How To Dev

Introduction Amazon Elastic Kubernetes Service (AWS EKS) is a managed Kubernetes service on the AWS cloud platform. Instead of having to install, operate, and maintain a Kubernetes cluster from scratch yourself, AWS takes over the management of the system's "brain" (Control Plane), helping you focus entirely on deploying and running applications. Advantages Reduced administrative burden: AWS automatically performs difficult tasks such as version updates, security patching, and ensuring high availability for the Control Plane across multiple Availability Zones. Optimal security: EKS integrates tightly with AWS security services such as IAM (for granular permissions for Pods), VPC (for network isolation), and AWS KMS (for data encryption). Flexible scalability: You can easily increase or decrease the number of resources (nodes) based on the actual traffic of the application, helping to optimize costs. Rich ecosystem: Easily connect with other AWS services such as CloudWatch...

Introduction Amazon ECR (Elastic Container Registry) is a fully managed Docker Registry (image repository) by AWS. Instead of having to operate your own Docker Hub or install a Registry on a server, you use ECR to store, manage, and deploy Docker Container Images in a highly secure and scalable manner. Advantages Deep integration with AWS: ECR works most seamlessly with Amazon EKS (Kubernetes) and ECS. You only need to declare the image path, and AWS will handle the authentication and image pulling (pull) automatically. Absolute security: Use AWS IAM for authorization. Only authorized Services or Users can push/pull images. Images are also automatically encrypted at rest. Image Scanning: ECR automatically checks the images you push to find any libraries with security vulnerabilities (CVE), giving you more peace of mind about your code. Lifecycle Policies: You can set up automatic deletion of old images and untagged images to avoid wasting storage space. High performance: Since images a...

Introduction In the previous article, I introduced the basic concepts of AWS RDS as well as how to securely connect using a tunnel; you can review it to grasp the necessary information before proceeding. In this article, I will guide you through creating an RDS Postgres with public access, meaning this database can be accessed from any computer. This method may be considered less secure than the previous one, but it is useful when you need to share database connections with many users during the development process who do not have an AWS account to connect via a tunnel. Detailed Instructions Using AWS CDK, create the file lib/rds-public-stack.ts import * as cdk from "aws-cdk-lib" import * as ec2 from "aws-cdk-lib/aws-ec2" import * as rds from "aws-cdk-lib/aws-rds" import * as secretsmanager from "aws-cdk-lib/aws-secretsmanager" import * as ssm from "aws-cdk-lib/aws-ssm" export class RdsPublicStack extends cd...