How to utilise

37

Transcript of How to utilise

Page 1: How to utilise
Page 2: How to utilise

Alexander Tolstikov Smile Open Source Solutions

How to utilise Open Source tools to create CI/CD & DevOps workflows

without vendor lock-in

Page 3: How to utilise

Possible workflows:

- Create Kubernetes cluster- Build release artifact (composer install, yarn build, npm)

- Deliver artifact (ansistano, capistrano, etc)- Drush operations

- Automated functional / load / smoke testing - Anything else?

Page 4: How to utilise

Workflow example:Kubernetes cluster creation on GCP

Page 5: How to utilise

Evolution of the workflow

Page 6: How to utilise

Iteration 1:Create k8s cluster manually with UI

ToolsGCP UI

Secrets/Access You need to be authenticated in the browser

Pros • Very fast • No need to maintain dependencies / tools on the local PC

Cons • Need to remember all command params • Need to do the same for all resources (VPC, subnets, DNS, etc) • Human error-prone • Only you know what you did

Page 7: How to utilise

Congratulations! We just created a snowflake cluster!

Page 8: How to utilise

Snowflakes are beautiful…

Page 9: How to utilise

…but so different (and fragile)

Page 10: How to utilise

“ “Martin Fowler

The true fragility of snowflakes, however, comes when you need to change them. Snowflakes soon become hard to understand and modify. You're not sure what parts of the configuration are important. Their fragility leads to long, stressful bouts of debugging.

Page 11: How to utilise

Toolsgcloud (from Google Cloud SDK)

Secrets/Access Need to be authenticated on the local PC

Pros More “fixed” compared to manual UI operation

Cons • Need to remember all command params • Need to do the same for all other resources (VPC,

subnets, …) • Human error-prone • No centralised history / logs • Still “Snowflake” infrastructure

Iteration 2: Create k8s cluster manually with “gcloud” command

Page 12: How to utilise

Tools • terraform Secrets • Need to use GCP key file stored on the local PC Principles / Concepts • Infrastructure as Code Pros • Logic and configuration are separated (different terraform files) • Can be (should be!) checked-in into Git repo Cons • Need to copy/paste files with variables for different environments manually • Configuration drift is still possible with multiple environments

Iteration 3:Create k8s cluster with terraform: Manual terraform commands execution

Page 13: How to utilise

Iteration 4:PROD & TEST environments & single master config file

Page 14: How to utilise

Need to introduce some tools!

Page 15: How to utilise

“ “Unix philosophy

• Do one thing and do it well. • Make programs to work together. • Write programs to handle text streams,

because that is a universal interface.

Page 16: How to utilise

Tool: uniconf (https://github.com/aroq/uniconf)Config processing (YAML)

Sorry, no documentation…

https://github.com/aroq/uniconf
Page 17: How to utilise

Input config Output config

OutputInput

Page 18: How to utilise

Tool: uniconf (https://github.com/aroq/uniconf)Config processing (YAML)

https://github.com/aroq/uniconf
Page 19: How to utilise

Tool:jq (https://github.com/stedolan/jq)

Config processing (JSON)

Use to extract data from JSON

A lot of filters are available

Check the documentation!

https://github.com/stedolan/jq
Page 20: How to utilise

Tool:yq (https://github.com/mikefarah/yq)

Config processing (YAML)

Same as jq tools but for YAML files

Basically is a wrapper over jq tool

https://github.com/mikefarah/yq
Page 21: How to utilise

uniconf | yq

Page 22: How to utilise

Output

Page 23: How to utilise

Tool:gomplate (https://github.com/hairyhenderson/gomplate)

Template rendering. Supports lots of local and remote datasources.

Check the documentation!

https://github.com/hairyhenderson/gomplate
Page 24: How to utilise

Output

Output

Template

Page 25: How to utilise

Tool:variant (https://github.com/mumoshu/variant)

“One glue to glue them all!”

“Makefile on steroids”

Task definition

Task execution

https://github.com/mumoshu/variant
Page 26: How to utilise

Variant task execution

Page 27: How to utilise

Plain command vs Variant task execution

Page 28: How to utilise

Iteration 4:PROD & TEST environments & single master config file

Now you need to maintain more tools / dependencies:

terraform unicorn

jq / yq gomplate

variant

It can be an issue if we want to execute this workflow somewhere else because we’ll need to sync all software versions, dependencies, etc

Page 29: How to utilise

Dependency hellPythonRuby

NodeJS…

Page 30: How to utilise

How to fix the Dependency Hell issue: Put all tools into the container (Docker)

+ =love

Page 31: How to utilise

Secrets management

Page 32: How to utilise

Managing secrets

Git Secret (https://github.com/sobolevn/git-secret#git-secret)

Chamber (https://github.com/segmentio/chamber)

GPG (https://gpgtools.org/)

AWS Vault (https://github.com/99designs/aws-vault)

https://github.com/sobolevn/git-secret#git-secret
https://github.com/segmentio/chamber
https://gpgtools.org/
https://github.com/99designs/aws-vault
Page 33: How to utilise

Execute the workflow in the CICD engine: Gitlab CI

Page 34: How to utilise

Gitlab CI pipeline

Page 35: How to utilise

Demo time!

Page 36: How to utilise

Next steps:GitOps? Check Atlantis:

https://github.com/runatlantis/atlantis

https://github.com/runatlantis/atlantis
Page 37: How to utilise

Alexander [email protected] / [email protected]

You can find me on Drupal slack as well!

https://www.smile.eu/

mailto:[email protected]
mailto:[email protected]
https://www.smile.eu/

Circular Letter 0025/2020 - Department of Education and Skills€¦ · Employers will need to consider how best to utilise employees to facilitate the delivery of educational services.

Circular Letter 0025/2020 - Department of Education and Skills€¦ · Employers will need to consider how best to utilise employees to facilitate the delivery of educational services.

To explore through experience, the process of inquiry and how we can utilise it Purpose of this session.

To explore through experience, the process of inquiry and how we can utilise it Purpose of this session.

Update on growers ability to continue to utilise QSL · 2/9/2016 · Update on growers ability to continue to utilise QSL ... Inkerman Mill had a scheduled stop with caustic clean

Update on growers ability to continue to utilise QSL · 2/9/2016 · Update on growers ability to continue to utilise QSL ... Inkerman Mill had a scheduled stop with caustic clean

Addressing Local Needs - GlobalGiving · sources.T his led to a partnership with Solar Cookers International, an organisation that helps communities learn how to utilise sun energy

Addressing Local Needs - GlobalGiving · sources.T his led to a partnership with Solar Cookers International, an organisation that helps communities learn how to utilise sun energy

Utilising tax incentives to maximise cash flow...these can be surrendered for an immediate cash payment. Further information For further information on how to utilise tax incentives

Utilising tax incentives to maximise cash flow...these can be surrendered for an immediate cash payment. Further information For further information on how to utilise tax incentives

Know: The Intervals AQA require you to aurally recognise and utilise.

Know: The Intervals AQA require you to aurally recognise and utilise.

 · 2019-06-11 · Utilise our volunteer branches to expand the desexing and rehoming work undertaken in their regions; Utilise AWL's status as an advisor to Government to advocate

 · 2019-06-11 · Utilise our volunteer branches to expand the desexing and rehoming work undertaken in their regions; Utilise AWL's status as an advisor to Government to advocate

How to Effectively Utilise LinkedIn for your Executive Job Search

How to Effectively Utilise LinkedIn for your Executive Job Search

Comment Salesforce utilise Salesforce

Comment Salesforce utilise Salesforce

Optimise strategic insights to transform your business · 2017-06-08 · 2.30 Case study: Unlocking insights through data science and putting machine learning to work • How we utilise

Optimise strategic insights to transform your business · 2017-06-08 · 2.30 Case study: Unlocking insights through data science and putting machine learning to work • How we utilise

FOR AGRICHEMICALS IN VEGETABLE BRASSICAS.. Utilise naturally occurring predator populations. (IPM) Utilise naturally occurring diseases of target.

FOR AGRICHEMICALS IN VEGETABLE BRASSICAS.. Utilise naturally occurring predator populations. (IPM) Utilise naturally occurring diseases of target.

Queuing Sql Server: Utilise queues to increase performance in SQL Server

Queuing Sql Server: Utilise queues to increase performance in SQL Server

The Beginner’s Guide on BioStar API - Supremakb.supremainc.com/knowledge/...media=en:the_beginner_s_guide_on_… · The Beginner’s Guide on BioStar API. ... How to utilise “Postman”

The Beginner’s Guide on BioStar API - Supremakb.supremainc.com/knowledge/...media=en:the_beginner_s_guide_on_… · The Beginner’s Guide on BioStar API. ... How to utilise “Postman”

Benchmarking: Top 5 tips to utilise this within your business

Benchmarking: Top 5 tips to utilise this within your business

Bachelor in Business Studies - efsa.unsa.ba · examination and the written assignment. ... 3. Microeconomics 4. ... are engaged in learning how to utilise library resources by using

Bachelor in Business Studies - efsa.unsa.ba · examination and the written assignment. ... 3. Microeconomics 4. ... are engaged in learning how to utilise library resources by using

How Clever Businesses Utilise IT Managed Services

How Clever Businesses Utilise IT Managed Services

Today's Aerospace vehicles utilise numerous pyrotechnic devices to separate structural

Today's Aerospace vehicles utilise numerous pyrotechnic devices to separate structural

How To Utilise Keywords To Attract More Clients

How To Utilise Keywords To Attract More Clients

"Architects do it with models" How do Architects and Fashion Designers utilise 'The Model' as a means of work?

"Architects do it with models" How do Architects and Fashion Designers utilise 'The Model' as a means of work?

A STRATEGIC FRAMEWORK TO UTILISE VENTURE CAPITAL …

A STRATEGIC FRAMEWORK TO UTILISE VENTURE CAPITAL …