Skip to content

Instantly share code, notes, and snippets.

Avatar
💭
automating the world

Apollo Clark apolloclark

💭
automating the world
View GitHub Profile
View http security headers.md
View aws iam architecture.md

IAM Multi-tenancy Architecture

This article is an overview of IAM implementations, focused on multi-tenancy deployments.

 

Terminology

  • IAM User - IAM access account.
  • IAM Group - A grouping of IAM Users.
View ansible_versions.md
pre_tasks:
  - name: debug
    debug:
      msg: "{{ ansible_distribution }}-{{ ansible_distribution_release }}-{{ ansible_distribution_major_version }}-{{ ansible_distribution_version }}.yml"


{{ ansible_distribution }}
{{ ansible_distribution_release }}
{{ ansible_distribution_major_version }}
@apolloclark
apolloclark / jenkins credentials-plugin example.md
Created Jan 31, 2019
Jenkins credentials-plugin example script
View jenkins credentials-plugin example.md
# run jenkins/jenkins:lts, with volumes, exposed ports
docker run -d -v jenkins_home:/var/jenkins_home \
  -p 8080:8080 -p 50000:50000 jenkins/jenkins:lts
  
# Jenkins Pipeline script, using Credentials

pipeline {
    agent any
@apolloclark
apolloclark / kubernetes cheatsheet.md
Last active Jan 15, 2019
kubernetes cheatsheet
View kubernetes cheatsheet.md
View threat hunting in the cloud.md

Approach

  1. Inventory Management
  2. Access Management
  3. Configuration Management
  4. Patch Management
  5. Logging and Monitoring
  6. Alerts
  7. Automated Remediation
  • Keep it simple
@apolloclark
apolloclark / update_aws_ipv4.sh
Last active Nov 30, 2020
Dynamically update an AWS Route53 sub-domain IP address to your home router IP
View update_aws_ipv4.sh
[change-resource-record-set.json]
{
"Comment": "Updating IP address",
"Changes": [
{
"Action": "UPSERT",
"ResourceRecordSet": {
"Name": "domain.example.com",
"Type": "A",
"TTL": 60,
You can’t perform that action at this time.