April 28, 2019

Fun Filled Weekend

This weekend has been.... something.

With the wife taking ill, (I swear will this years flu plague ever pass) I was able to focus on some much needed technical maintenance. Finally!

With GitHub's recent (or actually not-so-recent by now) announcement of private GitHub repo's available for everyone, I have been thinking I wanted to migrate more and more of the various repositories I use to manage my systems to GitHub.

I finally decided not to this weekend. I mean, why? This is code that I will never be sharing publicly.  There is no point, and worse yet, it's just bad form to show the would-be-bad-guys exactly how things are configured.

Much of my IaC has been spread across GitHub, BitBucket and AWS CodeCommit. Now it all lives in private BitBucket repositories. I have to admit, even with the free-tier from BitBucket, I'm quiet impressed. I like the organization you can get with their team and project layouts.

I have one team, with very few members (all actual people). Under the team - I have, for now, tkf_infrastructure and tkf_websites. With 'tkf_infrastructure', I am able to house all of the various IaC repositories I use together for easy access. With 'tkf_websites' makes it equally easy to find all of the repositories for the few websites under my purview.

With all of the repositories organized, I was able to also start developing my 'beta' websites and their IaC to deploy them out. Many of the sites I put together, are static websites. And I'm not fooling anyone – no one really visits them. But they are my pets and my learning tools.

For each of my 'beta' (or dev) sites, I deploy a static website, hosted from an S3 bucket with a CloudFront front end. The IaC makes it extremely easy. After creating the SSL certs in AWS (that's not done via any IaC) a single command is run to build all of the CloudFront, the S3 bucket(s) for logs and all.

To deploy the content, Jenkins comes into play to check out the beta branch from the Git repo and does an 'aws s3 sync' to the appropriate bucket.

In the midst of all of that, this site is now hosted through a self-installed Ghost installation instead of WordPress. Nothing against WordPress itself, but it's overkill for what I need. And much more effort to keep patched and updated.