From ee91247e9be559e82b268463e387e9073f8f95e0 Mon Sep 17 00:00:00 2001 From: "Adam A.G. Shamblin" Date: Sun, 12 May 2019 20:16:50 -0600 Subject: [PATCH] New article, security.txt, draft on kubeless article --- README.md | 15 +++++ content/files/security.txt | 13 ++++ content/files/security.txt.asc | 17 ------ content/kubeless-auth0.md | 7 ++- content/weekend-update-2019-05-12.md | 89 ++++++++++++++++++++++++++++ 5 files changed, 123 insertions(+), 18 deletions(-) delete mode 100644 content/files/security.txt.asc create mode 100644 content/weekend-update-2019-05-12.md diff --git a/README.md b/README.md index 672ccb4..989c924 100644 --- a/README.md +++ b/README.md @@ -18,3 +18,18 @@ All content on this site, unless otherwise specified, is licenced under a ```shell pelican -r --listen content ``` + +## Testing Using Docker + +### Build the image + +```shell +docker build -t vexingworkshop/letters:latest +``` + + +### Run the image + +```shell +docker run --rm -p 8080:80 vexingworkshop/letters +``` diff --git a/content/files/security.txt b/content/files/security.txt index 51cdd10..f403fed 100644 --- a/content/files/security.txt +++ b/content/files/security.txt @@ -1,4 +1,17 @@ +-----BEGIN PGP SIGNED MESSAGE----- +Hash: SHA512 + Contact: mailto:adam@vexingworkshop.com Encryption: https://keybase.io/signal9/pgp_keys.asc Preferred-Languages: en, eo Canonical: https://letters.vexingworkshop.com/.well-known/security.txt +-----BEGIN PGP SIGNATURE----- + +iQEcBAEBCgAGBQJcy48VAAoJEEOZQ9ugXZ82n/0H/2jg6EYFNfpB7Mmbg6X3yZcM +XIazmzrkLfVmRfxdbdfOLfwm84C1DxqPx3HpSxb39acQzBBiXFqwbesgwTi4Swkr +VwXOAE5QSou0DD/QzB8cy36nEElVJzl9HCvsfj0NkGUrW0Mc5XopHagCS09oqVcZ +lmxi+xvFUX6LSPpsIh0g1khYBtXOTHbbr7nxaaJIO/sdWojyXeDMmSwI+FpborWv +JVafr3q0XFKcPqI2sWWTX6Avy3Y6rSbWk2kNX6INgE1N9kTHrcQo5EYn/dPLcALc +56ZjlDTRdH9+KEuy7E+2XN68QEsr3ERjCe7eSc5iiyVALaQsEzz7WA8XZfqUtuU= +=nvau +-----END PGP SIGNATURE----- diff --git a/content/files/security.txt.asc b/content/files/security.txt.asc deleted file mode 100644 index f403fed..0000000 --- a/content/files/security.txt.asc +++ /dev/null @@ -1,17 +0,0 @@ ------BEGIN PGP SIGNED MESSAGE----- -Hash: SHA512 - -Contact: mailto:adam@vexingworkshop.com -Encryption: https://keybase.io/signal9/pgp_keys.asc -Preferred-Languages: en, eo -Canonical: https://letters.vexingworkshop.com/.well-known/security.txt ------BEGIN PGP SIGNATURE----- - -iQEcBAEBCgAGBQJcy48VAAoJEEOZQ9ugXZ82n/0H/2jg6EYFNfpB7Mmbg6X3yZcM -XIazmzrkLfVmRfxdbdfOLfwm84C1DxqPx3HpSxb39acQzBBiXFqwbesgwTi4Swkr -VwXOAE5QSou0DD/QzB8cy36nEElVJzl9HCvsfj0NkGUrW0Mc5XopHagCS09oqVcZ -lmxi+xvFUX6LSPpsIh0g1khYBtXOTHbbr7nxaaJIO/sdWojyXeDMmSwI+FpborWv -JVafr3q0XFKcPqI2sWWTX6Avy3Y6rSbWk2kNX6INgE1N9kTHrcQo5EYn/dPLcALc -56ZjlDTRdH9+KEuy7E+2XN68QEsr3ERjCe7eSc5iiyVALaQsEzz7WA8XZfqUtuU= -=nvau ------END PGP SIGNATURE----- diff --git a/content/kubeless-auth0.md b/content/kubeless-auth0.md index de175d5..fa17d9c 100644 --- a/content/kubeless-auth0.md +++ b/content/kubeless-auth0.md @@ -1,4 +1,9 @@ -# Securing Kubeless Functions with Auth0 and JWT +Title: Securing Kubeless Functions with Auth0 and JWT +Date: 2019-05-12 +Category: DevOps +Tags: kubernetes, serverless +Status: draft + Of late I have had a professional interest in Functions as a Service. While I was slow to jump on the bandwagon, there has been an increasing need for one-off diff --git a/content/weekend-update-2019-05-12.md b/content/weekend-update-2019-05-12.md new file mode 100644 index 0000000..8600e93 --- /dev/null +++ b/content/weekend-update-2019-05-12.md @@ -0,0 +1,89 @@ +Title: Weekend Update, May 12, 2019 +Date: 2019-05-12 +Category: misc +Tags: beekeeping, gardening, devops + + +## Bee Journal + +Saturday we opened the bee hive for the second time since they were introduced +two weeks ago. The first inspection was expected at one week, which we did, but +we didn't see eggs as we'd hoped, so we opted to try again this week. The queen +did not disappoint! Comb has been drawn out from the fourth to the eighth frame. +According to my notes, this is to be expected. Within that comb we have many +plump, white larvae, loads of capped cells along with plenty of brood honey. We +weren't able to locate the queen, a skill we sorely need to develop, so we'll +have to be content with the signs we've seen. + +It's been rainy, snowy and cold all week, so activity outside the hive has been +way down. The last two days has been warm and sunny so the bees have been out in +force. During the warm part of the day you can see bees constantly +criss-crossing the airspace above our yard. Watching the entrance you can see +them returning laden with pollen in colors from white and yellow, through rich +oranges and even the occasional red. It is beautiful to watch. + +I don't expect to open the hive again for at least two more weeks, during which +time we hope to see 70-80% of the frames full in this first super, and perhaps +we'll try again to find the queen. These goals met, we can add a second deep +super full of frames to extend the brood. + +I'd love to put up pictures of what I'm describing, but until I can automate +stripping EXIF from my photographs, well, you know. More to come here. + +## Garden Planted + +Well, we put seeds in the ground anyway. Being Mother's Day, the Mrs. wanted +simply to hang around the yard, clean it up a bit for guests who will be +visiting in the next week, and put more effort into the gardens. We'd already +added a small amount of sulphur on all three gardens after the Mrs. found we +were a bit low. After some debate and further reading we decided to add manure +again this year. There had been some doubt: last year's yield left much to be +desired, and we'd been speculating all winter what had gone wrong. My theory was +that our soil's nutrients had been depleted. We agreed that we hadn't been +watering enough, and research supports this assumption. Manure and/or compost +seem to be important for soil building every year, so we made the trip out for 7 +bags between the three gardens. + +My best friend lives a few blocks away and he owns a small tiller that we borrow +when needed. He'd complained that it wasn't running well. I started it up to see +thick blue smoke and yes, it was running poorly. I drained some of the oil, he'd +over filled it, and replaced the gas. Ran fine for me and we tilled the manure +into the gardens in short order. Being such a nice day we went ahead and put +seeds into the ground: the usual pumpkins, squash and cucumbers in one garden +and kale, carrots, cilantro and dill in the garden nearest the bee hive. There +is one garden yet to be planted, but this will be live plants from the nursury, +tomatoes and chilis. That we won't do for a couple more weeks. + +## API Gateway/Proxy Evaluation + +This past week at work I've continued to evaluate API gateway and proxy options. +We already have [NGINX Ingress Controller](https://kubernetes.github.io/ingress-nginx/) +in place, which our SREs are already quite fond of, but we've extended our +exploration to [Kong](https://konghq.com) and [Ambassador](https://www.getambassador.io) +as well. There are things I like about all of them, but I'm interested in +building upon what we have if we can. We have specific authentication needs for +a couple of our applications for which it doesn't seem to matter which proxy we +choose, some custom code will have to be written. Look for an article here soon +that will go into some of the problems I have to solve, and how I'm using some +powerful features of the NGINX Ingress Controller to reframe the conversation. + +## Current Media Consumption + +I read a fair amount of science fiction and I'm particularly a fan of pulp +novels from the 50's through the 70's. This week I'm reading [Rendezvous with +Rama](https://www.goodreads.com/book/show/112537.Rendezvous_with_Rama) by Arthur +C. Clarke. This is the six novel by Clarke I've read, and I appreciate his brand +of "hard" science fiction. + +We watched and enjoyed [Hanna](https://www.imdb.com/title/tt6932244/), though I +understand the ratings weren't that good. Two lead actors came from The Killing, +the first season I liked. The lead actress was great and it had a decent +soundtrack that I might be able to code to. + +[Cory Doctorow's](https://craphound.com) new book was great as always, though I +don't care to write a review here. As he does to support his books he's been +doing the interview circuit. Many of his interviews end up on his +[podcast](https://craphound.com/category/podcast/). The themes tend to repeat +but bear repeating, give them a listen. + +That's enough or too much for now. More later. -- 2.39.5