Service Role for CodeBuild

Do you notice anything that is not right in the following CloudFormation template? ... Resources: CodeBuildServiceRole: # IAM role for the codebuild project. Type: AWS::IAM::Role Properties: RoleName: !Sub ${ProjectName}-CodeBuild-ServiceRole Path: /team-abc/ AssumeRolePolicyDocument: Version: "2012-10-17" Statement: - Action: ['sts:AssumeRole'] Effect: Allow Principal: Service: ['codebuild.amazonaws.com'] Policies: - PolicyName: !Sub ${ProjectName}-CodeBuild-Policy PolicyDocument: Version: "2012-10-17" Statement: - Action: # … Continue reading Service Role for CodeBuild →

`aws s3 sync` lessons learned

As mentioned in my earlier posts, we use aws s3 sync to migrate a large number of files from on-premise to AWS. Here are a few things that I learned: The AWS credential can be renewed by an external process for a long running AWS CLI process. (Renew AWS credential for a long run AWS … Continue reading `aws s3 sync` lessons learned →

Renew AWS credential for a long run AWS CLI process

We use aws s3 sync to synchronise a big mount of files (800,000+ objects) from on-premise to AWS S3 bucket. Due to security restrictions, the Maximum CLI/API session duration is configured for 1 hour. So it is most likely the credential will expire before the sync job is completed. There are generally two places to … Continue reading Renew AWS credential for a long run AWS CLI process →

Atlassian Application Links Failed with ‘NETWORK ERROR’

We have struggled with making Atlassian Application Links work with our reverse proxy of the Atlassian applications (Jira, Confluence, BitBucket...) for a long time. The architecture is a very common setup: Users -> Reverse Proxy (webseal virtual junctions) -> Atlassian Application (Jira, Confluence, BitBucket...) For example, if user types https://confluence.mydomain.com, the traffics go to the … Continue reading Atlassian Application Links Failed with ‘NETWORK ERROR’ →

Setup a Rolling Update Toggle for AWS Auto Scaling Group

Rolling update (handled by UpdatePolicy attribute) is a great feature in AWS Auto Scaling Group. With this feature, we are able to making changes without downtime. For example, replace existing instances one by one. By design, NOT every change of the Auto Scaling Group can trigger a rolling update. Only the changes made to LaunchConfigurationName, … Continue reading Setup a Rolling Update Toggle for AWS Auto Scaling Group →

	Levon Ritter on AWS DataSync vs S3 Sync
	Joe on AWS Bedrock AgentCore: Enterpr…
	ABDUL YASEEN BABA MO… on TSM
	Heather W on Puppet push Nagios
	Umesh Kumar on Yum gets ‘HTTPS Error 40…
	Pavel on Check Confluence team calendar…
	withanHdammit on Renew AWS credential for a lon…
	Unleashing the Power… on Image-Reader: A project to exp…
	Bob on Build docker image with kaniko…
	Voces De La Tierra on Puppet for Windows: Remote…