Skip to content

Instantly share code, notes, and snippets.

View taufiqpsumarna's full-sized avatar
🏠
Work From Home

Taufiq Permana taufiqpsumarna

🏠
Work From Home
9 followers · 36 following
View GitHub Profile
@taufiqpsumarna
taufiqpsumarna / install_gitlab_runner_manager.sh
Last active December 13, 2023 06:37
How to optimize GitLab runner cost usage and saving cost up to 90% using spot instance | Install Docker Engine and Gitlab Runner Config
#!/bin/bash
echo "Update repository and upgrade package"
apt update && apt upgrade -y
echo "Install Docker Package"
curl -fsSLv https://releases.rancher.com/install-docker/20.10.24.sh | sudo bash
sudo systemctl enable docker.service
sudo systemctl enable containerd.service
@taufiqpsumarna
taufiqpsumarna / config.toml
Last active December 20, 2023 01:58
Gitlab Runner Config EC2Machine
concurrent = 4
check_interval = 0
[[runners]]
name = "gitlab-runner-autoscaler"
url = "https://gitlab.com" #TODO_1: Change with your gitlab repository URL
token = "" #TODO_2: Fill with your Gitlab Token
executor = "docker+machine"
limit = 4
[runners.docker]
@taufiqpsumarna
taufiqpsumarna / install_gitlab_runner_worker.sh
Last active June 18, 2024 13:04
#!/bin/bash
echo "Update repository and upgrade package"
apt update && apt upgrade -y
echo "Install Docker Package"
curl -fsSLv https://releases.rancher.com/install-docker/24.0.9.sh | sudo bash
sudo systemctl enable docker.service
sudo systemctl enable containerd.service
@taufiqpsumarna
taufiqpsumarna / CodebuildPolicy.json
Created June 10, 2024 08:10
AWS CodeBuild Build Docker Image, push to AWS ECR and deploy to AWS ECS
{
"Version": "2012-10-17",
"Statement": [
{
"Effect": "Allow",
"Action": [
"ecr:GetDownloadUrlForLayer",
"ecr:BatchGetImage",
"ecr:BatchCheckLayerAvailability",
"ecr:PutImage",
@taufiqpsumarna
taufiqpsumarna / prometheus.conf
Created August 13, 2024 05:11
nginx reverse proxy for prometheus HTTP Basic Auth
server {
listen 80;
server_name <YOUR_DOMAIN_NAME>;
auth_basic "prometheus auth";
auth_basic_user_file /etc/nginx/.htpasswd_prometheus;
location / {
proxy_read_timeout 1800s;
proxy_connect_timeout 1600s;
@taufiqpsumarna
taufiqpsumarna / loki.conf
Created August 13, 2024 05:12
nginx reverse proxy for loki HTTP Basic Auth
server {
listen 80;
server_name <YOUR_DOMAIN_NAME>;
#Basic Auth
auth_basic "loki auth";
auth_basic_user_file /etc/nginx/.htpasswd_loki;
location / {
proxy_read_timeout 1800s;
@taufiqpsumarna
taufiqpsumarna / config.alloy
Last active August 14, 2024 06:19
Grafana Alloy Self Hosted Configuration File
prometheus.exporter.self "integrations_alloy" { }
discovery.relabel "integrations_alloy" {
targets = prometheus.exporter.self.integrations_alloy.targets
rule {
target_label = "instance"
replacement = constants.hostname
}
@taufiqpsumarna
taufiqpsumarna / how_to_restore_key.pem_ec2_instance.md
Last active September 5, 2024 04:26
Restore deleted default AWS EC2 Instance key.pem

A quick note how to add a key from myKey.pem file to authorized keys on Linux.

The permissions for ~/.ssh/ folder should be 700. Permissions for authorized_keys file and myKey.pem are to be 600.

1.Generate a public key first (usually from AWS EC2 key)

ssh-keygen -y -f AnalyticsSharedKeyPair.pem > AnalyticsSharedKeyPair.pub

2.Add a new public key to authorized_keys:

@taufiqpsumarna
taufiqpsumarna / Dockerfile
Created September 19, 2024 06:22
Lightweight Docker Image Java Apps
# Stage 1: Build the application
FROM maven:3.9-eclipse-temurin-17-alpine AS build
WORKDIR /build
COPY . .
RUN mvn package
#Stage 2: Create the final lightweight image
FROM eclipse-temurin:17-jre-alpine
WORKDIR /app
COPY --from=build /build/target/hello-world.jar .
@taufiqpsumarna
taufiqpsumarna / .gitlab-ci.yaml
Created September 19, 2024 07:27
Infisical Gitlab CI/CD
---
🔐 infisical-get-secret:
image: taufiq14s/infisical-cli
rules:
- if: $CI_COMMIT_BRANCH == "main"
variables:
INFISICAL_ENVIRONMENT: prod
- if: $CI_COMMIT_BRANCH == "staging"
variables:
INFISICAL_ENVIRONMENT: staging