HB
Uploaded byHenry Been
PPTX, PDF61 views

Secure deployments keeping your application secrets private - condensed

This document discusses different approaches for managing secrets securely in DevOps deployments. It presents four approaches: 1) using a release orchestrator which allows viewing secrets, 2) using ARM templates which prevents viewing secrets but they must be duplicated, 3) directly accessing key vault which prevents viewing and duplication of secrets but is only available on some Azure services, and 4) directly accessing other services which has the same benefits as 3 but is limited to supported services. The document recommends choosing an approach based on how code and infrastructure are deployed and what capabilities the services support. It also demonstrates config builders for managing secrets locally and in the cloud.

Embed presentation

Download to read offline
SECURE DEPLOYMENTS KEEPING YOUR SECRETS PRIVATE Henry Been "Locks" (CC BY-NC-ND 2.0) by wolf4max
So… WHO DOES DEVOPS?
THE NEED FOR SECRET MANAGEMENT Develop Build Deploy Operate Dev Ops DevOps
Access and secret management goals No team member needs to hold production secrets Principle of least privilege Decouple authentication from authorization Secure storage of Secrets
WONDERING WHO IS THAT GUY? HENRY BEEN Independent Devops & Azure Architect E: consultancy@henrybeen.nl T: @henry_been L: linkedin.com/in/henrybeen W: henrybeen.nl
Approach 1 USING RELEASE ORCHESTRATOR VSTS Secrets Azure Web AppCode
Scenario: • As a team you do CD of your code • You do not do CD of your infrastructure USING RELEASE ORCHESTRATOR VSTS Secrets Azure Web AppCode
DEMO TIME! USING RELEASE ORCHESTRATOR
USING RELEASE ORCHESTRATOR • Secrets are pretty secure • Easy to start with • Fits existing situations • You see and copy secrets • Secrets visible in portal • Duplication of secrets • Cannot roll secrets easily Pros Cons
Prerequisite: Have primary & secondary secrets 1. Change the secret in release orchestrator to secondary secret 2. Release 3. Roll primary secret 4. Change the secret in release orchestrator to primary secret 5. Release 6. Roll secondary secret Intermezzo: Roll a secret
Approach 2 USING ARM TEMPLATES Azure Web App Key Vault VSTSCode & Infra
Scenario: • As a team you do CD of your code • You also do CD of your infrastructure USING ARM TEMPLATES Azure Web App Key Vault VSTSCode & Infra
DEMO TIME! USING ARM TEMPLATES
USING ARM TEMPLATES • No manual copying or sharing of secrets • No more manual duplication of Azure keys • Secrets visible in portal • Still cannot roll secrets easily Pros Cons
Approach 3 DIRECTLY FROM KEY VAULT VSTS Azure Web App Code & Infra Key Vault
Scenario: 1. You do CD of both infrastructure and code 2. You are allowed to provision to the AD DIRECTLY ACCESS KEY VAULT VSTS Azure Web App Code & Infra Key Vault
HOWTO: Local Development 1. Grant your developer account access to (another) Key Vault • Best alternative • Requires your machine to be in the same AD domain 2. Only use Key Vault in Azure (locally use Web.config) • You have to write code to do this (though pretty straightforward) 3. Manually create a development identity and use that • However… do not check secrets into source control
DEMO TIME! DIRECTLY ACCESS KEY VAULT
DIRECTLY ACCESS KEY VAULT • No manual copying or sharing of secrets • No more duplication of Azure keys • Secrets no longer visible in portal • Changed secrets are automatically picked up • Only available on Azure Web Apps, Azure Functions and DataFactory V2 Pros Cons
Approach 4 DIRECTLY ACCESS SERVICE VSTS Azure Web App Code & Infra AAD Other Service
Scenario: 1. You do CD of both infrastructure and code 2. You are allowed to provision to the AD 3. Service support DIRECTLY ACCESS SERVICE VSTS Azure Web App Code & Infra AAD Other Service
DEMO TIME! DIRECTLY ACCESS SERVICE
DIRECTLY ACCESS SERVICE • No more secrets • Only available on Azure Web Apps, Azure Functions and DataFactory V2 • Only on supported services Pros Cons
Supported services • Azure Resource Manager • Azure Key Vault • Azure Data Lake • Azure SQL DB • Azure Event Hubs • Azure Service Bus • Azure Storage https://docs.microsoft.com/en-us/azure/active-directory/managed-service-identity/services-support-msi
"Sloten op de brug" (CC BY-NC-ND 2.0) by Jan Brünemann RECAP WHAT TO USE WHEN
Use your release orchestrator Let team operations deploy NEVER EVER EVUHRR When you deploy only code Keyvault and ARM templates When you also deploy infra Application identity / KeyVault When available and allowed Application identity / Oauth resource When available and allowed WHAT TO USE WHEN?
SECRET MANAGEMNT USING CONFIG BUILDERS FOR LOCAL AND CLOUD DEVELOPMENT Requires: • (.NET Framework ≥ 4.7.1 &&.NET Framework 4.7.1 Development Tools) || ASP.NET Core ≥ 2.0
Using .NET Framework
"Fail #2" (CC BY-NC-ND 2.0) by zaipe
Using .NET Framework
RunAs=Developer; DeveloperTool=VisualStudio
Using .NET Core
DO TRY THIS AT HOME! HENRY BEEN Independent Devops & Azure Architect E: consultancy@henrybeen.nl T: @henry_been L: linkedin.com/in/henrybeen W: henrybeen.nl

More Related Content

PPTX
Secure deployments keeping your application secrets private -duug fest
byHenry Been
 
PDF
Henry Been - Secure development: keeping your application secrets private
byHenry Been
 
PDF
Implementing the Top 10 AWS Security Best Practices
bySebastian Taphanel CISSP-ISSEP
 
PDF
Secrets as Code
byJohann Gyger
 
PDF
DerbyCon 2019: Prepare to be Boarded! A Tale of Kubernetes, Plunder, and Cryp...
byLacework
 
PPTX
Secure your web app presentation
byFrans Lytzen
 
PPTX
Get set.. Introduction to Windows Azure Development
byThomas Robbins
 
PPTX
PuppetConf 2017: Securing Secrets for Puppet, Without Interrupting Flow- Ryan...
byPuppet
 
Secure deployments keeping your application secrets private -duug fest
byHenry Been
 
Henry Been - Secure development: keeping your application secrets private
byHenry Been
 
Implementing the Top 10 AWS Security Best Practices
bySebastian Taphanel CISSP-ISSEP
 
Secrets as Code
byJohann Gyger
 
DerbyCon 2019: Prepare to be Boarded! A Tale of Kubernetes, Plunder, and Cryp...
byLacework
 
Secure your web app presentation
byFrans Lytzen
 
Get set.. Introduction to Windows Azure Development
byThomas Robbins
 
PuppetConf 2017: Securing Secrets for Puppet, Without Interrupting Flow- Ryan...
byPuppet
 

What's hot

PDF
CloudBurst Malmö: Best practices of securing web applications running on Azur...
byKarl Ots
 
PDF
TechDays Finland 2020: Best practices of securing web applications running on...
byKarl Ots
 
PPTX
Spring ing apps on amazon web services
byVinay Shivaswamy
 
PDF
IglooConf 2020: Best practices of securing web applications running on Azure ...
byKarl Ots
 
PDF
Batten Down the Hatches: A Practical Guide to Securing Kubernetes - RMISC 2019
byLacework
 
PPTX
Lacework | Top 10 Cloud Security Threats
byLacework
 
PDF
Avoiding damage, shame and regrets data protection for mobile client-server a...
byStanfy
 
PDF
BSides Denver 2019 - Cloud Wars Episode V: The Cryptojacker Strikes Back
byLacework
 
PPTX
Azure Container Services
byWinWire Technologies Inc
 
PPT
How to Set Up Mobile Continuous Integration with Real Devices: CloudBees & SO...
bySOASTA
 
PPTX
Webhooks with Azure Functions - Live 360 Conference
bySparkPost
 
PDF
IT Camp 19: Top Azure security fails and how to avoid them
byKarl Ots
 
PDF
ISC2 Secure Summit EMEA - Top Microsoft Azure security fails and how to avoid...
byKarl Ots
 
KEY
Speedupiosdevelopment
byslidepaddemo
 
PDF
Heroku cloud platform
byHasan Khatib
 
PDF
DevSum - Top Azure security fails and how to avoid them
byKarl Ots
 
PDF
Web app development with Flask
byJasim Muhammed
 
PDF
Ansible
byJasim Muhammed
 
PDF
Docker at SourceLair | Paris Kasidiaris | 1st Docker Crete Meetup
byAlexandra Karapidaki
 
PDF
Techorama Belgium 2019: top Azure security fails and how to avoid them
byKarl Ots
 
CloudBurst Malmö: Best practices of securing web applications running on Azur...
byKarl Ots
 
TechDays Finland 2020: Best practices of securing web applications running on...
byKarl Ots
 
Spring ing apps on amazon web services
byVinay Shivaswamy
 
IglooConf 2020: Best practices of securing web applications running on Azure ...
byKarl Ots
 
Batten Down the Hatches: A Practical Guide to Securing Kubernetes - RMISC 2019
byLacework
 
Lacework | Top 10 Cloud Security Threats
byLacework
 
Avoiding damage, shame and regrets data protection for mobile client-server a...
byStanfy
 
BSides Denver 2019 - Cloud Wars Episode V: The Cryptojacker Strikes Back
byLacework
 
Azure Container Services
byWinWire Technologies Inc
 
How to Set Up Mobile Continuous Integration with Real Devices: CloudBees & SO...
bySOASTA
 
Webhooks with Azure Functions - Live 360 Conference
bySparkPost
 
IT Camp 19: Top Azure security fails and how to avoid them
byKarl Ots
 
ISC2 Secure Summit EMEA - Top Microsoft Azure security fails and how to avoid...
byKarl Ots
 
Speedupiosdevelopment
byslidepaddemo
 
Heroku cloud platform
byHasan Khatib
 
DevSum - Top Azure security fails and how to avoid them
byKarl Ots
 
Web app development with Flask
byJasim Muhammed
 
Ansible
byJasim Muhammed
 
Docker at SourceLair | Paris Kasidiaris | 1st Docker Crete Meetup
byAlexandra Karapidaki
 
Techorama Belgium 2019: top Azure security fails and how to avoid them
byKarl Ots
 

Similar to Secure deployments keeping your application secrets private - condensed

PPTX
Azure Low Lands 2019 - Building secure cloud applications with Azure Key Vault
byTom Kerkhove
 
PPTX
Intelligent Cloud Conference 2018 - Building secure cloud applications with A...
byTom Kerkhove
 
PPTX
Configuration in azure done right
byRick van den Bosch
 
PPTX
Techdays Finland 2018 - Building secure cloud applications with Azure Key Vault
byTom Kerkhove
 
PDF
Service for Storing Secrets on Microsoft Azure.pdf
byZen Bit Tech
 
PDF
Automation Patterns for Scalable Secret Management
byMary Racter
 
PPTX
Managing your secrets in a cloud environment
byTaswar Bhatti
 
PPTX
Zero credential development with managed identities
byJoonas Westlin
 
PPTX
Zero Credential Development with Managed Identities for Azure resources
byJoonas Westlin
 
PPTX
Azure Key Vault - Getting Started
byTaswar Bhatti
 
PPTX
Securing Sensitive Data with Azure Key Vault (Tom Kerkhove @ ITProceed)
byCodit
 
PPTX
ITProceed 2015 - Securing Sensitive Data with Azure Key Vault
byTom Kerkhove
 
PPTX
Centralized configuration with azure app configuration
byCallon Campbell
 
PPTX
Top 13 best security practices
byRadu Vunvulea
 
PDF
Overview of secret management solutions and architecture
byYuechuan (Mike) Chen
 
PPTX
Zero Credential Development with Managed Identities
byJoonas Westlin
 
PPTX
Secure your Azure Web App 2019
byFrans Lytzen
 
PPTX
Top 13 best security practices for Azure
byRadu Vunvulea
 
PPTX
Azure Key Vault with a PaaS Architecture and ARM Template Deployment
byRoy Kim
 
PDF
Secure Your Code Implement DevSecOps in Azure
bykloia
 
Azure Low Lands 2019 - Building secure cloud applications with Azure Key Vault
byTom Kerkhove
 
Intelligent Cloud Conference 2018 - Building secure cloud applications with A...
byTom Kerkhove
 
Configuration in azure done right
byRick van den Bosch
 
Techdays Finland 2018 - Building secure cloud applications with Azure Key Vault
byTom Kerkhove
 
Service for Storing Secrets on Microsoft Azure.pdf
byZen Bit Tech
 
Automation Patterns for Scalable Secret Management
byMary Racter
 
Managing your secrets in a cloud environment
byTaswar Bhatti
 
Zero credential development with managed identities
byJoonas Westlin
 
Zero Credential Development with Managed Identities for Azure resources
byJoonas Westlin
 
Azure Key Vault - Getting Started
byTaswar Bhatti
 
Securing Sensitive Data with Azure Key Vault (Tom Kerkhove @ ITProceed)
byCodit
 
ITProceed 2015 - Securing Sensitive Data with Azure Key Vault
byTom Kerkhove
 
Centralized configuration with azure app configuration
byCallon Campbell
 
Top 13 best security practices
byRadu Vunvulea
 
Overview of secret management solutions and architecture
byYuechuan (Mike) Chen
 
Zero Credential Development with Managed Identities
byJoonas Westlin
 
Secure your Azure Web App 2019
byFrans Lytzen
 
Top 13 best security practices for Azure
byRadu Vunvulea
 
Azure Key Vault with a PaaS Architecture and ARM Template Deployment
byRoy Kim
 
Secure Your Code Implement DevSecOps in Azure
bykloia
 

More from Henry Been

PPTX
Henry been azure resource manager - inside out
byHenry Been
 
PDF
Dot netsaterday henry been - logging instrumentation dashboards alerts
byHenry Been
 
PDF
Cloud brew henry been - logging instrumentation dashboards alerts
byHenry Been
 
PDF
Serverless computing henry been - logging instrumentation dashboards alerts
byHenry Been
 
PDF
Serverless computing henry been - continuous deployment of azure functions
byHenry Been
 
PPTX
Logging, Instrumentation, Dashboards and Alerts - for developers
byHenry Been
 
PPTX
Cloud brew cloudcamp
byHenry Been
 
PPTX
Writing, build and releasing your own vsts extension
byHenry Been
 
PPTX
Continuous delivery for the it pro
byHenry Been
 
PPTX
Focus on business value by going Serverless
byHenry Been
 
PDF
Henry been database-per-tenant with 50k databases
byHenry Been
 
PPTX
Henry been - Multi-tenant applications using 30k databases
byHenry Been
 
Henry been azure resource manager - inside out
byHenry Been
 
Dot netsaterday henry been - logging instrumentation dashboards alerts
byHenry Been
 
Cloud brew henry been - logging instrumentation dashboards alerts
byHenry Been
 
Serverless computing henry been - logging instrumentation dashboards alerts
byHenry Been
 
Serverless computing henry been - continuous deployment of azure functions
byHenry Been
 
Logging, Instrumentation, Dashboards and Alerts - for developers
byHenry Been
 
Cloud brew cloudcamp
byHenry Been
 
Writing, build and releasing your own vsts extension
byHenry Been
 
Continuous delivery for the it pro
byHenry Been
 
Focus on business value by going Serverless
byHenry Been
 
Henry been database-per-tenant with 50k databases
byHenry Been
 
Henry been - Multi-tenant applications using 30k databases
byHenry Been
 

Recently uploaded

PPTX
application security presentation 2 by harman
byharmanideapad
 
PDF
How NetSuite Cloud ERP Helps Businesses Overcome Legacy System Downtime.
byTechWize
 
PPTX
Privacy Preserving Detection of Sensitive Data Exposure (1).pptx
byNikitaMandhan4
 
PDF
nsfconvertersoftwaretoconvertNSFtoPST.pdf
byNSF Converter Software
 
PDF
DSD-INT 2025 Hydrological Modelling in Society Assumptions, Impacts, and Appl...
byDeltares
 
PPTX
Computer_Virus_Presentation_With_Slide7.pptx
byHEVISLIVE
 
PPTX
AI Agent Overview - Why we need AI Agent
byAlokGope
 
PPTX
SAP FICO Training Agenda for new learners
bysasidhar unnagiri
 
PDF
Microservices-Final !!!!!!!!!!!!!!!!.pdf
bydoquangminh962004
 
PDF
Cloud-Based Underwriting Software for Insurance
byInsurance Tech Services
 
PDF
Design and Analysis of Algorithms(DAA): Unit-II Asymptotic Notations and Basi...
byKuvempu University
 
PPTX
SNG460-CNG489_Week6_3-7Nov25_Chp6-Part1.pptx
byberayseray382
 
PDF
Cybersecurity Alert- What Organisations Must Watch Out For This Christmas Fes...
byCybernetic Global Intelligence
 
PDF
Constraints First - Why Our On-Prem Ticketing System Starts With Limits, Not ...
bySpirit Face
 
PPTX
Week 7 Introduction to HTML PowerPoint Notes.pptx
bylesandawelgens
 
PPTX
1_MIL_Introduction_Influence-of-Media-and-Information-on-Communication (1).pptx
byDeltaDomsMamas1
 
PDF
DSD-INT 2025 Hydrological response of the Puget Sound area to a changing clim...
byDeltares
 
PDF
Kiến trúc hướng dịch vụ UET!!!!!!!!!!!!!!!!!!!!!!!
bydoquangminh962004
 
PDF
Jeremy Millul - An NYU Computer Science Graduate
byJeremy Millul
 
PDF
Coding Assessment Tools .pdf
byCodexpro
 
application security presentation 2 by harman
byharmanideapad
 
How NetSuite Cloud ERP Helps Businesses Overcome Legacy System Downtime.
byTechWize
 
Privacy Preserving Detection of Sensitive Data Exposure (1).pptx
byNikitaMandhan4
 
nsfconvertersoftwaretoconvertNSFtoPST.pdf
byNSF Converter Software
 
DSD-INT 2025 Hydrological Modelling in Society Assumptions, Impacts, and Appl...
byDeltares
 
Computer_Virus_Presentation_With_Slide7.pptx
byHEVISLIVE
 
AI Agent Overview - Why we need AI Agent
byAlokGope
 
SAP FICO Training Agenda for new learners
bysasidhar unnagiri
 
Microservices-Final !!!!!!!!!!!!!!!!.pdf
bydoquangminh962004
 
Cloud-Based Underwriting Software for Insurance
byInsurance Tech Services
 
Design and Analysis of Algorithms(DAA): Unit-II Asymptotic Notations and Basi...
byKuvempu University
 
SNG460-CNG489_Week6_3-7Nov25_Chp6-Part1.pptx
byberayseray382
 
Cybersecurity Alert- What Organisations Must Watch Out For This Christmas Fes...
byCybernetic Global Intelligence
 
Constraints First - Why Our On-Prem Ticketing System Starts With Limits, Not ...
bySpirit Face
 
Week 7 Introduction to HTML PowerPoint Notes.pptx
bylesandawelgens
 
1_MIL_Introduction_Influence-of-Media-and-Information-on-Communication (1).pptx
byDeltaDomsMamas1
 
DSD-INT 2025 Hydrological response of the Puget Sound area to a changing clim...
byDeltares
 
Kiến trúc hướng dịch vụ UET!!!!!!!!!!!!!!!!!!!!!!!
bydoquangminh962004
 
Jeremy Millul - An NYU Computer Science Graduate
byJeremy Millul
 
Coding Assessment Tools .pdf
byCodexpro
 

Secure deployments keeping your application secrets private - condensed

  • 1.
    SECURE DEPLOYMENTS KEEPING YOUR SECRETSPRIVATE Henry Been "Locks" (CC BY-NC-ND 2.0) by wolf4max
  • 2.
  • 3.
    THE NEED FORSECRET MANAGEMENT Develop Build Deploy Operate Dev Ops DevOps
  • 4.
    Access and secretmanagement goals No team member needs to hold production secrets Principle of least privilege Decouple authentication from authorization Secure storage of Secrets
  • 6.
    WONDERING WHO IS THATGUY? HENRY BEEN Independent Devops & Azure Architect E: consultancy@henrybeen.nl T: @henry_been L: linkedin.com/in/henrybeen W: henrybeen.nl
  • 7.
    Approach 1 USING RELEASEORCHESTRATOR VSTS Secrets Azure Web AppCode
  • 8.
    Scenario: • As ateam you do CD of your code • You do not do CD of your infrastructure USING RELEASE ORCHESTRATOR VSTS Secrets Azure Web AppCode
  • 9.
  • 10.
    USING RELEASE ORCHESTRATOR •Secrets are pretty secure • Easy to start with • Fits existing situations • You see and copy secrets • Secrets visible in portal • Duplication of secrets • Cannot roll secrets easily Pros Cons
  • 11.
    Prerequisite: Have primary& secondary secrets 1. Change the secret in release orchestrator to secondary secret 2. Release 3. Roll primary secret 4. Change the secret in release orchestrator to primary secret 5. Release 6. Roll secondary secret Intermezzo: Roll a secret
  • 12.
    Approach 2 USING ARMTEMPLATES Azure Web App Key Vault VSTSCode & Infra
  • 13.
    Scenario: • As ateam you do CD of your code • You also do CD of your infrastructure USING ARM TEMPLATES Azure Web App Key Vault VSTSCode & Infra
  • 14.
  • 15.
    USING ARM TEMPLATES •No manual copying or sharing of secrets • No more manual duplication of Azure keys • Secrets visible in portal • Still cannot roll secrets easily Pros Cons
  • 16.
    Approach 3 DIRECTLY FROMKEY VAULT VSTS Azure Web App Code & Infra Key Vault
  • 17.
    Scenario: 1. You doCD of both infrastructure and code 2. You are allowed to provision to the AD DIRECTLY ACCESS KEY VAULT VSTS Azure Web App Code & Infra Key Vault
  • 18.
    HOWTO: Local Development 1.Grant your developer account access to (another) Key Vault • Best alternative • Requires your machine to be in the same AD domain 2. Only use Key Vault in Azure (locally use Web.config) • You have to write code to do this (though pretty straightforward) 3. Manually create a development identity and use that • However… do not check secrets into source control
  • 19.
  • 20.
    DIRECTLY ACCESS KEYVAULT • No manual copying or sharing of secrets • No more duplication of Azure keys • Secrets no longer visible in portal • Changed secrets are automatically picked up • Only available on Azure Web Apps, Azure Functions and DataFactory V2 Pros Cons
  • 21.
    Approach 4 DIRECTLY ACCESSSERVICE VSTS Azure Web App Code & Infra AAD Other Service
  • 22.
    Scenario: 1. You doCD of both infrastructure and code 2. You are allowed to provision to the AD 3. Service support DIRECTLY ACCESS SERVICE VSTS Azure Web App Code & Infra AAD Other Service
  • 23.
  • 24.
    DIRECTLY ACCESS SERVICE •No more secrets • Only available on Azure Web Apps, Azure Functions and DataFactory V2 • Only on supported services Pros Cons
  • 25.
    Supported services • AzureResource Manager • Azure Key Vault • Azure Data Lake • Azure SQL DB • Azure Event Hubs • Azure Service Bus • Azure Storage https://docs.microsoft.com/en-us/azure/active-directory/managed-service-identity/services-support-msi
  • 26.
    "Sloten op debrug" (CC BY-NC-ND 2.0) by Jan Brünemann RECAP WHAT TO USE WHEN
  • 27.
    Use your releaseorchestrator Let team operations deploy NEVER EVER EVUHRR When you deploy only code Keyvault and ARM templates When you also deploy infra Application identity / KeyVault When available and allowed Application identity / Oauth resource When available and allowed WHAT TO USE WHEN?
  • 28.
    SECRET MANAGEMNT USING CONFIG BUILDERS FORLOCAL AND CLOUD DEVELOPMENT Requires: • (.NET Framework ≥ 4.7.1 &&.NET Framework 4.7.1 Development Tools) || ASP.NET Core ≥ 2.0
  • 29.
  • 30.
    "Fail #2" (CCBY-NC-ND 2.0) by zaipe
  • 31.
  • 32.
  • 33.
  • 34.
    DO TRY THISAT HOME! HENRY BEEN Independent Devops & Azure Architect E: consultancy@henrybeen.nl T: @henry_been L: linkedin.com/in/henrybeen W: henrybeen.nl

Editor's Notes

  • #2 "Locks" (CC BY-NC-ND 2.0) by wolf4max
  • #3 Some questions: Who is practicing DevOps? Just CI/CD? Or more? How do you do secrets? And uhm… do you roll them frequently? And how?
  • #4 * In the old days, we developers did not really care about secrets - ops did that * And now we're doing DevOps and we have to manage deployments (for which you need secrets) * In the old days, we didn't really care about configuring the application host / website with secrets - ops did that * And now we're doing DevOps and we create (and confgure) infrastructure from source control So there are new responsibilities coming up for us as developers Or if your team is partially dev, partially ops: you have to reconcile your fast moving pace and get your ops guys into this pipeline things
  • #27 "Sloten op de brug" (CC BY-NC-ND 2.0) by Jan Brünemann
  • #31 I spent the better part of a day to make this even work "Fail #2" (CC BY-NC-ND 2.0) by zaipe