Tags
alpine apache ca cdc central cert-manager chef cni consul datalog devops devstack docker ec2 envoy erlang euc2015 firebuild firecracker fortran ganglia git go golang gossip gossiperl grpc hydra iam iap idp influxdb infrastructure istio jailer jfrog k8s kafka keto keycloak keycloak17 keycloak18 keynote knife kratos kubernetes letsencrypt logstash marathon maven mesos microvm monit multi-tenant multipass nomad npm oathkeeper opa openssl openstack opscode ory pki postgres presenting privacy productivity prolog protobuf rbac redis rego rpc rust sbt serverless software sonatype spark ssl sso streaming terminal testing thoughts thrift tls traefik ubuntu uma vagrant vault windows writing yugabyte yugabytedb zanzibar zookeeperfirecracker (11)
- Launching Consul cluster with firebuild and other news
- Introducing firebuild
- Thoughts on creating VMMs from Docker images
- The jailer
- It’s all about the the Iface name
- Bridging the Firecracker network gap
- Live resize Firecracker VMM drive
- Firecracker VMM with additional disks
- Launching Alpine Linux on Firecracker like a boss
- Vault on Firecracker with CNI plugins and Nomad
- Taking Firecracker for a spin
microvm (11)
- Launching Consul cluster with firebuild and other news
- Introducing firebuild
- Thoughts on creating VMMs from Docker images
- The jailer
- It’s all about the the Iface name
- Bridging the Firecracker network gap
- Live resize Firecracker VMM drive
- Firecracker VMM with additional disks
- Launching Alpine Linux on Firecracker like a boss
- Vault on Firecracker with CNI plugins and Nomad
- Taking Firecracker for a spin
keycloak (10)
- Streaming Keycloak events
- Keycloak 17.0.0 with TLS in Docker compose behind Envoy proxy
- Extending Keycloak—required actions: user must be approved
- Keycloak with TLS in Docker compose behind Envoy proxy
- Keto RBAC - listing roles of a user
- ORY reference Docker Compose and thoughts on the platform
- Keycloak Authorization Services - RPT, permissions or a decision only
- Keycloak Authorization Services - retrieving the decision only
- Introduction to Keycloak Authorization Services
- Keycloak With Docker Compose
yugabytedb (10)
- YugabyteDB build infrastructure upgrade
- YugabyteDB CDC SDK beta, a high level overview
- YugabyteDB change data capture
- Identifying Postgres features unsupported in YugabyteDB
- YugabyteDB Go RPC client
- A brief look at YugabyteDB RPC API
- YugabyteDB: the book
- YugabyteDB: Postgres foreign data wrapper
- YugabyteDB Docker image
- On YugabyteDB
docker (8)
- YugabyteDB build infrastructure upgrade
- Postgres in Docker with persistent storage
- On software testing with dockertest
- Introducing firebuild
- Thoughts on creating VMMs from Docker images
- Launching Alpine Linux on Firecracker like a boss
- Keycloak With Docker Compose
- Apache Spark on Mesos with Docker bridge networking
iam (8)
- Streaming Keycloak events
- Keto RBAC - listing roles of a user
- RBAC with Ory Keto
- ORY reference Docker Compose and thoughts on the platform
- Keycloak Authorization Services - RPT, permissions or a decision only
- Keycloak Authorization Services - retrieving the decision only
- Introduction to Keycloak Authorization Services
- Keycloak With Docker Compose
ory (8)
- OPA: logical or conditions
- Do you really need a database for that Ory stack?
- Figuring out Ory Oathkeeper
- Keto RBAC - listing roles of a user
- RBAC with Ory Keto
- On software testing with dockertest
- Looking at Zanzibar through ORY Keto
- ORY reference Docker Compose and thoughts on the platform
tls (8)
- Istio VM workloads
- Istio, cert-manager, Let’s Encrypt and HTTPS redirect
- Keycloak 17.0.0 with TLS in Docker compose behind Envoy proxy
- Keycloak with TLS in Docker compose behind Envoy proxy
- Let’s Encrypt certificates for local development
- firebuild rootfs - gRPC with mTLS
- Multi-tenant Vault PKI with custom root PEM bundles
- Certificate Authority is not Voodoo
zanzibar (8)
- Zanzibar with Prolog - summary
- Zanzibar with Prolog, week 2
- Zanzibar-style ACLs with Prolog
- Zanzibar-style ACLs with OPA Rego
- OPA: logical or conditions
- Keto RBAC - listing roles of a user
- RBAC with Ory Keto
- Looking at Zanzibar through ORY Keto
keto (7)
- Zanzibar with Prolog, week 2
- OPA: logical or conditions
- Do you really need a database for that Ory stack?
- Keto RBAC - listing roles of a user
- RBAC with Ory Keto
- Looking at Zanzibar through ORY Keto
- ORY reference Docker Compose and thoughts on the platform
firebuild (5)
- Zanzibar with Prolog, week 2
- Launching Consul cluster with firebuild and other news
- firebuild rootfs - gRPC with mTLS
- Introducing firebuild
- firebuild prerequisites
kubernetes (5)
- Istio VM workloads
- yq - the yaml power tool
- Istio, cert-manager, Let’s Encrypt and HTTPS redirect
- Istio canary upgrades
- Apache Mesos reaches end of life
golang (4)
- Private go modules with multiple git identities
- YugabyteDB Go RPC client
- On golang os.Expand and os.ExpandEnv
- My golang modules live in Athens
istio (4)
- Warning: Istio is being downgraded
- Istio VM workloads
- Istio, cert-manager, Let’s Encrypt and HTTPS redirect
- Istio canary upgrades
k8s (4)
- Istio VM workloads
- yq - the yaml power tool
- Istio, cert-manager, Let’s Encrypt and HTTPS redirect
- Apache Mesos reaches end of life
opa (4)
- Zanzibar with Prolog, week 2
- Zanzibar-style ACLs with Prolog
- Zanzibar-style ACLs with OPA Rego
- OPA: logical or conditions
postgres (4)
- YugabyteDB build infrastructure upgrade
- YugabyteDB: Postgres foreign data wrapper
- Postgres in Docker with persistent storage
- On YugabyteDB
ca (3)
- firebuild rootfs - gRPC with mTLS
- Multi-tenant Vault PKI with custom root PEM bundles
- Certificate Authority is not Voodoo
erlang (3)
- Gossiperl gossip middleware in Erlang
- Apache Thrift via UDP in Erlang
- Erflux, InfluxDB client for Erlang
git (3)
- Maintaining a fork of a repository
- Private go modules with multiple git identities
- Git: chopping out part of the repo into a separate repo
kafka (3)
- I hacked infinite retention into my open source Kafka
- Kafka 2.8 is out in the wild and does not need ZooKeeper anymore
- The case for Kafka cold storage
oathkeeper (3)
- Do you really need a database for that Ory stack?
- Figuring out Ory Oathkeeper
- ORY reference Docker Compose and thoughts on the platform
pki (3)
- firebuild rootfs - gRPC with mTLS
- Multi-tenant Vault PKI with custom root PEM bundles
- Certificate Authority is not Voodoo
productivity (3)
- Maintaining a fork of a repository
- yq - the yaml power tool
- Windows Terminal text selection productivity tips
prolog (3)
software (3)
sso (3)
- ORY reference Docker Compose and thoughts on the platform
- Introduction to Keycloak Authorization Services
- Keycloak With Docker Compose
thrift (3)
- State of gossiperl and some JavaScript Thrift goodies
- Gossiperl gossip middleware in Erlang
- Apache Thrift via UDP in Erlang
uma (3)
- Keycloak Authorization Services - RPT, permissions or a decision only
- Keycloak Authorization Services - retrieving the decision only
- Introduction to Keycloak Authorization Services
vault (3)
- Vault on Firecracker with CNI plugins and Nomad
- Taking Firecracker for a spin
- Multi-tenant Vault PKI with custom root PEM bundles
apache (2)
cdc (2)
chef (2)
devops (2)
envoy (2)
- Keycloak 17.0.0 with TLS in Docker compose behind Envoy proxy
- Keycloak with TLS in Docker compose behind Envoy proxy
go (2)
gossip (2)
grpc (2)
hydra (2)
- Do you really need a database for that Ory stack?
- ORY reference Docker Compose and thoughts on the platform
influxdb (2)
kratos (2)
- Do you really need a database for that Ory stack?
- ORY reference Docker Compose and thoughts on the platform
letsencrypt (2)
- Istio, cert-manager, Let’s Encrypt and HTTPS redirect
- Let’s Encrypt certificates for local development