• Vault and TFE - Fun with Dynamic Secrets for GCP

    (12 May 2020)
    One topic that always comes up is how to handle GCP Service Account keys. What are they, what do they have access to, how do we manage them, and so forth. It is always a sensitive subject due to the risks associated if not appropriately handled. This post is a look at how we can use Vault's GCP Secrets Engine to dynamically generate service account keys and provide a central location to manage key rotation, and what access is granted with that key.
  • Terraform Enterprise, Workspaces and GitHub Repositories

    (01 May 2020)
    Code reusability is a much sought-after goal of organizations and developers alike. The idea conjures the idea of high-efficiency, resulting in reduced bugs, reduced operational support load, and most importantly, reduced time to market. The thing I see over and over again is locally cloned repositories, locally cloned Terraform modules, and hardcoded variable values within repos. All of these the enemy of efficiency and standardization. This blog is a quick look at how you can leverage Terraform Enterprise to set variables at a workspace level, allowing an organization to create a many to one relationship between Terraform Enterprise Workspaces and GitHub repositories.
  • Azure DevOps Terraform Pipeline for GCP

    (22 Apr 2020)
    This blog is a look at using Azure DevOps to create pipelines that deploy infrastructure into GCP using Terraform, just because we can. Complete with a high-level overview, code snippets, and some strong opinions. Readers will take away a possible approach on how to leverage this technology for their organization.
  • Deploying Containers with Ease on GCP

    (12 Feb 2020)
    Learn how to quickly iterate on your code in containers and deploy containers at scale using Google Cloud Build, knative technology, and Anthos Config Management. This blog provides an overview of these new easy to use tools, their benefits to developers and deployment teams, and a demonstrations using a simple repository where we can run Canary testing and a Blue-Green deployments.
  • Constructing a Custom Terraform Provider

    (12 Feb 2020)
    Learning Golang to extend the functionality of Terraform beyond its existing providers, to fit your needs. This is a walkthrough of my custom Terraform provider that creates/updates file content inside a GitHub repository.
  • Governing a MachineDeployment with Anthos Config Management

    (10 Sep 2019)
    Demonstrating SCM-based configuration and IaC using Anthos Config Management with GKE On-Prem (or GCP).
  • [ansibleMeetup] state=latest

    (29 Apr 2019)
    The March 19 (2019) Ansible Toronto meetup was a great success, based on turnout, but more importantly, based on the great feedback. This blog quickly outlines the current state of the Ansible Toronto meetup.