Focus: Kong Gateway
Background: Deploy and Secure Istio's Bookinfo application through Kong Gateway.
Topics:
maiconbaum
/ aws_athena_query.sql
Created
December 28, 2022 22:03
AWS Glue Catalog Table for AWS VPC Flow Logs using Apache Hive Compatible Format and Partition Projection.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| CREATE EXTERNAL TABLE IF NOT EXISTS aws_vpc_flow_logs ( | |
| `version` int, | |
| `account_id` string, | |
| `interface_id` string, | |
| `srcaddr` string, | |
| `dstaddr` string, | |
| `srcport` int, | |
| `dstport` int, | |
| `protocol` bigint, | |
| `packets` bigint, |
usrbinkat
/ Kong-Gateway.md
Created
July 26, 2022 22:18
— forked from cmwylie19/Kong-Gateway.md
Kong Gateway on OpenShift
Setup etcdctl using the instructions at https://github.com/etcd-io/etcd/releases/tag/v3.4.13 (changed path to /usr/local/bin):
Note: if you want to match th etcdctl binaries with the embedded k3s etcd version, please run the curl command for getting the version first and adjust ETCD_VER below accordingly:
curl -L --cacert /var/lib/rancher/k3s/server/tls/etcd/server-ca.crt --cert /var/lib/rancher/k3s/server/tls/etcd/server-client.crt --key /var/lib/rancher/k3s/server/tls/etcd/server-client.key https://127.0.0.1:2379/version
leandrosiow
/ kubelet-config-all-options.json
Last active
November 8, 2023 05:03
These are examples of kubelet-config.json files
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| { | |
| "kind": "KubeletConfiguration", | |
| "apiVersion": "kubelet.config.k8s.io/v1beta1", | |
| "syncFrequency": "1m0s", | |
| "fileCheckFrequency": "20s", | |
| "httpCheckFrequency": "20s", | |
| "address": "0.0.0.0", | |
| "port": 10250, | |
| "tlsCertFile": "/root/cdk/server.crt", | |
| "tlsPrivateKeyFile": "/root/cdk/server.key", |
ypeavler
/ get-aws-creds.sh
Created
May 12, 2019 05:23
Extended https://github.com/sweharris/aws-cli-mfa/blob/master/get-aws-creds and pushed the token, access key and Id to credentials
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| # This uses MFA devices to get temporary (eg 12 hour) credentials. Requires | |
| # a TTY for user input. | |
| # | |
| # GPL 2 or higher | |
| if [ ! -t 0 ] | |
| then | |
| echo Must be on a tty >&2 |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| # start vault | |
| VAULT_UI=true vault server -dev -dev-root-token-id=root -dev-listen-address=127.0.0.1:8200 | |
| # login as root - DO NOT DO THIS IN PRODUCTION | |
| vault login root | |
| # write some secrets | |
| vault kv put secret/test color=blue number=eleventeen |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # -*- encoding: utf-8 -*- | |
| # requires a recent enough python with idna support in socket | |
| # pyopenssl, cryptography and idna | |
| from OpenSSL import SSL | |
| from cryptography import x509 | |
| from cryptography.x509.oid import NameOID | |
| import idna | |
| from socket import socket |
1.) Download a Nerd Font
2.) Unzip and copy to ~/.fonts
3.) Run the command fc-cache -fv to manually rebuild the font cache
jonico
/ Jenkinsfile
Last active
March 5, 2025 22:51
Example for a full blown Jenkins pipeline script with CodeQL analysis steps, multiple stages, Kubernetes templates, shared volumes, input steps, injected credentials, heroku deploy, sonarqube and artifactory integration, Docker containers, multiple Git commit statuses, PR merge vs branch build detection, REST API calls to GitHub deployment API, …
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!groovy | |
| import groovy.json.JsonOutput | |
| import groovy.json.JsonSlurper | |
| def label = "mypod-${UUID.randomUUID().toString()}" | |
| podTemplate(label: label, yaml: """ | |
| spec: | |
| containers: | |
| - name: mvn | |
| image: maven:3.3.9-jdk-8 |
NewerOlder