22 Sep 2021
| #tech
Recently I was working on setting up istio in a multi-cluster setup following the Install Multi-Primary on different networks guide on EKS clusters. Everything seemed to work (no errors in logs), until I reached the verification step, where requests didn’t go to the other mesh: in CLUSTER1 I always got a response from Hello version: v1, instance: helloworld-v1-86f77cd7bd-cpxhv, while in CLUSTER2 always from Hello version: v2, instance: helloworld-v2-758dd55874-6x4t8.
Read more
17 Sep 2021
| #tech
I’m creating a new kubernetes_secret via Terraform for an existing service account like this:
resource "kubernetes_secret" "my_service_account_token" {
metadata {
name = "my-service-account-token"
namespace = "example"
annotations = {
"kubernetes.io/service-account.name" = "my-service-account"
}
}
type = "kubernetes.io/service-account-token"
}
so that then I can use this token elsewhere like: kubernetes_secret.my_service_account_token.data["token"].
Read more
21 Aug 2021
| #tech
I recently worked on setting up Azure Active Directory (AAD from now) authentication with kubernetes clusters running on AWS EKS (Amazon Elastic Kubernetes Service). The goal was to let users of the kubernetes cluster authenticate using their AAD identities, and assing permissions using the usernames and also AAD groups. Here is how I did it.
Read more
19 Aug 2021
| #tech
We often want to download the latest release of an application from Github, however it used to be hard without knowing the latest version. But now we can do the followings:
09 Aug 2021
| #tech
This blog is hosted on Github pages, which I end up liking a lot, so I decided to move my other blog (originally hosted on Wordpress) too. I was already planning to update the domain of that blog, so I took the opportunity to do both at the same time. Here are the steps I did.
Read more