepo, deploying to the same cloud, and owned by the same team—consider whether they need to be separate services at all.
A single service with good module boundaries is easier to develop, test, and debug than three services that always deploy together.
Don’t Add Caching Before You Need It
Redis adds operational complexity. Before adding a cache:
- Check your database queries (indexes? N+1?)
- Check your database connection pooling
- Profile actual request latency
Caching hides problems. Fix the root cause first.
Don’t Use Kubernetes Until You Have a Platform Team
Kubernetes is powerful. Kubernetes is also a full-time job to operate. Cloud Run, ECS, and similar managed services give you 80% of the benefits with 10% of the complexity.
When you have dedicated platform engineers and multi-region requirements, revisit this decision.
Common Mistakes: A Checklist
Before you ship, audit your API for these common issues:
Security
- All external calls have timeouts
- Database queries are parameterized (no SQL injection)
- Secrets are in environment variables, not code
- HTTPS only (no HTTP endpoints)
- Authentication on every endpoint except health checks
Performance
- All list endpoints have pagination (LIMIT clause)
- Database has indexes for common queries
- N+1 queries are eliminated (use JOINs or batching)
- External calls happen async when possible
- Circuit breakers on third-party services
Reliability
- Health check endpoint (/health) for load balancer
- Graceful shutdown (finish in-flight requests)
- Structured logging with request IDs
- Error responses include correlation IDs
- Database connection pooling configured
Operations
- Can run entire stack locally with docker-compose
- README has setup instructions
- Environment variables documented
- Deployment is automated (no manual steps)
- Rollback process is documented
If you can’t check all these boxes, you’re not ready for production.
Conclusion: Build for Today, Prepare for Tomorrow
The goal isn’t to handle Twitter-scale traffic. It’s to:
- Ship fast - Simple architectures have fewer moving parts
- Debug easily - When things break at 3 AM, can you fix it?
- Grow incrementally - Can you handle 10x without rewriting?
The architecture that works for most startups:
- Managed containers (Cloud Run, ECS Fargate, Azure Container Apps)
- Managed database (Cloud SQL, RDS, Azure Database)
- Structured logging + basic metrics (p50/p95/p99, error rate)
- Automated deployment
When to evolve:
- Phase 1 → 2: Cold starts hurt user experience, local dev is painful
- Phase 2 → 3: 20+ services, 5+ platform engineers, multi-region requirements
Most startups stay in Phase 2 for years. That’s success, not failure.
Your pre-launch checklist:
- Can you run the full stack locally?
- Do you have health checks and graceful shutdown?
- Are database queries indexed and paginated?
- Do you have timeouts on all external calls?
- Can you deploy with a single command?
If yes, you’re ready. Ship it. Monitor it. Scale when the metrics tell you to, not when your ego does.
Further reading:
- Deployment automation with Pilum (open-source tool for orchestrating multi-service deployments)
- The Twelve-Factor App
- Golang Best Practices