Kubernetes and Gitops at Quicksign - Koncrete Kube Oct 2018

•

0 likes•13 views

Quicksign embraced GitOps with Kubernetes early on. In this talk, I explained how we approached it and the challenges we faced.

Engineering

2018-10-16
Cédric Vidal, Quicksign CTO
@cedricvidal
Kubernetes and
GitOps at Quicksign
O

Who are we ?
● QuickSign is the European leader in digital onboarding for
financial services
● White label
● Now handling millions of digital subscriptions per year
10 years experience
15 countries

70% annual growth in traffic
The fo S l !

Traceability
● Regulated business
● Qualified signature ETSI 319 411
● Be able to prove conformance
● Non-repudiation

Multi tenancy
● Different workloads
● SLAs
● Shared cluster for small customers
● Dedicated cluster for big customers

GitOps ??
“Put simply, GitOps is the art and science of
using Git pull requests to manage
infrastructure provisioning and software
deployment.”
https://www.twistlock.com/2018/08/06/gitops-101-gitops-use/

GitOps benefits
• One tool to rule them all
• Version control for all changes
• Easy diff between two moments
• Covers also supporting infrastructure: monitoring and logging
https://www.twistlock.com/2018/08/06/gitops-101-gitops-use/

GitOps security benefits
• Many security workflows possible
• Branch level ACLs
• PR checks

GitOps overview
Ex e t
s a
1
Dif
Com
di
4
Pus d
Sub P
1b
Rev P
1c
Sync
2
Pok
Ob e v
s a
3
Fet
5
Al e
4 ha s

Kubernetes is sweet pie for GitOps ;)
• Everything is described ... as YAML, easy to version
• Most state, can be dumped as YAML and “imported” / applied
• Diff engine built-in (kubectl apply)

Custom Resource Definitions (since 1.7)
• Your own Kubernetes resources ! yeah
• Ex: a product configuration per customer (POCO)
1. public static resources -> GCS bucket / CDN
2. BPMN models -> deployed in our BPMN engine
• “POCO deployer”: CRD Controller

Service labels, annotations and queries
• Extended service registry
• Overlay your own metadata
• Query services by its metadata
• We use it to specify the transport, data formats and protocol
schemes of our BPMN tasks

GPU
• GPU on GKE
• Attached to VM
• nvidia driver installed as daemonset
• Only pods asking for GPUs as allocated to GPU nodes
• More expensive
• one GPU are not shareable to multiple pods :-(

Ingress
• Ingress Nginx behind a GCE LB level 4 (TCP)
• We don’t use the GCE level 7 load balancer
1. All services are down when a route is created … WTF ?
2. No http to https redirection

Outbound gateway
• GCE VM with fixed IP
• outbound traffic goes through that VM to have a fix outbound IP
• required for external IP filtering
Gateway of India, Mumbai, India

HPA (Horizontal Pod Autoscaler)
• Sky is the limit in the Cloud
• Automatically add replicas when under load
• Stateless pods only for now (most are)
• PDB (Pod Disruption Budget) : max unavailable = 1
• On GKE: node auto-scaling

Certificates
• Let’s encrypt for everything but production
• Wildcard certificates for production

Monitoring
• Prometheus
1. alert-manager
2. kube-state-metrics
3. node-exporter
4. blackbox-exporter

Your turn!
Cédric Vidal
CTO
@cedricvidal
Multiple free photographies from unsplash.com

OPENING KEYNOTE: The Cloud Native Computing Foundation (CNCF) is an open source software foundation dedicated to making cloud native computing universal and sustainable. With over 300 members including the world’s largest public cloud and enterprise software companies, Alexis Richardson, CEO of Weaveworks and chair of the CNCF Technical Oversight Committee will walk you through some success stories, and why cloud native is the way forward. You’ll learn why Kubernetes and other CNCF projects have some of the fastest adoption rates in the history of open source, and how this is only the beginning. Alexis will then show how you can increase speed and reliability in your development workflows even further by using the GitOps model, which has been developed at Weaveworks. You’ll learn about the core concepts of GitOps, including customer success stories, and how you can benefit from using this model.

Continuous Lifecycle London 2018 Event Keynote

Weaveworks

Today it’s all about delivering velocity without compromising on quality, yet it’s becoming increasingly difficult for organisations to keep up with the challenges of current release management and traditional operations. The demand for developers to own the end-to-end delivery, including operational ownership, is increasing. A “you build it, you own it” development process requires tools that developers know and understand. So I’d like to introduce “GitOps”- an agile software lifecycle for modern applications. In this session, I will discuss these industry challenges, including current CICD trends and how they’re converging with operations and monitoring. I’ll also illustrate the GitOps model, identify best practices and tools to use, and explain how you can benefit from adopting this methodology inherited from best practices going back 10-15 years.

Understanding the GitOps Workflow and CICD Pipeline - What It Is, Why It Matt...

Gibran Badrulzaman

Travelio Tech Talks 2022 presentation The recommended workflow for implementing GitOps with Kubernetes manifests is known as trunk-based development. This method defines one branch as the "trunk" and carries out development on each environment in a different short-lived branch. When development is complete for that environment, the developer creates a pull request for the branch to the trunk. Developers can also create a fork to work on an environment, and then create a branch to merge the fork into the trunk. Once the proper approvals are done, the pull request (or the branch from the fork) gets merged into the trunk. The branch for that feature is deleted, keeping your branches to a minimum. Trunk-based development trades branches for directories. You can think of the trunk as a "main" or primary branch. production and prod are popular names for the trunk branch. Trunk-based development came about to enable continuous integration and continuous delivery by supplying a development model focused on the fast delivery of changes to applications. But this model also works for GitOps repositories because it keeps things simple and more in tune with how Kustomize and Helm work. When you record deltas between environments, you can clearly see what changes will be merged into the trunk. You won’t have to cherry-pick nearly as often, and you’ll have the confidence that what is in your Git repository is what is actually going into your environment. This is what you want in a GitOps workflow.

Cédric Vidal from Quicksign: Building a digital on-boarding microservices pla...

camunda services GmbH

In the context of a fast-paced competitive KYC market, Quicksign needs a platform allowing to quickly adjust to customers' workflows and integration requirements, scale to support the growing usage of our services, secured and resilient by design and fun to build on. Using Camunda, Kubernetes, Kafka and some in-house development, we have built a multi-tenant Kappa micro-services platform that exposes, for each process deployed and without involving any specific development, a dynamically generated business-oriented REST-HATEOAS API. We will explain how we are able to mass produce personalized workflows which will radically change the way financial services onboard their customers.

gitopsthekubernetesway-201026090439.pdf

saraichiba2

Gitops: the kubernetes way

sparkfabrik

GitOps è un nuovo metodo di CD che utilizza Git come unica fonte di verità per le applicazioni e per l'infrastruttura (declarative infrastructure/infrastructure as code), fornendo sia il controllo delle revisioni che il controllo delle modifiche. In questo talk vedremo come implementare workflow di CI/CD Gitops basati su Kubernetes, dalla teoria alla pratica passando in rassegna i principali strumenti oggi a disposizione come ArgoCD, Flux (aka Gitops engine) e JenkinsX

The what, why and how of knative

Mofizur Rahman

Free GitOps Workshop (with Intro to Kubernetes & GitOps)

Weaveworks

View this video on Youtube here: https://youtu.be/tK4S8y3j5TA In this info-packed and hands-on workshop we covered:  Introduction to Kubernetes & GitOps talk: We covered the most popular path that has brought success to many users already - GitOps as a natural evolution of Kubernetes. We'll give an overview of how you can benefit from Kubernetes and GitOps: greater security, reliability, velocity and more. Importantly, we cover definitions and principles standardized by the CNCF's OpenGitOps group and what it means for you.  Get Started with GitOps: You'll have GitOps up and running in about 30 mins using our free and open source tools! We'll give a brief vision of where you want to be with those security, reliability, and velocity benefits, and then we'll support you while go through the getting started steps. During the workshop, you'll also experience in action and see demos for: - an opinionated repo structure to minimize decision fatigue - disaster recovery using GitOps - Helm charts example - Multi-cluster example - all with free and open source tools mostly in the CNCF (eg. Flux and Helm). If you have questions before or after the workshop, talk to us at #weave-gitops http://bit.ly/WeaveGitOpsSlack (If you need to invite yourself to the Slack, visit https://slack.weave.works/)

This year's first round of Kubernetes and Cloud Native meetups in Eastern Canada began with an update of the CNCF by Ayrat Khayretdinov, CNCF Ambassador and Solutions Architect at CloudOps. He explained the status of various projects and highlights from KubeCon + CloudNativeCon. To learn the basics of cloud native application modernization, sign up for one of our hands-on, three-day workshops on Docker and Kubernetes at https://www.cloudops.com/workshops/#DockerK8s

Xpdays: Kubernetes CI-CD Frameworks Case Study

Denys Vasyliev

A set of flexible and comprehensive operation principles to cover all stages of a modern application life cycle. Almost any Customer wants the Setup to be compatible with existing infrastructure. It assumes a Bare Metal, Private or Public Cloud. In special cases even offline setup, for example, Airports, Fintech sector or Telecom operators. The main requirements are: Scalability, High Availability, Security Compliance, Professional Service. So, we should cover all three tiers: Infrastructure, Control Plane and Application Plane. Market leaders are Drone, Argo and Knative. And our story we called Cloud Flex Framework.

Introduction to DevOps and the Practical Use Cases at Credit OK

Kriangkrai Chaonithi

RTBkit Meetup - Developer Spotlight, Behind the Scenes of RTBkit and Intro to...

Datacratic

Join us for a Virtual RTBkit Meetup to kick off 2015 with knowledge, best practices and tips from the RTBkit developer community. Agenda: - RTBkit Developer Speaker Spotlight with Nicolas Emiliani - RTB Technical Lead, Motrixi - RTBkit Behind the Scenes Update - Intro to the RTBkit Stack - Open Q&A Join us for this virtual meetup from the comfort of your home or office. Virtual seats are limited so register early to claim your spot.

Google Cloud Platform Solutions for DevOps Engineers

Márton Kodok

learn the DevOps essentials about cloud components, FaaS, PaaS architectural patterns that make use of Cloud Functions, Pub/Sub, Dataflow, Kubernetes and how we develop and deploy cloud software. You will get hands on information how to build, run, monitor highly scalable and flexible applications optimized to run on GCP. We will discuss cloud concepts and highlights various design patterns and best practices.

Microservices & Serverless Architecture Principles Applied - Cisco Live Orlan...

Cisco DevNet

Then! You've successfully implemented a few Web Services, and you're wondering how to deploy, scale, secure and monitor them. We'll explain the the "SideCar" and "API Gateway" patterns of microservices architectures principles, and apply these principles to the deployment of scalable and secure Chat Bots with the Caddy Server. Join this session to learn about microservices architecture patterns and implementation options (whether you're a bot builder or not !). DEVNET_1871 https://www.ciscolive.com/us/learn/sessions/session-catalog/?search=1871

ZaloPay Merchant Platform on K8S on-premise

Chau Thanh

Real Time Visibility with Flink

Rafi Aroch

The HERE Mobility Marketplace connects businesses & consumers with different types of transportation services. Transporting a passenger from point A to B requires many moving parts. Multiple data points flow constantly between mobile devices & backend services. In order to make smarter decisions we needed realtime answers to questions like: What is the current status of a ride? Where are the driver and passenger located? Why didn't the driver show up? Why was the ride cancelled? And more... I would like to share with you how we addressed this challenge using Flink to gain better visibility, answering those questions, for Customer Support, BI and Data Science teams. I'll describe what issues we faced and how we solved them.

Implementing a WebRTC endpoint in GStreamer: challenges, problems and perspec...

Luis Lopez

WebRTC is one of the main trends on the multimedia arena in the last few years. The ability of bringing real-time audio and video to WWW browsers opens new horizons for developers to create context aware customized applications for inter-human communications. However, for WebRTC technologies to work seamlessly in WWW applications, it’s necessary to manage with a number of present and future complex challenges. In this talk, we present the experience of the Kurento Media Server team in creating a WebRTC endpoint for GStreamer. We describe the main problems and limitations basing on current GStreamer status describing which parts of WebRTC standards can be currently implemented with GStreamer and which parts require further evolutions and efforts from the community. We will also describe the plans and drafts that are emerging at different standardization groups, including the WebRTC WG at W3C and the RTCWeb WG at IETF. Basing on this, we will try to forecast how WebRTC technologies in particular, but also how real-time multimedia communications in general, may be evolving in the next couple of years and the activities that the GStreamer community should be considering for adapting to these evolutions. In particular, we shall introduce in detail topics such as the following: • The evolution of ICE (Interactive Connectivity Establishment). • Congestion control for RTC streams. • Implementing WebRTC security securely • Implementing and optimizing the AVPF profile for RTP • Benchmarking WebRTC: stats metrics • Managing sensor data through DataChannels.

GCP Meetup #3 - Approaches to Cloud Native Architectures

nine

Transforming Consumer Banking with a 100% Cloud-Based Bank (FSV204) - AWS re:...

Amazon Web Services

Customer demands for higher levels of service and value, constantly evolving technology capabilities, and stringent regulatory requirements are all powerful forces reshaping retail banking. Built exclusively on AWS, Starling Bank’s 100% cloud-based, mobile-only banking solution satisfies regulators in terms of its resilience, security, and reliability. It also satisfies consumers by giving them greater control over their data, streamlining the account opening process, accelerating payments, and providing access to innovative new services developed from scratch with open APIs, a developer platform, integration with Apple Pay, Google Pay, and Fitbit Pay and a custom backend ledger and payments integrations. Starling Bank is leading the open banking revolution. In this session, learn how Starling Bank delivers value to their customers and innovates at a very fast pace in a sector that can be slow to evolve.

Advanced Code Flow, Notes From the Field

Ariel Moskovich

JDO 2019: What you should be aware of before setting up kubernetes on premise...

PROIDEA

Kubernetes is trendy. There are tons of presentations on how companies saved lots of money by migrating to Kubernetes. Kubernetes is mostly advertised as a cloud service, but there are companies that can't or don't want to migrate their services to the cloud. For them there are solutions to set up Kubernetes on premise. Before you decide to visit that land, I must warn you: there are demons waiting for you, demons that nobody speaks about in public...

introduction to micro services

Spyros Lambrinidis

First steps into developing an application as a suite of small services, and analysis of tools and architecture approaches to be used. Topics covered: 1) What is a micro service architecture 2)Advantages in code procedures, team dynamics and scaling 3) How container services such as docker assist in its implementation 4) How to deploy code in a micro services architecture 5) Container Management tools and resource efficiency (mesos, kubernetes, aws container service) 6) Scaling up By PeoplePerHour team presented by CTO Spyros Lambrinidis & Senior DevOps Panagiotis Moustafellos @ Docker Athens Meetup 18/02/2015

Deploying NGINX Plus & Kubernetes on Google Cloud Platform

NGINX, Inc.

Watch webinar on-demand: www.nginx.com/resources/webinars/google-cloud-platform-nginx-kubernetes Moving to the cloud and transitioning to containerized deployments are top of mind for many enterprises as they build applications to meet quickly increasing user demands. The cloud offers the flexibility, scalability, reliability, and security that enterprise applications demand, and by moving services, and all their dependencies, to containers, developers and engineers win the flexibility and freedom to easily scale and secure their applications. Over the past few years a number of tools have emerged to make it easier than ever to run applications in the cloud and manage rapidly growing numbers of containers. Kubernetes and NGINX are two of the leading tools used in the cloud, and they are commonly used together to quickly and easily deploy and scale applications. Join us in this webinar co-hosted by Sandeep Dinesh, Developer Advocate, of Google’s Cloud Platform team, and Floyd Smith of NGINX to learn: How to use NGINX for internal and external load balancing of applications on Google Compute Engine. Benefits of using container orchestration systems like Kubernetes. How to load balance Kubernetes services with NGINX Plus on Google Container Engine.

USENIX LISA15: How TubeMogul Handles over One Trillion HTTP Requests a Month

Nicolas Brousse

TubeMogul grew from few servers to over two thousands servers and handling over one trillion http requests a month, processed in less than 50ms each. To keep up with the fast growth, the SRE team had to implement an efficient Continuous Delivery infrastructure that allowed to do over 10,000 puppet deployment and 8,500 application deployment in 2014. In this presentation, we will cover the nuts and bolts of the TubeMogul operations engineering team and how they overcome challenges.

Ultimate Guide to Microservice Architecture on Kubernetes

kloia

Migration of a high-traffic E-commerce website from Legacy Monolith to Micros...

Pavel Pratyush

How Sysbee Manages Infrastructures and Provides Advanced Monitoring by Using ...

InfluxData

Discover how Sysbee helps organizations bring DevOps culture to small and medium enterprises. Their team helps their customers by improving stability, security, scalability — by providing cost-effective IT infrastructure. Learn how monitoring everything can improve your processes and simplify debugging! Sysbee’s introspection on monitoring tools over the years How TSDB’s, and specifically InfluxDB, fits into improving observability Their approach to using the TICK Stack to improve the web hosting industry

Camunda Days 2018 Building a digital on-boarding microservices platform using...

Cedric Vidal

AgileTour Strasbourg 2011 BDD with jBehave

Cedric Vidal

Similar to Kubernetes and Gitops at Quicksign - Koncrete Kube Oct 2018

London-MuleSoft-Meetup-April-19-2023

AnuragSharma900

Kubernetes and Cloud Native Meetup - March, 2019

CloudOps2005

Xpdays: Kubernetes CI-CD Frameworks Case Study

Denys Vasyliev

Introduction to DevOps and the Practical Use Cases at Credit OK

Kriangkrai Chaonithi

RTBkit Meetup - Developer Spotlight, Behind the Scenes of RTBkit and Intro to...

Datacratic

Google Cloud Platform Solutions for DevOps Engineers

Márton Kodok

Microservices & Serverless Architecture Principles Applied - Cisco Live Orlan...

Cisco DevNet

ZaloPay Merchant Platform on K8S on-premise

Chau Thanh

Real Time Visibility with Flink

Rafi Aroch

Implementing a WebRTC endpoint in GStreamer: challenges, problems and perspec...

Luis Lopez

GCP Meetup #3 - Approaches to Cloud Native Architectures

nine

Transforming Consumer Banking with a 100% Cloud-Based Bank (FSV204) - AWS re:...

Amazon Web Services

Advanced Code Flow, Notes From the Field

Ariel Moskovich

JDO 2019: What you should be aware of before setting up kubernetes on premise...

PROIDEA

introduction to micro services

Spyros Lambrinidis

Deploying NGINX Plus & Kubernetes on Google Cloud Platform

NGINX, Inc.

USENIX LISA15: How TubeMogul Handles over One Trillion HTTP Requests a Month

Nicolas Brousse

Ultimate Guide to Microservice Architecture on Kubernetes

kloia

Migration of a high-traffic E-commerce website from Legacy Monolith to Micros...

Pavel Pratyush

How Sysbee Manages Infrastructures and Provides Advanced Monitoring by Using ...

InfluxData

Similar to Kubernetes and Gitops at Quicksign - Koncrete Kube Oct 2018 (20)

London-MuleSoft-Meetup-April-19-2023

Kubernetes and Cloud Native Meetup - March, 2019

Xpdays: Kubernetes CI-CD Frameworks Case Study

Introduction to DevOps and the Practical Use Cases at Credit OK

RTBkit Meetup - Developer Spotlight, Behind the Scenes of RTBkit and Intro to...

Google Cloud Platform Solutions for DevOps Engineers

Microservices & Serverless Architecture Principles Applied - Cisco Live Orlan...

ZaloPay Merchant Platform on K8S on-premise

Real Time Visibility with Flink

Implementing a WebRTC endpoint in GStreamer: challenges, problems and perspec...

GCP Meetup #3 - Approaches to Cloud Native Architectures

Transforming Consumer Banking with a 100% Cloud-Based Bank (FSV204) - AWS re:...

Advanced Code Flow, Notes From the Field

JDO 2019: What you should be aware of before setting up kubernetes on premise...

introduction to micro services

Deploying NGINX Plus & Kubernetes on Google Cloud Platform

USENIX LISA15: How TubeMogul Handles over One Trillion HTTP Requests a Month

Ultimate Guide to Microservice Architecture on Kubernetes

Migration of a high-traffic E-commerce website from Legacy Monolith to Micros...

How Sysbee Manages Infrastructures and Provides Advanced Monitoring by Using ...

More from Cedric Vidal

Camunda Days 2018 Building a digital on-boarding microservices platform using...

Cedric Vidal

AgileTour Strasbourg 2011 BDD with jBehave

Cedric Vidal

BBL KAPPA Lesfurets.com

Cedric Vidal

EMF Customizer

Cedric Vidal

Rethinking Quicksign's Digital Onboarding - Confluent Streaming Days Paris

Cedric Vidal

In the context of a fast-paced competitive and regulated KYC market, Quicksign needed to rethink its platform. Our goal: quickly adjust to our customers' workflows and integration requirements, scale to support the growing usage and features of our services, be secured and resilient by design—while being fun to build on! Using Kafka Streams, the Camunda BPMN engine and some in-house developments, we built on Kafka and Kubernetes a fully reactive and streamed CQRS-ES microservices platform. It exposes, for each of our tenants’ processes and without involving any specific development, a bespoke and reactive REST API. We’ll share how we leveraged Kafka as the backbone of our architecture to fuel our microservices and Kafka Streams to implement the CQRS-ES architectural pattern which we believe is key to provide the strongest foundation for growth in the coming years.

Do microservices dream about CQRS-ES, Kafka Stream and BPMN ? - Voxxed micros...

Cedric Vidal

Like many other software vendors Quicksign has chosen to migrate its SAAS platform from an on-premise monolith to a microservices platform in the Cloud. Using a modern tech stack including Kafka, Kubernetes, the Camunda BPMN engine and some in-house development we have built a Kappa CQRS-ES multi-tenant platform able to execute BPMN workflows that can discover and consume any microservice registered in a Kubernetes backed extended registry that allows content type and protocol negotiation. Our platform leverages Kafka Streams to dynamically generate from a reactive stream of workflow events a bespoke REST-API (HATEOAS) representation so as to ease our customers’ integration effort and allow fast iterations. We propose to briefly introduce the audience to BPMN and then expose the rationale that led us to build this architecture, its advantages in terms of agility and scalability.

EMF ScaffoldingCedric Vidal

Eclipse Day Paris 2010 - ProxiAD - Cedric Vidal - 1.0

Cedric Vidal

MD Day 2009 - Cédric Vidal - 1.0

Cedric Vidal

RMLL - Eclipse Acceleo Day - MDSD Scaffolding and Acceleo - Cédric Vidal - 1.1

Cedric Vidal

Scaffolding MDSD par l’exemple - 1.0Cedric Vidal

More from Cedric Vidal (11)

Camunda Days 2018 Building a digital on-boarding microservices platform using...

AgileTour Strasbourg 2011 BDD with jBehave

BBL KAPPA Lesfurets.com

EMF Customizer

Rethinking Quicksign's Digital Onboarding - Confluent Streaming Days Paris

Do microservices dream about CQRS-ES, Kafka Stream and BPMN ? - Voxxed micros...

EMF Scaffolding

Eclipse Day Paris 2010 - ProxiAD - Cedric Vidal - 1.0

MD Day 2009 - Cédric Vidal - 1.0

RMLL - Eclipse Acceleo Day - MDSD Scaffolding and Acceleo - Cédric Vidal - 1.1

Scaffolding MDSD par l’exemple - 1.0

Recently uploaded

An Approach to Detecting Writing Styles Based on Clustering Techniques

ambekarshweta25

An Approach to Detecting Writing Styles Based on Clustering Techniques Authors: -Devkinandan Jagtap -Shweta Ambekar -Harshit Singh -Nakul Sharma (Assistant Professor) Institution: VIIT Pune, India Abstract: This paper proposes a system to differentiate between human-generated and AI-generated texts using stylometric analysis. The system analyzes text files and classifies writing styles by employing various clustering algorithms, such as k-means, k-means++, hierarchical, and DBSCAN. The effectiveness of these algorithms is measured using silhouette scores. The system successfully identifies distinct writing styles within documents, demonstrating its potential for plagiarism detection. Introduction: Stylometry, the study of linguistic and structural features in texts, is used for tasks like plagiarism detection, genre separation, and author verification. This paper leverages stylometric analysis to identify different writing styles and improve plagiarism detection methods. Methodology: The system includes data collection, preprocessing, feature extraction, dimensional reduction, machine learning models for clustering, and performance comparison using silhouette scores. Feature extraction focuses on lexical features, vocabulary richness, and readability scores. The study uses a small dataset of texts from various authors and employs algorithms like k-means, k-means++, hierarchical clustering, and DBSCAN for clustering. Results: Experiments show that the system effectively identifies writing styles, with silhouette scores indicating reasonable to strong clustering when k=2. As the number of clusters increases, the silhouette scores decrease, indicating a drop in accuracy. K-means and k-means++ perform similarly, while hierarchical clustering is less optimized. Conclusion and Future Work: The system works well for distinguishing writing styles with two clusters but becomes less accurate as the number of clusters increases. Future research could focus on adding more parameters and optimizing the methodology to improve accuracy with higher cluster values. This system can enhance existing plagiarism detection tools, especially in academic settings.

一比一原版(UofT毕业证)多伦多大学毕业证成绩单如何办理

ydteq

UofT毕业证原版定制【微信：176555708】【多伦多大学毕业证成绩单-学位证】【微信：176555708】（留信学历认证永久存档查询）采用学校原版纸张、特殊工艺完全按照原版一比一制作（包括：隐形水印，阴影底纹，钢印LOGO烫金烫银，LOGO烫金烫银复合重叠，文字图案浮雕，激光镭射，紫外荧光，温感，复印防伪）行业标杆！精益求精，诚心合作，真诚制作！多年品质 ,按需精细制作，24小时接单,全套进口原装设备，十五年致力于帮助留学生解决难题，业务范围有加拿大、英国、澳洲、韩国、美国、新加坡，新西兰等学历材料，包您满意。 ◆◆◆◆◆ — — — — — — — — 【留学教育】留学归国服务中心 — — — — — -◆◆◆◆◆ 【主营项目】一.毕业证【微信：176555708】成绩单、使馆认证、教育部认证、雅思托福成绩单、学生卡等！二.真实使馆公证(即留学回国人员证明,不成功不收费) 三.真实教育部学历学位认证（教育部存档！教育部留服网站永久可查）四.办理各国各大学文凭(一对一专业服务,可全程监控跟踪进度) 如果您处于以下几种情况： ◇在校期间，因各种原因未能顺利毕业……拿不到官方毕业证【微信：176555708】 ◇面对父母的压力，希望尽快拿到； ◇不清楚认证流程以及材料该如何准备； ◇回国时间很长，忘记办理； ◇回国马上就要找工作，办给用人单位看； ◇企事业单位必须要求办理的 ◇需要报考公务员、购买免税车、落转户口 ◇申请留学生创业基金留信网认证的作用: 1:该专业认证可证明留学生真实身份 2:同时对留学生所学专业登记给予评定 3:国家专业人才认证中心颁发入库证书 4:这个认证书并且可以归档倒地方 5:凡事获得留信网入网的信息将会逐步更新到个人身份内，将在公安局网内查询个人身份证信息后，同步读取人才网入库信息 6:个人职称评审加20分 7:个人信誉贷款加10分→ 【关于价格问题（保证一手价格）我们所定的价格是非常合理的，而且我们现在做得单子大多数都是代理和回头客户介绍的所以一般现在有新的单子我给客户的都是第一手的代理价格，因为我想坦诚对待大家不想跟大家在价格方面浪费时间对于老客户或者被老客户介绍过来的朋友，我们都会适当给一些优惠。 8:在国家人才网主办的国家网络招聘大会中纳入资料，供国家高端企业选择人才选择实体注册公司办理，更放心，更安全！我们的承诺：可来公司面谈，可签订合同，会陪同客户一起到教育部认证窗口递交认证材料，客户在教育部官方认证查询网站查询到认证通过结果后付款，不成功不收费！学历顾问：微信：176555708

Final project report on grocery store management system..pdf

Kamal Acharya

In today’s fast-changing business environment, it’s extremely important to be able to respond to client needs in the most effective and timely manner. If your customers wish to see your business online and have instant access to your products or services. Online Grocery Store is an e-commerce website, which retails various grocery products. This project allows viewing various products available enables registered users to purchase desired products instantly using Paytm, UPI payment processor (Instant Pay) and also can place order by using Cash on Delivery (Pay Later) option. This project provides an easy access to Administrators and Managers to view orders placed using Pay Later and Instant Pay options. In order to develop an e-commerce website, a number of Technologies must be studied and understood. These include multi-tiered architecture, server and client-side scripting techniques, implementation technologies, programming language (such as PHP, HTML, CSS, JavaScript) and MySQL relational databases. This is a project with the objective to develop a basic website where a consumer is provided with a shopping cart website and also to know about the technologies used to develop such a website. This document will discuss each of the underlying technologies to create and implement an e- commerce website.

Hybrid optimization of pumped hydro system and solar- Engr. Abdul-Azeez.pdf

fxintegritypublishin

Advancements in technology unveil a myriad of electrical and electronic breakthroughs geared towards efficiently harnessing limited resources to meet human energy demands. The optimization of hybrid solar PV panels and pumped hydro energy supply systems plays a pivotal role in utilizing natural resources effectively. This initiative not only benefits humanity but also fosters environmental sustainability. The study investigated the design optimization of these hybrid systems, focusing on understanding solar radiation patterns, identifying geographical influences on solar radiation, formulating a mathematical model for system optimization, and determining the optimal configuration of PV panels and pumped hydro storage. Through a comparative analysis approach and eight weeks of data collection, the study addressed key research questions related to solar radiation patterns and optimal system design. The findings highlighted regions with heightened solar radiation levels, showcasing substantial potential for power generation and emphasizing the system's efficiency. Optimizing system design significantly boosted power generation, promoted renewable energy utilization, and enhanced energy storage capacity. The study underscored the benefits of optimizing hybrid solar PV panels and pumped hydro energy supply systems for sustainable energy usage. Optimizing the design of solar PV panels and pumped hydro energy supply systems as examined across diverse climatic conditions in a developing country, not only enhances power generation but also improves the integration of renewable energy sources and boosts energy storage capacities, particularly beneficial for less economically prosperous regions. Additionally, the study provides valuable insights for advancing energy research in economically viable areas. Recommendations included conducting site-specific assessments, utilizing advanced modeling tools, implementing regular maintenance protocols, and enhancing communication among system components.

在线办理(ANU毕业证书)澳洲国立大学毕业证录取通知书一模一样

obonagu

学校原件一模一样【微信：741003700 】《(ANU毕业证书)澳洲国立大学毕业证》【微信：741003700 】学位证，留信认证（真实可查，永久存档）原件一模一样纸张工艺/offer、雅思、外壳等材料/诚信可靠,可直接看成品样本，帮您解决无法毕业带来的各种难题！外壳，原版制作，诚信可靠，可直接看成品样本。行业标杆！精益求精，诚心合作，真诚制作！多年品质 ,按需精细制作，24小时接单,全套进口原装设备。十五年致力于帮助留学生解决难题，包您满意。本公司拥有海外各大学样板无数，能完美还原。 1:1完美还原海外各大学毕业材料上的工艺：水印，阴影底纹，钢印LOGO烫金烫银，LOGO烫金烫银复合重叠。文字图案浮雕、激光镭射、紫外荧光、温感、复印防伪等防伪工艺。材料咨询办理、认证咨询办理请加学历顾问Q/微741003700 【主营项目】一.毕业证【q微741003700】成绩单、使馆认证、教育部认证、雅思托福成绩单、学生卡等！二.真实使馆公证(即留学回国人员证明,不成功不收费) 三.真实教育部学历学位认证（教育部存档！教育部留服网站永久可查）四.办理各国各大学文凭(一对一专业服务,可全程监控跟踪进度) 如果您处于以下几种情况： ◇在校期间，因各种原因未能顺利毕业……拿不到官方毕业证【q/微741003700】 ◇面对父母的压力，希望尽快拿到； ◇不清楚认证流程以及材料该如何准备； ◇回国时间很长，忘记办理； ◇回国马上就要找工作，办给用人单位看； ◇企事业单位必须要求办理的 ◇需要报考公务员、购买免税车、落转户口 ◇申请留学生创业基金留信网认证的作用: 1:该专业认证可证明留学生真实身份 2:同时对留学生所学专业登记给予评定 3:国家专业人才认证中心颁发入库证书 4:这个认证书并且可以归档倒地方 5:凡事获得留信网入网的信息将会逐步更新到个人身份内，将在公安局网内查询个人身份证信息后，同步读取人才网入库信息 6:个人职称评审加20分 7:个人信誉贷款加10分 8:在国家人才网主办的国家网络招聘大会中纳入资料，供国家高端企业选择人才

一比一原版(UMich毕业证)密歇根大学|安娜堡分校毕业证成绩单专业办理

zwunae

UMich毕业证原版定制【微信：176555708】【密歇根大学|安娜堡分校毕业证成绩单-学位证】【微信：176555708】（留信学历认证永久存档查询）采用学校原版纸张、特殊工艺完全按照原版一比一制作（包括：隐形水印，阴影底纹，钢印LOGO烫金烫银，LOGO烫金烫银复合重叠，文字图案浮雕，激光镭射，紫外荧光，温感，复印防伪）行业标杆！精益求精，诚心合作，真诚制作！多年品质 ,按需精细制作，24小时接单,全套进口原装设备，十五年致力于帮助留学生解决难题，业务范围有加拿大、英国、澳洲、韩国、美国、新加坡，新西兰等学历材料，包您满意。 ◆◆◆◆◆ — — — — — — — — 【留学教育】留学归国服务中心 — — — — — -◆◆◆◆◆ 【主营项目】一.毕业证【微信：176555708】成绩单、使馆认证、教育部认证、雅思托福成绩单、学生卡等！二.真实使馆公证(即留学回国人员证明,不成功不收费) 三.真实教育部学历学位认证（教育部存档！教育部留服网站永久可查）四.办理各国各大学文凭(一对一专业服务,可全程监控跟踪进度) 如果您处于以下几种情况： ◇在校期间，因各种原因未能顺利毕业……拿不到官方毕业证【微信：176555708】 ◇面对父母的压力，希望尽快拿到； ◇不清楚认证流程以及材料该如何准备； ◇回国时间很长，忘记办理； ◇回国马上就要找工作，办给用人单位看； ◇企事业单位必须要求办理的 ◇需要报考公务员、购买免税车、落转户口 ◇申请留学生创业基金留信网认证的作用: 1:该专业认证可证明留学生真实身份 2:同时对留学生所学专业登记给予评定 3:国家专业人才认证中心颁发入库证书 4:这个认证书并且可以归档倒地方 5:凡事获得留信网入网的信息将会逐步更新到个人身份内，将在公安局网内查询个人身份证信息后，同步读取人才网入库信息 6:个人职称评审加20分 7:个人信誉贷款加10分→ 【关于价格问题（保证一手价格）我们所定的价格是非常合理的，而且我们现在做得单子大多数都是代理和回头客户介绍的所以一般现在有新的单子我给客户的都是第一手的代理价格，因为我想坦诚对待大家不想跟大家在价格方面浪费时间对于老客户或者被老客户介绍过来的朋友，我们都会适当给一些优惠。 8:在国家人才网主办的国家网络招聘大会中纳入资料，供国家高端企业选择人才选择实体注册公司办理，更放心，更安全！我们的承诺：可来公司面谈，可签订合同，会陪同客户一起到教育部认证窗口递交认证材料，客户在教育部官方认证查询网站查询到认证通过结果后付款，不成功不收费！学历顾问：微信：176555708

Literature Review Basics and Understanding Reference Management.pptx

Dr Ramhari Poudyal

DESIGN AND ANALYSIS OF A CAR SHOWROOM USING E TABS

itech2017

Fundamentals of Induction Motor Drives.pptx

manasideore6

6th International Conference on Machine Learning & Applications (CMLA 2024)

ClaraZara1

Cosmetic shop management system project report.pdf

Kamal Acharya

Buying new cosmetic products is difficult. It can even be scary for those who have sensitive skin and are prone to skin trouble. The information needed to alleviate this problem is on the back of each product, but it's thought to interpret those ingredient lists unless you have a background in chemistry. Instead of buying and hoping for the best, we can use data science to help us predict which products may be good fits for us. It includes various function programs to do the above mentioned tasks. Data file handling has been effectively used in the program. The automated cosmetic shop management system should deal with the automation of general workflow and administration process of the shop. The main processes of the system focus on customer's request where the system is able to search the most appropriate products and deliver it to the customers. It should help the employees to quickly identify the list of cosmetic product that have reached the minimum quantity and also keep a track of expired date for each cosmetic product. It should help the employees to find the rack number in which the product is placed.It is also Faster and more efficient way.

Top 10 Oil and Gas Projects in Saudi Arabia 2024.pdf

Teleport Manpower Consultant

Understanding Inductive Bias in Machine Learning

SUTEJAS

This presentation explores the concept of inductive bias in machine learning. It explains how algorithms come with built-in assumptions and preferences that guide the learning process. You'll learn about the different types of inductive bias and how they can impact the performance and generalizability of machine learning models. The presentation also covers the positive and negative aspects of inductive bias, along with strategies for mitigating potential drawbacks. We'll explore examples of how bias manifests in algorithms like neural networks and decision trees. By understanding inductive bias, you can gain valuable insights into how machine learning models work and make informed decisions when building and deploying them.

Heap Sort (SS).ppt FOR ENGINEERING GRADUATES, BCA, MCA, MTECH, BSC STUDENTS

Soumen Santra

Sachpazis:Terzaghi Bearing Capacity Estimation in simple terms with Calculati...

Dr.Costas Sachpazis

Terzaghi's soil bearing capacity theory, developed by Karl Terzaghi, is a fundamental principle in geotechnical engineering used to determine the bearing capacity of shallow foundations. This theory provides a method to calculate the ultimate bearing capacity of soil, which is the maximum load per unit area that the soil can support without undergoing shear failure. The Calculation HTML Code included.

digital fundamental by Thomas L.floydl.pdf

drwaing

RAT: Retrieval Augmented Thoughts Elicit Context-Aware Reasoning in Long-Hori...

thanhdowork

Building Electrical System Design & Installation

symbo111

一比一原版(Otago毕业证)奥塔哥大学毕业证成绩单如何办理

dxobcob

Otago毕业证原版定制【微信：176555708】【奥塔哥大学毕业证成绩单-学位证】【微信：176555708】（留信学历认证永久存档查询）采用学校原版纸张、特殊工艺完全按照原版一比一制作（包括：隐形水印，阴影底纹，钢印LOGO烫金烫银，LOGO烫金烫银复合重叠，文字图案浮雕，激光镭射，紫外荧光，温感，复印防伪）行业标杆！精益求精，诚心合作，真诚制作！多年品质 ,按需精细制作，24小时接单,全套进口原装设备，十五年致力于帮助留学生解决难题，业务范围有加拿大、英国、澳洲、韩国、美国、新加坡，新西兰等学历材料，包您满意。 ◆◆◆◆◆ — — — — — — — — 【留学教育】留学归国服务中心 — — — — — -◆◆◆◆◆ 【主营项目】一.毕业证【微信：176555708】成绩单、使馆认证、教育部认证、雅思托福成绩单、学生卡等！二.真实使馆公证(即留学回国人员证明,不成功不收费) 三.真实教育部学历学位认证（教育部存档！教育部留服网站永久可查）四.办理各国各大学文凭(一对一专业服务,可全程监控跟踪进度) 如果您处于以下几种情况： ◇在校期间，因各种原因未能顺利毕业……拿不到官方毕业证【微信：176555708】 ◇面对父母的压力，希望尽快拿到； ◇不清楚认证流程以及材料该如何准备； ◇回国时间很长，忘记办理； ◇回国马上就要找工作，办给用人单位看； ◇企事业单位必须要求办理的 ◇需要报考公务员、购买免税车、落转户口 ◇申请留学生创业基金留信网认证的作用: 1:该专业认证可证明留学生真实身份 2:同时对留学生所学专业登记给予评定 3:国家专业人才认证中心颁发入库证书 4:这个认证书并且可以归档倒地方 5:凡事获得留信网入网的信息将会逐步更新到个人身份内，将在公安局网内查询个人身份证信息后，同步读取人才网入库信息 6:个人职称评审加20分 7:个人信誉贷款加10分→ 【关于价格问题（保证一手价格）我们所定的价格是非常合理的，而且我们现在做得单子大多数都是代理和回头客户介绍的所以一般现在有新的单子我给客户的都是第一手的代理价格，因为我想坦诚对待大家不想跟大家在价格方面浪费时间对于老客户或者被老客户介绍过来的朋友，我们都会适当给一些优惠。 8:在国家人才网主办的国家网络招聘大会中纳入资料，供国家高端企业选择人才选择实体注册公司办理，更放心，更安全！我们的承诺：可来公司面谈，可签订合同，会陪同客户一起到教育部认证窗口递交认证材料，客户在教育部官方认证查询网站查询到认证通过结果后付款，不成功不收费！学历顾问：微信：176555708

Governing Equations for Fundamental Aerodynamics_Anderson2010.pdf

WENKENLI1

Recently uploaded (20)

An Approach to Detecting Writing Styles Based on Clustering Techniques

一比一原版(UofT毕业证)多伦多大学毕业证成绩单如何办理

Final project report on grocery store management system..pdf

Hybrid optimization of pumped hydro system and solar- Engr. Abdul-Azeez.pdf

在线办理(ANU毕业证书)澳洲国立大学毕业证录取通知书一模一样

一比一原版(UMich毕业证)密歇根大学|安娜堡分校毕业证成绩单专业办理

Literature Review Basics and Understanding Reference Management.pptx

DESIGN AND ANALYSIS OF A CAR SHOWROOM USING E TABS

Fundamentals of Induction Motor Drives.pptx

6th International Conference on Machine Learning & Applications (CMLA 2024)

Cosmetic shop management system project report.pdf

Top 10 Oil and Gas Projects in Saudi Arabia 2024.pdf

Understanding Inductive Bias in Machine Learning

Heap Sort (SS).ppt FOR ENGINEERING GRADUATES, BCA, MCA, MTECH, BSC STUDENTS

Sachpazis:Terzaghi Bearing Capacity Estimation in simple terms with Calculati...

digital fundamental by Thomas L.floydl.pdf

RAT: Retrieval Augmented Thoughts Elicit Context-Aware Reasoning in Long-Hori...

Building Electrical System Design & Installation

一比一原版(Otago毕业证)奥塔哥大学毕业证成绩单如何办理

Governing Equations for Fundamental Aerodynamics_Anderson2010.pdf

Kubernetes and Gitops at Quicksign - Koncrete Kube Oct 2018

1. 2018-10-16 Cédric Vidal, Quicksign CTO @cedricvidal Kubernetes and GitOps at Quicksign O

2. Who are we ? ● QuickSign is the European leader in digital onboarding for financial services ● White label ● Now handling millions of digital subscriptions per year 10 years experience 15 countries

3. 70% annual growth in traffic The fo S l !

4. Traceability ● Regulated business ● Qualified signature ETSI 319 411 ● Be able to prove conformance ● Non-repudiation

5. Multi tenancy ● Different workloads ● SLAs ● Shared cluster for small customers ● Dedicated cluster for big customers

6. Kubernetes trend po M s ad K8S ob v K8S

7. GitOps ?? “Put simply, GitOps is the art and science of using Git pull requests to manage infrastructure provisioning and software deployment.” https://www.twistlock.com/2018/08/06/gitops-101-gitops-use/

8. GitOps benefits • One tool to rule them all • Version control for all changes • Easy diff between two moments • Covers also supporting infrastructure: monitoring and logging https://www.twistlock.com/2018/08/06/gitops-101-gitops-use/

9. GitOps security benefits • Many security workflows possible • Branch level ACLs • PR checks

10. GitOps overview Ex e t s a 1 Dif Com di 4 Pus d Sub P 1b Rev P 1c Sync 2 Pok Ob e v s a 3 Fet 5 Al e 4 ha s

11. Automatic deployment

12. Kubernetes is sweet pie for GitOps ;) • Everything is described ... as YAML, easy to version • Most state, can be dumped as YAML and “imported” / applied • Diff engine built-in (kubectl apply)

13. Custom Resource Definitions (since 1.7) • Your own Kubernetes resources ! yeah • Ex: a product configuration per customer (POCO) 1. public static resources -> GCS bucket / CDN 2. BPMN models -> deployed in our BPMN engine • “POCO deployer”: CRD Controller

14. POCO deployment workflow

15. Service labels, annotations and queries • Extended service registry • Overlay your own metadata • Query services by its metadata • We use it to specify the transport, data formats and protocol schemes of our BPMN tasks

16. GPU • GPU on GKE • Attached to VM • nvidia driver installed as daemonset • Only pods asking for GPUs as allocated to GPU nodes • More expensive • one GPU are not shareable to multiple pods :-(

17. Ingress • Ingress Nginx behind a GCE LB level 4 (TCP) • We don’t use the GCE level 7 load balancer 1. All services are down when a route is created … WTF ? 2. No http to https redirection

18. Outbound gateway • GCE VM with fixed IP • outbound traffic goes through that VM to have a fix outbound IP • required for external IP filtering Gateway of India, Mumbai, India

19. HPA (Horizontal Pod Autoscaler) • Sky is the limit in the Cloud • Automatically add replicas when under load • Stateless pods only for now (most are) • PDB (Pod Disruption Budget) : max unavailable = 1 • On GKE: node auto-scaling

20. Certificates • Let’s encrypt for everything but production • Wildcard certificates for production

21. Monitoring • Prometheus 1. alert-manager 2. kube-state-metrics 3. node-exporter 4. blackbox-exporter

22. Your turn! Cédric Vidal CTO @cedricvidal Multiple free photographies from unsplash.com

Kubernetes and Gitops at Quicksign - Koncrete Kube Oct 2018

Recommended

Recommended

More Related Content

Similar to Kubernetes and Gitops at Quicksign - Koncrete Kube Oct 2018

Similar to Kubernetes and Gitops at Quicksign - Koncrete Kube Oct 2018 (20)

More from Cedric Vidal

More from Cedric Vidal (11)

Recently uploaded

Recently uploaded (20)

Kubernetes and Gitops at Quicksign - Koncrete Kube Oct 2018