https://blog.it-premium.com.ua/ The blog about containerisation, virtual machines and useful shell snippets and findings en Aegea 11.3 (v4134) The blog about containerisation, virtual machines and useful shell snippets and findings 241 https://blog.it-premium.com.ua/all/the-new-kid-on-the-orchestration-block-hashicorp-nomad/ Mon, 01 Jan 2024 11:48:22 +0100 https://blog.it-premium.com.ua/all/the-new-kid-on-the-orchestration-block-hashicorp-nomad/ <p><a href=“https://www.hashicorp.com/products/nomad”>Hashicorp Nomad</a> is</p> <ul> <li>One binary (tm) for client and server</li> <li>Uses own RAFT implementation for clustering</li> <li>Supports HCL for resource definition and templating, same as terraform! Way better at DRY configuration.</li> <li>Supports not only docker, but raw JAR deployments, etc.</li> <li>Doesn’t have any ingress management. Though, integrates very nicely with Traefik using native facilities.</li> </ul> <p>This is currently my orchestration tool of choice for running anything in own cluster.</p> 240 https://blog.it-premium.com.ua/all/remove-old-docker-images-one-line/ Mon, 15 Aug 2022 18:04:02 +0100 https://blog.it-premium.com.ua/all/remove-old-docker-images-one-line/ <pre class="e2-text-code"><code class="">docker rmi xxxxxxxxxxx.dkr.ecr.eu-central-1.amazonaws.com/it-service-app:2.6.{234..295}</code></pre><p>this will remove all the images ranged from 2.6.234 till 2.6.295</p> 239 https://blog.it-premium.com.ua/all/docker-logrotate/ Tue, 25 Jan 2022 08:29:49 +0100 https://blog.it-premium.com.ua/all/docker-logrotate/ <p>Actually you don’t need any logrotate for docker, as it has built-in.</p> <p>Just set to this /etc/docekr/daemon.json</p> <pre class="e2-text-code"><code class="">{ &quot;log-driver&quot;: &quot;json-file&quot;, &quot;log-opts&quot;: { &quot;max-size&quot;: &quot;10m&quot;, &quot;max-file&quot;: &quot;3&quot; } }</code></pre><p><quote><br /> max-sizeNo-1The maximum size of the log before it is rolled. A positive integer plus a modifier representing the unit of measure (k, m, or g). Defaults to -1 (unlimited). This is used by json-log required to keep the docker log command working.<br /> max-fileNo1The maximum number of log files that can be present. If rolling the logs creates excess files, the oldest file is removed. Only effective when max-size is also set. A positive integer. Defaults to 1.<br /> </quote></p> 238 https://blog.it-premium.com.ua/all/initcontainer-and-rabbit-mq-checks-in-k8s-pod/ Thu, 04 Nov 2021 11:29:26 +0100 https://blog.it-premium.com.ua/all/initcontainer-and-rabbit-mq-checks-in-k8s-pod/ <p>Sometimes you need to implement ordered loading for the pods. Say, launch rabbit mq container first, than your app container. This could be done using <b>initContainer</b> concept.</p> <p>Put this into <b>values.yaml</b> of your helm chart definition</p> <pre class="e2-text-code"><code class="">rabbit: host: rabbit</code></pre><p>and this to the app <b>deployment.yaml</b> definition</p> <pre class="e2-text-code"><code class="">initContainers: - name: check-rabbit-ready image: public.ecr.aws/runecast/busybox:1.33.1 command: [&#039;sh&#039;, &#039;-c&#039;, &#039;until nc -vz {{ .Values.rabbit.host }} 5672; do echo &quot;Waiting for rabbit service&quot;; sleep 2; done;&#039;]</code></pre> 237 https://blog.it-premium.com.ua/all/get-pods-on-the-node-from-particular-az/ Thu, 21 Oct 2021 07:59:20 +0100 https://blog.it-premium.com.ua/all/get-pods-on-the-node-from-particular-az/ <p>For Amazon EKS:</p> <pre class="e2-text-code"><code class="">kubectl describe nodes -l topology.kubernetes.io/zone=eu-central-1a</code></pre> 236 https://blog.it-premium.com.ua/all/find-all-and-empty-log-files-oneliner/ Fri, 17 Sep 2021 08:32:19 +0100 https://blog.it-premium.com.ua/all/find-all-and-empty-log-files-oneliner/ <pre class="e2-text-code"><code class="">find . -name *.log | xargs truncate -s0</code></pre> 235 https://blog.it-premium.com.ua/all/ansible-remove-false-variables-from-environment/ Tue, 14 Sep 2021 08:38:01 +0100 https://blog.it-premium.com.ua/all/ansible-remove-false-variables-from-environment/ <p>Use the following code snippet:</p> <pre class="e2-text-code"><code class="">telegram: enabled: False Env: - TELEGRAM_NOTIFICATION={{ telegram.enabled | ternary(&#039;true&#039;, None)}}</code></pre><p>In this way False value evaluates to None and as outcome you’ll get empty TELEGRAM_NOTIFICATION variable</p> 234 https://blog.it-premium.com.ua/all/remove-exited-containers-from-docker/ Sat, 11 Sep 2021 16:37:11 +0100 https://blog.it-premium.com.ua/all/remove-exited-containers-from-docker/ <pre class="e2-text-code"><code class="">docker ps -f status=exited -q | xargs docker rm</code></pre> 233 https://blog.it-premium.com.ua/all/execute-eksctl-from-terraform/ Fri, 27 Aug 2021 12:00:07 +0100 https://blog.it-premium.com.ua/all/execute-eksctl-from-terraform/ <p>cluster_name and profile are terraform variables</p> <pre class="e2-text-code"><code class="">resource &quot;null_resource&quot; &quot;oidc_provider&quot; { triggers = { cluster_name = var.cluster_name } provisioner &quot;local-exec&quot; { command = &lt;&lt;EOF AWS_PROFILE=${var.profile} eksctl utils associate-iam-oidc-provider --cluster ${var.cluster_name} --approve EOF } }</code></pre><p>Check result with command</p> <pre class="e2-text-code"><code class="">aws iam list-open-id-connect-providers | jq &quot;.OpenIDConnectProviderList[].Arn&quot;</code></pre> 232 https://blog.it-premium.com.ua/all/aws-list-ec2-instances-by-tag/ Thu, 29 Jul 2021 15:54:05 +0100 https://blog.it-premium.com.ua/all/aws-list-ec2-instances-by-tag/ <p>simple ec2 instances list using jq</p> <pre class="e2-text-code"><code class="">aws ec2 describe-instances | jq -r &#039;.Reservations | .[].Instances | .[].Tags | .[] | select(.Key == &quot;Name&quot;) | .Value&#039;</code></pre> 231 https://blog.it-premium.com.ua/all/enable-gitea-to-use-ssh-port-22/ Sat, 23 Jan 2021 12:59:40 +0100 https://blog.it-premium.com.ua/all/enable-gitea-to-use-ssh-port-22/ <ol start="1"> <li>Move original ssh service to other port, like 2022</li> <li>set gitea config to use port 22<br /> app.ini</li> </ol> <pre class="e2-text-code"><code class="">[server] DISABLE_SSH = false SSH_PORT = 22 SSH_LISTEN_HOST = 0.0.0.0 SSH_LISTEN_PORT = 22 START_SSH_SERVER = true</code></pre><ol start="3"> <li>execute</li> </ol> <pre class="e2-text-code"><code class="">sudo setcap CAP_NET_BIND_SERVICE=+eip /usr/local/bin/gitea to enable usage of the port 22</code></pre> 230 https://blog.it-premium.com.ua/all/copy-files-having-search-string-to-the-target-folder/ Tue, 17 Nov 2020 17:06:45 +0100 https://blog.it-premium.com.ua/all/copy-files-having-search-string-to-the-target-folder/ <p>let’s say you have <Active>true</Active> in the hundreds of files and you need to copy only those which contain this string, it is quite easy to do with Linux find utility</p> <pre class="e2-text-code"><code class="">grep -l -ri -m1 &quot;Active&gt;true&quot; */*.xml | xargs -I {} cp {} target_folder</code></pre> 229 https://blog.it-premium.com.ua/all/recursive-copy-of-the-file-with-same-name-to-the-folder/ Mon, 02 Nov 2020 16:53:03 +0100 https://blog.it-premium.com.ua/all/recursive-copy-of-the-file-with-same-name-to-the-folder/ <pre class="e2-text-code"><code class="">find . -type f -name coverage.cov -exec bash -c &#039;cp {} $(pwd)/.coverage/cov/${RANDOM}.cov&#039; \;</code></pre> 228 https://blog.it-premium.com.ua/all/macos-datomic-console-in-background-plist/ Mon, 02 Nov 2020 08:09:43 +0100 https://blog.it-premium.com.ua/all/macos-datomic-console-in-background-plist/ <pre class="e2-text-code"><code class="">&lt;?xml version=&quot;1.0&quot; encoding=&quot;UTF-8&quot;?&gt; &lt;!DOCTYPE plist PUBLIC &quot;-//Apple//DTD PLIST 1.0//EN&quot; &quot;http://www.apple.com/DTDs/PropertyList-1.0.dtd&quot;&gt; &lt;plist version=&quot;1.0&quot;&gt; &lt;dict&gt; &lt;key&gt;Label&lt;/key&gt; &lt;string&gt;com.cognitect.datomic-console&lt;/string&gt; &lt;key&gt;ProgramArguments&lt;/key&gt; &lt;array&gt; &lt;string&gt;/Users/nexus/datomic-pro-1.0.6165/bin/console&lt;/string&gt; &lt;string&gt;stock&lt;/string&gt; &lt;string&gt;datomic:dev://localhost:4334/stock&lt;/string&gt; &lt;string&gt;--port&lt;/string&gt; &lt;string&gt;8080&lt;/string&gt; &lt;/array&gt; &lt;key&gt;WorkingDirectory&lt;/key&gt; &lt;string&gt;/Users/nexus/datomic-pro-1.0.6165&lt;/string&gt; &lt;/dict&gt; &lt;/plist&gt;</code></pre> 227 https://blog.it-premium.com.ua/all/macos-run-datomic-in-background-plist/ Mon, 02 Nov 2020 08:08:58 +0100 https://blog.it-premium.com.ua/all/macos-run-datomic-in-background-plist/ <pre class="e2-text-code"><code class="">&lt;?xml version=&quot;1.0&quot; encoding=&quot;UTF-8&quot;?&gt; &lt;!DOCTYPE plist PUBLIC &quot;-//Apple//DTD PLIST 1.0//EN&quot; &quot;http://www.apple.com/DTDs/PropertyList-1.0.dtd&quot;&gt; &lt;plist version=&quot;1.0&quot;&gt; &lt;dict&gt; &lt;key&gt;Label&lt;/key&gt; &lt;string&gt;com.cognitect.datomic&lt;/string&gt; &lt;key&gt;ProgramArguments&lt;/key&gt; &lt;array&gt; &lt;string&gt;/Users/nexus/datomic-pro-1.0.6165/bin/transactor&lt;/string&gt; &lt;string&gt;config/dev-transactor.properties&lt;/string&gt; &lt;/array&gt; &lt;key&gt;WorkingDirectory&lt;/key&gt; &lt;string&gt;/Users/nexus/datomic-pro-1.0.6165&lt;/string&gt; &lt;/dict&gt; &lt;/plist&gt;</code></pre> 226 https://blog.it-premium.com.ua/all/quicky-find-macos-version-from-the-command-line/ Tue, 27 Oct 2020 12:23:56 +0100 https://blog.it-premium.com.ua/all/quicky-find-macos-version-from-the-command-line/ <p>just use sw_vers command</p> <pre class="e2-text-code"><code class=""># sw_vers ProductName:Mac OS X ProductVersion:10.15.7 BuildVersion:19H2</code></pre> 225 https://blog.it-premium.com.ua/all/enable-graalvm-for-macos-catalina-gatekeeper/ Fri, 16 Oct 2020 12:20:22 +0100 https://blog.it-premium.com.ua/all/enable-graalvm-for-macos-catalina-gatekeeper/ <pre class="e2-text-code"><code class="">sudo xattr -r -d com.apple.quarantine /Library/Java/JavaVirtualMachines/graalvm-ce-java11-20.2.0/</code></pre> 224 https://blog.it-premium.com.ua/all/ansible-add-entries-to-htpassword/ Tue, 29 Sep 2020 11:49:00 +0100 https://blog.it-premium.com.ua/all/ansible-add-entries-to-htpassword/ <p>There are several ways to do this:</p> <ol start="1"> <li>Use template action and use template file</li> <li>Use array of entries and loop with lininfile command</li> <li>Use <a href="https://docs.ansible.com/ansible/latest/collections/community/general/htpasswd_module.html">https://docs.ansible.com/ansible/latest/collections/community/general/htpasswd_module.html</a> htpasswd module.</li> </ol> <p>I decided to go with approach #2.<br /> in variables</p> <pre class="e2-text-code"><code class="">htpasswd: - user1:password1 - user2:password2</code></pre><p>in the playbook</p> <pre class="e2-text-code"><code class="">- name: set password file lineinfile: path: &quot;{{ webroot }}/shared/.htpasswd&quot; line: &quot;{{ item }}&quot; create: yes when: oxid.configuration == &quot;production&quot; loop: &quot;{{ htpasswd }}&quot;</code></pre> 223 https://blog.it-premium.com.ua/all/centos-7-upgrade-jenkins-with-no-key-check/ Thu, 11 Jun 2020 10:18:04 +0100 https://blog.it-premium.com.ua/all/centos-7-upgrade-jenkins-with-no-key-check/ <pre class="e2-text-code"><code class="">yum upgrade jenkins --nogpgcheck</code></pre> 222 https://blog.it-premium.com.ua/all/can-not-install-docker-compose-on-centos-7/ Thu, 11 Jun 2020 09:51:55 +0100 https://blog.it-premium.com.ua/all/can-not-install-docker-compose-on-centos-7/ <p>CentOS 7 fix for  UserWarning: Unknown distribution option: ‘python_requires’</p> <pre class="e2-text-code"><code class="">yum install -y python-pip python-devel gcc pip install docker-compose</code></pre>