Does devops do front end and backend codes?

3 months into this job. Realize I'm being push to do code debug with the same pay scale.

We are talking about ui with react, nodejs with backend. I was doing infra setup

https://redd.it/1dush44
@r_devops

Reddit

From the devops community on Reddit

Explore this post and more from the devops community

How to store the value of a secret?

How are one off secrets actual values securely stored in IaC or how is everyone handling secrets and their values?

Normally for generated secrets you can use this example

resource "randompassword" "dbpassword" {
length = 16
special = true
}

resource "vaultgenericsecret" "dbpassword" {
path = "secret/dbpassword"

data = {
password = randompassword.dbpassword.result
}
}

But lets say there is a backup admin password that isn't automatically generated via IaC, maybe for a local app the team created.

Tried searching for this answer, no luck

https://redd.it/1duq1un
@r_devops

Reddit

From the devops community on Reddit

Explore this post and more from the devops community

What can you do as a devops to help implement SOC2?

Have you ever been asked to make all the changes necessary to implement SOC2? I read about it and it doesn't seem like something developers or devops can do much about. The only thing I can think of is detecting vulnerabilities, creating unit and integration tests and that's it.

https://redd.it/1duovo9
@r_devops

Reddit

From the devops community on Reddit

Explore this post and more from the devops community

API connection with incorrect SSL only working on occasions

I have an API server that excepts post requests from the server of clients, which are sent via a wordpress plugin. However I noticed that for one request (where I used wpremoteget instead of curl) only worked for a hand full of users. Then I found that the source of the error was a mistake with my SSL certificate that I forgot to fix. It was towards my main domain and not the subdomain.

Does anyone know what the reason may be that this worked for a couple of users, but not all of them? I tried it from my local testing environment as well as from my staging site multiple times and it always worked. I only noticed the error, when I tried sending a curl post request via the linux console of my server.

https://redd.it/1dplkvi
@r_devops

Reddit

From the devops community on Reddit

Explore this post and more from the devops community

Github Actions view variable in a different workflow

Hello guys!
In my workflow I have an input variable which decides which kind of secret I'm using.
I would like to 'publish' this variable, so in the next workflow run, I will be using the same input variable, or overriding the input variables, instead of having to manually input it again, or without it defaulting to the default option.

This workflow is used by multiple people, and each one of them needs a different secret, so it needs to not default the new variable for everyone I guess.

Is there anything like this that exists?
The best solution i've got to, is 'publishing' it by passing it to the step name, and then taking it from there, but it feels a bit wrong.
for example:

name: test
on:
workflowdispatch:
inputs:
secretchoice:
description: 'Override secret id'
required: false
SECRET*ID:
type: choice
options:
- "secret1"
- "secret2"
- "secret3"
- "secret4"
default: "secret1"

push:
branches: ["master"]

jobs:
test:
runs-on: ubuntu-latest
steps:
- name: "set [ENVSECRETID: ${{ github.event.inputs.SECRET*ID }}]"

run: echo "published on stage name"

would love to hear an expert opinion

https://redd.it/1dpllp5
@r_devops

Reddit

From the devops community on Reddit

Explore this post and more from the devops community

Alternative to Strongdm?

Strongdm just jacked our price by more than double in renewal. Wondering if anyone tested out other tools besides Teleport. We use it for accessing our EC2s, mostly SSH.

https://redd.it/1dpkvlq
@r_devops

Reddit

From the devops community on Reddit

Explore this post and more from the devops community

Does anyone work with technical specifications document while freelancing in DevOps

Hello,

I was wondering if freelancers in DevOps do use technical specifications documents.

In French, we call it « Cahier des charges » and it’s a document that you’ll have as a template to specify each requirement and specification about what you are going to do in your task.

So this template will have some questions about the environment setup on the client’s architecture and what exactly are the results and preferences they want, then you evaluate it and decide what are the requirements and how much will it cost in total ( for you job + requirements fees )

Do you do that, if yes do you have any kind of templates you use or used before ?

Thank you in advance ?

https://redd.it/1djjogv
@r_devops

Reddit

From the devops community on Reddit

Explore this post and more from the devops community

Recommend a monitoring alternative

We're spending 500k a year on datadog metrics + logging

We'd like to run our own regional kubernetes cluster where we can provide monitoring services for multiple products

Is there any stack someone could recommend that replaces the functionality of datadog but has a permissive enough license to self host (for internal use only, not providing access to tenants), and it should be able to use kubernetes to scale.

https://redd.it/1djsd94
@r_devops

Reddit

From the devops community on Reddit

Explore this post and more from the devops community

code reviews become test plans

I have noticed more and more often that a devops code review becomes just a discussion as to how best to test the change. The most recent one was making an adjustment to a k8s network policy. Everyone looked at it and said, "looks okay to me but maybe you should test it."

This doesn't seem wrong to me. Just curious if others have seen this trend also.

https://redd.it/1djn8c1
@r_devops

Another ops horror story

I am working in a team that is very old school, one project == one server, provisioned by hand over ssh, backups are optional, etc, etc...

So on my project I decided to go full k8s, no single point of failure on the software side, loads a alerting rules, full gitops, you know, to show the example.

Today during lunch time someone fat fingered so much that they nuke the all cluster... That was the single point of failure

https://redd.it/1df4yew
@r_devops

Reddit

From the devops community on Reddit

Explore this post and more from the devops community