Featured image of post πŸ” Ditching JSON Keys for Workload Identity Federation (WID) in Kubernetes
Security

πŸ” Ditching JSON Keys for Workload Identity Federation (WID) in Kubernetes

When running workloads in Kubernetes that need to access Google Cloud resources, a common approach has been to use a service account JSON key stored in a secret. However, this method has security vulnerabilities. Recently, I transitioned to usingΒ **Workload Identity Federation (WID)**, which eliminates the need for JSON keys while ensuring secure access. Here’s why WID is a game-changer and what I learned during this migration. πŸš€

Featured image of post πŸš€ KEDA Microservice Documentation
Kubernetes

πŸš€ KEDA Microservice Documentation

πŸ“Œ This document outlines my experience implementing a Kubernetes microservice using KEDA (Kubernetes Event-Driven Autoscaling) to scale based on Pub/Sub messages. The focus is on how KEDA enables efficient scaling of workloads in response to event-driven triggers and the key lessons I learned along the way.

Featured image of post πŸ“Š Streamlining Log Management with Log Scopes
Infrastructure as Code

πŸ“Š Streamlining Log Management with Log Scopes

Managing logs across multiple projects was challenging, requiring frequent context switching in GCP Logs Explorer. By implementing log scopes, we centralized logging into a single view, improving troubleshooting and monitoring. Using Terraform, we automated log scope creation, efficiently handling project limits and ensuring scalability. πŸš€πŸ“Š

Featured image of post πŸŒ₯️ Moving data between GCP projects/buckets 🌐
Scripting

πŸŒ₯️ Moving data between GCP projects/buckets 🌐

I was tasked with setting up a new development environment for testing and development. It lacked the necessary data, so I had to carefully transfer it from one project to another. This document outlines my experience and the steps I took to transfer data between `Google Cloud Projects`, including `Cloud Storage buckets`, `Firestore (Datastore)`, and `BigQuery datasets`. This guide can be helpful when creating a new environment and seeding it with data from an existing project.

Featured image of post GCP-cloud-resume-api challange
Infrastructure as Code

GCP-cloud-resume-api challange

A project where I built and deployed a serverless API using Google Cloud Functions and Firestore, integrated with Cloud Build as CI/CD to deploy functions on every push to GitHub automatically. An API that can serve resume data in JSON format. I used Terraform to manage and provision cloud infrastructure.