#office-hours (2019-12)

Meeting password: sweetops

Public “Office Hours” are held every Wednesday at 11:30 PST via Zoom. It’s open to everyone. Ask questions related to DevOps & Cloud and get answers! https://cpco.io/slack-office-hours

Public “Office Hours” are held every Wednesday at 11:30 PST via Zoom. It’s open to everyone. Ask questions related to DevOps & Cloud and get answers! https://cpco.io/slack-office-hours

Meeting password: sweetops

2019-12-26

Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)

We are now syndicating our “Office Hours” as a podcast: http://podcast.cloudposse.com/

Cloud Posse DevOps "Office Hours" Podcast

Cloud Posse holds public DevOps “Office Hours” every Wednesday at 11:30am PST to answer questions on all things DevOps/Terraform/Kubernetes/CICD related. These “lunch & learn” style sessions are totally free and really just an opportunity to talk shop, ask questions and get answers.Register h…

4
1
:100:1
Zachary Loeber avatar
Zachary Loeber

Awesome!

2019-12-19

Blaise Pabon avatar
Blaise Pabon

…wasn’t there going to be something about the bastion docker image? Or did we not have time to cover it.

Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)

With help of my coworkers https://github.com/Flaconi/terraform-aws-bastion-ssm-iam A bastion which can give users access on the basis of their IAM permissions, also the bastion does not have ports exposed to the outside

Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)

Unrelated to the CloudPosse #bastion

2019-12-18

Pierre Humberdroz avatar
Pierre Humberdroz

Does someone have recommendation for a tool that allows me to draw up a goal infrastructure .. (I am not a big fan of Whiteboards.. I know of lucidchart etc. but I would be interessed in what are people using in the day to day business.

roth.andy avatar
roth.andy

Our Confluence has a Gliffy plugin. We usually use that.

roth.andy avatar
roth.andy

some of our guys use draw.io

Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)

I use lucidchart

Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)

Also, fwiw, zoom supports whiteboarding - works ok if you have a tablet with a stylus

Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)

@here public #office-hours starting now! join us to talk shop zoom https://zoom.us/j/508587304

Adam Crews avatar
Adam Crews

@Erik Osterman (Cloud Posse) Here are the 2 PR’s I’m most interested in at the moment:

  1. this one is I think pretty easy, just a bump in the label module https://github.com/cloudposse/terraform-aws-s3-log-storage/pull/22
Andriy Knysh (Cloud Posse) avatar
Andriy Knysh (Cloud Posse)

@Adam Crews thanks, we are going to take care of the PRs

Adam Crews avatar
Adam Crews

And… https://github.com/cloudposse/terraform-aws-efs-backup/pull/43 is a bit more complex, I think I need a little help to get it plugged into codefresh

Update for TF12, add initial testing/examples by adamcrews · Pull Request #43 · cloudposse/terraform-aws-efs-backup

This updates the module for terraform 0.12 and adds testing framework from other modules.

roth.andy avatar
roth.andy

click the link i posted, it starts the video at the 1 hour timestamp

Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)
cloudposse/terraform-aws-teleport-storage

Gravitational Teleport backing services (S3, DynamoDB) - cloudposse/terraform-aws-teleport-storage

roth.andy avatar
roth.andy

@Erik Osterman (Cloud Posse) the guy at codefresh was Bill Dowell

roth.andy avatar
roth.andy

NGINX has been sending this email to most of its customers this week, in regards to the raid on its Moscow office https://twitter.com/2sec4u/status/1206093180774617088

attachment image

Update regarding the #nginx drama from someone at nginx https://pbs.twimg.com/media/ELznWc6X0AEsF_V.png

Pierre Humberdroz avatar
Pierre Humberdroz
The Pirate Bay raid attachment image

The Pirate Bay raid took place on 31 May 2006 in Stockholm, when The Pirate Bay, a Swedish website that indexes torrent files, was raided by Swedish police, causing it to go offline for three days. Upon reopening, the site’s number of visitors more than doubled, the increased popularity attributed to greater exposure through the media coverage. The raid, alleged by Pirate Bay to be politically motivated and under pressure from the Motion Picture Association of America (MPAA), was reported as a success by the MPAA in the immediate aftermath, but with the website being restored within days and the raising of the debate in Sweden, commentators such as TorrentFreak called the raid “highly unsuccessful”. On 31 January 2008, Swedish prosecutors filed charges against four of the individuals behind The Pirate Bay for “promoting other people’s infringements of copyright laws”.

Matthew Cascio avatar
Matthew Cascio

Helm 3 has much better support for CRDs. I think that’s what I was thinking about https://helm.sh/docs/topics/chart_best_practices/custom_resource_definitions/

Custom Resource Definitions

How to handle creating and using CRDs.

Matthew Cascio avatar
Matthew Cascio
kubernetes-sigs/aws-iam-authenticator

A tool to use AWS IAM credentials to authenticate to a Kubernetes cluster - kubernetes-sigs/aws-iam-authenticator

2
Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)
From James Bohrman to Everyone: (12:01 PM)

Terraconsole seems interesting.

From zloeber to Everyone: (12:13 PM)
Worth keeping an eye on for the service mesh install space: <https://supergloo.solo.io/>
Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)
Initial implementation of `terraform-aws-eks-fargate-profile` by aknysh · Pull Request #1 · cloudposse/terraform-aws-eks-fargate-profile

what Initial implementation of terraform-aws-eks-fargate-profile Add bats and Terratest Add Codefresh test pipeline why Provision an EKS Fargate Profile for Elastic Container Service for Kuberne…

Zoom avatar
Zoom
10:23:52 PM

New Zoom Recording from our Public “Office Hours” on 2019-12-18 is now available.

2019-12-17

tamsky avatar
tamsky

I’m still a fan of wakatime tracking my CLI usage

Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)

wakatime was an honorable mention in last week’s office hours

Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)

also, forget who, someone else was using it!

tamsky avatar
tamsky

I see Mr. Blackwell mentioned it good show

:100:1
Pierre Humberdroz avatar
Pierre Humberdroz

I am using it as well. But more in the background since my job is so much more than coding atm.

2019-12-16

roth.andy avatar
roth.andy

Update on using the Timeular app after using it for a few days:

It works great! It works really well if you are doing a lot of context switching during the day, and need to track how long you spend on the different activities you do. For me, since I work for a systems integrator, and am currently supporting a couple of different clients on different contracts, I am able to more easily track how much time I spent on each contract during the course of the day.

It also has meant more time tracked. Before, I was “eyeballing it”, and filling out my timesheet with ~8 hours of work. But now, I can be much more precise, and I am finding that I usually work more than 8 hours, and have been “estimating away” that extra time

Edit: Not an ad for Timeular! I didn’t buy the gadget. I’m using the app with their “free” account.

Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)

(I bought a few of them - going to test it with our team! Will let you know how it goes)

Pierre Humberdroz avatar
Pierre Humberdroz

I also ordered 4 of them for my team.

2019-12-12

Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)
:--1:6
:100:1

2019-12-11

Pierre Humberdroz avatar
Pierre Humberdroz

Hey what are we talking about today ?

Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)

Taking suggestions!

Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)

Anything interesting you came across this week?

Pierre Humberdroz avatar
Pierre Humberdroz

Deprecation of the stable and incubator helm repos, and more topics of the tech radar maybe ?

Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)

Is it official now?

Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)

I see

Pierre Humberdroz avatar
Pierre Humberdroz

Just as a heads up not really a topic to talk about IMHO

Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)

It’s a good heads up

Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)

I recall seeing the chatter in sweetops a few days ago

Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)
roth.andy avatar
roth.andy

I’d love to hear you talk about what you guys went through when choosing your CI platform. You went with Codefresh, but you must have evaluated a bunch of others like Circle CI, Travis, etc

Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)

added to agenda

:--1:1
Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)

@here public #office-hours starting now! join us to talk shop zoom https://zoom.us/j/508587304

roth.andy avatar
roth.andy
The easiest time tracking solution - Timeular

Discover where your time really goes Ever wonder where the day’s gone to? Timeular is the effortless way to track time and improve how it’s spent. Capture your time by flipping the Tracker. Understand where it goes with our apps. How it works 1. Define Define what you want to track andcustomize your Tracker. 2. …

Adam Blackwell avatar
Adam Blackwell
WakaTime attachment image

Productivity metrics and automatic time tracking for programmers.

Alex Siegman avatar
Alex Siegman

@Erik Osterman (Cloud Posse) no mic today - for that PSA about helm, what ARE the alternatives?

roth.andy avatar
roth.andy

distributed chart repos as alternative to the big centralized one. There are already a bunch of them on hub.helm.sh

Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)

Also the helm-git plugin

roth.andy avatar
roth.andy

I’ll definitely have to check out the helm-git plugin.

roth.andy avatar
roth.andy
Standards attachment image

[Title text] “Fortunately, the charging one has been solved now that we’ve all standardized on mini-USB. Or is it micro-USB? Shit.”

roth.andy avatar
roth.andy

PullReminders is awesome BTW. And it’s free now since GitHub/Microsoft acquired them

:--1:2
Adam Blackwell avatar
Adam Blackwell

https://hub.helm.sh points to a few private repos, so I assumed the deprication was in part to get folks to migrate to Helm 3 faster and in part to encourage others to host their own repositories (like PPAs)

Pierre Humberdroz avatar
Pierre Humberdroz

Here is the official proposal, which came later: https://github.com/helm/community/blob/master/proposals/distributed-search.md

Here is the initial issue/PR for the proposal: https://github.com/helm/community/pull/24

Here is the helm/charts project deprecation issue: https://github.com/helm/charts/issues/16720

Here is the helm/charts project deprecation README notice PR: https://github.com/helm/charts/pull/19138

helm/community

Helm community content. Contribute to helm/community development by creating an account on GitHub.

Adding distributed search proposal by mattfarina · Pull Request #24 · helm/community

cc: @prydonius @unguiculus @technosophos @michelleN The best correlation I have to this is packagist for PHP. Please nit as this is a draft.

Document stable/incubator deprecation timeline · Issue #16720 · helm/charts

Now that Helm v2 has a deprecation timeline (proposed and we&#39;ll need to close out on) at helm/helm#6144 we can talk about a deprecation timeline for the stable and incubator repositories which …

Deprecation timeline README changes by scottrigby · Pull Request #19138 · helm/charts

Fixes #16720 Initial documentation update. Trying to reflect here what we&#39;ve agreed on by a simple majority. Wording changes, or any other change suggestions are very welcome! The goal here is …

1
Pierre Humberdroz avatar
Pierre Humberdroz

here is some more to the reasoning

Pierre Humberdroz avatar
Pierre Humberdroz

https://github.com/helm/hub/issues/42 here is an open issue regarding what a repo might need

Pierre Humberdroz avatar
Pierre Humberdroz

@Alex Siegman here is some of the reasoning explained

Alex Siegman avatar
Alex Siegman

Thanks Pierre, I’ll have to review that. I’m using a lot of stable charts out of there.

Pierre Humberdroz avatar
Pierre Humberdroz

same here which is why it came a big surprise to me.

Alex Siegman avatar
Alex Siegman

TeamCity when I used it allowed me to connect a remote debugger, I could put break points in and debug live against a running pipeline. I don’t think I could jump in after the fact though. It’s been a few years since I’ve touched it

Pierre Humberdroz avatar
Pierre Humberdroz
helm/kind-action

A GitHub Action for Kubernetes IN Docker - local clusters for testing Kubernetes - helm/kind-action

Pierre Humberdroz avatar
Pierre Humberdroz

@roth.andy

helm/kind-action

A GitHub Action for Kubernetes IN Docker - local clusters for testing Kubernetes - helm/kind-action

Adam Blackwell avatar
Adam Blackwell

There’s about five ways to test Jenkins JobDSL code locally at edX, but only a few are public for: https://build.testeng.edx.org/ https://github.com/edx/jenkins-configuration/blob/master/Makefile#L50

We have an ArgoCD POC up and have looked at CodeFresh, but our CI workflows move pretty slowly.

edx/jenkins-configuration

A collection of utilities for configuring a Jenkins instance and its plugins - edx/jenkins-configuration

roth.andy avatar
roth.andy
RothAndrew/cf-step-pre-commit

CodeFresh Step to run pre-commit validation. Contribute to RothAndrew/cf-step-pre-commit development by creating an account on GitHub.

Pierre Humberdroz avatar
Pierre Humberdroz

messy build since it is a new project but our circleci helmfile pipeline looks like..

Helmfile lint -> diff against dev, int, prod -> approval steps for the next steps -> applying in order

Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)
cloudposse/helmfiles

Comprehensive Distribution of Helmfiles for Kubernetes - cloudposse/helmfiles

Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)
aslafy-z/helm-git

Helm plugin to fetch charts from Git repositories. Contribute to aslafy-z/helm-git development by creating an account on GitHub.

Pierre Humberdroz avatar
Pierre Humberdroz
helm install <https://kubernetes-charts.storage.googleapis.com/drupal-1.0.0.tgz>
Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)
:--1:1
Pierre Humberdroz avatar
Pierre Humberdroz

the jfrog image is malformed and a broken release.

roth.andy avatar
roth.andy
:--1:1
:100:1
Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)

also see #kubecost

Pierre Humberdroz avatar
Pierre Humberdroz
:--1:1
Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)

everyone up-vote! =)

:--1:1
Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)
cloudposse/helmfiles

Comprehensive Distribution of Helmfiles for Kubernetes - cloudposse/helmfiles

Pierre Humberdroz avatar
Pierre Humberdroz

Maybe something for next week: Functions inside of kubernetes knative vs OpenFaas and the cluster operator benefit that might come with it. I was recently approached by one of our engineers that it would be much nicer to have one interface that the docker containers / services have to comply to.

Zoom avatar
Zoom
12:13:41 AM

New Zoom Recording from our Public “Office Hours” on 2019-12-11 is now available.

2019-12-04

Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)

@here public #office-hours starting now! join us to talk shop zoom https://zoom.us/j/508587304

Igor Rodionov avatar
Igor Rodionov
Technology Radar | An opinionated guide to technology frontiers | ThoughtWorks attachment image

The Technology Radar is an opinionated guide to technology frontiers. Read the latest here.

chinedu2424 avatar
chinedu2424

Anyone excited about the new releases from AWS reinvent

Blaise Pabon avatar
Blaise Pabon

I can tell you that Google (internally) measures all this stuff in great detail

:--1:1
Blaise Pabon avatar
Blaise Pabon

@Igor Rodionov I am hugely interested in this topic

Blaise Pabon avatar
Blaise Pabon

and I have an ongoing conversation with Kawaguchi (the Jenkins guy) about finding these patterns in build logs

chinedu2424 avatar
chinedu2424

AWS Ecs vs fargate or just go with ElasticBeanS for complex web app ???

Blaise Pabon avatar
Blaise Pabon
zalando-incubator/kopf

A Python framework to write Kubernetes operators in just few lines of code. - zalando-incubator/kopf

:--1:2
Pierre Humberdroz avatar
Pierre Humberdroz

OPA is a great tool lots of companies are start using it in berlin.

Pierre Humberdroz avatar
Pierre Humberdroz
Ecosystem

Policy-based control for cloud native environments

Blaise Pabon avatar
Blaise Pabon
Tutorial: Ingress Validation

Policy-based control for cloud native environments

:--1:1
Pierre Humberdroz avatar
Pierre Humberdroz
attachment image

#reinvent You, a fool: “Why the hell did you remove all linebreaks from your code?! It’s an unreadable mess!”

Me, a Cloud Economist: https://pbs.twimg.com/media/EK5BroZWsAAO9en.jpg

1
chinedu2424 avatar
chinedu2424

I joined late I was curious about If fargate would be a viable alternative for scalability and cost optimization

Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)

Too soon to know

:--1:1
Igor Rodionov avatar
Igor Rodionov

@Erik Osterman (Cloud Posse) check this https://www.openpolicyagent.org/docs/latest/terraform/

Terraform

Policy-based control for cloud native environments

Zoom avatar
Zoom
12:15:24 AM

New Zoom Recording from our Public “Office Hours” on 2019-12-04 is now available.

2019-12-01

Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)

Anyone from #office-hours going to #aws-reinvent ?

    keyboard_arrow_up