Use GitHub Actions without the need to share AWS credentials as secrets Many times when we need to connect to AWS through GitHub Actions, the first thing that comes to mind is to take the access credentials of an IAM user that we have created, and use them as environment variables in our workflow file, in order to authenticate a user in AWS. But this method is not the most secure, as we need to hand over our AWS credentials. Luckily for us, there is another method that we can
Durante muchos años, estuve buscando el trabajo de mis sueños. En mis “cortos” 30 años, pase por diferentes trabajos, en rubros y empresas distintas, con variadisimos equipos de trabajo. Un día y en medio de plena pandemia, sin querer queriendo, me encontré con Teracloud. De a poco me empecé a adentrar en el mundo del Cloud Computing y lo enorme de AWS. Arranque conociendo la cultura DevOps. Conocí personas con una experiencia terrible y sobre todo, con ganas de crecer y con
During the last days of the past year, I received the request of updating SSL certificates, probably, like most of you. As we know sometimes it is automated via AWS but on other occasions is necessary to get your hands dirty ;-) This time I first needed to create a CSR (Certificate Signing Request) with a private key to provide the client, so he could request a third party for the new certificate. I made this by running the following command: openssl req -new -out <csr_name>.
Gazelles are agile, small and fast; In addition to that, they have an excellent vision, the simile with the animal is very well chosen because these companies have a constant, fast and above-average growth, both in terms of turnover and job creation. If the business grows at or faster than its market, then it has one of the characteristics of a gazelle company. One of the biggest challenges for companies today is to grow, since companies that have the ability to grow exponent
At the moment we are on a digital era that gives us design tools everywhere whenever we want. Without going any further on the discipline of design, the fact that we can open a word document or google docs and be able to, with a simple click, make the tipography heavier (bold), and even transform it to a new one would be a dream for the the old typographers of the fifteenth century. And that’s something you have to take advantage on. We are here to talk about some tips that p
One of the most important parts of any architecture is data protection and encryption, when used correctly, can provide an additional layer of protection. Following recommendations from security pillar of Well Architected Framework, we have to encrypt storage types by way of rendering it unintelligible to unauthorized access For this, AWS KMS helps you to manage encryption keys and integrates with many AWS services, like S3 or EBS. For this cases, you can apply server-side en
One of the most important services that AWS Provide us is CloudWatch This service allows you to monitor your resources and be alert to possible failures. You can use CloudWatch to collect metrics (Like cpu usage, disk usage, memory, etc) directly from your Resources and send them to AWS so you can determine how the current performance and status of your resources are. Among these resources, there may be devices and peripherals from which it’s not necessary to collect metrics.
Let’s say you already have Datadog configured to monitor your workloads in AWS and you want to get more insights from some ECS tasks running on Fargate. In order to do that, you will need to add the Datadog Agent to your task as a sidecar container -i.e. an additional container that runs alongside the application container. Below is an example of the container definitions block of an ECS task definition. The first container is a custom application and the second one is the Da
Autoscaling in a nutshell When we are working with workloads that dynamically demand more or fewer resources in terms of CPU or memory we need to think of solutions that allow us to deploy and fit these workloads in production. In this post we will talk about a few concepts like autoscaling: "Autoscaling is a method used in cloud computing that dynamically adjusts the number of computational resources in a server farm - typically measured by the number of active servers - aut
Services Amazon CloudFront is a content delivery network (CDN) service built for high-performance security, and developer convenience can be used as the frontend of many services (S3 Buckets, ELB’s, media distribution, and any other HTTP server running in ec2 instance or any other kind of host). Besides, Cloudfront uses edge locations to cache copies of the content that it serves, so the content is closer to users and can be delivered to them faster. Edge locations are AWS da