Developer Data Modeling Mistakes: From Postgres to NoSQL
CloudFormation Dark Arts
1. CloudFormation Dark Arts
Chase Douglas, CTO, stackery.io
chase@stackery.io
@txase
MASTERING INFRASTRUCTURE AS CODE FOR REAL-WORLD USE CASES
2.
3.
4. My Background
• Brought Multi-Touch Input Support To
The Linux Desktop
• Technical Architect of New Relic
Browser
• CTO and Co-founder of Stackery
5. What I’ve Seen
• Business Impeded Because Infrastructure/
Processes Couldn’t Scale
• Engineering Orgs That Don’t Know What
Has Been Deployed Where
• Spent Years Figuring Out Serverless Best
Practices
16. Aside: We’ll be using AWS
SAM/CloudFormation
The same principles
work elsewhere
17. Definitions
Stack: An instance of an app deployed
from an IaC template
Resource: A component of an app (e.g.
function, NoSQL table, PubSub topic)
specified in an IaC template
20. Access And Permission Management
HTTPS: //GITHUB.COM/SERVERLESS/EXAMPLES/BLOB/MASTER/AWS-NODE-UPLOAD-TO-S3-AND-POSTPROCESS/SERVERLESS.YML
Access To Do Anything In
Every S3 Bucket In AWS
Account!
21. Access And Permission Management
Need To Scope Access To Specific Actions
Need To Scope Access To Specific
Resources