- OpenShift cluster (one-hour sandbox): https://learn.openshift.com/playgrounds/openshift42/
- Workshop Gitbook: https://ibm-developer.gitbook.io/openshift101
- Workshop GitHub Repo: https://github.com/IBM/openshift101/tree/master/workshop
- Repo for the NodeJS application: https://github.com/IBM/node-s2i-openshift
- Background on containers: https://www.ibm.com/cloud/learn/containers
- Background on Kubernetes: https://www.ibm.com/cloud/learn/kubernetes
- All Kubernetes concepts under 30 minutes: https://www.youtube.com/watch?v=90kZRyPcRZw
- Source-to-Image(S2I) Deep-dive: https://www.youtube.com/watch?v=flI6zx9wH6M
- Slides: https://github.com/dewan-ahmed/openshift101 (Kubernetes with Red Hat OpenShift Workshop --- April 21 2020.pptx)
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
#!/bin/bash | |
AUTH_NAME="auth2kube" | |
NEW_KUBECONFIG="newkubeconfig" | |
echo "create a certificate request for system:admin user" | |
openssl req -new -newkey rsa:4096 -nodes -keyout $AUTH_NAME.key -out $AUTH_NAME.csr -subj "/CN=system:admin/O=system:masters" | |
echo "create signing request resource definition" |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
# show indices on this host | |
curl 'localhost:9200/_cat/indices?v' | |
# edit elasticsearch configuration file to allow remote indexing | |
sudo vi /etc/elasticsearch/elasticsearch.yml | |
## copy the line below somewhere in the file | |
>>> | |
# --- whitelist for remote indexing --- | |
reindex.remote.whitelist: my-remote-machine.my-domain.com:9200 |
- https://cloud.google.com/anthos/gke/docs/on-prem/reference/cheatsheet
- https://medium.com/flant-com/kubectl-commands-and-tips-7b33de0c5476
- https://prefetch.net/blog/2019/10/16/the-beginners-guide-to-creating-kubernetes-manifests/
- https://kubernetes.io/docs/user-guide/kubectl-cheatsheet/
- https://learnk8s.io/blog/kubectl-productivity/
- https://medium.com/faun/kubectl-commands-cheatsheet-43ce8f13adfb
I run several K8S cluster on EKS and by default do not setup inbound SSH to the nodes. Sometimes I need to get into each node to check things or run a one-off tool.
Rather than update my terraform, rebuild the launch templates and redeploy brand new nodes, I decided to use kubernetes to access each node directly.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
# Use envFrom to load Secrets and ConfigMaps into environment variables | |
apiVersion: apps/v1beta2 | |
kind: Deployment | |
metadata: | |
name: mans-not-hot | |
labels: | |
app: mans-not-hot | |
spec: | |
replicas: 1 |
Unofficial AKS Cheat Sheet
Official AKS FAQ is here
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
ssh-keygen -t rsa -b 4096 -m PEM -f jwtRS256.key | |
# Don't add passphrase | |
openssl rsa -in jwtRS256.key -pubout -outform PEM -out jwtRS256.key.pub | |
cat jwtRS256.key | |
cat jwtRS256.key.pub |
NewerOlder