Run Terraform Commands in GitLab CI/CD and Store Terraform State in GitLab Infrastructure — In this article, I will show how to store Terraform state in GitLab while deploying Terraform resources with GitLab CI/CD pipeline. First, add HTTP part to your Terraform block terraform { backend "http" {} } Second, set two global environment variables in GitLab. These will be used for storing Terraform state inside your GitLab

Secure Keycloak with HTTPS — In this article, I will show how to run Keycloak behind Nginx with HTTPS. For simplicity, I will be using my local environment to deploy relevant services with Docker. 1) Pull the Nginx image that has mkcert installed docker pull petschenek/nginx I used mkcert to create certificates and install the local CA in the system trust store in petschenek/nginx…

Keycloak in HA Mode — In this article, I will demonstrate using Keycloak in a Production-like environment. The preparation step is to create a Reverse Proxy to distribute the load between 2 Keycloak instances. The Deployment step is to deploy all necessary services including MSSQL and NGINX. PREPARATION: Nginx Configuration To have an HTTPS URL, I will be…

Running E2E tests during a CI/CD Pipeline — Cypress is an end-to-end testing framework for web test automation. It enables front-end developers and test automation engineers to write automated web tests. It is a life-saving tool and helps developers quite a lot. And it is really easy to use, even easier when you decide to run Cypress tests…

Self Configured KinD Cluster — Kubernetes is an awesome tool to deploy your application. It is nearly a must nowadays to be skilled at it. However, is everybody familiar with the Kubernetes internals or how to install a cluster from scratch? Here comes “Kubernetes the Hard Way” by Kelsey Hightower. As you may have already…

Monitor Applications with Zabbix — Zabbix is an open-source distributed monitoring software tool. It uses featured alarming and notification mechanisms to allow users to manage e-mail based alerts for various events. It also offers excellent reporting and data visualization features based on the data that multiple alerts produce. …

OWASP ZAP in CI/CD — In the past, security was stuck in the final stage of development, meaning that it was shifted quite right. That was not as problematic when development cycles lasted so long. However, nowadays, DevOps is getting faster and faster but security is lagging behind. To overcome this issue, security should be…