You can control S3 access in 3 ways:
- Bucket Policies apply across the bucket.
- Object Permissions apply to individual files.
- IAM (Identity) policies apply to users and groups
Category Archives: Cloud Computing
[Kubernetes] Jobs & CronJobs
A Job creates one or more pods and will continue to retry execution of the Pods until a specified number of them successfully terminate. As pods successfully complete, the Job tracks the successful completions. When the specified number of successful completions is reached, the job is complete.
Continue reading “[Kubernetes] Jobs & CronJobs”[Kubernetes] Configurations
Kubernetes provides many ways to configure pods and containers.
- Environment variables
- Config maps
- Secrets
- Security Context
- Resource requirements
- Service accounts
Kubernetes – CKAD Tips
Certified Kubernetes Application Developer (CKAD)
CKAD is an online tests with problems to be solved by a command line tool. Here are the tips of the test.
Continue reading “Kubernetes – CKAD Tips”[Kubernetes] Services
A Service is an abstraction which defines a logical set of Pods and a policy by which to access them (sometimes this pattern is called a micro-service).
Through services, you can expose applications running in a pod.
Pods are created and deleted dynamically so that it is not practical to communicate with pods directly. A service expose a set of pods and provides the load-balancing of the traffic across them.
[Kubernetes] Deployments
A Deployment provides declarative updates for Pods and ReplicaSets.
- A deployment defines the desired state for replica pods.
- The cluster constantly maintains the desired state by creating, removing, and modifying replica pods.
[Kubernetes] Pods
Pods are the smallest deployable units of computing that you can create and manage in Kubernetes.
- A Pod consists of one or more containers and resources shared by those containers.
[Kubernetes] Architecture
Kubernetes coordinates a highly available cluster of computers that are connected to work as a single unit. Kubernetes automates the distribution and scheduling of application containers across a cluster in an efficient way.
- Service discovery and load balancing
- Storage orchestration
- Automated rollouts and rollbacks
- Self-healing
- Secret and configuration management
Scriptorium 