Cogini Blog Articles tagged ansible

Deploying complex apps to AWS with Terraform, Ansible, and Packer

By Jake Morrison in DevOps | Sat 11 January 2020

Recently we helped a client migrate a set of complex Ruby on Rails applications to AWS, deploying across multiple environments and regions. They have a half-dozen SaaS products which they have built over the last decade. They had been running them on a set of shared physical servers, with lots … Read more…

Managing user accounts with Ansible

By Jake Morrison in DevOps | Fri 24 May 2019

As part of developing and deploying web applications, we need to be able to manage OS user accounts and control access for developers and systems admins. To do this, we wrote an Ansible role to manage users. Read more…

Managing app secrets with Ansible

By Jake Morrison in DevOps | Sat 16 June 2018

In web applications we usually have a few things that are sensitive, e.g. the login to the production database or API keys used to access a third party API. We need to be particularly careful about how we manage these secrets, as they may allow attackers to access data … Read more…

Port forwarding with iptables

By Jake Morrison in DevOps | Wed 16 May 2018

In order to listen on a TCP port less than 1024, an app traditionally needs to be started as root. Over the years this has resulted in many security problems. A better solution is to run the application on a normal port such as 4000, and redirect traffic in the … Read more…

Setting Ansible variables based on the environment

By Jake Morrison in DevOps | Sun 11 March 2018

When deploying applications, we we usually have the same basic architecture in different environments (dev, test, prod), but settings differ. Some settings are common to all the machines in the environment, e.g. the db server connection string. We need to vary the size of instances depending on the environment … Read more…

Is it time for Lisp in DevOps?

By Jake Morrison in DevOps | Tue 02 January 2018

We have been working on a project migrating a big Rails app from physical hardware to AWS, and I have been doing a lot of automation work. It strikes me how we are doing the same thing over and over with different tools: reading variables, templating files and running semi-declarative … Read more…

90 percent immutable

By Jake Morrison in DevOps | Fri 10 June 2016

After a fair amount of debugging, I got an app running in an AWS Auto Scaling Group (ASG), pulling its config on startup from S3 and code from Amazon CodeDeploy. On the way I found out some annoying parts of the cloud initialization process in AWS. The idea is that … Read more…

Development DevOps Products Programming

abuse android ansible architecture asdf aws cdn cloud codedeploy configuration containers cryptocurrencies db migrations deploy deployment design development devops digial ocean distillery dns ecs elixir embedded entrepreneurs erlang ets failure functional programming github actions go golang graphical design graphql health checks ios iptables kafka kerl know your customer kubernetes kyc languages linux lisp logging microservices migrating migration migrations mobile mvp nerves nginx oban optimization packer paypal performance personas phoenix plug postgresql presentations pricing process programming python rails rate limiting requirements resque RoR ruby saas security ssh startups static assets systemd terraform testing user experience user stories