from SHIFT ASIA

COPPER Nguyen

23 posts
Proxy gRPC traffic with Kong Gateway
AWS
members

Proxy gRPC traffic with Kong Gateway

We usually use gRPC for internal service communication, but sometime we need to expose the connection for 3rd party or another client to connect. The architecture is almost same as the image below. We
COPPER Nguyen
PostgreSQL auto failover with repmgr
cloud
members

PostgreSQL auto failover with repmgr

When using Postgres SASS we are not care about how cloud provider managed them but one a day, we need to run a postgres cluster on premise, we need to care about that. We setup 2,3 postgres server, on
COPPER Nguyen
Karpenter Just-In-Time Nodes Scale for EKS
AWS
members

Karpenter Just-In-Time Nodes Scale for EKS

Karpenter is an open-source node provisioning project built for Kubernetes. Adding Karpenter to a Kubernetes cluster can dramatically improve the efficiency and cost of running workloads on that clust
COPPER Nguyen
Setup Jenkins worker node that support building Docker Image.
devops
members

Setup Jenkins worker node that support building Docker Image.

Usually when we setup a Jenkins server, we usually use the master to build jobs. The master node is in charge of scheduling jobs, assigning slave nodes, and sending builds to slave nodes for execution
COPPER Nguyen
Access to Bastion host using AWS SSM.
members

Access to Bastion host using AWS SSM.

Usually when developer need to access to the bastion host, we will give them the private key or they give us the public key then we will add the public key to bastion host. But there is another way, i
COPPER Nguyen
Grant access to EKS cluster for Bastion Host.
devops
members

Grant access to EKS cluster for Bastion Host.

When you create an Amazon EKS cluster, the AWS Identity and Access Management (IAM) entity user or role, such as a federated user that creates the cluster, is automatically granted system:masters perm
COPPER Nguyen
Setup GitHub Runner on K8S.
members

Setup GitHub Runner on K8S.

In this post, i will guide you to install self-hosted github action runner, then setup a simple workflow to run some command on that runner. To setup github action  self-hosted runner, we will use act
COPPER Nguyen
Sync Secret from Vault to K8S using External Secrets Operator
members

Sync Secret from Vault to K8S using External Secrets Operator

When doing work on many micro services, i have to find a way to manage environment variable for them, previously i used AWS Secret Manager but when working on multiple environment with many account, t
COPPER Nguyen
Get a free TLS certificate with acme.sh
members

Get a free TLS certificate with acme.sh

When i'm using Azure Cloud, they do not provide a free certificate that can be used with their service unlike AWS, so we need to find a way to get a free TLS certificate.Luckily when i go around the i
COPPER Nguyen
Self-managed K8S cluster for development environment using AWS EC2
members

Self-managed K8S cluster for development environment using AWS EC2

Use Amazon Elastic Kubernetes Service for development environment is not a good choice if the customer or we have not enough money. The workload for development environment is usually small so we can
COPPER Nguyen