Book Image

Modern DevOps Practices

By : Gaurav Agarwal
Book Image

Modern DevOps Practices

By: Gaurav Agarwal

Overview of this book

Containers have entirely changed how developers and end-users see applications as a whole. With this book, you'll learn all about containers, their architecture and benefits, and how to implement them within your development lifecycle. You'll discover how you can transition from the traditional world of virtual machines and adopt modern ways of using DevOps to ship a package of software continuously. Starting with a quick refresher on the core concepts of containers, you'll move on to study the architectural concepts to implement modern ways of application development. You'll cover topics around Docker, Kubernetes, Ansible, Terraform, Packer, and other similar tools that will help you to build a base. As you advance, the book covers the core elements of cloud integration (AWS ECS, GKE, and other CaaS services), continuous integration, and continuous delivery (GitHub actions, Jenkins, and Spinnaker) to help you understand the essence of container management and delivery. The later sections of the book will take you through container pipeline security and GitOps (Flux CD and Terraform). By the end of this DevOps book, you'll have learned best practices for automating your development lifecycle and making the most of containers, infrastructure automation, and CaaS, and be ready to develop applications using modern tools and techniques.

Related Content you might be interested in

Current Title:

Small book image
Modern DevOps Practices
Gaurav Agarwal
Sep, 2021 | 530 pages
Small book image
HashiCorp Infrastructure Automation Certification Guide
Ravi Mishra
Jul, 2021 | 350 pages
Small book image
kubectl: Command-Line Kubernetes in a Nutshell
Rimantas Mocevicius
Nov, 2020 | 136 pages
Small book image
Docker for Developers
Andrew K Dennis | Michael Schwartz | Richard BullingtonMcGuire
Sep, 2020 | 468 pages
Table of Contents (19 chapters)
Preface
Preface
Who this book is for
What this book covers
To get the most out of this book
Download the color images
Conventions used
Get in touch
1
Section 1: Container Fundamentals and Best Practices
Section 1: Container Fundamentals and Best Practices
Free Chapter
2
Chapter 1: The Move to Containers
Chapter 1: The Move to Containers
The need for containers
Container architecture
Modern DevOps versus traditional DevOps
Containers and modern DevOps practices
Migrating from virtual machines to containers
Are we there yet?
Summary
Questions
Answers
3
Chapter 2: Containerization with Docker
Chapter 2: Containerization with Docker
Technical requirements
Installing tools
Installing Docker
Introducing Docker storage drivers and volumes
Running your first container
Docker logging and logging drivers
Docker monitoring with Prometheus
Declarative container management with Docker Compose
Summary
Questions
Answers
4
Chapter 3: Creating and Managing Container Images
Chapter 3: Creating and Managing Container Images
Technical requirements
Docker architecture
Understanding Docker images
Understanding Dockerfiles, components, and directives
Building and managing Docker images
Optimizing containers with distroless images
Understanding Docker registries
Summary
Questions
Answers
5
Chapter 4: Container Orchestration with Kubernetes – Part I
Chapter 4: Container Orchestration with Kubernetes – Part I
Technical requirements
What is Kubernetes and why do I need it?
Kubernetes architecture
Installing Kubernetes (Minikube and KinD)
Understanding Kubernetes pods
Summary
Questions
Answers
6
Chapter 5: Container Orchestration with Kubernetes – Part II
Chapter 5: Container Orchestration with Kubernetes – Part II
Technical requirements
Kubernetes Deployments
Kubernetes Services and Ingresses
Horizontal Pod autoscaling
Managing stateful applications
Kubernetes command-line best practices
Summary
Questions
Answers
7
Section 2: Delivering Containers
Section 2: Delivering Containers
8
Chapter 6: Infrastructure as Code (IaC) with Terraform
Chapter 6: Infrastructure as Code (IaC) with Terraform
Technical requirements
Introduction to IaC
Terraform providers
Terraform variables
Terraform workflow
terraform state
Terraform workspaces
Terraform output, state, console, and graphs
Summary
Questions
Answers
9
Chapter 7: Configuration Management with Ansible
Chapter 7: Configuration Management with Ansible
Technical requirements
Introduction to config management
Setting up Ansible
Ansible tasks and modules
Introduction to Ansible playbooks
Ansible playbooks in action
Designing for reusability
Summary
Questions
Answers
10
Chapter 8: IaC and Config Management in Action
Chapter 8: IaC and Config Management in Action
Technical requirements
Immutable infrastructure with Hashicorp's Packer
Creating the Apache and MySQL playbooks
Building the Apache and MySQL images using Packer and Ansible provisioners
Creating the required infrastructure with Terraform
Summary
Questions
Answers
11
Chapter 9: Containers as a Service (CaaS) and Serverless Computing for Containers
Chapter 9: Containers as a Service (CaaS) and Serverless Computing for Containers
Technical requirements
The need for serverless offerings
Amazon ECS with EC2 and Fargate
Other CaaS products
Open source CaaS with Knative
Summary
Questions
Answers
12
Chapter 10: Continuous Integration
Chapter 10: Continuous Integration
Technical requirements
The importance of automation
Building a CI pipeline with GitHub Actions
Scalable Jenkins on Kubernetes with Kaniko
Automating a build with triggers
CI with AWS Code Commit and Code Build
Build performance best practices
Summary
Questions
Answers
13
Chapter 11: Continuous Deployment/Delivery with Spinnaker
Chapter 11: Continuous Deployment/Delivery with Spinnaker
Technical requirements
Importance of Continuous Deployment and automation
Continuous deployment models and tools
Introduction to Spinnaker
Setting up Spinnaker
Deploying a sample application using a Spinnaker pipeline
Summary
Questions
Answers
14
Chapter 12: Securing the Deployment Pipeline
Chapter 12: Securing the Deployment Pipeline
Technical requirements
Securing CI/CD pipelines
Managing secrets
Container vulnerability scanning
Binary authorization
Security of modern DevOps pipelines
Summary
Questions
Answers
15
Section 3: Modern DevOps with GitOps
Section 3: Modern DevOps with GitOps
16
Chapter 13: Understanding DevOps with GitOps
Chapter 13: Understanding DevOps with GitOps
Technical requirements
What is GitOps?
The principles of GitOps
Why GitOps?
The branching strategy and GitOps workflow
Declarative infrastructure and config management
Summary
Questions
Answers
17
Chapter 14: CI/CD Pipelines with GitOps
Chapter 14: CI/CD Pipelines with GitOps
Technical requirements
Continuous integration with GitHub Actions
Release gating with pull requests
Continuous deployment with Flux CD
Managing sensitive configuration and Secrets
Summary
Questions
Answers
Why subscribe?
18
Other Books You May Enjoy
Other Books You May Enjoy
Packt is searching for authors like you
Share your thoughts

Chapter 12: Securing the Deployment Pipeline

In the previous chapters, we've looked at continuous integration (CI) and continuous deployment/delivery (CD). Both concepts, and the tooling surrounding them, help us deliver better software faster. However, one of the most critical aspects of technology is security. Though security was not considered in DevOps' initial days, with the advent of DevSecOps, modern DevOps now places a great emphasis on security. In this chapter, we'll try to understand concepts surrounding container applications' security and how we can apply them within the realms of CI and CD.

In this chapter, we're going to cover the following main topics:

  • Securing CI/CD pipelines
  • Managing secrets
  • Container vulnerability scanning
  • Binary authorization
  • Security of modern DevOps pipelines
Previous Section
End of Section 1
Next Section