Q: How does a soft hold (inventory reservation) work in checkout?

A soft hold reserves inventory between checkout initiation and payment completion — preventing the same unit from being purchased by two customers simultaneously. Flow: when customer initiates checkout, decrement available_qty and increment reserved_qty for each cart item. If payment succeeds within the timeout window: confirm the reservation (deduct from reserved_qty, create order). If payment fails or checkout is abandoned: release the hold (restore reserved_qty back to available_qty). Implementation: holds table with (sku, quantity, checkout_session_id, expires_at). A background job runs every minute: DELETE expired holds, restore inventory. Or use Redis with TTL: SETEX hold:{sku}:{session_id} 900 {quantity} (15-minute TTL). On timeout: Redis auto-expires the key, a background worker detects missing keys and restores inventory. The soft hold window must be long enough for payment processing but short enough to not block inventory for too long (15 minutes is typical).

Q: How do you handle the Saga pattern in a distributed checkout flow?

In a microservices checkout, steps span multiple services: inventory service (reserve), payment service (charge), order service (create), fulfillment service (ship). A single database transaction cannot span services. The Saga pattern: decompose the checkout into a sequence of local transactions, each with a compensating transaction for rollback. Choreography-based saga: each service publishes events; the next service listens and triggers its step. If a step fails, it publishes a failure event; upstream services execute their compensating transactions. Example: inventory_reserved event → payment_service charges → payment_succeeded event → order_service creates order. If payment fails: payment_failed event → inventory_service releases hold. Orchestration-based saga: a central orchestrator (checkout service) calls each step and explicitly handles failures by calling compensating actions. More control but a single point of failure. At Shopify/Amazon scale: orchestration-based is preferred because it makes the workflow explicit and observable. The checkout service becomes a state machine tracking which steps have completed.

Question 1

How do you prevent overselling inventory during high-traffic events like Black Friday?

Accepted Answer

Overselling occurs when concurrent buyers all read "quantity=1" and all proceed to checkout before any decrement is committed. Three approaches: (1) Pessimistic locking: SELECT ... FOR UPDATE locks the inventory row. First transaction acquires lock, others wait. Guarantees no oversell but creates serialization bottleneck on hot items. Appropriate for low-to-moderate concurrency. (2) Optimistic locking: UPDATE inventory SET qty=qty-N WHERE sku=? AND qty>=N. No lock — the WHERE clause is the guard. If 0 rows affected, qty was insufficient. Works well under moderate contention; high contention causes many failed updates and retries. (3) Redis atomic decrement: DECRBY inventory:{sku} N → if result < 0, INCRBY to restore and return out-of-stock. Redis is single-threaded — all commands are serialized without explicit locks. Best for high-throughput hot items (viral products, flash sales). Complement with async DB sync: Redis is the real-time inventory counter; MySQL is the system of record updated asynchronously (or via a CDC stream).

Question 2

How does a soft hold (inventory reservation) work in checkout?

Accepted Answer

A soft hold reserves inventory between checkout initiation and payment completion — preventing the same unit from being purchased by two customers simultaneously. Flow: when customer initiates checkout, decrement available_qty and increment reserved_qty for each cart item. If payment succeeds within the timeout window: confirm the reservation (deduct from reserved_qty, create order). If payment fails or checkout is abandoned: release the hold (restore reserved_qty back to available_qty). Implementation: holds table with (sku, quantity, checkout_session_id, expires_at). A background job runs every minute: DELETE expired holds, restore inventory. Or use Redis with TTL: SETEX hold:{sku}:{session_id} 900 {quantity} (15-minute TTL). On timeout: Redis auto-expires the key, a background worker detects missing keys and restores inventory. The soft hold window must be long enough for payment processing but short enough to not block inventory for too long (15 minutes is typical).

Question 3

How do you handle the Saga pattern in a distributed checkout flow?

Accepted Answer

In a microservices checkout, steps span multiple services: inventory service (reserve), payment service (charge), order service (create), fulfillment service (ship). A single database transaction cannot span services. The Saga pattern: decompose the checkout into a sequence of local transactions, each with a compensating transaction for rollback. Choreography-based saga: each service publishes events; the next service listens and triggers its step. If a step fails, it publishes a failure event; upstream services execute their compensating transactions. Example: inventory_reserved event → payment_service charges → payment_succeeded event → order_service creates order. If payment fails: payment_failed event → inventory_service releases hold. Orchestration-based saga: a central orchestrator (checkout service) calls each step and explicitly handles failures by calling compensating actions. More control but a single point of failure. At Shopify/Amazon scale: orchestration-based is preferred because it makes the workflow explicit and observable. The checkout service becomes a state machine tracking which steps have completed.

System Design Interview: Design an E-commerce Checkout System

What Is an E-commerce Checkout System?

Checkout Flow

Inventory Reservation (Soft Hold)

Idempotent Order Creation

Order State Machine

Preventing Oversell at Scale

Interview Tips