FluxCD: Continuous Deployment with GitOps

This post explains why I land on FluxCD GitOps for my project. Let’s star Background In the Korthweb project, I landed on Istio for the Ingress Gateway technology. I first attempted to expand the orthanc Helm Chart to bring Istio as dependency (sub-chart). One of the external chart for Istio gateway needs to be referenced … Read moreFluxCD: Continuous Deployment with GitOps

Infrastructure deployment in Terraform 2/2

In a previous post, I introduced Terraform Cloud and covered how to use AWS profiles with Terraform. This time I explored some alternatives to Terraform Cloud, in the context of Azure. I use Scalr as an example of multi-cloud management platform. I will also discuss some issues I’ve came across while managing permissions and variables … Read moreInfrastructure deployment in Terraform 2/2

Creating X.509 TLS certificate in Kubernetes

In deployment automation, I often had to create self-signed X.509 certificate for testing TLS traffic into Kubernetes. Sometimes self-signed, sometimes signed by a CA. This post summarized the approaches I’ve taken. Create self-signed certificate with OpenSSL Traditionally, this is done in three OpenSSL commands: I have an older post to cover the basics of cryptography … Read moreCreating X.509 TLS certificate in Kubernetes

Git Branching Strategy

Having been in two discussions about Git branching strategy with different organizations, I decide to jot down the details of all the common branching strategies in one post. This should help organizations develop their branching policies. There is a lot from Atlassian documentation. I also find this article a good resource. Centralized workflow (no branching) … Read moreGit Branching Strategy