aeydr RSS Designs, notes, writings and thoughts around building with software. CloudFormation, Applications & Separation of Concerns notes Quickly initializing tools with ASDF notes A strict execution pipeline with Terraform notes ASDF, Toolchains and a Single Plugin as Package Database notes Predictable naming of resources in CloudFormation notes Packaged bundles of Infrastructure through Terraform notes Cloud agnostic terraform patterns using build artifact metadata notes Terraform, AWS & Sourcing Secrets notes Tags in Terraform, overriding defaults and module-level tags notes Postgres Delete/Restore by Table Properties notes Soft Deletes as the responsibility of the Database notes Dynamic templating facilitated through gomplate notes Bazel, Container Push & Infrastructure in Builds notes Cost Categories, Infrastructure and Tags notes Pseudo Content Addressable Storage within S3 notes Denying point & click EC2s within AWS Accounts notes Prebuilt IAM policies, and least privilege in AWS notes AWS Accounts and the hidden costs of compliance notes Prefix Lists for Common Third Party Services notes Message prompts when connecting to EC2s notes Why are Lambda zip names sometimes random strings in CloudFormation? notes Deployment keys for unique deployments Terraform deployments notes A workflow for creating new AWS Accounts notes Third party secrets management with dedicated vault AWS Accounts notes Root domain Hosted Zones within dedicated AWS Accounts notes Managing an AWS Organization using Terraform notes A re-usable help command for Makefiles notes Default provisioning of infrastructure in a standby state notes Minimal AWS Accounts for permission restrictions notes Self-registration of infrastructure with Terraform notes Entrypoint AWS Accounts for third party services notes Pullthrough cache for mirrored public ECR images notes Centralizing artifacts for an AWS Organization notes Entrypoint AWS Accounts for third party services notes Restricted IAM Roles within continuous integration notes Restricted SSH for instances using session manager & IAM notes SSM & Pre-defined users for least privilege SSH notes Precomputed APIs using AWS S3 buckets notes Infrastructure guards to prevent accidental destruction notes StackSets with Parameter Store for AWS Resource Access Manager Shares notes Empty CloudFormation Stacks using WaitConditionHandle notes Kubernetes, CloudFormation and OIDC Magic Numbers notes Mirroring external containers images to internal registries notes Using empty CloudFormation Stacks to publish outputs for CloudFormation notes Using Conditions within CloudFormation Templates for property overrides notes Using CloudFormation Mappings to define preset resource reservations for rightsizing notes Using multiple Terraform AWS Providers for global infrastructure notes Using Feature Flags within Terraform for conditional infrastructure notes Using built-in CloudFormation macros to source AMI IDs by a friendly identifier notes Using built-in CloudFormation variables to generate unique resource names notes