Skip to content

Instantly share code, notes, and snippets.

View david7482's full-sized avatar

david7482

18 followers · 3 following
View GitHub Profile
@david7482
david7482 / http2.getClientConn.go
Last active July 29, 2021 18:09
func (p *http2clientConnPool) getClientConn(req *Request, addr string, dialOnMiss bool) (*http2ClientConn, error) {
// more codes
p.mu.Lock()
for _, cc := range p.conns[addr] {
if st := cc.idleState(); st.canTakeNewRequest {
p.mu.Unlock()
return cc, nil
}
}
// more codes
@david7482
david7482 / s3-bucket-policy-allow-cloudflare-ip.json
Created June 14, 2021 19:32
s3-bucket-policy-allow-cloudflare-ip
{
"Version": "2012-10-17",
"Statement": [
{
"Sid": "AddPerm",
"Effect": "Allow",
"Principal": "*",
"Action": "s3:GetObject",
"Resource": "arn:aws:s3:::api-doc.domain-a.com/*",
"Condition": {
@david7482
david7482 / cloudflare-worker-rewrite-host-header.js
Last active June 14, 2021 18:44
cloudflare-worker-rewrite-host-header.js
addEventListener('fetch', event => {
event.respondWith(handleRequest(event.request));
})
async function handleRequest(request) {
return fetch(
"http://api-doc.domain-a.com.s3-website-ap-northeast-1.amazonaws.com"
+ new URL(request.url).pathname,
request);
}
@david7482
david7482 / tf-stateful-fargate-ecs-service.tf
Created April 18, 2020 20:14
resource "aws_ecs_cluster" "cluster" {
name = "stateful-fargate"
setting {
name = "containerInsights"
value = "enabled"
}
tags = {
Name = "stateful-fargate"
@david7482
david7482 / tf-stateful-fargate-ecs-task-definition.tf
Last active July 16, 2020 01:30
module "container_definition" {
source = "github.com/cloudposse/terraform-aws-ecs-container-definition?ref=0.23.0"
container_name = "filebrowser"
container_image = "david7482/filebrowser"
essential = "true"
port_mappings = [
{
protocol = "tcp"
@david7482
david7482 / tf-stateful-fargate-efs.tf
Created April 18, 2020 19:14
resource "aws_efs_file_system" "efs" {
tags = {
Name = "filebrowser"
}
}
resource "aws_efs_mount_target" "mount" {
file_system_id = aws_efs_file_system.efs.id
// create efs mount targets for each AZ
@david7482
david7482 / tf-website-route53.tf
Created January 29, 2020 09:19
resource "aws_route53_record" "website" {
zone_id = data.aws_route53_zone.main.zone_id
name = var.fqdn
type = "A"
alias {
evaluate_target_health = false
name = aws_cloudfront_distribution.website.domain_name
zone_id = aws_cloudfront_distribution.website.hosted_zone_id
}
@david7482
david7482 / tf-website-cloudfront.tf
Created January 29, 2020 08:59
resource "aws_cloudfront_origin_access_identity" "origin_access_identity" {
comment = var.website_name
}
resource "aws_cloudfront_distribution" "website" {
enabled = true
is_ipv6_enabled = true
comment = var.website_name
default_root_object = var.index_document
price_class = var.cloudfront_price_class
@david7482
david7482 / tf-website-acm.tf
Last active November 19, 2021 03:27
resource "aws_acm_certificate" "cert" {
provider = aws.us-east-1
domain_name = var.fqdn
validation_method = "DNS"
}
resource "aws_route53_record" "cert_validation" {
provider = aws.us-east-1
name = tolist(aws_acm_certificate.cert.domain_validation_options)[0].resource_record_name
records = [tolist(aws_acm_certificate.cert.domain_validation_options)[0].resource_record_value]
@david7482
david7482 / tf-website-s3-buckets.tf
Last active January 29, 2020 08:58
resource "aws_s3_bucket" "log" {
bucket = "${var.website_name}-log"
acl = "log-delivery-write"
lifecycle_rule {
enabled = true
expiration {
days = 30
}
}