Several years ago I wrote CloudFormation Tips and Tricks, in which I gave the advice to “use outputs lavishly, exports sparingly.” The reason is that when you export a value from one stack and import it into another you bind those stacks tightly together, and can’t change that exported value. For example, you might create … Read More
“Traditional” deployment patterns separate the application from its infrastructure. Lambda deployments turn this model on its head, binding the infrastructure tightly to the running code. This can be a challenge, especially when developing in a team: it is all too easy for one developer to accidentally overwrite another’s work. In this post I look at several deployment options, and how they impact a development team.
This week Ken will talks to prior guests and frequent Chariot contributors Matt Gilbride and Keith Gregory about using the AWS CDK for configuration (as opposed to CloudFormation), and RDS database connections from Spring Boot in AWS, respectively.
Frequent database password changes are a best practice, because they reduce the “blast radius” if compromised. However, restarting your applications in order to pick up the latest password can be onerous in a large deployment. This post describes how to implement a custom Postgres datasource that calls on IAM to generate a password whenever your application opens a connection to the database.
Frequent database password changes are a best practice, because they reduce the “blast radius” if compromised. However, restarting your applications in order to pick up the latest password can be onerous in a large deployment. This post describes how to use AWSLabs database driver that retrieves the current password from Secrets Manager whenever your application opens a connection to the database.
Check out our YouTube playlist to watch all the talks from Emerging Technologies for the Enterprise 2020. Abstract One of the chief benefits of cloud computing is the ability to experiment: to spin up infrastructure for hours or days and then shut it down again. Giving your developers the ability to manage their own environments … Read More
High availability and Cloud disaster recovery for your business: this post covers forgotten AWS passwords, cloud risk versus data center risk, and hidden cloud costs.
Cloud services are not set it and forget it. Learn how to make the most of an AWS deployment by taking advantage of business benefits and hardware upgrades.