Go to any directory and clone repo with sources.
cd ~
git clone https://github.com/certbot/certbot
kelvinji2009
/ wildcard-ssl-certificate.md
Created
August 30, 2018 08:37
— forked from talyguryn/wildcard-ssl-certificate.md
How to get a wildcard ssl certificate and set up Nginx.
kelvinji2009
/ sync-projects
Created
August 21, 2018 14:56
— forked from JonasGroeger/sync-projects
Gitlab: Clone / Pull all projects in a group
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env bash | |
| # Documentation | |
| # https://docs.gitlab.com/ce/api/projects.html#list-projects | |
| NAMESPACE="YOUR_NAMESPACE" | |
| BASE_PATH="https://gitlab.example.com/" | |
| PROJECT_SEARCH_PARAM="" | |
| PROJECT_SELECTION="select(.namespace.name == \"$NAMESPACE\")" | |
| PROJECT_PROJECTION="{ "path": .path, "git": .ssh_url_to_repo }" |
kelvinji2009
/ vagrant_host.md
Created
June 15, 2018 05:30
— forked from lsloan/vagrant_host.md
Vagrant: host IP address from guest perspective
Unless specified otherwise in Vagrantfile, the IP address of the host (the computer running Vagrant) from the perspective of the guest
(the VM being run by Vagrant) is: 10.0.2.2
If that IP address doesn't work, then examination of Vagrantfile should reveal directives that changed it from its default value.
If an IP address can't be found in Vagrantfile, then the following command will probably reveal it:
route -A inet
kelvinji2009
/ kubeadm-install-offline.md
Created
June 14, 2018 13:47
— forked from jgsqware/kubeadm-install-offline.md
Offline Kubeadm install
docker pull gcr.io/google_containers/kube-apiserver-amd64:v1.5.0
docker pull gcr.io/google_containers/kube-controller-manager-amd64:v1.5.0
docker pull gcr.io/google_containers/kube-proxy-amd64:v1.5.0
docker pull gcr.io/google_containers/kube-scheduler-amd64:v1.5.0
docker pull weaveworks/weave-npc:1.8.2
docker pull weaveworks/weave-kube:1.8.2
Wednesday 26/07/2017
tl;dr - Kubernetes is a container orchestration engine.
tl;dr - Microservices are software components that are independently deployable and scalable.
Kubeadm Documentation : https://kubernetes.io/docs/getting-started-guides/kubeadm/
Wednesday 26/07/2017
tl;dr - An Ingress is a collection of rules that allow inbound connections to reach the cluster services.
tl;dr - The ingress-controller is just a reverse proxy that forwards incoming requests based on the URL and host header (if used).
kelvinji2009
/ pki-setup.sh
Created
March 23, 2018 08:59
— forked from chrishoffman/pki-setup.sh
Vault Multi-Level CA Setup
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| vault mount pki | |
| vault mount -path=pki1 pki | |
| vault mount -path=pki2 pki | |
| vault mount -path=pki3 pki | |
| vault mount-tune -max-lease-ttl=87600h pki | |
| vault mount-tune -max-lease-ttl=87600h pki1 | |
| vault mount-tune -max-lease-ttl=87600h pki2 | |
| vault mount-tune -max-lease-ttl=87600h pki3 | |
| vault write pki/root/generate/internal common_name="Vault Testing Root Authority" ttl=87600h |
kelvinji2009
/ vault_intermediate_ca_setup.sh
Created
March 23, 2018 08:55
— forked from codekoala/vault_intermediate_ca_setup.sh
Setting Up Hashicorp Vault with an intermediate CA based on https://gist.github.com/jefferai/092d2cd728ff66089f17
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash -e | |
| # Setup a Root CA in vault | |
| # Generate and sign an Intermediate cert | |
| # | |
| # Requires: | |
| # * A running vault server already initialzed and unsealed | |
| # * Environment variable VAULT_TOKEN is set | |
| # * vault cli (https://www.vaultproject.io) | |
| # * httpie (https://github.com/jkbrzt/httpie) |