Book Image

AWS DevOps Simplified

By : Akshay Kapoor
Book Image

AWS DevOps Simplified

By: Akshay Kapoor

Overview of this book

DevOps and AWS are the two key enablers for the success of any modern software-run business. DevOps accelerates software delivery, while AWS offers a plethora of services, allowing developers to prioritize business outcomes without worrying about undifferentiated heavy lifting. This book focuses on the synergy between them, equipping you with strong foundations, hands-on examples, and a strategy to accelerate your DevOps journey on AWS. AWS DevOps Simplified is a practical guide that starts with an introduction to AWS DevOps offerings and aids you in choosing a cloud service that fits your company's operating model. Following this, it provides hands-on tutorials on the GitOps approach to software delivery, covering immutable infrastructure and pipelines, using tools such as Packer, CDK, and CodeBuild/CodeDeploy. Additionally, it provides you with a deep understanding of AWS container services and how to implement observability and DevSecOps best practices to build and operate your multi-account, multi-Region AWS environments. By the end of this book, you’ll be equipped with solutions and ready-to-deploy code samples that address common DevOps challenges faced by enterprises hosting workloads in the cloud.

Related Content you might be interested in

Current Title:

Small book image
AWS DevOps Simplified
Akshay Kapoor
Sep, 2023 | 318 pages
Small book image
AWS CDK in Practice
Mark Avdi | Leo Lam
Jun, 2023 | 196 pages
Small book image
AWS Observability Handbook
Phani Kumar Lingamallu | Fabio Braga de Oliveira
Apr, 2023 | 504 pages
Small book image
AWS Certified Solutions Architect – Professional Exam Guide (SAP-C02)
Yohan Wadia | Patrick Sard
Mar, 2024 | 428 pages
Table of Contents (19 chapters)
Preface
Preface
Who this book is for
What this book covers
To get the most out of this book
Download the example code files
Conventions used
Get in touch
Share Your Thoughts
Download a free PDF copy of this book
1
Part 1 Driving Transformation through AWS and DevOps
Part 1 Driving Transformation through AWS and DevOps
Free Chapter
2
Chapter 1: Accelerating Your DevOps Journey with AWS
Chapter 1: Accelerating Your DevOps Journey with AWS
AWS and DevOps – a perfect match
Key AWS DevOps services
Summary
Further reading
3
Chapter 2: Choosing the Right Cloud Service
Chapter 2: Choosing the Right Cloud Service
The three tiers of cloud offerings
What to choose when
Understanding your organization’s cloud operating model
Key AWS services
Summary
Further reading
4
Chapter 3: Leveraging Immutable Infrastructure in the Cloud
Chapter 3: Leveraging Immutable Infrastructure in the Cloud
Technical requirements
Pets versus cattle
Mutable and immutable infrastructure
Getting started with AWS
Working with the test application
Building an AMI with Packer
Deploying our test instance
Summary
Further reading
5
Part 2 Faster Software Delivery with Consistent and Reproducible Environments
Part 2 Faster Software Delivery with Consistent and Reproducible Environments
6
Chapter 4: Managing Infrastructure as Code with AWS CloudFormation
Chapter 4: Managing Infrastructure as Code with AWS CloudFormation
Technical requirements
What is AWS CloudFormation?
How CloudFormation works
Best practices for using CloudFormation to define enterprise-grade architectures
Deciding between Terraform and CloudFormation
Hands-on deployment with CloudFormation
Summary
Further reading
7
Chapter 5: Rolling Out a CI/CD Pipeline
Chapter 5: Rolling Out a CI/CD Pipeline
What is CI/CD?
How to choose the best CI/CD solution for your needs
Enabling continuous integration with CodeCommit and CodeBuild
Using CodeDeploy to orchestrate deployment workflows in compute environments
Implementing end-to-end software delivery with CodePipeline
Rolling out a fully automated CI/CD pipeline in your AWS account
Summary
Further reading
8
Chapter 6: Programmatic Approach to IaC with AWS CDK
Chapter 6: Programmatic Approach to IaC with AWS CDK
Different approaches to managing infrastructure in AWS
What is AWS CDK?
Deploying a test application with AWS CDK
Summary
Further reading
9
Part 3 Security and Observability of Containerized Workloads
Part 3 Security and Observability of Containerized Workloads
10
Chapter 7: Running Containers in AWS
Chapter 7: Running Containers in AWS
A quick introduction to the container ecosystem
AWS services that support running containers in the cloud
ECS constructs and security features
Deploying a test application on ECS
Summary
Further reading
11
Chapter 8: Enabling the Observability of Your Workloads
Chapter 8: Enabling the Observability of Your Workloads
What is observability?
Key AWS offerings for monitoring and observability
Best practices for a solid observability strategy
Defining your observability strategy for workloads hosted in AWS
Summary
Further reading
12
Chapter 9: Implementing DevSecOps with AWS
Chapter 9: Implementing DevSecOps with AWS
Trade-offs and challenges of security
What is DevSecOps?
Securing your workloads in AWS
Rolling out a test CI/CD workflow for DevSecOps
Summary
Further reading
13
Part 4 Taking the Next Steps
Part 4 Taking the Next Steps
14
Chapter 10: Setting Up Teams for Success
Chapter 10: Setting Up Teams for Success
Building a collaborative team setup and culture
Technology best practices and considerations for success
Resources for continuous learning and enablement
Driving change from the bottom up
Summary
Further reading
15
Chapter 11: Ensuring a Strong AWS Foundation for Multi-Account and Multi-Region Environments
Chapter 11: Ensuring a Strong AWS Foundation for Multi-Account and Multi-Region Environments
What is a Landing Zone?
Key considerations in a Landing Zone
Best practices for managing multi-account architectures
Building a Landing Zone with Control Tower and CfCT
Summary
Further reading
16
Chapter 12: Adhering to AWS Well-Architected Principles
Chapter 12: Adhering to AWS Well-Architected Principles
Understanding different components of AWS Well-Architected
Aligning your architecture with the six focus pillars of the framework
Summary
Further reading
17
Index
Index
Why subscribe?
18
Other Books You May Enjoy
Other Books You May Enjoy
Packt is searching for authors like you
Share Your Thoughts
Download a free PDF copy of this book

Rolling out a test CI/CD workflow for DevSecOps

To put things into practice, we’ll deploy a test pipeline in an AWS account to demonstrate the usage of various tools (AWS and open source) from a security perspective. More concretely, let’s consider a requirement that almost every modern software development team needs to address – securely delivering Docker images at scale. In real-life scenarios, you should consider deploying the output artifacts (Docker images) from such workflows to dedicated test environments where DAST investigations can be performed. This is particularly useful before deploying the image into subsequent environments (pre-prod, prod, and so on).

To have a visual mind map of what we are going to build, let’s dive into the details with an architecture diagram that highlights the end-to-end flow.

Understanding the target architecture of the DevSecOps pipeline

A pipeline definition in AWS CodePipeline consists of at least two stages...

Previous Section
End of Section 5
Next Section