Automation Archives - DEVOPS DONE RIGHT

CI/CD with GitHub Actions – Concepts

Welcome to the first part of our blog on GitHub Actions!

This blog will delve into fundamental concepts essential for understanding GitHub Actions. Get ready to embark on a journey through the basics, paving the way for the upcoming implementation part of our blog. Stay tuned for hands-on demonstrations and practical applications in the next blog. Let’s dive in!

What is GitHub Actions?

GitHub Actions enables users to automate various GitHub events, such as cloning a repository, generating Docker images, and testing scripts. Developers use it to automate workflows across issues, pull requests, and more. This means that users can build, test, and deploy code written in different languages and running on different platforms, all using the same automation tool.

How do GitHub Actions work?

Amazon ECR Container Images Across Accounts or Regions

Want to implement an AWS Elastic Container Registry Replication practice in your DevOps solution? But don’t know how to start and where to go. Folks, now you are on the right path.

We’re pursuing this to safeguard our production resources in the ap-south-1 (Mumbai) region from potential disasters and connectivity issues. Ensuring resource distribution across other AWS regions is critical. Our microservices-driven applications rely on Docker images, including custom ones crucial for disaster recovery. AWS Container Registry offers a secure, efficient solution for storing and managing Docker images, simplifying image storage, and enabling seamless sharing across private or public environments.

So, here you may wonder how we can replicate the same images from its registry to another AWS Account(cross-accounts) or in the same account in different regions(cross-region).

Pre-requisite:

Need two AWS Accounts with admin access to Amazon ECR service and programmatic access for it(to pull/push images).
Login/Signup: https://aws.amazon.com/console/

Note: 1st AWS Account: Source account

2nd AWS Account: Destination account

Enough theory part let’s take action for this,

Nifi Cluster Setup with External Zookeeper

Apache NiFi is an open-source data integration and automation tool that enables the automation of data flow between different systems. NiFi provides a user-friendly interface to design, control, and manage the flow of data between various sources and destinations. The tool is particularly useful in handling data from different sources, applying transformations, and routing it to different systems in real-time.

Why use the Nifi cluster over the standalone?

Performance: Clusters can handle higher throughput and provide better performance than standalone instances due to load distribution.
Fault Tolerance: Clusters provide high availability and fault tolerance such as if one node fails, the other nodes take over the processing.
Scalability: Clusters allow for scalability by adding more nodes, whereas standalone instances have limitations in scaling.

Enabling CORS on Azure APIM

Before we start on How to enable CORS in Azure API management service, let’s discuss the Azure APIM briefly –

What is Azure API Management?

Azure API Management is a comprehensive platform provided by Microsoft Azure that allows organizations to create, publish, secure, and analyze APIs. Whether you’re exposing APIs to external developers or managing internal APIs within your organization, Azure APIM simplifies the process and offers a range of features to ensure your APIs are both accessible and secure.

Key Features of Azure APIM:

1. API Gateway: Azure APIM acts as a gateway between your APIs and consumers. It handles requests, routing, and caching, improving API performance and reliability.

2. Security and Authentication: Secure your APIs with authentication, authorization, and OAuth support. Set up rate limiting and IP filtering to protect against abuse.

3. Developer Portal: Provide a developer-friendly portal where external developers can discover and consume your APIs. Publish documentation, code samples, and interactive API testing tools.

How to Adopt Shift Left Security on the Cloud?

Explore the principles, tools and best practices that empower you to fortify your cloud-based infrastructure & applications and dynamic pipelines safeguarding your digital assets.

In an era where cloud computing reigns supreme, the concept of security has undergone a profound transformation. As businesses rapidly migrate their operations and data to the cloud, the need to secure this digital frontier becomes increasingly paramount. Enter “Shift Left Security,” a paradigm shift in cybersecurity that places the emphasis on prevention and early detection rather than reaction. In this blog, we’ll delve into the essential strategies and practices that enable organizations to adopt Shift Left Security seamlessly in their cloud environments.