Michael_Blum_Mastering_CloudFormation.pdf

•

0 likes•24 views

This document discusses best practices for mastering AWS CloudFormation. It covers topics like standards, modularity and reusability through nested stacks, sharing stack information using exports and SSM parameters, policy-based resources, making resources updatable, end-to-end testing with TaskCat, and general recommendations like keeping templates modular, parameterizing templates and automating validation.

Software

Mastering
AWS CloudFormation
Michael Blum, Senior Devops-Engineer
DevOps Guild - 31. August 2023

1. Introduction
2. Standards
3. Modularity & Reusability
4. Sharing Stack information
5. Policy Based Resources
6. Updatable Resources
7. End2End testing
8. Demo
9. General recommendations
Mastering
AWS CloudFormation
© 2020 Shine Solutions Group

• Infrastructure as Code since 2011
• Serverless Application Model (SAM)
• Cloud Development Kit (CDK)
• HashiCorp Terraform
AWS CloudFormation
© 2020 Shine Solutions Group
4
Introduction

• Integrate Linters into Development Lifecycle
• cfn-lint
• cfn_nag
• statelint (Step Functions)
• Automate validation
• Pull Requests
• CI/CD
• Git Hook
AWS CloudFormation
© 2020 Shine Solutions Group
6
Standards - Linting

• Structuring CF Template
• Group by Service
• Group by Resource Type
• YAML Inline Comments
• Enhanced Readability
• Faster navigation
AWS CloudFormation
© 2020 Shine Solutions Group
7
Standards - Structuring

• Seperate by logical utilisation
• functional purpose
• operational purpose
• Modular design
• Simplified Updates
• Modular flexibility
• Isolated changes
AWS CloudFormation
© 2020 Shine Solutions Group
8
Standards - Separating

AWS CloudFormation
Modularity & Reusability

• Promotes Modularity
• Reduced deployment time
• Cost optimisation
• Reusability
• Increased flexibility
• Permission-Based Segregation
AWS CloudFormation
© 2020 Shine Solutions Group
10
Modularity & Reusability - Prerequisite Stack

AWS CloudFormation
© 2020 Shine Solutions Group
11
Modularity & Reusability - Prerequisite Stack

AWS CloudFormation
© 2020 Shine Solutions Group
12
Modularity & Reusability - Nested Stack
• Stacks within Stacks
• Modularisation
• Standardisation
• Reusable templates
• Dependency Management
• Output Reference

AWS CloudFormation
© 2020 Shine Solutions Group
13
Modularity & Reusability - Nested Stack

AWS CloudFormation
Sharing stack information

AWS CloudFormation
© 2020 Shine Solutions Group
15
Sharing - Export/Import
• Stack Outputs
• Unique per Account & Region
• Include stack name & environment name
• Parameterise as much as possible
• Imported outputs Cannot be deleted
• Preserve exported outputs
• Create new version of export
• Avoid for Single Stack version

AWS CloudFormation
© 2020 Shine Solutions Group
16
Sharing - Export/Import

AWS CloudFormation
© 2020 Shine Solutions Group
17
Sharing - Export/Import

AWS CloudFormation
© 2020 Shine Solutions Group
18
• Unique per Account & Region
• Include stack name & environment name
• Parameterise as much as possible
• Referred Parameters can be deleted
• Stack Update fails if deleted
• Creation, Deletion, Update
• Renaming == deletion
• Stack Update resolves updated parameter value
• Prefer for Single Stack version
Sharing - SSM

AWS CloudFormation
© 2020 Shine Solutions Group
19
Sharing - SSM

AWS CloudFormation
© 2020 Shine Solutions Group
20
Sharing - SSM

AWS CloudFormation
Policy Based Resources

• Detaching policy from resource
• Enhances Modularity
• Enhances Parameterisation
AWS CloudFormation
© 2020 Shine Solutions Group
22
Policy Based resources

AWS CloudFormation
© 2020 Shine Solutions Group
23
Policy Based resources

• Avoid Naming Resources
• Renaming = Replacing
• Prefer Tagging
• Lambda & Step Function incl. dynamic reference in S3Key
AWS CloudFormation
© 2020 Shine Solutions Group
25
Updatable Resources

• TaskCat
• > taskcat test run
• Automated linting
• Automated Deployment
• Multiple Regions
• Test Result
AWS CloudFormation
© 2020 Shine Solutions Group
27
End 2 End Testing

AWS CloudFormation
© 2020 Shine Solutions Group
28
End 2 End Testing

AWS CloudFormation
General recommendations

• Automate validation
• Keep a modular mindset
• Keep templates small
• Design templates enabling deployment of multiple stack versions
• Parameterise as much as possible
• Don’t hardcode information
• No manual changes to resources
• Include Policy-Based resources
• Ensure your resources are updatable
• If suitable automate testing
AWS CloudFormation
© 2020 Shine Solutions Group
31
General recommendations

Michael Blum
Senior Devops-Engineer
michael.blum@shinesolutions.com
linkedin.com/in/imblum
Michael Blum
mbloch1986
github.com/mbloch1986/cloudformation-samples

Similar to Michael_Blum_Mastering_CloudFormation.pdf

Being Well-Architected in the Cloud

Amazon Web Services

As cloud computing continues to gain popularity, companies that are natively Windows question if they too can leverage AWS. Learn about the benefits the cloud provides, best practices of cloud computing services, and solutions available on AWS for Windows workloads. Learn how Covanta is delivering services to its users 90% faster and saving more than 60% in IT infrastructure costs after migrating its Windows workloads to the cloud.

Migrating Your Windows Datacenter to AWS

2nd Watch

Enterprise Cloud Architecture Best Practices

David Veksler

Cloud Migration and Portability Best Practices

RightScale

Speakers: Renat Khasanshyn, Founder and CEO at Altoros and Cornelia Davis, Senior Technologist at Pivotal Coupling Cassandra with a Platform as a Service may significantly simplify the process of deploying Cassandra and applications that utilize it, reduce the cost of managing Cassandra within the organization, and to allow infrastructure service providers a simple path to offering database as a service to their customers. Attendees will learn why and when use Cassandra atop of Cloud Foundry, the history of Cassandra service within Cloud Foundry, the State of Cassandra integration with Cloud Foundry, how to create and manage Cassandra nodes on Cloud Foundry and what to expect in the next 6 months.

C* Summit 2013: Cassandra on Cloud Foundry by Renat Khasanshyn and Cornelia D...

DataStax Academy

Organisations today are increasingly looking for faster and cost effective ways to develop and test products before deployment. Those managing this process must determine when a product is ready to be deployed to production. But before this decision is made, the entire testing and development process should be carefully planned, managed, and reviewed. Amazon Web Services' utility computing model provides a great backbone to achieve this goal. With AWS you can spin up infrastructure on an as-needed basis for development and testing. Run workloads for a certain amount of time, and then stop running them – and stop paying for them – when you don’t.

AWS Public Sector Symposium 2014 Canberra | Test and Development on AWS

Amazon Web Services

Azure is now the clear #2 in public cloud behind AWS. While some cloud users are evaluating Azure vs. AWS, many enterprises are planning to use both cloud providers. But there are some notable differences between how the two clouds operate and the best practices for deploying workloads in each. The Azure vs. AWS Best Practices: What You Need to Know webinar will cover: Recent and coming enhancements for Azure. Azure vs. AWS differences for compute, networking, and storage. Best practices for cloud deployments in Azure and AWS. How to use both Azure and AWS.

Azure vs AWS Best Practices: What You Need to Know

RightScale

Everyone knows about the "cloud", but what does it practically mean for teams managing applications like Jira, Bitbucket, Jenkins, Qtest, Artifactory, and others? Proprietary workloads can be heavily modified to take advantage of the various services that Amazon Web Services (AWS) offers, but third party software needs to be specifically configured with the right combination of cloud services to optimize performance and minimize headaches. How do you get the uptime and reliability you need while keeping costs controlled? What are the security implications of app data moving across the cloud? What is the best way to scale your tools as your user base grows? What's the best way to even migrate your software to AWS in the first place? In this presentation, Cprime experts explore the challenges, questions, and strategies that arise with the most popular DevOps tools in the cloud.

How to Optimize your DevOps Environment in the Cloud

Cprime

Nested Beanstalk Deployment - Brett Sutter, Minneapolis

AWS Chicago

re:Invent recap session 2: Being well Architected in the cloud

Amazon Web Services

In this session, Kiran gives a talk about the rich ecosystem of tools (cmk, CAPC, Terraform, Ansible, Packer, csbench, mbx), that support Cloudstack. Find out how the various tools work and how easy it is to integrate with Apache CloudStack. This session provides a great way to speed up CloudStack adoption and improve performance by saving valuable time. ----------------------------------------- The CloudStack India User Group 2024 took place in Hyderabad on 23rd February. The conference, arranged by a group of volunteers from the Apache CloudStack Community, saw multiple sessions held about the cloud orchestration platform and its latest advancements.

CloudStack Tooling Ecosystem – Kiran Chavala, ShapeBlue

ShapeBlue

Cloud development professional_training_module_1603813251908

prasennabhai

Application Lifecycle Management on AWS

David Mat

Scalable applications are by nature resource intensive, expensive to build and difficult to manage. What if we can change this perception and help developers design full-stack applications that are low cost and low maintenance? This session describes the underlying architecture behind www.deep.mg, the microservices marketplace built by Mitoc Group using AngularJS, NodeJS and powered by abstracted services like AWS Lambda, Amazon CloudFront, Amazon DynamoDB, and so on. Eugene Istrati, Technology Partner at Mitoc Group, will dive deep into their approach to microservices architecture using serverless platform from AWS and demonstrate how anyone can use serverless computing to achieve high scalability, high availability, and high performance without huge efforts or expensive resources allocation.

Building Scalable Web Applications using Microservices Architecture and Serve...

Mitoc Group

Come along to this session to learn how large scale systems like SAP, Oracle, Microsoft and others are being used by enterprise customers of all shapes and sizes. In this session you will discover some of the challenges and approaches that will make you successful in deploying and operating these systems on AWS. This is a must session for enterprise customers that are looking at moving material workloads into the cloud.

Running Business Critical Workloads on AWS – Nam Je Cho

Amazon Web Services

Ready.Set.Cloud - Enterprise Cloud Migration Framework

Idan Tohami

Azure Stack Fundamentals

Cenk Ersoy

AWS CloudFormation enables software and DevOps engineers to harness the power of infrastructure as code. As organizations automate the modeling and provisioning of applications and workloads with CloudFormation, repeatable processes and reliable deployments become more critical. This session guides you through techniques to improve your infrastructure automation including protecting your AWS resources and stacks with safety guardrails while monitoring infrastructure changes. In addition, we'll cover efficient ways to provision resources across accounts and regions, and show you how to test and improve the reliability of your deployments.

Harness the Power of Infrastructure as Code

Amazon Web Services

Building Hybrid Cloud Apps with Azure and Azure stack

WinWire Technologies Inc

My slides from the re:Invent Recap Conferences. The AWS Well-Architected Framework enables customers to understand best practices around security, reliability, performance, and cost optimisation when building systems on AWS. This approach helps customers make informed decisions and weigh the pros and cons of application design patterns for the cloud. In this session, you'll learn how to follow AWS guidelines and best practices. By developing a strategy based on Amazon Web Services's Well-Architected Framework, you will be able to significantly increase the frequency of code deployments and reduce deployment times. As a result, you will be able to deliver more scalable, dynamic and resilient applications.

Being Well Architected in the Cloud

Adrian Hornsby

Similar to Michael_Blum_Mastering_CloudFormation.pdf (20)

Being Well-Architected in the Cloud

Migrating Your Windows Datacenter to AWS

Enterprise Cloud Architecture Best Practices

Cloud Migration and Portability Best Practices

C* Summit 2013: Cassandra on Cloud Foundry by Renat Khasanshyn and Cornelia D...

AWS Public Sector Symposium 2014 Canberra | Test and Development on AWS

Azure vs AWS Best Practices: What You Need to Know

How to Optimize your DevOps Environment in the Cloud

Nested Beanstalk Deployment - Brett Sutter, Minneapolis

re:Invent recap session 2: Being well Architected in the cloud

CloudStack Tooling Ecosystem – Kiran Chavala, ShapeBlue

Cloud development professional_training_module_1603813251908

Application Lifecycle Management on AWS

Building Scalable Web Applications using Microservices Architecture and Serve...

Running Business Critical Workloads on AWS – Nam Je Cho

Ready.Set.Cloud - Enterprise Cloud Migration Framework

Azure Stack Fundamentals

Harness the Power of Infrastructure as Code

Building Hybrid Cloud Apps with Azure and Azure stack

Being Well Architected in the Cloud

Recently uploaded

Software Quality Assurance Interview Questions

Arshad QA

(Vivek)Call Us, 8448380779,Call girls in Delhi NCr – We Offer best in class call girls. escort Service At Affordable Price At low Rate with Space Night 8000 We Are One Of The Oldest Escort and Call girls Agencies in Delhi. You Will Find That Our Female Escorts Are Full Of Fun, Sexy And They Would Love Enjoy Your Company. We Have A Fantastic Selection Of Escort Ladies Available For In-Calls As Well As Out-Calls. Our Escorts Are Not Only Beautiful But All Have Great Personalities Making Them The Perfect Companion For Any Occasion. In-Call:- You Can Come At Our Place in Delhi Our place Which Is Very Clean Hygienic 100% safe Accommodation. Out-Call:- You have To Come Pick The Girl From My Place We Are Also Provide Door Step Services (Delhi Ncr, Noida, Gurgaon, Faridabad, Ghaziabad Note:- Pic Collectors Time Passers Bargainers Stay Away As We Respect The Value For Your Money Time And Expect The Same From You Hygienic:- Full Ac room And Clean Rooms Available In Hotel 24 * 7 Hourly In Delhi NCR More Details, With WhatsApp Number, +91-8448380779

call girls in Vaishali (Ghaziabad) 🔝 >༒8448380779 🔝 genuine Escort Service 🔝✔️✔️

Delhi Call girls

OpenChain - The Ramifications of ISO/IEC 5230 and ISO/IEC 18974 for Legal Pro...

Shane Coughlan

We specialize in Psychic Readings, Psychic Love Spells, Binding Love Spells, Obsession Spells, Voodoo Spells, Lottery Spells, Marriage Spells, Black Magic Spells, Palm Readings & much more. Are you depressed? We perform this come-to-me love spell that works instantly with the aim of bringing back the victim to the person performing the magic. Have you lost your lover? We perform this come-to-me love spell that works instantly with the aim of bringing back the victim to the person performing the magic. Have you lost your lover? Do u need to solve any relationship problem? Contact the powerful spells caster chief kule with love spells that work overnight and love spells that really work. Have you found yourself infatuated with a special someone you think could be the one? Are you looking for a spell to provide them with a nudge in the right direction? Or maybe the spell you cast didn’t achieve the results you were hoping for? Whether you’re new or versed in the ways of spell casting, we’re here to help. Today we’re going to provide you with a detailed guide on the types of love spells to cast. Not only that but there’s something for those who wish to find outside advice from more advanced spell casters. We’re also going to provide you with the top sites available to help you with your dilemma. Let’s begin our journey by educating ourselves on love magic and what a real love caster looks like. Love Magic and Love Casters Love magic made its first appearance back in Ancient Egypt and has been an active practice since. This type of magic is a branch of traditional magic and can be practiced in various ways. Typically the more common use of love magic is through the work of spells, but other methods look like Charms Rituals-LOVE Potions-Dolls and even Amulets If you are interested in becoming a love caster, be prepared for what’s to come. A genuine love caster knows that the art of love casting is no easy feat and shouldn’t be done casually. You should know that not only does it require you to be gifted spiritually, but you must be ready to serve others. Someone who is considered a real love caster has experience in all manner of spells, no matter the difficulty. Training yourself in attraction, commitment, and marriage spells is an excellent place to start. But this by no means will make you a professional. Practice your craft and expand your knowledge; understand that you will possess the ability to help others in time truly. Types of Love Spells What better way to start broadening your experiences with love spells than by learning more about them? These spells work like just about any other spell. Simply apply your intention, use a medium (sigils, mantras, candles, or charm bags), and top it off with establishing the belief that you will receive what you want. So what kind of spells are available and which ones suit your needs the best? Let’s take a look at the many options you have at your disposal.

%+27788225528 love spells in new york Psychic Readings, Attraction spells,Bri...

masabamasaba

We specialize in Psychic Readings, Psychic Love Spells, Binding Love Spells, Obsession Spells, Voodoo Spells, Lottery Spells, Marriage Spells, Black Magic Spells, Palm Readings & much more. Are you depressed? We perform this come-to-me love spell that works instantly with the aim of Winnipeg back the victim to the person performing the magic. Have you lost your lover? We perform this come-to-me love spell that works instantly with the aim of bringing back the victim to the person performing the magic. Have you lost your lover? Do u need to solve any relationship problem? Contact the powerful spells caster chief kule with love spells that work overnight and love spells that really work. Have you found yourself infatuated with a special someone you think could be the one? Are you looking for a spell to provide them with a nudge in the right direction? Or maybe the spell you cast didn’t achieve the results you were hoping for? Whether you’re new or versed in the ways of spell casting, we’re here to help. Today we’re going to provide you with a detailed guide on the types of love spells to cast. Not only that but there’s something for those who wish to find outside advice from more advanced spell casters. We’re also going to provide you with the top sites available to help you with your dilemma. Let’s begin our journey by educating ourselves on love magic and what a real love caster looks like. Love Magic and Love Casters Love magic made its first appearance back in Ancient Egypt and has been an active practice since. This type of magic is a branch of traditional magic and can be practiced in various ways. Typically the more common use of love magic is through the work of spells, but other methods look like Charms Rituals-LOVE Potions-Dolls and even Amulets If you are interested in becoming a love caster, be prepared for what’s to come. A genuine love caster knows that the art of love casting is no easy feat and shouldn’t be done casually. You should know that not only does it require you to be gifted spiritually, but you must be ready to serve others. Someone who is considered a real love caster has experience in all manner of spells, no matter the difficulty. Training yourself in attraction, commitment, and marriage spells is an excellent place to start. But this by no means will make you a professional. Practice your craft and expand your knowledge; understand that you will possess the ability to help others in time truly. Types of Love Spells What better way to start broadening your experiences with love spells than by learning more about them? These spells work like just about any other spell. Simply apply your intention, use a medium (sigils, mantras, candles, or charm bags), and top it off with establishing the belief that you will receive what you want. So what kind of spells are available and which ones suit your needs the best? Let’s take a look at the many options you have at your disposal. Attraction Spells

%+27788225528 love spells in Huntington Beach Psychic Readings, Attraction sp...

masabamasaba

%in Soweto+277-882-255-28 abortion pills for sale in soweto

masabamasaba

WSO2Con2024 - Enabling Transactional System's Exponential Growth With Simplicity

WSO2

8257 interfacing 2 in microprocessor for btech students

HimanshiGarg82

The title is not connected to what is inside

shinachiaurasa2

Devoxx UK 2024 - Going serverless with Quarkus, GraalVM native images and AWS...

Bert Jan Schrijver

This presentation covers the following topics: What is logging? The purpose of logging: Debugging The purpose of logging: Security The purpose of logging: Stats & analytics Traditional logging Traditional logging: Advantages Traditional logging: Disadvantages The solution: Large-scale logging Large-scale logging: Core principles Large-scale logging: Solution types Large-scale logging: Cloud vs on-prem Large-scale logging: Operational complexity Large-scale logging: Security Large-scale logging: Costs Large-scale logging: On-prem comparison - Elasticsearch - Grafana Loki - VictoriaLogs On-prem comparison: Setup and operation On-prem comparison: Costs On-prem comparison: Full-text search support On-prem comparison: How to efficiently query 100TB of logs? On-prem comparison: Integration with CLI tools VictoriaLogs for large-scale logging VictoriaLogs demo instance - Ingestion rate: 3600 messages / minute - The number of log messages: 1.1 billion - Uncompressed log messages’ size: 1.5TB - Compressed log messages’ size: 23GB - Compression ratio: 47x - Memory usage: 150MB VictoriaLogs CLI integration demo - Which errors have occurred in all the apps during the last hour? - How many errors have occurred during the last hour? - Which apps generated the most of errors during the last hour? - The number of per-minute errors for the last 10 minutes - Status codes for the last hour - Non-200 status codes for the last week - Top client IPs for the last 4 weeks with 404 and 500 response status codes - Per-month stats for the given IP across all the logs Large-scale logging solution MUST provide excellent CLI integration VictoriaLogs: (temporary) drawbacks VictoriaLogs: Recap - Easy to setup and operate - The lowest RAM usage and disk space usage (up to 30x less than Elasticsearch and Grafana Loki) - Fast full-text search - Excellent integration with traditional command-line tools for log analysis - Accepts logs from popular log shippers (Filebeat, Fluentbit, Logstash, Vector, Promtail, Grafana Agent) - Open source and free to use!

Large-scale Logging Made Easy: Meetup at Deutsche Bank 2024

VictoriaMetrics

We specialize in Psychic Readings, Psychic Love Spells, Binding Love Spells, Obsession Spells, Voodoo Spells, Lottery Spells, Marriage Spells, Black Magic Spells, Palm Readings & much more. Are you depressed? We perform this come-to-me love spell that works instantly with the aim of Winnipeg back the victim to the person performing the magic. Have you lost your lover? We perform this come-to-me love spell that works instantly with the aim of bringing back the victim to the person performing the magic. Have you lost your lover? Do u need to solve any relationship problem? Contact the powerful spells caster chief kule with love spells that work overnight and love spells that really work. Have you found yourself infatuated with a special someone you think could be the one? Are you looking for a spell to provide them with a nudge in the right direction? Or maybe the spell you cast didn’t achieve the results you were hoping for? Whether you’re new or versed in the ways of spell casting, we’re here to help. Today we’re going to provide you with a detailed guide on the types of love spells to cast. Not only that but there’s something for those who wish to find outside advice from more advanced spell casters. We’re also going to provide you with the top sites available to help you with your dilemma. Let’s begin our journey by educating ourselves on love magic and what a real love caster looks like. Love Magic and Love Casters Love magic made its first appearance back in Ancient Egypt and has been an active practice since. This type of magic is a branch of traditional magic and can be practiced in various ways. Typically the more common use of love magic is through the work of spells, but other methods look like Charms Rituals-LOVE Potions-Dolls and even Amulets If you are interested in becoming a love caster, be prepared for what’s to come. A genuine love caster knows that the art of love casting is no easy feat and shouldn’t be done casually. You should know that not only does it require you to be gifted spiritually, but you must be ready to serve others. Someone who is considered a real love caster has experience in all manner of spells, no matter the difficulty. Training yourself in attraction, commitment, and marriage spells is an excellent place to start. But this by no means will make you a professional. Practice your craft and expand your knowledge; understand that you will possess the ability to help others in time truly. Types of Love Spells What better way to start broadening your experiences with love spells than by learning more about them? These spells work like just about any other spell. Simply apply your intention, use a medium (sigils, mantras, candles, or charm bags), and top it off with establishing the belief that you will receive what you want. So what kind of spells are available and which ones suit your needs the best? Let’s take a look at the many options you have at your disposal. Attraction Spells

%+27788225528 love spells in Knoxville Psychic Readings, Attraction spells,Br...

masabamasaba

%in tembisa+277-882-255-28 abortion pills for sale in tembisa

masabamasaba

WSO2CON 2024 - Does Open Source Still Matter?

WSO2

MarTech Trend 2024 Book : Marketing Technology Trends (2024 Edition) How Data...

Jittipong Loespradit

%+27788225528 love spells in Boston Psychic Readings, Attraction spells,Bring...

masabamasaba

Define the academic and professional writing..pdf

PearlKirahMaeRagusta1

Data spaces in distributed environments should be allowed to evolve in agile ways providing data space owners with large flexibility about which data they store. Agility and heterogeneity, however, jeopardize data exchanges because representations may build on varying ontologies and data consumers may not rely on the semantic correctness of their queries in the context of semantically heterogeneous, evolving data spaces. Graph data spaces are one example of a powerful model for representing and querying data whose semantics may change over time. To assert and enforce conditions on individual graph data spaces, shape languages (e.g SHACL) have been developed. We investigate the question of how querying and programming can be guarded by reasoning over SHACL constraints in a distributed setting and we sketch a picture of how a future landscape based on semantically heterogeneous data spaces might look like.

Shapes for Sharing between Graph Data Spaces - and Epistemic Querying of RDF-...

Steffen Staab

WSO2Con2024 - From Code To Cloud: Fast Track Your Cloud Native Journey with C...

WSO2

Announcing Codolex 2.0 from GDK Software

Jim McKeeth

Recently uploaded (20)

Software Quality Assurance Interview Questions

call girls in Vaishali (Ghaziabad) 🔝 >༒8448380779 🔝 genuine Escort Service 🔝✔️✔️

OpenChain - The Ramifications of ISO/IEC 5230 and ISO/IEC 18974 for Legal Pro...

%+27788225528 love spells in new york Psychic Readings, Attraction spells,Bri...

%+27788225528 love spells in Huntington Beach Psychic Readings, Attraction sp...

%in Soweto+277-882-255-28 abortion pills for sale in soweto

WSO2Con2024 - Enabling Transactional System's Exponential Growth With Simplicity

8257 interfacing 2 in microprocessor for btech students

The title is not connected to what is inside

Devoxx UK 2024 - Going serverless with Quarkus, GraalVM native images and AWS...

Large-scale Logging Made Easy: Meetup at Deutsche Bank 2024

%+27788225528 love spells in Knoxville Psychic Readings, Attraction spells,Br...

%in tembisa+277-882-255-28 abortion pills for sale in tembisa

WSO2CON 2024 - Does Open Source Still Matter?

MarTech Trend 2024 Book : Marketing Technology Trends (2024 Edition) How Data...

%+27788225528 love spells in Boston Psychic Readings, Attraction spells,Bring...

Define the academic and professional writing..pdf

Shapes for Sharing between Graph Data Spaces - and Epistemic Querying of RDF-...

WSO2Con2024 - From Code To Cloud: Fast Track Your Cloud Native Journey with C...

Announcing Codolex 2.0 from GDK Software

Michael_Blum_Mastering_CloudFormation.pdf

1. Mastering AWS CloudFormation Michael Blum, Senior Devops-Engineer DevOps Guild - 31. August 2023

2. 1. Introduction 2. Standards 3. Modularity & Reusability 4. Sharing Stack information 5. Policy Based Resources 6. Updatable Resources 7. End2End testing 8. Demo 9. General recommendations Mastering AWS CloudFormation © 2020 Shine Solutions Group

3. AWS CloudFormation Introduction

5. AWS CloudFormation Standards

6. • Integrate Linters into Development Lifecycle • cfn-lint • cfn_nag • statelint (Step Functions) • Automate validation • Pull Requests • CI/CD • Git Hook AWS CloudFormation © 2020 Shine Solutions Group 6 Standards - Linting

7. • Structuring CF Template • Group by Service • Group by Resource Type • YAML Inline Comments • Enhanced Readability • Faster navigation AWS CloudFormation © 2020 Shine Solutions Group 7 Standards - Structuring

8. • Seperate by logical utilisation • functional purpose • operational purpose • Modular design • Simplified Updates • Modular flexibility • Isolated changes AWS CloudFormation © 2020 Shine Solutions Group 8 Standards - Separating

9. AWS CloudFormation Modularity & Reusability

10. • Promotes Modularity • Reduced deployment time • Cost optimisation • Reusability • Increased flexibility • Permission-Based Segregation AWS CloudFormation © 2020 Shine Solutions Group 10 Modularity & Reusability - Prerequisite Stack

12. AWS CloudFormation © 2020 Shine Solutions Group 12 Modularity & Reusability - Nested Stack • Stacks within Stacks • Modularisation • Standardisation • Reusable templates • Dependency Management • Output Reference

14. AWS CloudFormation Sharing stack information

15. AWS CloudFormation © 2020 Shine Solutions Group 15 Sharing - Export/Import • Stack Outputs • Unique per Account & Region • Include stack name & environment name • Parameterise as much as possible • Imported outputs Cannot be deleted • Preserve exported outputs • Create new version of export • Avoid for Single Stack version

18. AWS CloudFormation © 2020 Shine Solutions Group 18 • Unique per Account & Region • Include stack name & environment name • Parameterise as much as possible • Referred Parameters can be deleted • Stack Update fails if deleted • Creation, Deletion, Update • Renaming == deletion • Stack Update resolves updated parameter value • Prefer for Single Stack version Sharing - SSM

21. AWS CloudFormation Policy Based Resources

24. AWS CloudFormation Updatable Resources

26. AWS CloudFormation End 2 End Testing

29. AWS CloudFormation DEMO

30. AWS CloudFormation General recommendations

31. • Automate validation • Keep a modular mindset • Keep templates small • Design templates enabling deployment of multiple stack versions • Parameterise as much as possible • Don’t hardcode information • No manual changes to resources • Include Policy-Based resources • Ensure your resources are updatable • If suitable automate testing AWS CloudFormation © 2020 Shine Solutions Group 31 General recommendations

32. Michael Blum Senior Devops-Engineer michael.blum@shinesolutions.com linkedin.com/in/imblum Michael Blum mbloch1986 github.com/mbloch1986/cloudformation-samples

Michael_Blum_Mastering_CloudFormation.pdf

Recommended

Recommended

More Related Content

Similar to Michael_Blum_Mastering_CloudFormation.pdf

Similar to Michael_Blum_Mastering_CloudFormation.pdf (20)

Recently uploaded

Recently uploaded (20)

Michael_Blum_Mastering_CloudFormation.pdf