#cloudformation — Public Fediverse posts

[Перевод] Развёртывание .NET Aspire в AWS

Aspire отлично закрывает локальный цикл разработки, но как только дело доходит до AWS, начинается вечная развилка: «или пишем отдельный IaC и живём с двойной правдой», или «деплоим руками и платим временем и деньгами». В этой статье показан рабочий компромисс: один Aspire Host, который в локальном режиме поднимает LocalStack и контейнеры, а в publish-режиме передаёт управление AWS CDK и разворачивает полноценный serverless-стек (VPC, Aurora, DynamoDB, Lambda, API Gateway) — оставаясь в C# и без зоопарка YAML-файлов. Открыть разбор

https://habr.com/ru/companies/otus/articles/984500/

#деплой_в_облако #инфраструктура_как_код #локальная_разработка #оркестрация_окружений #паритет_окружений #AWS_CDK #CloudFormation #LocalStack #AWS_Lambda

I've been working on a ton of #AWS #CloudFormation #YAML templates, a #GitLab CI/CD pipeline, and turning up quite a few things at work. My team was surprised at how fast I was able to create and deploy an application where its spec existed in #Microsoft Word and LucidChart documents, with the help of #Claude #Code #AI via #AWS #Bedrock. The elasticity and everything being on-demand (at my employers expense) is a very hard thing to turn down, where I can effectively do anything in the cloud environments, and not suffer with the on-prem environments that I cannot control due to work politics.

As I've been putting on the SRE hat lately, I've read plenty of documentation, implementation examples, run cost analysis, and more, for running apps on AWS. I've also learned that many developers do not understand the mechanics of a system, and how their application truly works, to get the best performance out of it. Sure deploying lambda's are a nice way to get something out there and not worry about it, but that ends up costing more depending on the usage than running a container on ECS / Fargate, which can handle plenty of concurrency.

It is much faster to deploy and make something with AWS CloudFormation, than doing anything with #Kubernetes, and even standing up virtual machines, #SSL cert, #DNS, all on-prem.

---

Over the past couple of months, my equipment at Hurricane Electric FMT2 has barely been touched. The closest idea I have for it now is putting a highly specced #Mac Mini there, run Parsec on it, and move to thin client type systems for both #mobile and #desktop, to have a centralized #workstation.

[Перевод] Настройка .NET Aspire с AWS и LocalStack

Разработка сервисов с интеграцией в AWS быстро упирается в компромиссы: либо работать с реальным облаком и платить за каждый эксперимент, либо замокать инфраструктуру и надеяться, что в продакшене всё «взлетит». В статье показано, как с помощью .NET Aspire и LocalStack выстроить полноценное локальное AWS-окружение — с S3, CDK и реальной оркестрацией — так, чтобы один и тот же код без условностей работал и локально, и в проде.

https://habr.com/ru/companies/otus/articles/980586/

#NET_Aspire #LocalStack #AWS #инфраструктура_как_код #микросервисная_архитектура #CloudFormation

Seeding Clouds With Wildfire

Raging wildfires send plumes of smoke up into the atmosphere; that smoke is made up of tiny particles that can serve as seeds — nucleation sites — where water vapor can freeze and form clouds. To understand wildfire’s effect on cloud growth, researchers sampled air from the troposphere (the atmosphere’s lowest layer) both in and around wildfire smoke.

The team found that smoke increased the number of nucleating particles up to 100 times higher than the background air, but the exact make-up of the smoke varied significantly by fire. Smoke particles were mostly organic, though inorganic ones appeared as well. The temperature of a fire, as well as what materials it was burning, made a big difference; the fire where they measured the highest particle concentrations included lots of unburned plant material, thought to be carried aloft by turbulence around the fire. (Image credit: K. Barry; research credit: K. Barry et al.; via Eos)

#cloudFormation #fluidDynamics #nucleation #physics #science #smoke #turbulence #wildfire

Effect of Atmospheric Dust on Ice Cloud Formation Confirmed
It is known that the proportion of ice-topped clouds depends on dust particles in the cloud that act as nuclei for ice crystal formation............
#aerosol #AtmosphericMineralDust #CCN #climate #cloud #Cloudformation #Earthscience #Iceclouds #MineralDust #Particulatematter #science #UmeshPrasad
Umesh Prasad

https://www.scientificeuropean.co.uk/sciences/earth-science/effect-of-atmospheric-dust-on-ice-cloud-formation-confirmed/

I built my website using @enhance_dev a couple years ago but I feel like I should use a more popular #IaC framework for deploying to #AWS like #CDK, #SAM, #Terraform or just raw #CloudFormation.

The problem is, I'm spoiled; Enhance makes #serverless so easy. I find myself just reimplementing all it's features; file based routing, html templates, session management, etc.

#webDev

“Monsoon 7”

Storm-chasing photographer Mike Olbinski (previously) returns with another stunning timelapse of summer thunderstorms in the western U.S. I never tire of watching the turbulent convection, microbursts, billowing haboobs, and undulating clouds Olbinski captures. His work is always a reminder of the incredible power and energy contained in our atmosphere and unleashed in cycles of warming and cooling, evaporation and condensation. (Video and image credit: M. Olbinski)

#cloudFormation #condensation #evaporation #fluidDynamics #fluidsAsArt #haboob #physics #science #thunderstorm #turbulence

Updated AWS::IVS::Channel

Use the MultitrackInputConfiguration property to specify a multitrack input configuration for a channel.
https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ivs-channel.html #ivs #cloudformation

Updated AWS::DataSync::LocationSMB

DataSync can now use Kerberos authentication when connecting to Server Message Block (SMB) file servers.
https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-datasync-locationsmb.html #datasync #cloudformation

New AWS::CloudFront::VpcOrigin

For more information, see Restrict access with VPC origins in the Amazon CloudFront Developer Guide.
https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-cloudfront-vpcorigin.html #cloudfront #cloudformation

New AWS::CloudFront::VpcOrigin

Use the AWS::CloudFront::VpcOrigin resource to create an Amazon CloudFront VPC origin.
https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-cloudfront-vpcorigin.html #cloudfront #cloudformation

Updated AWS::CloudFront::Distribution

Use the VpcOriginConfig to specify the VPC origin for your distribution.
https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-cloudfront-distribution.html #cloudfront #cloudformation

Compared to the CDK the cfn-modules are very simple to use. It's just a suite of CloudFormation templates that you stick together with nested stacks. npm is used to install and update the modules.

Check it out!
👉 https://github.com/cfn-modules/docs

#awscommunity #cloudformation #AmazonWebServices

🧵(2/2)

Updated AWS::EFS::FileSystem

FileSystem.ReplicationDestination.Status ReplicationConfiguration.Destinations.*.Status ReplicationConfiguration.Destinations.*.StatusMessage ReplicationDestination.RoleArn ReplicationDestination.StatusMessage
https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-efs-filesystem.html #efs #cloudformation

Updated AWS::S3Express::DirectoryBucket

Amazon S3 introduces support for AWS Dedicated Local Zones.
https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-s3express-directorybucket.html #s3express #cloudformation

New AWS::CustomerProfiles::SegmentDefinition

Use the AWS::CustomerProfiles::SegmentDefinition resource to create a new segment definition in the Amazon Connect Customer Profiles Service.
https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-customerprofiles-segmentdefinition.html #customerprofiles #cloudformation

New AWS::CustomerProfiles::EventTrigger

Use the AWS::CustomerProfiles::EventTrigger resource to create a new event trigger in the Amazon Connect Customer Profiles Service.
https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-customerprofiles-eventtrigger.html #customerprofiles #cloudformation

New AWS::Invoicing::InvoiceUnit

Use the AWS::Invoicing::InvoiceUnit resource to separate account costs and configure your invoice for each business entity.
https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/AWS_Invoicing.html #invoicing #cloudformation

New AWS::CloudTrail::Dashboard

Use the Dashboard resource to specify a CloudTrail Lake custom dashboard. A custom dashboard can have up to 10 widgets. For more information, see CloudTrail Lake dashboards in the AWS CloudTrail User Guide.
https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-cloudtrail-dashboard.html #cloudtrail #cloudformation

New AWS::IVS::IngestConfiguration

Use the IngestConfiguration resource to specify an ingest protocol for a stage.
https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ivs-ingestconfiguration.html #ivs #cloudformation

Updated AWS::S3Express::DirectoryBucket Rule

Specifies lifecycle rules for an Amazon S3 bucket.
https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-s3express-directorybucket-rule.html #s3express #cloudformation

Updated AWS::S3Express::DirectoryBucket LifecycleConfiguration

Container for lifecycle rules. You can add as many as 1000 rules.
https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-s3express-directorybucket-lifecycleconfiguration.html #s3express #cloudformation

Updated AWS::S3Express::DirectoryBucket AbortIncompleteMultipartUpload

Specifies the days since the initiation of an incomplete multipart upload that Amazon S3 will wait before permanently removing all parts of the upload.
https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-s3express-directorybucket-abortincompletemultipartupload.html #s3express #cloudformation

New AWS::CustomerProfiles::SegmentDefinition

Use the AWS::CustomerProfiles::SegmentDefinition resource to create a new segment definition in Amazon Connect Customer Profiles Service.
https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-customerprofiles-segmentdefinition.html #customerprofiles #cloudformation

New AWS::RBin::Rule

Use the AWS::RBin::Rule resource to specify a recycle bin retention rule.
https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-rbin-rule.html #rbin #cloudformation

Updated AWS::DataSync::Task

Use the TaskMode property to specify Enhanced or Basic mode for your transfer task.
https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-datasync-task.html #datasync #cloudformation

Mountain ridgelines push oncoming winds up and over their peaks, creating the conditions for some spectacular condensation. If the displaced air is moist enough, it cools and condenses into a cloud that appears to hover over the peak. In reality, winds are constantly moving up and over the mountain, condensing into visible cloud where the temperature is cool enough and then morphing back to water vapor once temperatures increase. This process can create stacked lenticular clouds like those seen here. This spot in New Zealand sees lenticular clouds so often that the formation has its own name: Taieri Pet! (Image credit: satellite image – L. Dauphin, b/w – National Library; via NASA Earth Observatory)

https://fyfluiddynamics.com/2024/10/lenticular-landscape/

#atmosphericScience #cloudFormation #condensation #fluidDynamics #lenticularClouds #mountains #physics #science #standingWaves

Mountain ridgelines push oncoming winds up and over their peaks, creating the conditions for some spectacular condensation. If the displaced air is moist enough, it cools and condenses into a cloud that appears to hover over the peak. In reality, winds are constantly moving up and over the mountain, condensing into visible cloud where the temperature is cool enough and then morphing back to water vapor once temperatures increase. This process can create stacked lenticular clouds like those seen here. This spot in New Zealand sees lenticular clouds so often that the formation has its own name: Taieri Pet! (Image credit: satellite image – L. Dauphin, b/w – National Library; via NASA Earth Observatory)

https://fyfluiddynamics.com/2024/10/lenticular-landscape/

#atmosphericScience #cloudFormation #condensation #fluidDynamics #lenticularClouds #mountains #physics #science #standingWaves

Updated AWS::S3Express::DirectoryBucket

Use the AvailabilityZoneName property to return the code for the Availability Zone where the directory bucket was created.
https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-s3express-directorybucket.html #s3express #cloudformation

Updated AWS::S3Express::DirectoryBucket ServerSideEncryptionByDefault

Use the AWS::S3Express::DirectoryBucket ServerSideEncryptionByDefault property to apply the default server-side encryption to new objects in a directory bucket.
https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-s3express-directorybucket-serversideencryptionbydefault.html #s3express #cloudformation

Updated AWS::S3Express::DirectoryBucket ServerSideEncryptionRule

Use the AWS::S3Express::DirectoryBucket ServerSideEncryptionRule resource to specify the default server-side encryption configuration for an S3 directory bucket.
https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-s3express-directorybucket-serversideencryptionrule.html #s3express #cloudformation

Updated AWS::S3Express::DirectoryBucket BucketEncryption

Use the AWS::S3Express::DirectoryBucket BucketEncryption property to specify default encryption for a directory bucket.
https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-s3express-directorybucket-bucketencryption.html #s3express #cloudformation

New AWS::IVS::PublicKey

Use the PublicKey to sign stage participant tokens.
https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ivs-publickey.html #ivs #cloudformation

Updated AWS::IVS::Stage

Use the AutoParticipantRecordingConfiguration property to specify a configuration for individual participant recording.
https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ivs-stage.html #ivs #cloudformation

Updated AWS::CodeCommit::Repository Code

AWS CodeCommit is no longer available to new customers. Existing customers of AWS CodeCommit can continue to use the service as normal. Learn more"
https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-codecommit-repository.html #codecommit #cloudformation

New AWS::IVS::PlaybackRestrictionPolicy

Use the PlaybackRestrictionPolicy resource to constrain playback by country and/or origin sites.
https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ivs-playbackrestrictionpolicy.html #ivs #cloudformation

Updated AWS::DataSync::Task

Use the Status property to enable or disable your task schedule.
https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-datasync-task.html #datasync #cloudformation

New AWS::IVS::StorageConfiguration

Use the StorageConfiguration resource to describe an S3 location where recorded videos will be stored.
https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ivs-storageconfiguration.html #ivs #cloudformation

New AWS::IVS::PlaybackRestrictionPolicy

Use the PlaybackRestrictionPolicy resource to constrain playback by country and/or origin sites
https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ivs-playbackrestrictionpolicy.html #ivs #cloudformation

New AWS::IVS::EncoderConfiguration

Use the EncoderConfiguration resource to describe a stream’s video configuration.
https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ivs-encoderconfiguration.html #ivs #cloudformation

Here at @TenchiSecurity our product is built on #AWS #serverless workloads, but we also use AWS #Batch to execute a few container-based tasks on #StepFunctions.

This blog post from Luis F. Pontes from our #DevOps team describes problems we encountered with inactive AWS Batch Job Definition revisions, due to a long known quirk in #CloudFormation. Plus, it presents a workaround we successfully implemented, with code examples.

Check it out at https://www.tenchisecurity.com/fixing-aws-step-function-errors-due-to-reference-to-inactive-aws-batch-job-definition-revisions/

TIL: you can do wild things with #OrgFormation tasks and #Nunjucks templates to programmatically generate #CloudFormation code!

I don't know how I feel about this! 🤗
I mean, look at this beautifully triple-nested loop! 👀

⚠️ OK, Don't try this at home!

#AWS #Shenanigans

Updated AWS::DataSync::Task

Use the ManifestConfig property to configure a manifest that lists the files or objects that you want to transfer.
https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-datasync-task.html #datasync #cloudformation

AWS Makes Cloud Formation Stack Creation Up to 40% Faster
https://www.infoq.com/news/2024/03/aws-cloud-formation-faster/
#ycombinator #aws_cloud_formation_faster #DevOps #AWS #Amazon #Performance #CloudFormation #Provisioning #Cloud_Computing #Cloud #Infrastructure_as_Code

Updated AWS::Amplify::Domain

Use the CertificateSettings property to specify the type of SSL/TLS certificate to use for your custom domain.
https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-amplify-domain.html #amplify #cloudformation

Updated AWS::Amplify::Domain

Use the Certificate property to specify the SSL/TLS certificate for the domain association.
https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-amplify-domain.html #amplify #cloudformation

Updated AWS::CodePipeline::Pipeline

Added new trigger filtering on branches, file paths, pull request status. Added new PARALLEL and QUEUED execution modes for V2 type pipelines. Added field for manual timeout configuration in minutes.
https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-codepipeline-pipeline.html #codepipeline #cloudformation

New AWS::IVS::Stage

Use the Stage resource to specify a stage, a virtual space where participants can exchange video in real time.
https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ivs-stage.html #ivs #cloudformation

Updated AWS::CodeCommit::Repository Code

Use the KmsKeyId property to encrypt and decrypt the repository.
https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-codecommit-repository.html #codecommit #cloudformation

Updated AWS::CloudTrail::EventDataStore

If the FederationEnabled property is set to true, use the FederationRoleArn property to specify the ARN for the federation role. The federation role must exist in your account and provide the required minimum permissions.
https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-cloudtrail-eventdatastore.html #cloudtrail #cloudformation