Alex Tjahjana, profile picture
Uploaded byAlex Tjahjana
19 views

Infrastructure-As-A/From-Code - An Introduction

An introduction to Infrastructure as a code and infrastructure from code, primarily using terraform and azure devops

Embed presentation

INFRASTRUCTURE AS-A/FROM CODE AN INTRODUCTION Alex Tjahjana Founding Consultant, IT Account 4 U 26th June 2024
30+ years of experiences in: Software Development: C#, .net, JS Frameworks Infrastructure: Azure, aws, on-prem DevOps Cyber Security Certifications: ITIL Certified Certified Scrum Master Azure Architect Expert Azure DevOps Engineer Expert Cybersecurity Architect Expert AWS Solutions Architect Professional
DEFINITIONS • is the process of managing and provisioning computer data center resources through machine-readable definition files, rather than physical hardware configuration or interactive configuration tools (Wittig, Andreas; Wittig, Michael (2016). Amazon Web Services in Action. Manning Press. p. 93) Infrastructure as code (IaC) • is an approach that creates, configures, and manages cloud resources understanding a software application's source code, without explicit description. (https://www.infoq.com/news/2023/02/infrastructure-code-cloud-manage/) Infrastructure from Code (IfC)
APPROACHES FOR IAC • Defines the target/desired configuration/state • Terraform, CloudFormation, Crossplane, Bicep, Puppet, ARM Template Declarative model • Describe how to achieve the target/desired configuration/state • Pulumi, CDKs, Ansible, Helm, Chef Imperative model How declarative do we need it to be?
APPROACHES FOR IFC • Analyse and infer infrastructure from code • Ampt, Nitric SDK-based • Specify the infrastructure as in-code annotation • Klotho Code annotation • Annotates the code, and the tools incorporate it into the framework • Encore, Shuttle, AWS Chalice Hybrid: Annotation + Framework • Cloud-centric programming languages • Wing, DarkLang New programming language
ADVANTAGES GitOps • Collaboration • Security • Compliance and Auditing • Standardisation Can be automated • Integration with DevOps and Continuous Deployment • Modification through configuration Repeatable and consistent Traceable Transparent • Higher visibility
RISKS Takes time to setup Templates configuration vulnerabilities Configuration drifts Secret management Cost Especially IfC Shifts infrastructure and security responsibilities to developers
DEMO TERRAFORM
BEST PRACTICES FOR TERRAFORM Modularise the TerraForm code Refactor Risk of rebuilding the resource Tags Costing Metadata Implement TerraForm test version 1.6.0+ Implement compliance and security scans Use input validation Nice to have: Resource cost estimation Infracost, Scalr
MODULE IN PRIVATE GIT • Use non-personal account • Use git config command in your yaml git config --global url."https://${PERSONAL_ACCESS_TOKEN}@dev.azure.com".insteadOf "https://dev.azure.com"
MAKES TERRAFORM IN AZUREDEVOPS EASIER • TerraForm yaml commands • Terraform Service Connection TerraForm extension Snyk extension • file transforms Use Pipeline library Use Pipeline Environment
DEMO TERRAFORM MODULES
REPOSITORIES • https://dev.azure.com/itaccount4u/demo- terraform/_git/local-modules Single repository (folders as module) • https://dev.azure.com/itaccount4u/demo- terraform/_git/remote-modules Remote Modules: • https://dev.azure.com/itaccount4u/demo- terraform-module/_git/resource-group • https://dev.azure.com/itaccount4u/demo- terraform-module/_git/storage-account Modularised Code
RESOURCES • Infrastructure as a Code: https://en.wikipedia.org/wiki/Infrastructure_as_code • Infrastructure from Code: https://www.infoq.com/news/2023/02/infrastructure-code-cloud- manage/ • State of Infrastructure-from-Code 2023: https://klo.dev/state-of-infrastructure-from-code-2023/ • 14 lines of IfC code creates 8 aws resources: https://infrastructurefromcode.com/#:~:text=automatically%20provis ion%20and%20configure%20the%20following%20resources • Infrastructure as Code: Do the Drawbacks Outweigh the Benefits?: https://www.itprotoday.com/software-development/infrastructure-as- code-do-the-drawbacks-outweigh-the-benefits-
RESOURCES • Create Azure Service Principal: https://registry.terraform.io/providers/hashicorp/azurerm/latest/doc s/guides/service_principal_client_secret • TerraForm test: https://developer.hashicorp.com/terraform/language/tests • TerraForm dynamic block: https://spacelift.io/blog/terraform- dynamic-blocks • Module in private repository: https://medium.com/@dipandergoyal/terraform-using-private-git- repo-as-module-source-d20d8cec7c5 • Infracost: https://github.com/infracost/infracost • Azure DevSecOps snippets: https://github.com/AErmie/DevSecOps/tree/main/azure-pipelines
THANK YOU Alex Tjahjana alex@itaccount4u.com linkedin.com/in/alextjahjana/

More Related Content

PPTX
Infrastructure as Code Presentation v5.pptx
byYASHSRIVASTAVA811639
 
PDF
What Infrastructure as Code Means for Businesses?
bycharlesphilip1228
 
PDF
ment.tech-What Infrastructure as Code Means for Businesses.pdf
bysj2643598
 
PDF
Getting Started with Infrastructure-as-Code
byAll Things Open
 
PPTX
IaC (infrastructure as a code) basics Presentation
byTzahiKolber1
 
PPTX
Infrastructure as Code with Terraform.pptx
bySamuel862293
 
PDF
Infrastructure as Code & Terraform 101
byKristoffer Ahl
 
PPTX
Infrastructure as Code with Terraform on AWS
byAli Can Kuştemur 🐧
 
Infrastructure as Code Presentation v5.pptx
byYASHSRIVASTAVA811639
 
What Infrastructure as Code Means for Businesses?
bycharlesphilip1228
 
ment.tech-What Infrastructure as Code Means for Businesses.pdf
bysj2643598
 
Getting Started with Infrastructure-as-Code
byAll Things Open
 
IaC (infrastructure as a code) basics Presentation
byTzahiKolber1
 
Infrastructure as Code with Terraform.pptx
bySamuel862293
 
Infrastructure as Code & Terraform 101
byKristoffer Ahl
 
Infrastructure as Code with Terraform on AWS
byAli Can Kuştemur 🐧
 

Similar to Infrastructure-As-A/From-Code - An Introduction

PPTX
Infrastructure as Code principles and practices
byOpenSense Labs
 
PDF
Infrastructure as code
byAakash Singhal
 
PDF
DevOps Online Training
byVisualpath Training
 
PPTX
Infrastructure as code, using Terraform
byHarkamal Singh
 
PDF
Infrastructure as Code
byAlbert Suwandhi
 
PDF
Cloud infrastructure as code
byTomasz Cholewa
 
PDF
Introduction to IAC and Terraform
byVenkat NaveenKashyap Devulapally
 
PDF
Infrastructure as Code with Terraform
byTim Berry
 
DOCX
Infrastructure as Code.docx
byMuhammadKhalil502533
 
PPTX
Why is Infrastructure-as-Code essential in the Cloud Age?
byAndrew Ferrier
 
PPTX
ntk2019_m-12.pptx
bychaymaa7
 
PDF
Terraform In Action Meap V10 Meap Scott Winkler
byheyenpardis0
 
PDF
Best Practices of Infrastructure as Code with Terraform
byDevOps.com
 
PDF
Infrastructure As Code
byYosef Tavin
 
PPTX
Infrastructure as code
byNaseath Saly
 
PDF
Patterns And Practices For Infrastructure As Code With Examples In Python And...
bygbartrilar
 
PDF
Creating AWS infrastructure using Terraform
byKnoldus Inc.
 
PPTX
Infrastructure as Code - Getting Started, Concepts & Tools
byLior Kamrat
 
PDF
Infrastructure as Code 2nd Edition Early Access Kief Morris
bymuliggrown7y
 
PDF
Infrastructure as Code Services - IAMOPS
bymarketingiamops
 
Infrastructure as Code principles and practices
byOpenSense Labs
 
Infrastructure as code
byAakash Singhal
 
DevOps Online Training
byVisualpath Training
 
Infrastructure as code, using Terraform
byHarkamal Singh
 
Infrastructure as Code
byAlbert Suwandhi
 
Cloud infrastructure as code
byTomasz Cholewa
 
Introduction to IAC and Terraform
byVenkat NaveenKashyap Devulapally
 
Infrastructure as Code with Terraform
byTim Berry
 
Infrastructure as Code.docx
byMuhammadKhalil502533
 
Why is Infrastructure-as-Code essential in the Cloud Age?
byAndrew Ferrier
 
ntk2019_m-12.pptx
bychaymaa7
 
Terraform In Action Meap V10 Meap Scott Winkler
byheyenpardis0
 
Best Practices of Infrastructure as Code with Terraform
byDevOps.com
 
Infrastructure As Code
byYosef Tavin
 
Infrastructure as code
byNaseath Saly
 
Patterns And Practices For Infrastructure As Code With Examples In Python And...
bygbartrilar
 
Creating AWS infrastructure using Terraform
byKnoldus Inc.
 
Infrastructure as Code - Getting Started, Concepts & Tools
byLior Kamrat
 
Infrastructure as Code 2nd Edition Early Access Kief Morris
bymuliggrown7y
 
Infrastructure as Code Services - IAMOPS
bymarketingiamops
 

Recently uploaded

PDF
Effective Ai powered mock interview .pdf
byamazingnishusingh766
 
PPTX
UNIT 1- Introduction to Basic of Computer Fundamentals
bypawarbhaktiit
 
PPTX
IBM_NEXA_DAC2021 NEXA, a cloud-native platform for collaborative hardware log...
byArun Joseph
 
PDF
Generating Structured Outputs from Unstructured Content Using LLMs
byEnterprise Knowledge
 
PDF
Requestly or Postman: What’s the Right API Tool for Your Team?
byhenrycavill30521
 
PDF
Mobile Onboarding UX 11 Best Practices for Retention (2026).pdf
byDesign Studio UI UX
 
PPTX
How Blockchain Application Development Enables Trustless Digital Ecosystems.pptx
byLisa ward
 
PDF
Josh Chu Boston - An Innovative Technology Executive
byJosh Chu Boston
 
PDF
SEO in Charleston SC | Local SEO Strategies to Grow Your Business.pdf
bycustomdigitalsolutio1
 
PDF
Digital Transformation Services The Key to Futureproofing Your Business
byQuadrafort Technolgies
 
PPTX
KTU-PEMET413 -MODULE 2-POLYMER MATRIX COMPOSITES - LECTURE 1.pptx
byVINAY B
 
PDF
Louisville User Group: Transforming Technical Debt into Technical Wealth
byLynda Kane
 
PPTX
02_Extended Warehouse Management Functions and Features.pptx
byUdayakumar218983
 
PPTX
Building Real-Time Voice AI — Udaiappa Ramachandran
byUdaiappa Ramachandran
 
PDF
A "Kill Switch" (Emergency Off Switch) for AI?
byScott M. Graffius
 
PDF
Early Signs of Constraint Loss in Modern System Design
byReality Drift Archive
 
PPTX
Full course that Prymehat uploads for you version 2
byOhenebaManu1
 
PDF
Intro to CrafterQ - AI Agent Platform for the Enterprise.pdf
byCrafterQ
 
PDF
6 Insights from the Patron Saint of AI Failure
byScott M. Graffius
 
PDF
Best Bank Statement Converter Software - A Documentation-Based Meta-Analysis ...
bylewisconrada
 
Effective Ai powered mock interview .pdf
byamazingnishusingh766
 
UNIT 1- Introduction to Basic of Computer Fundamentals
bypawarbhaktiit
 
IBM_NEXA_DAC2021 NEXA, a cloud-native platform for collaborative hardware log...
byArun Joseph
 
Generating Structured Outputs from Unstructured Content Using LLMs
byEnterprise Knowledge
 
Requestly or Postman: What’s the Right API Tool for Your Team?
byhenrycavill30521
 
Mobile Onboarding UX 11 Best Practices for Retention (2026).pdf
byDesign Studio UI UX
 
How Blockchain Application Development Enables Trustless Digital Ecosystems.pptx
byLisa ward
 
Josh Chu Boston - An Innovative Technology Executive
byJosh Chu Boston
 
SEO in Charleston SC | Local SEO Strategies to Grow Your Business.pdf
bycustomdigitalsolutio1
 
Digital Transformation Services The Key to Futureproofing Your Business
byQuadrafort Technolgies
 
KTU-PEMET413 -MODULE 2-POLYMER MATRIX COMPOSITES - LECTURE 1.pptx
byVINAY B
 
Louisville User Group: Transforming Technical Debt into Technical Wealth
byLynda Kane
 
02_Extended Warehouse Management Functions and Features.pptx
byUdayakumar218983
 
Building Real-Time Voice AI — Udaiappa Ramachandran
byUdaiappa Ramachandran
 
A "Kill Switch" (Emergency Off Switch) for AI?
byScott M. Graffius
 
Early Signs of Constraint Loss in Modern System Design
byReality Drift Archive
 
Full course that Prymehat uploads for you version 2
byOhenebaManu1
 
Intro to CrafterQ - AI Agent Platform for the Enterprise.pdf
byCrafterQ
 
6 Insights from the Patron Saint of AI Failure
byScott M. Graffius
 
Best Bank Statement Converter Software - A Documentation-Based Meta-Analysis ...
bylewisconrada
 

Infrastructure-As-A/From-Code - An Introduction

  • 1.
    INFRASTRUCTURE AS-A/FROM CODE ANINTRODUCTION Alex Tjahjana Founding Consultant, IT Account 4 U 26th June 2024
  • 2.
    30+ years ofexperiences in: Software Development: C#, .net, JS Frameworks Infrastructure: Azure, aws, on-prem DevOps Cyber Security Certifications: ITIL Certified Certified Scrum Master Azure Architect Expert Azure DevOps Engineer Expert Cybersecurity Architect Expert AWS Solutions Architect Professional
  • 3.
    DEFINITIONS • is theprocess of managing and provisioning computer data center resources through machine-readable definition files, rather than physical hardware configuration or interactive configuration tools (Wittig, Andreas; Wittig, Michael (2016). Amazon Web Services in Action. Manning Press. p. 93) Infrastructure as code (IaC) • is an approach that creates, configures, and manages cloud resources understanding a software application's source code, without explicit description. (https://www.infoq.com/news/2023/02/infrastructure-code-cloud-manage/) Infrastructure from Code (IfC)
  • 4.
    APPROACHES FOR IAC •Defines the target/desired configuration/state • Terraform, CloudFormation, Crossplane, Bicep, Puppet, ARM Template Declarative model • Describe how to achieve the target/desired configuration/state • Pulumi, CDKs, Ansible, Helm, Chef Imperative model How declarative do we need it to be?
  • 5.
    APPROACHES FOR IFC •Analyse and infer infrastructure from code • Ampt, Nitric SDK-based • Specify the infrastructure as in-code annotation • Klotho Code annotation • Annotates the code, and the tools incorporate it into the framework • Encore, Shuttle, AWS Chalice Hybrid: Annotation + Framework • Cloud-centric programming languages • Wing, DarkLang New programming language
  • 6.
    ADVANTAGES GitOps • Collaboration • Security •Compliance and Auditing • Standardisation Can be automated • Integration with DevOps and Continuous Deployment • Modification through configuration Repeatable and consistent Traceable Transparent • Higher visibility
  • 7.
    RISKS Takes time tosetup Templates configuration vulnerabilities Configuration drifts Secret management Cost Especially IfC Shifts infrastructure and security responsibilities to developers
  • 8.
  • 9.
    BEST PRACTICES FOR TERRAFORM Modularise the TerraFormcode Refactor Risk of rebuilding the resource Tags Costing Metadata Implement TerraForm test version 1.6.0+ Implement compliance and security scans Use input validation Nice to have: Resource cost estimation Infracost, Scalr
  • 10.
    MODULE IN PRIVATEGIT • Use non-personal account • Use git config command in your yaml git config --global url."https://${PERSONAL_ACCESS_TOKEN}@dev.azure.com".insteadOf "https://dev.azure.com"
  • 11.
    MAKES TERRAFORM INAZUREDEVOPS EASIER • TerraForm yaml commands • Terraform Service Connection TerraForm extension Snyk extension • file transforms Use Pipeline library Use Pipeline Environment
  • 12.
  • 13.
    REPOSITORIES • https://dev.azure.com/itaccount4u/demo- terraform/_git/local-modules Single repository(folders as module) • https://dev.azure.com/itaccount4u/demo- terraform/_git/remote-modules Remote Modules: • https://dev.azure.com/itaccount4u/demo- terraform-module/_git/resource-group • https://dev.azure.com/itaccount4u/demo- terraform-module/_git/storage-account Modularised Code
  • 14.
    RESOURCES • Infrastructure asa Code: https://en.wikipedia.org/wiki/Infrastructure_as_code • Infrastructure from Code: https://www.infoq.com/news/2023/02/infrastructure-code-cloud- manage/ • State of Infrastructure-from-Code 2023: https://klo.dev/state-of-infrastructure-from-code-2023/ • 14 lines of IfC code creates 8 aws resources: https://infrastructurefromcode.com/#:~:text=automatically%20provis ion%20and%20configure%20the%20following%20resources • Infrastructure as Code: Do the Drawbacks Outweigh the Benefits?: https://www.itprotoday.com/software-development/infrastructure-as- code-do-the-drawbacks-outweigh-the-benefits-
  • 15.
    RESOURCES • Create AzureService Principal: https://registry.terraform.io/providers/hashicorp/azurerm/latest/doc s/guides/service_principal_client_secret • TerraForm test: https://developer.hashicorp.com/terraform/language/tests • TerraForm dynamic block: https://spacelift.io/blog/terraform- dynamic-blocks • Module in private repository: https://medium.com/@dipandergoyal/terraform-using-private-git- repo-as-module-source-d20d8cec7c5 • Infracost: https://github.com/infracost/infracost • Azure DevSecOps snippets: https://github.com/AErmie/DevSecOps/tree/main/azure-pipelines
  • 16.