Erik Osterman (CEO @ Cloud Posse)

icon indicating a website link http://www.cloudposse.com/ icon indicating an email [email protected]

icon company Cloud Posse, LLC icon location Los Angeles, CA icon location Helping teams succeed today using Cloud Posse's Reference Architectures for AWS.

Results 248 issues of Erik Osterman (CEO @ Cloud Posse)

Document Chart Museum Secret Rotation

## question * How do I change the credentials for accesing our private Helm repo? ## answer 1) update the `CHART_` envs in chamber; run `chamber exec kops -- env`...

Document Terraform Triage Tip

1 comment

## what * This environment variable isn't in the documentation, but can get you around some annoying errors when destroying resources. ``` export TF_WARN_OUTPUT_ERRORS=1 ``` * Set `TF_LOG=DEBUG` to get...

Document Codefresh Registry Pull Secrets for Clusters

1 comment

## what * Describe how to create a pull secret not associated with a user account ## why * Users should not be exposing their pull secrets ## solutions 1....

Document Build Harness DOCKER_BUILD_FLAGS argument

## what How do I pass "--no-cache" to `make build/docker`? ## answer `export DOCKER_BUILD_FLAGS = --no-cache` or ``` make docker/build DOCKER_BUILD_FLAGS=--no-cache ```

Document Fix for Alpine Mirror Problem: "temporary error (try again later)"

## what ``` ERROR: http://dl-cdn.alpinelinux.org/alpine/v3.8/main: temporary error (try again later) WARNING: Ignoring APKINDEX.adfa7ceb.tar.gz: No such file or directory ERROR: http://dl-cdn.alpinelinux.org/alpine/v3.8/community: temporary error (try again later) WARNING: Ignoring APKINDEX.efaa1f73.tar.gz: No such...

Document that Kops Bastion is not a Kubernetes Node

## what Customer: > was surprised, too, that `kubectl get nodes` returned fewer nodes than we have instnaces. > Lists 4 nodes and 3 masters but not the bastion ##...

Document Resources for Getting Started with Kubernetes and Terraform

## what we should provide a curated list of links ## why * For people just getting started with Terraform and Kubernetes, ## references e.g. - - -

Document Docker for Mac Time Drift Problem

## what ``` aws-vault: error: Failed to get credentials for example (source profile for example-staging-admin): SignatureDoesNotMatch: Signature expired: 20180806T044229Z is now earlier than 20180806T191638Z (20180806T193138Z - 15 min.) status code:...

Assume Role Forbidden by Namespace Policy Expression

## what ``` {"addr":"100.98.35.137:54990","level":"error","method":"GET","msg":"error processing request: assume role forbidden: namespace policy expression '(empty)' forbids role 'cpco-testing-external-dns'","path":"/latest/meta-data/iam/security-credentials/cpco-testing-external-dns","status":403,"time":"2018-07-25T02:39:17Z"} ``` ## why This is easily fixed by running... ``` kubectl annotate --overwrite namespace...

enhancement
documentation

Document Common Production Issues with Kubernetes (Kops)

## what * `kube-dns` intermittent outages * `kube2iam` rate limiting * `kiam` * growing/shrinking masters is complicated. risk destabilizing quorum => calico network stability * kops doesn't currently support rotating...