| Task | Description | Example Tools |
|---|---|---|
| Install | Install the software binaries and all dependencies. | Bash, Chef, Ansible, Puppet |
| Configure | Configure the software at runtime: e.g. configure port settings, file paths, users, leaders, followers, replication, etc. | Bash, Chef, Ansible, Puppet |
| Provision | Provision the infrastructure: e.g. EC2 instances, load balancers, network topology, security groups, IAM permissions, etc. | Terraform, CloudFormation |
| Deploy | Deploy the service on top of the infrastructure. Roll out updates with no downtime: e.g. blue-green, rolling, canary deployments. | Scripts, Orchestration tools (ECS, K8S, Nomad) |
| Security | Encryption in transit (TLS) and on disk, authentication, authorization, secrets management, server hardening | ACM, EBS Volumes, Cognito, Vault, CiS |
| Monitoring | Availability metrics, business metrics, app metrics, server metrics, events, observability, tracing, alerting. | CloudWatch, DataDog, New Relic, Honeycomb |
| Logs | Rot |
View GitHub Profile
thuandt
/ production-grade-checklist.md
Created
January 10, 2026 21:31
— forked from samloh84/production-grade-checklist.md
production-grade-checklist.md
thuandt
/ grafana_prometheus_redis_dashboard.json
Created
July 6, 2022 13:27
Redis Dashboard for Prometheus Redis Exporter 1.x (breakdown by IP) https://grafana.com/grafana/dashboards/763 https://github.com/oliver006/redis_exporter/blob/master/contrib/grafana_prometheus_redis_dashboard.json
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| { | |
| "annotations": { | |
| "list": [ | |
| { | |
| "builtIn": 1, | |
| "datasource": { | |
| "type": "datasource", | |
| "uid": "grafana" | |
| }, | |
| "enable": true, |
thuandt
/ grafana-redis-exporter-dashboard-by-pod.json
Last active
July 6, 2022 13:19
— forked from polefishu/grafana-redis-exporter-dashboard-by-pod.json
Redis Exporter 1.x Dashboard for Grafana (breakdown by pod instead of an IP)
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| { | |
| "annotations": { | |
| "list": [ | |
| { | |
| "builtIn": 1, | |
| "datasource": { | |
| "type": "datasource", | |
| "uid": "grafana" | |
| }, | |
| "enable": true, |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/sh | |
| # Setup OpenWRT router | |
| set -e | |
| if [ -f /etc/upgraded ]; then | |
| echo "router has been configured properly!" | |
| else | |
| if ping -q -c 1 -W 1 8.8.8.8 >/dev/null; then | |
| echo "start reconfigure router" |
thuandt
/ quick-tips-optimizing-jvm.md
Created
August 4, 2018 20:05
— forked from djspiewak/quick-tips-optimizing-jvm.md
I was talking to a coworker recently about general techniques that almost always form the core of any effort to write very fast, down-to-the-metal hot path code on the JVM, and they pointed out that there really isn't a particularly good place to go for this information. It occurred to me that, really, I had more or less picked up all of it by word of mouth and experience, and there just aren't any good reference sources on the topic. So… here's my word of mouth.
This is by no means a comprehensive gist. It's also important to understand that the techniques that I outline in here are not 100% absolute either. Performance on the JVM is an incredibly complicated subject, and while there are rules that almost always hold true, the "almost" remains very salient. Also, for many or even most applications, there will be other techniques that I'm not mentioning which will have a greater impact. JMH, Java Flight Recorder, and a good profiler are your very best friend! Mea
thuandt
/ deployment-tool-ansible-puppet-chef-salt.md
Created
June 8, 2018 01:06
— forked from jaceklaskowski/deployment-tool-ansible-puppet-chef-salt.md
Choosing a deployment tool - ansible vs puppet vs chef vs salt
- no upfront installation/agents on remote/slave machines - ssh should be enough
- application components should use third-party software, e.g. HDFS, Spark's cluster, deployed separately
- configuration templating
- environment requires/asserts, i.e. we need a JVM in a given version before doing deployment
- deployment process run from Jenkins
thuandt
/ useful_pandas_snippets.py
Created
June 6, 2018 16:37
— forked from bsweger/useful_pandas_snippets.md
Useful Pandas Snippets
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # List unique values in a DataFrame column | |
| # h/t @makmanalp for the updated syntax! | |
| df['Column Name'].unique() | |
| # Convert Series datatype to numeric (will error if column has non-numeric values) | |
| # h/t @makmanalp | |
| pd.to_numeric(df['Column Name']) | |
| # Convert Series datatype to numeric, changing non-numeric values to NaN | |
| # h/t @makmanalp for the updated syntax! |
thuandt
/ random-crontab.md
Created
January 9, 2017 04:19
Random delay for cron.daily, cron.weekly, cron.monthly
Wouldn’t it be nice if cron’s daily, weekly and monthly jobs could be run with a
slight offset? At least that’s what I thought when 20+ servers were hitting my
backup infrastructure at once. The scripts in /etc/cron.daily,
/etc/cron.weekly and /etc/cron.monthly are triggered directly from crontab
at fixed times. Here’s what /etc/crontab looks like in Ubuntu Server 16.04:
$ gcloud auth application-default login
$ gcloud config set core/project ${GCP_PROJECT}
$ gcloud config set core/account ${SERVICE_ACCOUNT}
$ gcloud config set compute/region ${REGION}
$ gcloud config set compute/zone ${ZONE}
$ gcloud config set container/cluster ${CLUSTER_NAME}
# gcloud config set container/use_client_certificate True
thuandt
/ types.markdown
Created
October 9, 2016 18:16
— forked from garybernhardt/types.markdown
A type is a collection of possible values. An integer can have values 0, 1, 2, 3, etc.; a boolean can have values true and false. We can imagine any type we like: for example, a HighFive type that allows the values "hi" or 5, but nothing else. It's not a string and it's not an integer; it's its own, separate type.
Statically typed languages constrain variables' types: the programming language might know, for example, that x is an Integer.
In that case, the programmer isn't allowed to say x = true; that would be an invalid program.
The compiler will refuse to compile it, so we can't even run it.
NewerOlder