Skip to content

Instantly share code, notes, and snippets.

View sgrsaga's full-sized avatar
🏠
Working from home

A.M Sagara Jayathilaka sgrsaga

🏠
Working from home
0 followers · 1 following
View GitHub Profile
@sgrsaga
sgrsaga / gist:7747554b9c33c7560c45a2cb7ac59438
Created December 28, 2023 08:42
Configure OIDC for GitHub
Configure GitHub Project with OIDC connection with AWS 
This is one of the most secure methods to communicate AWS by configuring the GitHub Identity provider in AWS IAM. It reduces the credential overhead and possible security concerns.
1. Create an Identity provider under AWS IAM
Provider URL: Use https://token.actions.githubusercontent.com
Audience: Use sts.amazonaws.com
2. Create a role to connect to the Identity provider.
Click on the Identity Provider and then <Assign Role>
Select <Create New Role>
Set the trust identities as follows
Now set the permissions [We set Administrator access for now, you can provide only the required access levels based on your resources]
@sgrsaga
sgrsaga / Global Load Balancing Service - Proposal.md
Last active February 26, 2024 11:51
Global Load Balancing Service - Proposal

Global Load Balancing Service - Proposal

This is a proposal to implement a Gloabal Load balancing service for a cloud offering solution.

Global Load Balancer service - Top level

  • Load Balancer Service:

This is can be a microservice or a wrapper sevice delpoyed without a single pont of failure. This service will take request and identify the parameters such as application and region the request originated. Then service will check the Redis-Leader-Board to identify which load balancer is availble and have a minimum latency for the selected application and region ..etc. After selecting the load balancer the request will pass to the specific load balancer.