Navigation Menu

Skip to content

Instantly share code, notes, and snippets.

View Limess's full-sized avatar
🍋

Charlie Briggs Limess

🍋
32 followers · 47 following
View GitHub Profile
@Limess
Limess / improvements.md
Last active September 27, 2017 10:29
Improvements to Dewey
@Limess
Limess / serverless-encryption.md
Last active April 7, 2018 16:00
Serverless encryption thoughts

Vault

Encrypt secret configuration at rest in Vault. Access keys either:

1. At runtime using the API (either via REST or a client library, e.g. node-vault

Pros
  • Encrypted variables never exposed to AWS/in console.
  • Could be written in to a library and re-used based on approles.
@Limess
Limess / Circle CI 1.0 circle.yaml
Last active May 8, 2018 14:06
Circle CI 2.0 neo4j hang
machine:
node:
version: 8.11.1
java:
version: oraclejdk8
environment:
NEO4J_VERSION: "3.2.9"
deployment:
production:
branch: master
@Limess
Limess / some-policy.yaml
Created December 2, 2018 17:15
Example serverless deploy user IAM policy section
- Effect: Allow
Action:
- apigateway:GET
- apigateway:POST
- apigateway:GetResources
Resource: 'arn:aws:apigateway:*::/restapis'
- Effect: Allow
Action:
@Limess
Limess / role.yaml
Last active December 2, 2018 23:07
IAM example for Lambda
---
AWSTemplateFormatVersion: '2010-09-09'
Description: 'IAM role for a my-lambda at runtime'
Resources:
LambdaRole:
Type: AWS::IAM::Role
Properties:
RoleName: ApplicationRoleFor_my-lambda
ManagedPolicyArns:
- arn:aws:iam::aws:policy/service-role/AWSLambdaBasicExecutionRole
@Limess
Limess / Terraform debug output AWS provider 3.64.0
Created November 23, 2021 09:30
2021/11/23 09:27:11 [TRACE] module.article_collector.module.service: eval: *terraform.EvalWriteState
2021/11/23 09:27:11 [TRACE] EvalWriteState: recording 1 dependencies for module.article_collector.module.service.aws_ecs_task_definition.dummy[0]
2021/11/23 09:27:11 [TRACE] EvalWriteState: writing current state object for module.article_collector.module.service.aws_ecs_task_definition.dummy[0]
2021/11/23 09:27:11 [TRACE] [walkRefresh] Exiting eval tree: module.article_collector.module.service.aws_ecs_task_definition.dummy[0]
2021/11/23 09:27:11 [TRACE] vertex "module.article_collector.module.service.aws_ecs_task_definition.dummy[0]": visit complete
2021/11/23 09:27:11 [TRACE] vertex "module.article_collector.module.service.aws_ecs_task_definition.dummy": dynamic subgraph completed successfully
2021/11/23 09:27:11 [TRACE] vertex "module.article_collector.module.service.aws_ecs_task_definition.dummy": visit complete
2021/11/23 09:27:11 [TRACE] module.kinesis-reader-realtime.module.alb-rule: eval: *terraform.Eva