Book Image

Learning DevOps

By : Mikael Krief
Book Image

Learning DevOps

By: Mikael Krief

Overview of this book

The implementation of DevOps processes requires the efficient use of various tools, and the choice of these tools is crucial for the sustainability of projects and collaboration between development (Dev) and operations (Ops). This book presents the different patterns and tools that you can use to provision and configure an infrastructure in the cloud. You'll begin by understanding DevOps culture, the application of DevOps in cloud infrastructure, provisioning with Terraform, configuration with Ansible, and image building with Packer. You'll then be taken through source code versioning with Git and the construction of a DevOps CI/CD pipeline using Jenkins, GitLab CI, and Azure Pipelines. This DevOps handbook will also guide you in containerizing and deploying your applications with Docker and Kubernetes. You'll learn how to reduce deployment downtime with blue-green deployment and the feature flags technique, and study DevOps practices for open source projects. Finally, you'll grasp some best practices for reducing the overall application lead time to ensure faster time to market. By the end of this book, you'll have built a solid foundation in DevOps, and developed the skills necessary to enhance a traditional software delivery process using modern software delivery tools and techniques

Related Content you might be interested in

Current Title:

Small book image
Learning DevOps
Mikael Krief
Oct, 2019 | 504 pages
Small book image
Terraform Cookbook
Mikael Krief
Oct, 2020 | 366 pages
Small book image
Terraform Cookbook
Mikael Krief
Aug, 2023 | 634 pages
Small book image
Azure DevOps Explained
Stefano Demiliani | Sjoukje Zaal | Amit Malik
Dec, 2020 | 438 pages
Table of Contents (23 chapters)
Preface
Preface
Who this book is for
What this book covers
To get the most out of this book
Get in touch
Free Chapter
1
Section 1: DevOps and Infrastructure as Code
Section 1: DevOps and Infrastructure as Code
2
DevOps Culture and Practices
DevOps Culture and Practices
Getting started with DevOps
Implementing CI/CD and continuous deployment
Understanding IaC practices
Summary
Questions
Further reading
3
Provisioning Cloud Infrastructure with Terraform
Provisioning Cloud Infrastructure with Terraform
Technical requirements
Installing Terraform
Configuring Terraform for Azure
Writing a Terraform script to deploy Azure infrastructure
Deploying the infrastructure with Terraform
Terraform command lines and life cycle
Protecting tfstate in a remote backend
Summary
Questions
Further reading
4
Using Ansible for Configuring IaaS Infrastructure
Using Ansible for Configuring IaaS Infrastructure
Technical requirements
Installing Ansible
Creating an inventory for targeting Ansible hosts
Writing the first playbook
Executing Ansible
Protecting data with Ansible Vault
Using a dynamic inventory for Azure infrastructure
Summary
Questions
Further reading
5
Optimizing Infrastructure Deployment with Packer
Optimizing Infrastructure Deployment with Packer
Technical requirements
An overview of Packer
Creating Packer templates for Azure VMs with scripts
Using Ansible in a Packer template
Executing Packer
Using a Packer image with Terraform
Summary
Questions
Further reading
6
Section 2: DevOps CI/CD Pipeline
Section 2: DevOps CI/CD Pipeline
7
Managing Your Source Code with Git
Managing Your Source Code with Git
Technical requirements
Overviewing Git and its command lines
Understanding the Git process and GitFlow pattern
Summary
Questions
Further reading
8
Continuous Integration and Continuous Delivery
Continuous Integration and Continuous Delivery
Technical requirements
The CI/CD principles
Using a package manager
Using Jenkins
Using Azure Pipelines
Using GitLab CI
Summary
Questions
Further reading
9
Section 3: Containerized Applications with Docker and Kubernetes
Section 3: Containerized Applications with Docker and Kubernetes
10
Containerizing Your Application with Docker
Containerizing Your Application with Docker
Technical requirements
Installing Docker
Creating a Dockerfile
Building and running a container on a local machine
Pushing an image to Docker Hub
Deploying a container to ACI with a CI/CD pipeline
Summary
Questions
Further reading
11
Managing Containers Effectively with Kubernetes
Managing Containers Effectively with Kubernetes
Technical requirements
Installing Kubernetes
First example of Kubernetes application deployment
Using HELM as a package manager
Using AKS
Creating a CI/CD pipeline for Kubernetes with Azure Pipelines
Summary
Questions
Further reading
12
Section 4: Testing Your Application
Section 4: Testing Your Application
13
Testing APIs with Postman
Testing APIs with Postman
Technical requirements
Creating a Postman collection with requests
Using environments and variables to dynamize requests
Writing Postman tests
Executing Postman request tests locally
Understanding the Newman concept
Preparing Postman collections for Newman
Running the Newman command line
Integration of Newman in the CI/CD pipeline process
Summary
Questions
Further reading
14
Static Code Analysis with SonarQube
Static Code Analysis with SonarQube
Technical requirements
Exploring SonarQube
Installing SonarQube
Real-time analysis with SonarLint
Executing SonarQube in continuous integration
Summary
Questions
Further reading
15
Security and Performance Tests
Security and Performance Tests
Technical requirements
Applying web security and penetration testing with ZAP
Running performance tests with Postman
Summary
Questions
Further reading
16
Section 5: Taking DevOps Further
Section 5: Taking DevOps Further
17
Security in the DevOps Process with DevSecOps
Security in the DevOps Process with DevSecOps
Technical requirements
Testing Azure infrastructure compliance with Chef InSpec
Using the Secure DevOps Kit for Azure
Preserving data with HashiCorp's Vault
Summary
Questions
Further reading
18
Reducing Deployment Downtime
Reducing Deployment Downtime
Technical requirements
Reducing deployment downtime with Terraform
Understanding blue-green deployment concepts and patterns
Applying blue-green deployments on Azure
Introducing feature flags
Using an open source framework for feature flags
Using the LaunchDarkly solution
Summary
Questions
Further reading
19
DevOps for Open Source Projects
DevOps for Open Source Projects
Technical requirements
Storing the source code in GitHub
Contributing using pull requests
Managing the changelog and release notes
Sharing binaries in GitHub releases
Using Travis CI for continuous integration
Getting started with GitHub Actions
Analyzing code with SonarCloud
Detecting security vulnerabilities with WhiteSource Bolt
Summary
Questions
Further reading
20
DevOps Best Practices
DevOps Best Practices
Automating everything
Choosing the right tool
Writing all your configuration in code
Designing the system architecture
Building a good CI/CD pipeline
Integrating tests
Applying security with DevSecOps
Monitoring your system
Evolving project management
Summary
Questions
Further reading
21
Assessments
Assessments
Chapter 1: DevOps Culture and Practices
Chapter 2: Provisioning Cloud Infrastructure with Terraform
Chapter 3: Using Ansible for Configuring IaaS Infrastructure
Chapter 4: Optimizing Infrastructure Deployment with Packer
Chapter 5: Managing Your Source Code with Git
Chapter 6: Continuous Integration and Continuous Delivery
Chapter 7: Containerizing Your Application with Docker
Chapter 8: Managing Containers Effectively with Kubernetes
Chapter 9: Testing APIs with Postman
Chapter 10: Static Code Analysis with SonarQube
Chapter 11: Security and Performance Tests
Chapter 12: Security in the DevOps Process with DevSecOps
Chapter 13: Reducing Deployment Downtime
Chapter 14: DevOps for Open Source Projects
Chapter 15: DevOps Best Practices
22
Other Books You May Enjoy
Other Books You May Enjoy
Leave a review - let other readers know what you think

Using the Secure DevOps Kit for Azure

We'll now talk about another very interesting tool that allows you to check the security of Azure infrastructure resources. It is a tool provided by Microsoft, called Secure DevOps Kit for Azure (AzSK) and its complete documentation is here: https://azsk.azurewebsites.net/README.html.

Unlike InSpec, AzSK does not verify the compliance of your Azure infrastructure with architectural requirements but rather will verify that the recommendations and good security practices are applied to your Azure subscription and resources.

AzSK also integrates seamlessly into a CI/CD pipeline and thus allows developers and operational staff to continuously ensure that their Azure resources are secure and do not open security vulnerabilities to unwanted people.

We'll see how to install AzSK; then we'll look at how it is used to verify the security...

Previous Section
End of Section 4
Next Section