Spice up your Cloudformation Development life

by Gernot Glawe in  aws  , ,

Thumbnail

Pure CloudFormation coding only with vi can be hard work. But since CloudFormation still is the lingua franca of AWS infrastructure as code, the ecosystem keeps evolving. Even if you only use it indirectly, there are some tools to spice up your development. Hot diagrams, more aroma with compliance checks or bittersweet automated testing. Ready to taste it? Here we go.

Read more →
Thumbnail

Pure CloudFormation coding only with vi can be hard work. But since CloudFormation still is the lingua franca of AWS infrastructure as code, the ecosystem keeps evolving. Even if you only use it indirectly, there are some tools to spice up your development. Hot diagrams, more aroma with compliance checks or bittersweet automated testing. Ready to taste it? Here we go.

Read more →

Update your Style in Test Kitchen

by Thomas Heinen in  Chef, Test Kitchen  

Thumbnail

It is surprising how many resources on the Internet are carrying on outdated or deprecated information - the Chef ecosystem is no exception to this. While outdated style in Ruby files has been detected via cookstyle for a while, Test Kitchen files still have no sanity checks yet.

Let’s see what changed in this short post.

Read more →
Thumbnail

It is surprising how many resources on the Internet are carrying on outdated or deprecated information - the Chef ecosystem is no exception to this. While outdated style in Ruby files has been detected via cookstyle for a while, Test Kitchen files still have no sanity checks yet.

Let’s see what changed in this short post.

Read more →

AWS Setup: Secure Identity Foundation with Terraform

by Dr Felix Grelak in  aws  , ,

Thumbnail
AWS Setup: Secure Identity Foundation with Terraform When it comes to access management in AWS, often I see a basic setup, with Users in IAM, as described here. Clearly, most people focus on building actual running applications, at first. After the first running POCs, the next migrations are on the road map; your architecture evolves, but the initial IAM setup stays. So it’s better to have a super secure set-up right from the beginning.
Read more →
Thumbnail
AWS Setup: Secure Identity Foundation with Terraform When it comes to access management in AWS, often I see a basic setup, with Users in IAM, as described here. Clearly, most people focus on building actual running applications, at first. After the first running POCs, the next migrations are on the road map; your architecture evolves, but the initial IAM setup stays. So it’s better to have a super secure set-up right from the beginning.
Read more →

The State of Target Mode in 2020

by Thomas Heinen in  Chef, ops

Thumbnail

The State of Target Mode in 2020

After my blog series on the agentless use of Chef dubbed “Target Mode” between August and October 2019, it is time to review what happened since.

Read more →
Thumbnail

The State of Target Mode in 2020

After my blog series on the agentless use of Chef dubbed “Target Mode” between August and October 2019, it is time to review what happened since.

Read more →

S3 Cross Account Adventures

by Nils Deilke , David Schellenburg , Maurice Borgmeier in  aws  , , ,

Thumbnail
In the process of building a data lake in a multi-account environment, we encountered a problem that didn’t fit into our existing mental model of how S3 and S3 cross account permissions work. Chances are that the behavior might surprise you as well. We had planned to build a data storage platform that’s similar to a data lake in a multi-account environment. Essentially, this means that we were separating the data from the transformation and input/output logic.
Read more →
Thumbnail
In the process of building a data lake in a multi-account environment, we encountered a problem that didn’t fit into our existing mental model of how S3 and S3 cross account permissions work. Chances are that the behavior might surprise you as well. We had planned to build a data storage platform that’s similar to a data lake in a multi-account environment. Essentially, this means that we were separating the data from the transformation and input/output logic.
Read more →