In a previous post, I briefly covered how to use the AWS Cloud Development Kit (CDK) with Java, to build Amazon EKS clusters and use Kubernetes (k8s) manifests to install resources. In this post I will look at how the AWS CDK handles helm charts.
According to the helm documentation Helm is:
The package manager for Kubernetes
The documentation goes on to say:
Helm is the best way to find, share, and use software built for Kubernetes.
Helm is a mature application and is a graduated project from the Cloud Native Computing Foundation (CNCF). …
YAML — Build vs. Parse
…Jimmy Ray follows up from a previous post on using AWS CDK to deploy a sample Java application on Amazon EKS, with this post that dives deeper into Kubernetes YAML manifests. From what these are to how to use them with AWS CDK, this is a great post to understand what your options are when managing Kubernetes manifests and the resulting Kubernetes resources that get created. — Ricardo Sueiras, AWS open source news and updates #68
In a previous post, I briefly covered how to use the AWS Cloud Development Kit (CDK) with Java, to…
I started writing Java in 1997, with version 1.13. I was building Lotus Notes apps back then, and Java was easier to customize Notes than was the C API that we had been using. Over the next two decades I continued to work with Java and other technologies (enterprise web apps, Spring, containers, clouds, DevOps, etc.). However, the need and opportunity to continue Java development changed as my roles changed, and I was writing less and less Java as I got more and more into cloud-computing and Kubernetes.
In 2020, I found Java again when I started using the AWS…
It’s been said that “Beauty is only skin-deep”. However, I think ugly comes from deeper inside us. And, for decades we have been quite ugly towards each other, based on the superficialities of our beliefs, our chosen affiliations, and even our skin-color. For goodness sakes, our skin-color? Something over which we have absolutely no control drives how we feel about others? This sort of ugliness takes effort. It’s a choice.
Our ugliness towards each other is our shared weakness. We own that, and it is not due to any single person or association, including a political party. It is also…
Over a decade ago I worked for a former Marine officer. He was a quiet, intelligent, and very capable leader, with a firm grasp of human nature. He didn’t subscribe to hyperbole; feelings were not facts. He was biased for action. His quiet and direct demeanor was off-putting, if not unnerving to some. I realized later that his style was refreshing and constructive.
I learned/relearned several things from my former boss. Some of those lessons are:
As we migrate applications running in AWS to containers and Kubernetes we also need to accommodate each application’s AWS permissions, as supplied by roles. If the applications assume AWS IAM roles that allow them to perform AWS operations, these roles should still work inside Kubernetes running inside AWS. At issue is how we allow pods to assume needed roles for which they are authorized, while not permitting pods to assume roles for which they are not authorized.
All the prior week I was getting things ready on my 2011 FLHTP (Harley Davidson Electra Glide Police Model). I went over my bike, front to back, checking oil levels, tires, brakes, and fasteners and hardware; I did not want anything to interrupt my planned ride to “The Wall”. I also made sure that I had my cameras ready.
As I cruised up I-95 North, I started to see their silhouettes on the overpasses, around the Woodbridge exits. On the overpasses with pedestrian walkways and fences, they were holding American flags, and waving to every rider heading north. They were…
Over the past several months, I have helped several teams move to containers, and I have gained some insight into what Container Application Readiness means. Container Application Readiness is made easier when applications are built with microservices architecture and Twelve-Factor App methodology, even if that means refactoring.
For applications, Container Native has been defined by Salil Deshpande as:
1. Software that treats the container as the first-class unit of infrastructure (as opposed to, for example, treating the physical machine or the virtual machine as the first-class unit).
2. Software that does not just “happen to work” in, on or around…
A move to the public cloud is done, in large part, to address the common concerns of “infrastructure provisioning” that are shared by all application teams. The cloud helps organizations greatly reduce the need for the “undifferentiated heavy lifting” — standing-up servers, networking, and security — needed just to deliver applications and features. Moving to containers and Kubernetes can be seen as the next evolution in allowing development teams to focus on their work, not on infrastructure.
Tackling these common needs is also a large part of a continued DevOps journey. In fact, DevOps is all about reducing variability and…
According to the docs, in Kubernetes, ConfigMap resources “allow you to decouple configuration artifacts from image content to keep containerized applications portable.” Used with Kubernetes pods, configmaps can be used to dynamically add or change files used by containers.
As part of a Kubernetes installer our team wanted to deploy a lightweight file server to the Kubernetes cluster to handle default (root-path) ingress requests. And, we thought it would be nice if we could edit the index.html and CSS files without having to redeploy the application.
To solve this use case, we decided to build a Golang application that would…
Cloud and Containerization SME