- https://simonfredsted.com/1459?utm_source=webopsweekly&utm_medium=email
- https://heap.engineering/terraform-gotchas/
- https://www.contino.io/insights/top-3-terraform-testing-strategies-for-ultra-reliable-infrastructure-as-code
- https://sgoel.org/posts/experiences-using-terraform/
- http://engineering.rallyhealth.com//jekyll/update/2017/02/15/immutable-infrastructure-w-terraform-and-windows.html
- https://charity.wtf/2016/04/14/scrapbag-of-useful-terraform-tips/
- https://medium.com/@simonvc/terraform-securely-5ec34d294782
- https://segment.com/blog/rebuilding-our-infrastructure/
- http://engineering.rallyhealth.com/jekyll/update/2017/02/15/immutable-infrastructure-w-terraform-and-windows.html
- https://www.thoughtworks.com/insights/blog/implementing-blue-green-deployments-aws
mlesaout mlesaout
mlesaout
/ README.md
Last active
March 4, 2018 23:09
— forked from bltavares/README.md
Terraform content dump
mlesaout
/ wait_unattended_upgrades.sh
Created
April 4, 2019 08:55
— forked from gretel/wait_unattended_upgrades.sh
`vagrant` on `ubuntu-16.04` can get in conflict with *unattended-upgrade* running and locking the `dpkg` subsystem. this script waits gracefully
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env bash | |
| # https://gist.github.com/gretel/34008d667a8a243a9682e5207619ad95 | |
| # 2016 tom hensel <[email protected]> | |
| # `vagrant` on `ubuntu-16.04` can get in conflict with *unattended-upgrade* running and locking the `dpkg` subsystem. this script waits gracefully | |
| # in `Vagrantfile`: | |
| # config.vm.provision 'Wait for unattended-upgrades', type: 'shell', path: './provisioning/wait_unattended_upgrades.sh', args: %w( dpkg apt unattended-upgrade ) | |
| # | |
| function wait_procnames { | |
| while true; do |
mlesaout
/ promtail_docker_logs.md
Created
May 19, 2021 14:03
— forked from ruanbekker/promtail_docker_logs.md
Docker Container Logging using Promtail
Inspired By: grafana/loki#333
- docker-compose.yml
version: "3"
networks:
loki:
mlesaout
/ squid.conf
Created
May 21, 2021 10:10
— forked from salrashid123/squid.conf
Minimal squid.conf to deny destination host
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| 1) create a file squid.conf | |
| ``` | |
| acl denydomain dstdomain .bbc.com | |
| http_access deny denydomain | |
| acl allowdomain dstdomain .yahoo.com | |
| http_access allow allowdomain | |
| http_access deny all |
mlesaout
/ jwt-decode.sh
Created
July 2, 2021 16:17
— forked from stokito/jwt-decode.sh
A shell (ash, dash, Bash) script to decode JWT token. Version ported to OpenWrt here https://gist.github.com/stokito/43afca84fc34d1d362bf210cd941a366
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/sh | |
| # Decode a JWT from stdin and verify it's signature with the JWT issuer public key | |
| # Only RS256 keys are supported for signature check | |
| # | |
| # Put OAuth server public key in PEM format to /var/cache/oauth/$JWT_KID.key.pub.pem | |
| # You must create the folder first | |
| # $ sudo mkdir -p /var/cache/oauth/ | |
| # To converted key from JWK to PEM use https://8gwifi.org/jwkconvertfunctions.jsp or https://keytool.online/ | |
| # NOTE: For Google you can get the keys in PEM format via https://www.googleapis.com/oauth2/v1/certs | |
| # Decode the keys with decodeURIComponent() |
mlesaout
/ jwt-decode.sh
Created
July 2, 2021 16:19
— forked from stokito/README.md
OpenWrt specific shell (ash) script to decode JWT token and verify it's signature. Based on https://gist.github.com/stokito/f2d7ea0b300f14638a9063559384ec89
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/ash | |
| # Usage: cat /id_token.txt | jwt-decode.sh --no-verify-sig" > jwt_payload.json | |
| . /usr/share/libubox/jshn.sh | |
| base64_padding() | |
| { | |
| local len=$(( ${#1} % 4 )) | |
| local padded_b64='' | |
| if [ ${len} = 2 ]; then | |
| padded_b64="${1}==" |