How to build a self-service container management system for your team

Last chance to register for this live event! Discover how to build a self-service container management system for your team, featuring Portainer Technical Evangelist, Adolfo Delorenzo.

To succeed with containers, you need to give end-users secure access to the tools they need to do their job. Portainer makes it easy to set up and configure a complete service delivery engine.

In this session, you’ll learn more about -
1. Resource management
2. Resource assignment (namespaces, registries etc)
3. User roles
4. Cluster security


EVENT DETAILS
Wednesday 8th December
8am San Francisco
11am New York
1pm Rio De Janeiro
4pm London
5pm Berlin
7pm Moscow
Midnight Singapore


Register here
https://lnkd.in/d8ycgE7E

https://redd.it/rba3f7
@r_devops

Alternatives to Terragrunt

Hey guys, as us-east-1 is down, I'm looking to reduce the annoying repeated code from not being able to use variables in the backend.tf files. Are there any other tools aside from Terragrunt that could help with this?

https://redd.it/rb8r59
@r_devops

Did anyone else experience errors from the Jira API in the past 2 hours? (0200 - 0400 UTC)

Was getting an x509: certificate signed by unknown authority error.

Anyone else experienced the same?

https://redd.it/rbir80
@r_devops

Azure AD Resiliency Deep Dive

I created a video to explore the resiliency of Azure AD. This includes what Microsoft does and what we can do as architects, as developers, as administrators to improve it.

https://youtu.be/Zk7A9U39JeI

Hope you find it interesting.

https://redd.it/razzzx
@r_devops

Is AWS hard to use or am i a total moron?

i am a web developer on a project with a lot of background tasks. i did some digging and found out about kubernetes jobs.

I tried to setup our background jobs to run on kubernetes on Google Kubernetes Engine. It took me about 30 minutes to set everything up (create a gke cluster, connect to it, create a cloud function to trigger job in the cluster, create a cloud build trigger to watch our repository and build image each time i push something).

Then i was sure that kubernetes jobs was working for us.

but AWS gave us bunch of credits (10k usd) so i had to move my setup to aws. Creating a cluster on aws took about 15 minutes (it hangs in "creating" phase for 15 minutes). then i couldnt connect to it because i created it with root user and had to read a bunch of documentation for a while. then i decided i shouldn't create cluster from UI with my root account so i deleted it and created cluster again with awscli. when i created cluster with awscli my root user didnt get any permissions for the cluster so i couldnt do anything from the ui.

all i wanted to do was create a damn cluster and connect to kubernetes api. why is this so hard? and aws cloud console in the web interface is not good for anything. i thought it would be like google's cloud shell, but no you still need a lot of mambo jambo to connect your own resources.

at this point i really dont understand why people keep using aws. i am planning to move to gcp despite having 6 month worth of credits in aws because i feel like i cant debug any problem in aws without having a lot of experience and knowledge about it and it scares me.

i had very similar experience with aws elasticbeanstalk. it supposed to be very easy to deploy your app but i spent couple hours and learn some aws scripting language to be able to change CORS settings for our api backend.

https://redd.it/rblcgh
@r_devops

Using Older Oracle Linux Release With DNF Install/Update

I recently migrated our software from CentOS 8.2 to Oracle Linux 8.4 and everything was going smooth for a week or so. Then a new kernel was released (kernel-4.18.0-305.25.1.el8_4) which broke our dependencies, and then a new minor version (8.5) soon after. I need to lock the version to 8.4 to keep it as stable as possible which is seeming to be difficult with Oracle.

With CentOS I just set Artifactory to use the mirror for 8.2, but Oracle is either latest or 8.4 for BaseOS only (older kernel etc.) and I really don't want to have to deal with switching kernel versions for our product again. Anytime the kernel changes or any other major change happens, it breaks our ISO build process which is an absolute PITA to fix.

I've tried using --releasever=8.4 among many other things including -C option to prevent updating (cache gets cleared in docker multiple times due to nested containers), using --exclude=*el8.5* (still gets newer kernel than I'd like) and manually pruning el8_5 rpms in a textfile output by repoquery (causes dependency issues as it doesn't replace with el8_4 version).

I'd like to lock it to use 8.4 but get the latest packages for that version if possible without upgrading anything to Oracle 8.5. With 50-100 packages using something like Versionlock doesn't seem like the best/easiest/cleanest way to do it if there are other options.

Anyone have anything else I can try? Thanks!

-----

Edit:

I just found out you can Versionlock with a text file, so I think I'll just do that using all the packages with the versions I want until I can come up with something better.

https://redd.it/rblm5h
@r_devops

Assistance with Gitlab CI/CD YML file

Hi all,

I'm very new to CI/CD and come from an ops background so please forgive my ignorance. I'm currently trying to automate my homelab a bit so I've recently started placing my docker-compose files in GitLab and trying to deploy them using Gitlab CI/CD

I have my docker host which is also configured as an on-prem runner and have the following pipeline yml file:

image: docker:latest

services:
- docker:dind

stages:
- test
- deploy

test:
stage: test
only:
- develop
- production
script:
- echo run tests in this section

step-deploy-prod:
stage: deploy
only:
- production
script:
- docker stop portainer
- docker rm portainer
- docker pull portainer/portainer-ce:latest
- docker-compose -f docker-compose-portainer.yml up
environment: production
when: manual
allowfailure:
exitcodes:
- 1

The first time it ran as the docker container exists however if the container is not present the "docker stop portainer" commands errors out and rightly so as the container does not exist.

I'm trying to have the pipeline skip that and continue with the rest of the shell scripts however it just stops with the exit code of 1 even though I have specified it to allow failure.

https://redd.it/rb7x71
@r_devops

Automatic update design?

Hi mates,

I am trying to design an automatic update agent for my windows application, so basically whenever new updates available, agent should pull them and silently install them.

Is there any open source application which can do this?
I found one Omaha. I know this is very straightforward but wanted to achieve this in more smarter way.
Please share your thoughts on this.

Cheers 🍻

https://redd.it/rb624w
@r_devops

Production level AKS Cluster using Terraform

Hello,
I'm looking for some links where we have the creation of Azure Kubernetes Service with terraform which includes creation of new Vnets, security groups, Ingress rules etc etc..

There is no much context on the official terraform site..

Please help here

https://redd.it/razqex
@r_devops

Can we talk about GitLab?

Hi all - Interested in opinions on GitLab. Are there strong feelings around GitLab vs. GitHub for SCM? How about code testing? Seems like GitLab has been building out its functionality to provide more of platform. Anyone have experience deploying GitLab wall to wall for a large team/organization?

Just trying to gather thoughts on why people like it, if the functionality has legs beyond SCM, and if there are any big dissenting opinions out there.

https://redd.it/rb3n30
@r_devops

Newbie needs help

Hi I am very new to devops. I wanted to see if someone would be willing to talk to be for about 10 minutes on testing and enterprise monitoring. t am looking into an opportunity and would like to talk to someone that has experience in the area.

https://redd.it/rb30l2
@r_devops