CI/CD for ios on AWS

In reinvent 2020 there is now ability to use mac's, has anyone tried to build a ci/cd for ios with device farm included? I see no updates in any documentation anywhere.

Example
Code pipeline --> code comit/github --> codebuild --> Device Farm --> S3 bucket (ios app file)

https://redd.it/kmkh7s
@r_devops

how to write if conditions in bash and how conditions get tested using a command 'test'

In the video below, we will discuss the weird part of bash. Bash if conditions structure does not look different than any other if statement structures in other programming languages. However, how the test condition is written and get tested is a bit confusing at the beginning.
https://youtu.be/BdU5SflFHKk

https://redd.it/kme2j7
@r_devops

linux GUI+CLI app to manage servers, credentials, notes...

Projectpad allows to manage secret credentials and server information that you need to handle as a software developer or sysadmin.

Projectpad's target audience are people who today have to use several tools to do their work effectively: a keepass-like application, a series of text files with notes, and a few shell scripts. Instead of that, projectpad offers a streamlined, integrated solution.

https://github.com/emmanueltouzery/projectpad2

https://redd.it/kmbxf8
@r_devops

SQL Injection Quetion

Hi,

How do I verify this result that I had from ZAP report?

​

Description SQL injection may be possible.

URL https://localhost:8080/*****/*****/*****

Method POST

Parameter ******

Attack 1' AND '1'='1' --

Other information

The page results were successfully manipulated using the boolean conditions [1' AND '1'='1' -- \] and [1' AND '1'='2' -- \]

The parameter value being modified was stripped from the HTML output for the purposes of the comparison

Data was returned for the original parameter.

The vulnerability was detected by successfully restricting the data originally returned, by manipulating the parameter

CWE Id 89

https://redd.it/kmj5ea
@r_devops

Introducing Amazon Managed Service for Prometheus (AMP)

This fully-managed service is 100% compatible with Prometheus. It supports the same metrics, the same PromQL queries, and can also make use of the 150+ Prometheus exporters. AMP runs across multiple Availability Zones for high availability, and is powered by CNCF Cortex for horizontal scalability. AMP will easily scale to ingest, store, and query millions of time series metrics.

The preview includes support for Amazon Elastic Kubernetes Service (EKS) and Amazon Elastic Container Service (ECS). It can also be used to monitor your self-managed Kubernetes clusters that are running in the cloud or on-premises. It is fully integrated with AWS IAM for access control and activity audit via CloudTrail. https://aws.amazon.com/blogs/aws/join-the-preview-amazon-managed-service-for-prometheus-amp/

https://redd.it/kn3hsc
@r_devops

CHEF or?

If you started new project would you choose CHEF as a automation tool?

https://redd.it/kn03hz
@r_devops

How to implement an email integration functionality like Hubspot?

I don't know if this is the appropriate sub to post in, so feel free to redirect me to more suitable sub.

I want to implement email integration functionalities like in Hubspot for my business. (Log email automatically with BCC or forward). Basically, at Hubspot, after signing up, I get a unique [email protected] email address. Then anyone can BCC [email protected] and the content of the emails including attachments will automatically appear in my Hubspot dashboard.

I want to implement the same feature for my business. A registered client will get an email address from me that they can CC to (says [email protected]), and then I can access the contents of the emails sent to [email protected] and do some data processing.

At the moment, I think of:
1. Setting up my own mailserver (using programs like mailinabox) that can receive email
2. For every client, I can give a newly created account from my mailserver, that I can then check for incoming email contents and attachment.

Is this a viable way? What other alternative tech stacks can I use to achieve this? Are there any services that already did this that I can integrate to my server?

Thanks a lot in advance.

https://redd.it/kmz0rl
@r_devops

Chef habitat delete origin

Chef Habitat builder

I have searched a lot but cannot find an answer. Chef also says that you can delete origin but nowhere can see how to delete one. I have gone through all the options in builder GUI but cannot delete it.

Can I delete it from CLI, if yes how? builder is building it as public....I changed to private but still will not give any option to delete

Thanks in advance

https://redd.it/kn0ruj
@r_devops

A distributed shared state for your Kubernetes pods

Hello all.
I’m working on an open source project and would love to get your feedback.


The C19 Protocol is a distributed shared state (replicated cache) for Kubernetes (and other platforms) and can be embedded within your pods.


It allows a set of services to agree on a service-wide state. C19 agents are running alongside your containers in a pod and the data is being distributed amongst them. This makes the data available locally to your application.


I designed it to be extensible so different patterns can be used, based on your use case.
The project itself is written in Rust.


Code:
https://github.com/c19p/c19


User Guide:
https://c19p.github.io/user-guide/title-page.html


Developer Guide:
https://c19p.github.io/developer-guide/


Any feedback appreciated! And please let me know if you believe it might be a good fit for a use case of yours
Thank you!

https://redd.it/kmxru3
@r_devops

Anyone else here use Onetimesecret.com or 0bin.net? Self-hosted? Quimby?

I'm looking into ways to allow secure sharing of one-time secrets.

Supposedly there are ways out there to do this via a blockchain, but I'm looking for something safe and convenient (including convenient to deploy) for keeping stuff out of chat logs in a way that I have at least a modicum of control over.

I have experience with Vault, ReDiS, Python, and various cryptocurrencies.

Quimby: https://github.com/brianknight10/quimby

Algolia: https://www.algolia.com/blog/secure-tool-for-one-time-self-destructing-messages/

0bin.net: https://github.com/Tygs/0bin

OneTimeSecret: https://github.com/onetimesecret/onetimesecret

https://redd.it/kmsway
@r_devops

What are some interesting public projects on GitHub that are easy to dockerize?

What are some interesting public projects on GitHub that are easy to dockerize? I want to dockerize some projects, but I need to start with some projects that are easy to dockerize, perferably php projects.

https://redd.it/kmuove
@r_devops

Introducing a new version of Prometheus ExportHub

Hi Folks,

Introducing new features in Exporterhub([https://github.com/NexClipper/exporterhub.io](https://github.com/NexClipper/exporterhub.io)) for ease of use and management of Prometheus-Exporter.

* Release 0.3:
* Personalized list for new prometheus-exporter add & edit
* Daily Crawling to update list
* Mobile view support
* Search & Sort function

Best-practice, ruleset, and dashboard will be included in the next release.

Thanks :)

https://redd.it/knk6ca
@r_devops

Roadmap to obtain a devops position guidance

I’ve just graduated this past week with my bachelors in Computer Engineering technology. I was considering a devops position but I know it’s going to take time to be able to obtain that job. What would you recommend is the best route to take that’ll ultimately lead me to land that position. I am very interested in learning all about the cloud and starting to use this free time I have to learn until I can land some type of entry level job. Any advice would be appreciated!

https://redd.it/kncf25
@r_devops

Transition from tutoring to part-time consultancy

So, I started working for a company doing DevOps. I got to know one woman, who we got bonded and became good friends. But she didn't like the position/company and left to work for a different start-up company.

When she made the transition, she asked me to tutor her 3 times a week. And it was going great. She was learning much, and I was learning also about her company and got some tutoring experience.

But this arrangement is kind of weird for me. Because it's not like she's studying for exams. She comes to me with the hardest things she faces and we work through those together, and she pays me out of her own pocket.

I was considering offering her/her company something like this but official. I know they have consultants for big products such as AWS. I don't know if they could "hire" me for 3 hours a week. This could be a relief for her financially, and perhaps give other people value in the company as well. But I don't know if my niche applies to any-one else.

I was wondering if any of you have been in this situation, or something similar. Perhaps do you hire consultants and can give me advice on how to make this transition? Or any advice on the subject.

Thanks

https://redd.it/kn63hj
@r_devops

Cloud hosted log management tool for Spring boot application?

I have two Java applications written using Spring Boot and running on AWS. Unfortunately, browsing logs in an application hosted by AWS beanstalk is not very convenient. Therefore I am thinking about a cloud solution for collecting and viewing logs. I want to avoid self-management of ELK stack. What solutions do you recommend / use?


I thinking about :
\- logz.io
\- logdna.com
\- datadog
\- cloud hosted graylog?

https://redd.it/kn827j
@r_devops

What have you done to OS config lately with automation

Just wondering what you guys have recently done with IAC and why?

Last thing i did was to setup LVM on linux openSuse
And enabled windows features with packer to help cover all our bases when releasing software

https://redd.it/kn5mey
@r_devops

Getting Terraform to apply only when a change exists using Make

This is a post by me on how I cut down the time required required for a Terraform apply if no changes are to be done by making use of Terraform's detailed exit codes

It's a big long-ish, but hope it helps. https://sathyasays.com/2020/12/31/terraform-apply-only-on-change/

https://redd.it/knokx5
@r_devops

DevOps Trends for 2021

I'm thinking that the following would be the DevOps trends to watch for 2021:

1. Bundles and Software Bills of Materials.
2. Complexity vs Simplicity paradox.
3. Vertical integration in DevOps vs “Best Tool for the Job”.
4. Widening gap between high performers and low performers.
5. Kanban.
6. CI is the new Version Control – CD will come next.

Expanded version with details - https://worklifenotes.com/2020/12/30/devops-trends-for-2021/

Happy New Year everyone!

https://redd.it/knt49l
@r_devops

Deploying Python FastAPI on a Ubuntu VM with Caddy 2 Web Server

Hello DevOps Community,

As FastAPI is gaining popularity in contrast to Flask for building REST APIs. Most of the new prodcut development initiatives for REST APIs considering FastAPI in the Python space. It is also important to understand from the deployment stand point that FastAPI runs on any operating system and cloud.

As the runtime stack for FastAPI is Python, Ubuntu VM comes with Python already installed. So I thought trying to deploy the FastAPI on Ubuntu 18 VM. FastAPI runs on WSGI Web Server Gunicorn with the help of ASGI worker uvicorn worker class. The tutorial covers real time deployment by exposing the FastAPI running on Gunicorn as a reverse proxy via an opensource Web Server Caddy 2.

Hope you find it helpful.

Thanks!

https://redd.it/knobi6
@r_devops

A Six Article Series for Learning Docker

Hey folks!

I just completed my article series on Docker. I've tried to keep it as beginner friendly as possible. I hope it helps people out who are just getting started with Docker. If you have some experience with it I'll be glad if you could give it a read and let me know if you have any suggestions for me. Thanks a lot and a Happy New Year!

https://redd.it/knnk5b
@r_devops

what should be the ipv4_address when deploying docker compose cluster on azure vm?

I have the following docker compose file that I want to deploy to a Azure Viurtual Machine. I am new to deployment and cloud. I am really confused as to what to right in place of ipv4_address? In the following connection if I try to connect from within the VM it connects as the ipv4_address is 192.168.98.10.

But, it fails to connect from outside the vm over the global ip that azure provides.
```
---
# Source: tendisplus/templates/tendisplus.yaml

version: '3'
services:
tendisplus-master-0:
image: tencentdbforkv/tendisplus:latest
container_name: tendisplus-master-0
ports:
- "30000:51002"
networks:
tendisplus-net:
ipv4_address: 192.168.98.10
environment:
- REDIS_PASSWORD=password
- CLUSTER=yes
volumes:
- "/data/tmp/tendisplus/30000:/data1/tendis/51002"
restart: on-failure:3
tendisplus-slave-0:
image: tencentdbforkv/tendisplus:latest
container_name: tendisplus-slave-0
ports:
- "50000:51002"
networks:
tendisplus-net:
ipv4_address: 192.168.98.20
depends_on:
- tendisplus-master-0
environment:
- REDIS_PASSWORD=password
- CLUSTER=yes
volumes:
- "/data/tmp/tendisplus/50000:/data1/tendis/51002"
restart: on-failure:3
networks:
tendisplus-net:
driver: bridge
ipam:
config:
- subnet: 192.168.98.0/24
```
I also tried adding my global ip in place of the 192.168.98.10 but it sends this error
```
ERROR: for tendisplus-master-2 Cannot start service tendisplus-master-2: Invalid address 13.92.1.119: It does not belong to any of this network's subnets

ERROR: for tendisplus-master-2 Cannot start service tendisplus-master-2: Invalid address 13.92.1.119: It does not belong to any of this network's subnets

ERROR: for tendisplus-master-0 Cannot start service tendisplus-master-0: Invalid address 13.92.1.119: It does not belong to any of this network's subnets

ERROR: for tendisplus-master-1 Cannot start service tendisplus-master-1: Invalid address 13.92.1.119: It does not belong to any of this network's subnet
```

https://redd.it/knkbmi
@r_devops