Public “Office Hours” (2021-02-24)

Erik OstermanOffice Hours

Here's the recording from our DevOps “Office Hours” session on 2021-02-24.

We hold public “Office Hours” every Wednesday at 11:30am PST to answer questions on all things DevOps/Terraform/Kubernetes/CICD related.

These “lunch & learn” style sessions are totally free and really just an opportunity to talk shop, ask questions and get answers.

Register here: cloudposse.com/office-hours

Basically, these sessions are an opportunity to get a free weekly consultation with Cloud Posse where you can literally “ask me anything” (AMA). Since we're all engineers, this also helps us better understand the challenges our users have so we can better focus on solving the real problems you have and address the problems/gaps in our tools.

– – –
00:00:00 Intro
– – –
00:01:11 HashiCorp Prototype for Terraform Module Acceptance Terraform Testing
See docs, and requires 0.15+ (alpha)
https://github.com/hashicorp/terraform/pull/27873
https://github.com/hashicorp/terraform/pull/27873/files#diff-dd1cafe2a571c5e9f7b56d4d821e882c22d32b99f39260f53bd4e274b3550615
– – –
00:05:27 Terraform 0.15+ is shipping with support for undeclared variables values, but without the deprecation notice.
https://github.com/hashicorp/terraform/issues/22004#issuecomment-783757089
– – –
00:08:55 Atlantis 0.17.0-beta shipped with basic support for OPA
https://github.com/runatlantis/atlantis/releases/tag/v0.17.0-beta
– – –
00:16:10 Terraform 0.15 -chdir
– – –
00:20:27 Sponsor Cloud Posse / SweetOps / Office Hours for $1 / mo
https://github.com/sponsors/cloudposse
– – –
00:20:54 Check out last week's office hours on YouTube!
https://www.youtube.com/c/cloudposse
– – –
00:21:13 Is there a standard way of “injecting” a template into helm charts before it's parsed with helmfile?
– – –
00:24:54 Can the kustomize features of helmfile use helpers defined in the chart?
– – –
00:32:50 Raw chart pattern vs wrapping provider's chart with a parent chart
– – –
00:39:35 Can I have consistent namespaces in my sub charts from the parent charts?
– – –
00:46:13 Have you ever deployed Boundary?
– – –
00:48:32 What is the best place to propose a change to HCL2 language?
– – –
00:50:25 What is helmfile.d?
– – –
00:51:26 Disabling a module but Terraform still sees it?
– – –
00:53:16 Opinions on AWS CDK pattern-based code?
– – –
00:59:10 Outro
– – –

Public “Office Hours” (2021-02-17)

Erik OstermanOffice Hours

Here's the recording from our DevOps “Office Hours” session on 2021-02-17.

We hold public “Office Hours” every Wednesday at 11:30am PST to answer questions on all things DevOps/Terraform/Kubernetes/CICD related.

These “lunch & learn” style sessions are totally free and really just an opportunity to talk shop, ask questions and get answers.

Register here: cloudposse.com/office-hours

Basically, these sessions are an opportunity to get a free weekly consultation with Cloud Posse where you can literally “ask me anything” (AMA). Since we're all engineers, this also helps us better understand the challenges our users have so we can better focus on solving the real problems you have and address the problems/gaps in our tools.

– – –
00:00:00 Intro
– – –
00:01:16 Terraform 0.14.7 (just some minor bug fixes)
– – –
00:01:45 Sponsor Cloud Posse / SweetOps for $1 / mo
https://github.com/sponsors/cloudposse
– – –
00:02:10 cloudposse/terraform-aws-cloudwatch-logs Updated to Terraform 0.14 (HCL2)
https://github.com/cloudposse/terraform-aws-cloudwatch-logs
– – –
00:02:38 Bridgecrew (makers of Checkov) acquired for $156M
https://techcrunch.com/2021/02/16/sources-palo-alto-networks-acquired-devops-security-startup-bridgecrew-for-around-200m/
– – –
00:03:14 Spacelift raises $6M Series A led by Blossom Capital
https://techcrunch.com/2021/02/11/cloud-automation-startup-spacelift-raises-6m-series-a-led-by-blossom-capital/
– – –
00:04:13 Draw architecture diagrams in the browser declaratively.
https://cloudgram.dedalusone.com/
– – –
00:05:07 Check out last week's office hours on YouTube!
https://www.youtube.com/c/cloudposse
– – –
00:05:35 EKS supports now Kubernetes 1.19
– – –
00:06:50 What are the merits of INVEST & how does everyone feel about it?
– – –
00:12:54 When should we create a module vs use raw terraform resources?
– – –
00:29:28 Making TF modules work together with clean naming and tagging (terraform-null-label)
– – –
00:32:15 context.tf vs labels
– – –
00:41:00 CLI for Terraform Enterprise/Cloud (tecli)
https://github.com/awslabs/tecli
– – –
00:42:03 What secret/key management system do you prefer to use?
– – –
00:43:20 Anyone use HashiCorp’s Boundary?
– – –
00:55:24 Deploying auto-scaler with Helm vs Terraform
– – –
00:59:15 Outro
– – –

Public “Office Hours” (2021-02-10)

Erik OstermanOffice Hours

Here's the recording from our DevOps “Office Hours” session on 2021-02-10.

We hold public “Office Hours” every Wednesday at 11:30am PST to answer questions on all things DevOps/Terraform/Kubernetes/CICD related.

These “lunch & learn” style sessions are totally free and really just an opportunity to talk shop, ask questions and get answers.

Register here: cloudposse.com/office-hours

Basically, these sessions are an opportunity to get a free weekly consultation with Cloud Posse where you can literally “ask me anything” (AMA). Since we're all engineers, this also helps us better understand the challenges our users have so we can better focus on solving the real problems you have and address the problems/gaps in our tools.

– – –
00:00:00 Intro
– – –
00:01:12 cloudposse/terraform-aws-sso released!
https://github.com/cloudposse/terraform-aws-sso
– – –
00:02:45 cloudposse/terraform-aws-components documented!
https://github.com/cloudposse/terraform-aws-components
– – –
00:05:13 cloudposse/terraform-aws-firewall-manager WIP
– – –
00:05:31 Cloud Posse docs getting serious make-over (stay tuned)
https://docs.cloudposse.com/
– – –
00:07:02 codefresh/pipeline-creator will automatically create your pipelines #gitops
https://github.com/cloudposse/actions/tree/master/codefresh/pipeline-creator
– – –
00:11:17 Deciding between CI/CD SaaS providers
– – –
00:23:25 Terraform AWS provider for ASGs supports instance refreshes (12/2020)
https://github.com/hashicorp/terraform-provider-aws/issues/13785#issuecomment-748349418
– – –
00:24:08 Terraform v0.15.0-alpha20210210 just dropped, 0.14.6 (SSO cached credentials)
https://github.com/hashicorp/terraform/releases/tag/v0.15.0-alpha20210210
https://github.com/hashicorp/terraform/releases/tag/v0.14.6
– – –
00:24:36 More discussion on Terraform AWS provider for ASGs supports instance refreshes (12/2020)
https://github.com/hashicorp/terraform-provider-aws/issues/13785#issuecomment-748349418
– – –
00:29:57 Check out last week's office hours on YouTube and we’re hiring!
https://www.youtube.com/c/cloudposse
https://jobs.cloudposse.com
– – –
00:30:30 Anti-pattern: Mixing application deployment with infrastructure deployment
– – –
00:42:43 Anyone have experience/recommendation keeping your Terraform code DRY?
– – –
00:58:17 Terraform state backend options
– – –
01:05:16 Outro
– – –

Public “Office Hours” (2021-02-03)

Erik OstermanOffice Hours

Here's the recording from our DevOps “Office Hours” session on 2021-02-03.

We hold public “Office Hours” every Wednesday at 11:30am PST to answer questions on all things DevOps/Terraform/Kubernetes/CICD related.

These “lunch & learn” style sessions are totally free and really just an opportunity to talk shop, ask questions and get answers.

Register here: cloudposse.com/office-hours

Basically, these sessions are an opportunity to get a free weekly consultation with Cloud Posse where you can literally “ask me anything” (AMA). Since we're all engineers, this also helps us better understand the challenges our users have so we can better focus on solving the real problems you have and address the problems/gaps in our tools.

– – –
00:00:00 Intro
– – –
00:01:13 cloudposse/terraform-provider-utils released! supports deep merging
https://github.com/cloudposse/terraform-provider-utils
– – –
00:02:35 cloudposse/turf released to address various compliance challenges on AWS
https://github.com/cloudposse/turf
– – –
00:15:09 cloudposse/terraform-null-label now supports lower, upper, title case
https://github.com/cloudposse/terraform-null-label/pull/107
– – –
00:17:40 cloudposse/terraform-security-group module will make ingress/egress easier
(rolling this out across all our modules)
https://github.com/cloudposse/terraform-aws-security-group/
– – –
00:19:17 Announcing Version 2.0 of the Kubernetes and Helm Providers for HashiCorp
https://www.hashicorp.com/blog/announcing-version-2-0-kubernetes-and-helm-providers-for-hashicorp-terraform
– – –
00:21:05 Slacks Postmortem for Jan 4th 2021 (not our fault, blame transit gateway latency)
https://slack.engineering/slacks-outage-on-january-4th-2021/
– – –
00:22:03 Terraform aws provider now supports prometheus
https://github.com/hashicorp/terraform-provider-aws/issues/16788#issuecomment-769259528
– – –
00:22:17 Check out last week's office hours on YouTube!
https://www.youtube.com/c/cloudposse
– – –
00:23:56 Why does the terraform community use directories instead of branches for state?
– – –
00:44:21 How does geodesic/atmos fit into git workflows? we are currently using tf cloud with different workspaces for dev, stag and prod
– – –
00:51:55 Deploy any resource with the new Kubernetes provider
– – –
01:06:01 Outro
– – –