Batuhan Apaydın developer-guy

🐾

Every artifact can be verifiably traced to Source Code and Hardware

🚀CNCF Ambassador 23 🎖Best Sigstore Evangelist 23 🐳Docker Captain 23 ✍️ CDF Ambassador 23 📅 Organizer at DevOpsTr • @cloudnativetr

developer-guy / kubernetes_add_service_account_kubeconfig.sh

Created January 14, 2020 05:37 — forked from innovia/kubernetes_add_service_account_kubeconfig.sh

Create a service account and generate a kubeconfig file for it - this will also set the default namespace for the user

	#!/bin/bash
	set -e
	set -o pipefail

	# Add user to k8s using service account, no RBAC (must create RBAC after this script)
	if [[ -z "$1" ]] \|\| [[ -z "$2" ]]; then
	echo "usage: $0 <service_account_name> <namespace>"
	exit 1
	fi

developer-guy / deployment_testify_suite_test.go

Created March 12, 2020 07:53

	package deployment

	import (
	"fmt"
	"strings"
	"terratest-demo/util"
	"testing"
	"time"

	httpHelper "github.com/gruntwork-io/terratest/modules/http-helper"

developer-guy / template_rendering_test.go

Last active March 12, 2020 08:00

	package helm

	import (
	"github.com/gruntwork-io/terratest/modules/helm"
	"github.com/stretchr/testify/suite"
	coreV1 "k8s.io/api/core/v1"
	"testing"
	)

	type HelmRenderingSuite struct {

developer-guy / helm_deploy_test.go

Created March 12, 2020 08:01

	package helm

	import (
	"fmt"
	"github.com/gruntwork-io/terratest/modules/helm"
	httpHelper "github.com/gruntwork-io/terratest/modules/http-helper"
	"github.com/gruntwork-io/terratest/modules/k8s"
	"github.com/gruntwork-io/terratest/modules/random"
	"github.com/stretchr/testify/assert"
	"github.com/stretchr/testify/suite"

developer-guy / web_server_provision_test.go

Created March 12, 2020 08:12

	package main

	import (
	http_helper "github.com/gruntwork-io/terratest/modules/http-helper"
	"github.com/gruntwork-io/terratest/modules/terraform"
	"testing"
	"time"
	)

	func TestWebServer(t *testing.T) {

developer-guy / install.sh

Last active April 3, 2020 16:08

kubeval jsonschemas installation

	#!/usr/bin/bash
	# Don't forget to change your schemas location.
	declare -a supported_versions
	supported_versions=(v1.17.0 v1.16.0 v1.15.0)
	EXTRACT_COMMAND="mkdir -p ~/.kubeval/schemas && \
	curl https://codeload.github.com/instrumenta/kubernetes-json-schema/tar.gz/master \| \
	tar -C ~/.kubeval/schemas --strip-components=1 -xzvf - "
	for sv in "${supported_versions[@]}"
	do
	echo "Supported version: $sv"

developer-guy / netshoot-deployment.yaml

Created April 3, 2020 14:36

netshoot deployment manifest

developer-guy / mutatingwebhook.yaml

Created April 19, 2020 13:05

	#Then the MutatingAdmissionWebhook observes the requests to apiserver and intercepts requests matching the rules in admission webhooks and calls them in parallel.
	# For each request to the apiserver, the MutatingAdmissionWebhook sends an admissionReview(API for reference) to the relevant webhook admission server. The webhook admission server gathers information like object, oldobject, and userInfo from admissionReview, and sends back a admissionReview response including AdmissionResponse whose Allowed and Result fields are filled with the admission decision and optional Patch to mutate the resoures.
	# MutatingAdmissionWebhook needs to be registered in the apiserver by providing MutatingWebhookConfiguration.
	# During the registration process, MutatingAdmissionWebhook states:
	# - How to connect to the webhook admission server
	# - How to verify the webhook admission server
	# - The URL path of the webhook admission server
	# - Rules defining which resource and what action it handles
	# -How unrecogni

developer-guy / genkeys.sh

Created April 19, 2020 13:11

developer-guy / service.yaml

Created April 19, 2020 13:16

	apiVersion: v1
	kind: Service
	metadata:
	name: sidecar-injector-service
	namespace: platform
	spec:
	selector:
	app: sidecar-injector-server
	ports:
	- port: 443