Let's look at an example of how to launch a Kubernetes cluster from scratch on DigitalOcean, including kubeadm, an Nginx Ingress controller, and Letsencrypt certificates.
We'll be creating a four-node cluster (k8s-master, k8s-000...k8s-002), load balancer, and ssl certificates.
This gist is based on the information available at golang/dep, only slightly more terse and annotated with a few notes and links primarily for my own personal benefit. It's public in case this information is helpful to anyone else as well.
I initially advocated Glide for my team and then, more recently, vndr. I've also taken the approach of exerting direct control over what goes into vendor/ in my Dockerfiles, and also work from
isolated GOPATH environments on my system per project to ensure that dependencies are explicitly found under vendor/.
At the end of the day, vendoring (and committing vendor/) is about being in control of your dependencies and being able to achieve reproducible builds. While you can achieve this manually, things that are nice to have in a vendoring tool include:
| docker logs nginx 2>&1 | grep "127." | |
| # ref: http://stackoverflow.com/questions/34724980/finding-a-string-in-docker-logs-of-container |
| wget -c --no-cookies --no-check-certificate --header "Cookie: oraclelicense=accept-securebackup-cookie" https://download.oracle.com/otn-pub/java/jdk/12.0.2+10/e482c34c86bd4bf8b56c0b35558996b9/jdk-12.0.2_linux-x64_bin.tar.gz |
| -- Get Max ID from table | |
| SELECT MAX(id) FROM table; | |
| -- Get Next ID from table | |
| SELECT nextval('table_id_seq'); | |
| -- Set Next ID Value to MAX ID | |
| SELECT setval('table_id_seq', (SELECT MAX(id) FROM table)); |
| #!/bin/bash | |
| while sleep 0.5; do vim --startuptime "$@" >(./startup-info) +qall; done | |
| # usage: ./collect-times | |
| # Running this will collect startup times in `times' directory. | |
| # It will run it multiple times so that the averages start converging. | |
| # Whenever you remove a plugin, it gets stored as a different version, | |
| # which will be shown at 'watch ./watcher'. |
| #!/bin/bash | |
| set -o errexit | |
| ncursesw_dir=/usr/include/ncursesw | |
| [[ -d "$ncursesw_dir" ]] || | |
| { | |
| echo "fatal: ncursesw not found at ${ncursesw_dir}" >&2 | |
| exit 1 | |
| } |
| [Unit] | |
| Description=Live Syncing (Mirror) Daemon | |
| After=network.target | |
| [Service] | |
| Restart=always | |
| Type=simple | |
| Nice=19 | |
| #EnvironmentFile=-/etc/default/lsyncd | |
| #ExecStart=/usr/bin/sh -c 'eval `/usr/bin/lsyncd -nodaemon $LSYNCD_OPTIONS /etc/lsyncd/lsyncd.conf.lua`' |
| # Source: | |
| # https://www.cloudflare.com/ips | |
| # https://support.cloudflare.com/hc/en-us/articles/200169166-How-do-I-whitelist-CloudFlare-s-IP-addresses-in-iptables- | |
| for i in `curl https://www.cloudflare.com/ips-v4`; do iptables -I INPUT -p tcp -m multiport --dports http,https -s $i -j ACCEPT; done | |
| for i in `curl https://www.cloudflare.com/ips-v6`; do ip6tables -I INPUT -p tcp -m multiport --dports http,https -s $i -j ACCEPT; done | |
| # Avoid racking up billing/attacks | |
| # WARNING: If you get attacked and CloudFlare drops you, your site(s) will be unreachable. | |
| iptables -A INPUT -p tcp -m multiport --dports http,https -j DROP |
| var webpack = require('webpack'), | |
| path = require('path'), | |
| ExtractTextPlugin = require("extract-text-webpack-plugin"), | |
| isDev = process.env.NODE_ENV; | |
| var config = { | |
| cache: true, | |
| resolve: { | |
| extensions: ["", ".js", ".css", ".styl"] |
