Blog Posts
Filter by tag:
May 19, 2025
Deploying an RKE2 Cluster with CAPI, Rancher Turtles, and Proxmox
If you’ve recently set up Rancher and want to deploy your first Kubernetes cluster on Proxmox, this guide will walk you through the process. By combining Cluster API (CAPI), Rancher Turtles, and…
November 27, 2024
Terraform Ephemeral Resources
Storing sensitive data like database passwords and API keys in Terraform state files poses significant security risks. Terraform 1.10 introduced the resource to address this issue, allowing dynamic…
October 04, 2024
Managing Secrets Across Kubernetes Clusters with Fleet
Originally published on the River Point Technology Blog For organizations leveraging Kubernetes and Rancher, efficient secret management across multiple clusters is a common concern. This blog post…
May 28, 2024
Developing a Nomad Autoscaler for Harvester
Nomad x Harvester Nomad orchestrates application deployment and management. As applications grow in size, managing resource consumption becomes crucial. The Nomad Autoscaler is a pluggable service…
January 26, 2024
Multi-Cluster Prometheus: Scaling Metrics Across Kubernetes Clusters
Building upon Bartłomiej Płotka's insightful blog on Prometheus and its passthrough agent mode, this post dives into implementing multi-cluster Prometheus support. Notably, the official inclusion of…
January 23, 2024
Publishing Terraform Providers to Terraform Cloud Private Registry
Originally published on the River Point Technology Blog HashiCorp’s Terraform Cloud provides a centralized platform for managing infrastructure as code. It’s a leading provider in remote Terraform…
January 10, 2024
Creating Function as a Service in Kubernetes with Argo Events
Containers have changed service creation in software development, and with the advent of AWS Lambda, Function as a Service (FaaS) emerged, further reshaping the approach to service execution. However…
November 22, 2022
Stuct Reflection to Dot Notation
Recently we were building an API that needed to expose an entire struct for customizable input. Through the curation of two methods, , a function that converts structs to dot notation, and the second…
September 23, 2022
How HPAs prevented a Self-Inflicted DOS
Originally published on the MyFitnessPal Blog Think of a scaling problem, how does a system handle when an influx of traffic happens? Now imagine a bug, where essentially all messages were being held…
May 21, 2022
Highly Available Pritunl on Kubernetes
Originally published on the MyFitnessPal Blog Background MyFitnessPal engineering runs the large majority of our cloud infrastructure and applications in private VPCs, and interacting with these…
May 13, 2022
Terraform Workspaces for Local AWS Development
There are times when you need to develop the AWS API but could get away with merely imitating it. Using containers, we can stand up emulated AWS services. This can help when say… you’re completely…
February 17, 2022
Configuring AWS SSO with Terraform
Terraform provides several resources for configuring AWS SSO across an organization. Once the service is enabled, you will need to define an identity source. This can be using the built-in directory…
December 08, 2021
Mocking the AWS SDK With Go
Mocking a client library is a common technique when building test-driven development. In golang, this can be done by creating structs that implement interfaces and then override the methods you are…
November 15, 2021
Defining resources within Kubernetes manifests
Within a given pod, a resource request and limit can be set for every container. These values are helpful for the application's health, as you have guaranteed capacity. It can also benefit the compute…
November 30, 2020
Shift-left Infrastructure Security
Bridging the gap between security and engineering can bring significant value in compliance and operational protection, and its impact will place broad strokes in knowledge transfer and relationship…
August 10, 2020
Istio Canary Deploys
Performing a canary release, rather it be for A/B testing or controlled rollout, is a common practice within software deployments. Istio enables canary routing, through a plethora of HTTP Match…
June 25, 2020
Service Mesh Showdown: Consul vs Istio
As we look to move to a microservice environment at my $job, several requirements such as mutual TLS between services, distributed tracing, and the lockdown of traffic came about. A service mesh…
June 03, 2020
Kubernetes Integration Testing
Summary Infrastructure pipeline testing is essential for ensuring minimal regression, healthy systems, and faster mean time to recovery in patches. I have found it especially useful to perform…
February 15, 2020
Securing traffic with ACM Private Certificate Authority
Overview Configuring applications to remain unencrypted poses several security risks as user data traverses over networks in cleartext. Although it is widely accepted for utilizing https over the…
January 25, 2020
Private Fargate Deployment with VPC Endpoints
VPC Endpoints allow you to have private containers, pulled from ECR repositories, with no external network ingress or egress. These containers can enhance your infrastructure security posture by…
January 27, 2019
Caching SPAs for SEO with Lambda@Edge
Tournamentmgr.com's SEO performance has been historically poor from conception. When analyzing the number of pages google crawled, it averaged below forty per day. Pre implementation Despite the fact…
November 01, 2018
Dynamic Nginx Configuration for Internal Proxy
Working around a home network can be challenging at times, especially when it comes to a secular ip address. Doing web and api development, this introduces an even greater problem in the fact that now…