Install Keycloak on ECS

Welcome If you have read my latest post about accessing RHEL in the cloud, you may notice that we’re accessing the cockpit console, via SSM Session manager port forwarding. That’s not an ideal solution. I’m not talking in bed, it’s just not ideal(but cheap). Today I realised that using Amazon WorkSpaces Secure Browser could be interesting, and fun as well. Unfortunately, this solution required an Identity Provider, which can serve us with SAML 2. Continue reading

Manage my cheap TLD with Route53

Welcome While writing a post about setting up Keycloak, which should be live this month(it’s a bit harder, than I thought), I decided that it would be great to use my custom domain and play with it as well. As having sso.3sky.in looks cool, also unexpectedly it’s quite cheap. But why do I need it? It’s like 10$ per domain. Yes and no. One of the Community Builder program benefits is a voucher for 500$ which can be used within a year, on AWS services. Continue reading

rhel on cloud

Let’s talk about basic IT operations included in the everyday tasks range. For example, accessing VMs. As you may realize (or not) - not everyone is using immutable infrastructure. Especially when their core business isn’t IT, and they are a bit bigger than 2-pizza team. That is why today we will talk about accessing the console of Red Hat Enterprise Linux 9.3 in AWS Cloud. I will show you the 3 most useful methods - in my opinion; there are no statistics. Continue reading

EDA for AWS operations

Welcome Great that you’re here. Today, I will write a bit about Event-Driven Ansible and its possibilities for improving the operational efficiency of our AWS environment. But wait, what does it mean by Event-Driven Ansible? My favorite sentence from the documentation is “EDA provides a way of codifying operational logic,” so in short words, we can code logic for responding to different events. For example, we can trigger playbook execution with Lambdas make our self-service process a bit more ops-oriented, or introduce ChatOps. Continue reading

Local automation

Welcome Once again I have a goal, write every month at least one article. Sounds easy, but unfortunately for me, it is not. The idea behind this blog is to write content that will be helpful for me(and hopefully for my readers as well). For example, when I need basic Nginx configuration I used to open this post from 2021. Now I’m older a bit, so I decided to switch once again to Doom Emacs(? Continue reading

2023 as AWS Community Builder

Welcome It’s the 3rd week of January 2024. The Community Builder form for the current year is probably already closed, right? Ah, it’s not true. It will be closed on the 27th of January, so you still have some time - 5 days. If you need a TLDR, go and apply as fast as possible! Do it now! If you’ve already applied, I have some stories to share or rather an extended 2023 summary. Continue reading

What is the best `as Code` tool in 2023?

Welcome Based on the success of my latest article (CHATGPT!), I’ve decided to continue in that direction by creating shorter and more user-friendly content. Today, I have some thoughts and feelings to share about a complex topic. Recently, I was asked to prepare a sample infrastructure for an OKD cluster from scratch, without pre-built templates. I first used AWS CDK, then rewrote it to Pulumi, and finally to cdktf. You may wonder why I made these changes, and the answer is simple: I really enjoy my job! Continue reading