Django AMI market place

Did anyone created AWS private market place for AMIs

https://redd.it/11qkccj
@r_devops

To DRY or NOT to DRY! Github Actions Version

Hey everybody,

As the DevOps engineer for a startup I'm responsible for the deployment of the microservices that we have.

I've started to create a generalized pipeline (Reusable Workflows Github Actions) that works in all microservices and that works nice, until.... I wanted to try Semantic Releases for every microservice.

So this is where the DRY is not helping... I've created the Reusable Workflow with the intention of not repeating and if there was something that i wanted to enforce( like SonarQ or security practices etc) i would implement in the main workflow and all pipelines will have the change. However i'm not seeing as an advantage right now having in mind our goal, which i explain just below...

The goal is to have only master branch deploying to development and then creating releases both for sandbox and production. I'm having some struggle in visualising the semantic release in the reusable workflows... Is it even possible?

Do you have a better approach? Or know a better way?

https://redd.it/11r0m56
@r_devops

Help designing authentication implementation

I’m not sure where / how to implement auth. I would like it so that a user can login with Google on my frontend.

I have a frontend running SvelteKit, a backend web API hosted elsewhere running Rust (Axum framework) and a MySQL database hosted elsewhere again.

For now, performance is not a concern. I just want to implement secure best practices, enabling users to login to the frontend with their GitHub / Google accounts, and keep the session alive.

Can you please guide me how to implement this?

Thank you for your help 🙏

https://redd.it/11qzzzp
@r_devops

Integration Testing API Endpoints

Currently, we lack robust and thorough testing for our API. For some context, the components of our backend that we own include a GraphQL server, the Node.js API, and a Postgres database. We also use other third-party services for transactional emails, chat messaging, push notifications, authentication, etc. All the solutions I found for API testing just rely on the response to determine if the test passed or not (i.e. correct body, status code, headers, etc.). I want to go a step further though and test the entire system end-to-end within a dedicated test environment. An example of tests I want to write:

test("Verification Email", async (apiClient, emailClient, database) => {
    const apiResult = await apiClient.post("/v1/auth/send_verification_email", { email: "[email protected]" });

    const testerEmail = emailClient.get("[email protected]");

    const verificationEmail = await testerEmail.getEmail({ from: "[email protected]", subject: "Verification Email", timeout: 120 });

    const links = verificationEmail.getLinks();

    assert(links.length > 0);

    const verificationLink = links[0];

    const verificationResult = await apiClient.get(verificationLink);

    const isUserEmailVerified = await database.query("SELECT email_verified FROM users WHERE email = '[email protected]'");

    assert(isUserEmailVerified);
});

Sorry the example is a bit long, but I wanted to exactly describe the flexibility I'm looking for. Is there a test suite that can do something like this? It doesn't have to be in JavaScript or any particular language for that matter. If this doesn't exist, but you think it may be helpful to you as well, would you be interested in helping me build this out?

Thank you

https://redd.it/11qf613
@r_devops

How's the job market for devops right now?

I'm a data engineer that's done a lot of cloud platform work, looking at devops roles and devops-focused data engineering roles in the future.




I was wondering how's the market for devops right now? I'm in a big city for tech, and the job market for devops and data engineers is still pretty bad. Most job postings in my area are at consulting companies.



I'm working at a unicorn tech company now, looking for startups with at least Series A funding and bigger tech companies. I guess that limits me in the job search.

https://redd.it/11r4od3
@r_devops

React Args vs Variables for Docker Images?

I am looking to validate some information and figure out how to resolve a few issues we are seeing with developers building images. I am not a programmer and from a devops perspective, still on the green side. We have some issues with a few teams who build React applications and publish the applications as containers in a registry. While scanning the registry for vulnerabilities a few secrets have been found that obviously need to be addressed.

When asking around people are telling me that React apps need to be built using arguments vs utilizing environment variables so that is why some sensitive values get placed into the docker image. I'm reviewing the builds and that is the case so that is why some secrets are there but is this really a limitation or are teams just uneducated on how to properly build secure React images?

One thing I was also exploring was where these secrets are used and if there are more modern authentication mechanisms React should be using such as Managed Identiies but still digging. Any guidance or links to relevant resources appreciated!

https://redd.it/11r5hqt
@r_devops

Infrastructure as Code with Terraform — Terraform 101

https://yohan.hashnode.dev/infrastructure-as-code-with-terraform-terraform-101

https://redd.it/11r3kil
@r_devops

Can you do infrastructure as code on non-cloud assets?

It seems infrastructure as code and cloud are commonly thrown together. If I had a server farm, could I still do infrastructure as code on it using the same tools like Terraform?

https://redd.it/11r7ufu
@r_devops

Other than compensation, what do you look for when applying to other jobs?

Just curious what others have found helpful when looking at other DevOps jobs at different companies.

https://redd.it/11r86md
@r_devops

Kubernetes, microservices and OAuth2.0 client credentials flow

I have a kubernetes cluster with some microservices which I would like to access the resource server. I have an OAuth2.0 authorization server ready to be deployed and all is left is to configure and distribute client ids and secrets. Now my question is: how do you handle distributing e.g. 20 client secrets and and how do you handle rotating them in the authorization server and client microservices? Are then any standard solutions for this?

https://redd.it/11rahzu
@r_devops

Dynatrace DPS Package

Is anyone signed up on Dynatrace’s DPS Pricing model? Looking to understand the benefits to the customer

https://redd.it/11r8p01
@r_devops

AWS Pricing add-on for Google Sheets!

Hello r/devops! I wanted to let this community know the AWS Pricing add-on for Google Sheets has been re-published on the Google Workspace Marketplace! This project has been around for \~4 years and allows Google Sheets users to query AWS Pricing data using custom google sheets functions.

If you want to take a look at how this add-on works, the link is below!

https://workspace.google.com/marketplace/app/aws\_pricing\_by\_strake/378787760903

https://redd.it/11rbh7t
@r_devops

How do you protect your secret keys in your local computer?

As a DevOps engineers most of the times we have administrator access to aws, gcp, azure, etc. Leaking these keys can be devastating for our reputation.

Wondering how do you manage your SecOps in your local machines?

Best

https://redd.it/11rhsef
@r_devops

Why Companies Still Struggle with Least Privilege in the Cloud

Why do we keep using "*" and then complain about it? Is IAM so challenging?

From my experience, I have written an article on what for me are the most important considerations:

\- Every developer is an exception

\- IAM is challenging to scale

\- Visibility of access controls are poor

Do you think I'm missing something? Lazy IT Teams?

https://redd.it/11rcme9
@r_devops

Would using Kubernetes, Git actions, and Docker, in production for one of your own projects be good enough to say you have reasonable experience with the stack?

So I've built a startup of sorts all on my own where I've done all of the full-stack development. With it I built out the frontend with Next.js, and the backend with Laravel/Firebase/Redis/MySQL/NGINX. I use Jira for task management.

What I'm wondering is if I could, and should, apply to devops positions by adding Kubernetes and git actions for concretization/orchestration/CD/CI and Docker to standardize local development environments? Kubernetes will be over kill, but whatever it's a good way to strengthen my knowledge base. Also to be upfront, I use managed databases and never administrate without one.

I've been wanting to move into devops because the pay and because I'm tired of full-stack dev. It'd also be nice to be in an area helping devs out by making their lives easier with better developer experience.

I'm curios to hear your thoughts. Can apply the have a great side project principle to devops?

https://redd.it/11rkd8n
@r_devops

Ephemeral environments

Qovery has been finally been brought up at work. We currently use ECS Fargate for our platform, but this has now been popping up in ads and I swear I saw it brought up in a post here recently. Anyone use it? Does it work strictly with k8s setups or is there some functionality with something like ECS Fargate? Anyone familiar with alternatives that might work with Fargate and not require us to repackage into k8s? I don't really have a team and already get bombarded by daily adhoc tasks. So getting ephemeral environments with the lightest lift would be the goal in shooting for. Any insights?

https://redd.it/11rju1y
@r_devops

Should a CV/Resume include a personal summary?

Heard some conflicting opinions recently, generally curious

View Poll

https://redd.it/11rcb7d
@r_devops

Datadog Outage Aftermath

Has anybody been able to get better pricing or renegotiate with Datadog after their outage last week?…Looking to see if they’re more flexible now

https://redd.it/11rnvz4
@r_devops

How to Become an Artificial Intelligence Engineer? | Course Links also available in the link...

Course Links also available in the link...

​

https://www.learnitguide.net/2023/02/become-artificial-intelligence-engineer.html

​

\#artificialintelligence #machinelearning #deeplearning #AIEngineer

\#python #pythontutorial #pythonprogramming #python3 #AI #ML #DL #Artificial_Intelligence

https://redd.it/11rokgm
@r_devops

Sample of applications that can be used for CI/CD and Kubernetes practice

I'm looking for sample of applications that can be used for practicing CI/CD pipeline and Kubernetes deployment.

Any suggestion?

https://redd.it/11rqcse
@r_devops

CCNA or Network+ for DevOps/Cloud

Hey everyone, I have a question.

Currently, I work in helpdesk and I want to transition into DevOps/Cloud engineering.

I already have my CKA, Terraform associate, and AWS solutions architect associate certification with hands-on lab experience and projects.

However, I want to gain more foundational knowledge on networking. I know some people don't care about certifications, but I really enjoy having a structured learning path.

I have looked into Network+ and CCNA, and while CCNA is definitely more in-depth, I don't know if it's worth learning all the Cisco commands if I know I won't be working with it.

On the other hand, people say Network+ is more broad but not really deep enough.

For those who already work as a DevOps engineer or Cloud engineer and have CCNA or Network+ certifications, which one is more worthwhile?

https://redd.it/11rqi7a
@r_devops