Blog Archive
Managed Secrets
Secrets management is an important job, but it sucks. A look at why UX is the key to a successful secrets system, and how Managed Secrets provides a YAML interface to your secret storage backend.
Read Post
Using CircleCI as if it was a Maven Repo
A trick for using CircleCI 1.x build artifacts as a Maven repository by fetching dependency artifacts and installing them into the local Maven cache.
Read Post
Dynamic Binary Toolkit: Tools that automatically keep themselves up to date!
A system for building self-updating command-line tools that automatically download, verify, and replace themselves with the latest version using checksums and GPG signatures.
Read Post
Access and Identity that Just Works
A hands-on guide to spinning up an n-way multi-master LDAP directory for centralized access and identity management, covering server setup, replication, ACLs, and schema configuration.
Read Post
LocalEnv
A simple trick to link your IDE terminal with your project's virtual environment, so command-line tools automatically use the same Python and libraries as your IDE.
Read Post
One Shot OpenStack Liberty Installer
A single script that creates a full OpenStack Liberty cloud from nothing, demonstrating an infrastructure-as-code approach to cloud deployment.
Read Post
Python Development on MacOS
Potentially timesaving tips and tricks for Python development on MacOS, covering virtual environments, Homebrew setup, and IDE configuration with JetBrains tools.
Read Post
IAM Beyond AWS or Hacking Hacks, and the Hackers who Hack Them
How I built a system to impersonate the AWS metadata service on developer laptops, providing passwordless, expiring STS credentials linked to user identities via SSH key authentication.
Read Post