-
AWS Secrets Manager on Kubernetes using AWS Secrets CSI driver Provider
2 min read
On the AWS Secrets Manager documentation we can find how AWS recommends to integrate it with AWS EKS using ASCP and a Secrets Store CSI Driver
11/11/2021
Read more... -
Kubernetes: Quality of Service for Pods
2 min read
On Kubernetes there are three QoS (Quality of Service) classes that a Pod can use. We can check what's the class it's using by checking the qosClass under status:
$ kubectl get pod pet2cattle-swag-746956854c-62psn -n website -o jsonpath='{.status.qosClass}' Burstable10/11/2021
Read more... -
Install and configure external-DNS on AWS EKS
3 min read
With external DNS the DNS records for the ingress objects we have will be created automatically. We can choose between several cloud providers but we can even configure it to use the standard dynamic zone manipulation defined in RFC-2136. Let's see how to configure it on AWS EKS with Route53
09/11/2021
Read more... -
Install a multi-master K3S cluster with embedded etcd
2 min read
K3s has added full support for embedded etcd as of release v1.19.5+k3s1, so now we can create a multi-master cluster without the need of having an external MySQL database
08/11/2021
Read more... -
Create a comma separated list of quoted strings on terraform
2 min read
Some times we need to generate a quoted comma separated list of strings out of a variable that is list of strings, for example, to generate an IAM policy like this one:
{ "Version": "2012-10-17", "Statement": [ { "Effect": "Allow", "Action": [ "secretsmanager:GetResourcePolicy", "secretsmanager:GetSecretValue", "secretsmanager:DescribeSecret", "secretsmanager:ListSecretVersionIds" ], "Resource": [ "arn:aws:secretsmanager:...", "arn:aws:secretsmanager:.." ] } ] }03/11/2021
Read more...