Unfortunately, having server-side code call the AWS API Gateway isn't that easy. It requires signing of requests, and the AWS SDK's don't make that easy to access.
Infrastructure Autonomy using DNS Delegation and internal Top Level Domains
In this post we'll talk about using a specific Top Level domain to separate your internal application infrastructure addresses from what you're users see. Further, how to provide team level autonomy to using DNS delegation to provide a predictable naming strategy. The Problem One of the big issues with DNS management is the security elements... Continue Reading →
Writing IAM PolicyDocuments in Pulumi C#
I've playing with Pulumi recently, and came across an issue trying to generate an IAM PolicyDocument that included an ARN resource. After hours of searching and trying to get my head around the Ouput<T> types, I found Output.Format(). The Problem Pulumi allows you to define everything you want to create in C#. What it also... Continue Reading →
Deploying .NET Core to Linux using CodeDeploy
I'm a big AWS fanboy, and although I absolutely love Octopus Deploy and advocate for it wherever I go, CodeDeploy is my preferred method of deploying in AWS. That said, when working with Linux and .NET core it's not a simple process to get things deployed seamlessly (at least as a Windows dev). In this... Continue Reading →
Serilog and CloudWatch (with inbuilt credentials)
In this post we'll look at the best way to get Serilog entries to push to Cloudwatch in the most unobtrusive way. Serilog is the defacto standard for logging in dotnet core. It provides integration with the ILogger interface, along with supports structured logging. Beyond that integration, it has extensive support for a multitude of... Continue Reading →
Opinionated Approach to AWS Account Separation
Maintaining multiple accounts in AWS is an utter pain. If you have effectively separated your accounts for things like Dev/Test, Production that's not too bad, 2 IAM users, with 2FA shouldn't be too difficult. However, if you throw into that, separating operations infrastructure (build and deployment services, Monitoring, alerting, etc), then think about customer separation,... Continue Reading →
MartinDotNet 