Design Online Auction System — TikTok

Problem Statement

Design an online auction system where users can list items for sale with time-bound auctions, place incrementally higher bids, view the current leading bidder in real time, and receive notifications when auctions close. The winning bidder then proceeds to a checkout flow to complete the purchase.

Think of a platform similar to eBay or a hypothetical auction feature built into a large social app like Instagram. Creators post items with photos, set an auction window and starting price, and followers compete by submitting bids. The system must handle everything from casual listings with a handful of bidders to celebrity auctions attracting tens of thousands of simultaneous participants. Real interview reports from TikTok indicate interviewers may start with modest scale (around 5,000 requests per second) before pushing you to scale to 50,000 or more during deep dives.

The fundamental challenge is maintaining strict correctness around bid acceptance and winner determination while delivering low-latency updates to all connected viewers. You need to reason about contention on hot auction records, push-based real-time fanout, durable end-of-auction scheduling, and reliable settlement workflows.

Key Requirements

Functional

Auction creation -- users create auctions on items with a start time, end time, starting price, minimum bid increment, and optional reserve price
Bid placement -- users submit bids and receive immediate acceptance or rejection feedback based on the current highest bid and auction rules
Real-time auction view -- viewers see the current highest bid, time remaining, bid count, and leading bidder updated in sub-second intervals
Auction close and settlement -- the system automatically closes auctions at the scheduled end time, determines the winner, notifies all participants, and initiates checkout for the winner
Bid history and display -- users can view the bid history for an auction item inline with the listing UI, including top bidders and bid timestamps

Non-Functional

Consistency -- strong consistency for bid acceptance to guarantee exactly one winner and prevent accepting bids against stale pricing
Scalability -- support thousands of concurrent auctions with hot auctions attracting 50,000+ requests per second during peak moments
Latency -- bid acceptance decisions within 100ms; real-time odds updates to connected clients within 500ms
Reliability -- auction end scheduling must survive service restarts and infrastructure failures without missing or duplicating closures

What Interviewers Focus On

Based on real interview experiences at TikTok and related companies, these are the areas interviewers probe most deeply:

1. Contention Handling on Hot Auctions

When thousands of bidders converge on a single auction record simultaneously, the system faces a classic write hotspot. Interviewers want to see how you coordinate concurrent writes without sacrificing throughput or correctness.

Hints to consider:

Use optimistic concurrency control with version numbers on the auction aggregate rather than pessimistic row-level locks
Maintain the current highest bid and version on a single authoritative record so compare-and-swap operations can atomically verify and update
Partition bid processing by auction ID in Kafka so all bids for the same auction are serialized through a single consumer, preserving order
Require a unique bid ID for idempotency so retries from network failures never result in duplicate bid acceptance

2. Real-Time Updates at Scale

Bidders and passive viewers both expect to see bid changes reflected instantly. Naively broadcasting every update to every client creates unsustainable load on high-profile auctions. Interviewers probe your fanout strategy.

Hints to consider:

Use WebSocket connections with server-side pub/sub (Redis Pub/Sub or a dedicated message bus) scoped per auction ID
Deploy edge WebSocket servers in multiple regions that subscribe to auction update topics and multiplex to local clients
Send delta updates containing only the changed fields (new high bid, new leader, updated time remaining) rather than full auction state
Implement client-side rate limiting and batching so rapid consecutive bid changes are coalesced into a single UI update

3. Auction End Scheduling and Settlement

Auctions must close precisely at their scheduled end time, even if the system experiences restarts or partial outages. The winner determination and checkout initiation must happen exactly once. Interviewers look for durable timer design.

Hints to consider:

Store auction end times in a database and use a scheduler service (backed by a persistent queue or durable timer like Temporal) to trigger close events
Design the close workflow as an idempotent state machine: check auction state, determine winner, record outcome, send notifications, initiate checkout
Support soft-close extensions where a bid placed in the final seconds extends the auction by a configurable window to prevent sniping
Use dead-letter queues for failed settlement attempts and implement compensating transactions for edge cases like payment failures

4. Scaling the Bid Processing Pipeline

Interviewers at TikTok have been known to start with 5,000 RPS and then push to 50,000 during deep dives. You need to explain how the architecture adapts without a redesign.

Hints to consider:

Partition Kafka topics by auction ID so adding partitions and consumers scales bid processing horizontally
Use PostgreSQL with the auction aggregate sharded by auction ID for the source of truth, with Redis caching the current highest bid for fast reads
Separate the hot path (bid validation and acceptance) from side effects (notifications, history writes, analytics) using event-driven decoupling
Pre-warm resources for predictably hot auctions (celebrity listings, promotional events) by assigning dedicated partitions and scaled-out WebSocket clusters

Suggested Approach

Step 1: Clarify Requirements

Start by confirming the scope of the auction system. Ask whether auctions are simple English auctions (ascending bids) or if other formats (Dutch, sealed-bid) are needed. Establish scale: how many concurrent auctions, what is the peak bidders-per-auction, and what is the overall bid rate? Clarify whether items have reserve prices, whether the platform takes a commission, and whether there are anti-sniping rules. Confirm latency expectations for bid acceptance and real-time updates. Ask whether the interviewer wants you to include the checkout and payment flow or just the auction mechanics.

Step 2: High-Level Architecture

Sketch a system with five major components: an API gateway handling client connections, a bid ingestion service fronted by Kafka (partitioned by auction ID), a bid processor that validates bids against the authoritative auction record in PostgreSQL, a real-time notification layer using WebSocket servers subscribed to a Redis Pub/Sub channel per auction, and a scheduler service for auction close events. Store auction metadata and bid history in PostgreSQL, cache the current highest bid and auction state in Redis for fast reads, and use Kafka to decouple bid ingestion from processing and side effects. Object storage (S3 or equivalent) holds item images and media.

Step 3: Deep Dive on Bid Acceptance

Walk through the critical path: a bid arrives at the API gateway, is published to the Kafka topic partitioned by auction ID, and consumed by the bid processor. The processor reads the current auction aggregate from PostgreSQL (highest bid, version, status), validates the new bid (higher than current + minimum increment, auction still open, user has valid payment method), and performs an atomic compare-and-swap update on the auction row. If the CAS succeeds, the bid is accepted: publish an update event to Redis Pub/Sub for real-time fanout, write the bid to the history table, and return success. If the CAS fails (version mismatch), another bid was accepted first: return rejection with the latest bid details. Discuss how this design avoids locks while guaranteeing correctness, and how partitioning by auction ID ensures ordered processing.

Step 4: Address Secondary Concerns

Cover the auction close workflow: the scheduler fires at the end time, the close handler checks auction state, records the winner, sends push notifications to the winner and losing bidders, and triggers the checkout flow. Discuss soft-close logic for anti-sniping. Address monitoring: track bid acceptance latency, rejection rates, WebSocket connection counts, and Kafka consumer lag. Cover failure modes: what happens if the bid processor crashes mid-transaction (Kafka reprocesses the message, CAS ensures idempotency), if WebSocket servers go down (clients reconnect and receive the latest state), or if the scheduler misses a close event (periodic sweeper picks up overdue auctions). Discuss security: rate limiting per user to prevent bid spam, authentication and authorization for bid placement, and fraud detection for collusion patterns.

Related Learning

Explore these resources for deeper coverage of the patterns used in this design:

Caching -- fast read-through patterns for serving current auction state
Message Queues -- decoupling bid ingestion from processing and side effects
Databases -- transactional guarantees and sharding strategies for the auction aggregate
Design a Job Scheduler -- durable timer patterns applicable to auction close scheduling
Design a Leaderboard -- real-time ranking and update fanout patterns similar to bid leaderboards

Problem Statement

Key Requirements

Functional

Auction creation -- users create auctions on items with a start time, end time, starting price, minimum bid increment, and optional reserve price
Bid placement -- users submit bids and receive immediate acceptance or rejection feedback based on the current highest bid and auction rules
Real-time auction view -- viewers see the current highest bid, time remaining, bid count, and leading bidder updated in sub-second intervals
Auction close and settlement -- the system automatically closes auctions at the scheduled end time, determines the winner, notifies all participants, and initiates checkout for the winner
Bid history and display -- users can view the bid history for an auction item inline with the listing UI, including top bidders and bid timestamps

Non-Functional

Consistency -- strong consistency for bid acceptance to guarantee exactly one winner and prevent accepting bids against stale pricing
Scalability -- support thousands of concurrent auctions with hot auctions attracting 50,000+ requests per second during peak moments
Latency -- bid acceptance decisions within 100ms; real-time odds updates to connected clients within 500ms
Reliability -- auction end scheduling must survive service restarts and infrastructure failures without missing or duplicating closures

What Interviewers Focus On

Based on real interview experiences at TikTok and related companies, these are the areas interviewers probe most deeply:

1. Contention Handling on Hot Auctions

Hints to consider:

Use optimistic concurrency control with version numbers on the auction aggregate rather than pessimistic row-level locks
Maintain the current highest bid and version on a single authoritative record so compare-and-swap operations can atomically verify and update
Partition bid processing by auction ID in Kafka so all bids for the same auction are serialized through a single consumer, preserving order
Require a unique bid ID for idempotency so retries from network failures never result in duplicate bid acceptance

2. Real-Time Updates at Scale

Hints to consider:

Use WebSocket connections with server-side pub/sub (Redis Pub/Sub or a dedicated message bus) scoped per auction ID
Deploy edge WebSocket servers in multiple regions that subscribe to auction update topics and multiplex to local clients
Send delta updates containing only the changed fields (new high bid, new leader, updated time remaining) rather than full auction state
Implement client-side rate limiting and batching so rapid consecutive bid changes are coalesced into a single UI update

3. Auction End Scheduling and Settlement

Hints to consider:

Store auction end times in a database and use a scheduler service (backed by a persistent queue or durable timer like Temporal) to trigger close events
Design the close workflow as an idempotent state machine: check auction state, determine winner, record outcome, send notifications, initiate checkout
Support soft-close extensions where a bid placed in the final seconds extends the auction by a configurable window to prevent sniping
Use dead-letter queues for failed settlement attempts and implement compensating transactions for edge cases like payment failures

4. Scaling the Bid Processing Pipeline

Interviewers at TikTok have been known to start with 5,000 RPS and then push to 50,000 during deep dives. You need to explain how the architecture adapts without a redesign.

Hints to consider:

Partition Kafka topics by auction ID so adding partitions and consumers scales bid processing horizontally
Use PostgreSQL with the auction aggregate sharded by auction ID for the source of truth, with Redis caching the current highest bid for fast reads
Separate the hot path (bid validation and acceptance) from side effects (notifications, history writes, analytics) using event-driven decoupling
Pre-warm resources for predictably hot auctions (celebrity listings, promotional events) by assigning dedicated partitions and scaled-out WebSocket clusters

Suggested Approach

Step 1: Clarify Requirements

Step 2: High-Level Architecture

Step 3: Deep Dive on Bid Acceptance

Step 4: Address Secondary Concerns

Related Learning

Explore these resources for deeper coverage of the patterns used in this design:

Caching -- fast read-through patterns for serving current auction state
Message Queues -- decoupling bid ingestion from processing and side effects
Databases -- transactional guarantees and sharding strategies for the auction aggregate
Design a Job Scheduler -- durable timer patterns applicable to auction close scheduling
Design a Leaderboard -- real-time ranking and update fanout patterns similar to bid leaderboards