aws

June 4, 2025
in terraform, cloudfront, aws, route53, ssl
4 min read

Building a Reusable Terraform Static Site Module with CloudFront, S3, and Route 53

Overview

A common need in modern cloud infrastructure is hosting static websites — whether it's marketing sites, documentation portals, or Single Page Applications (SPAs) built with React, Vue, or Svelte.

At first, the AWS building blocks for this are fairly simple:

S3 for object storage
CloudFront for CDN
ACM for HTTPS
Route 53 for DNS

But quickly, managing this setup by hand or duplicating configs across environments (prod, staging, QA) becomes painful:

Too many copy/paste Terraform files
Hard to apply consistent policies
Complicated to manage uploads (especially when some sites are CI/CD and some are manual content sites)

May 30, 2025
in networking, ssl, kubernetes, aws, eks
4 min read

Automated TLS and DNS in Kubernetes with ExternalDNS, Ingress, and Let's Encrypt

Managing DNS and TLS certificates for Kubernetes applications can be tedious and error-prone. Thankfully, tools like ExternalDNS, Ingress, and Cert-Manager automate the entire process — from setting DNS records to provisioning Let's Encrypt certificates.

In this guide, we'll walk through how to:

Use ExternalDNS to automatically create DNS records.
Annotate Ingress resources to request a Let's Encrypt TLS cert.
Get HTTPS with minimal manual intervention.
Understand how these components interact.

May 17, 2025
in shell script, sso, kubernetes, aws, devops
2 min read

Automatically Renew AWS SSO Session and Refresh Kubeconfig for EKS Access

Working with AWS EKS clusters via AWS SSO is secure but sometimes frustrating.
If your session expires, kubectl commands will fail until you manually renew the session and update your kubeconfig.

Let's automate that with a small Bash script.

May 17, 2025
in devops, turborepo, terraform, aws, github
4 min read

Setting Up Turborepo Remote Cache with S3 and GitHub Actions

Setting up a production-grade remote cache for Turborepo using self hosted remote cache with AWS S3 and Lambda helps improve monorepo performance, especially in CI/CD pipelines like GitHub Actions. Below is a modular and generic Terraform setup using variables for easy customization.

May 15, 2025
in aws, kubernetes, devops
2 min read

Bootstrapping My Linux Desktop and MacBook for Dev Work

After transitioning through two new jobs recently, I had the opportunity (and challenge) to set up fresh dev environments on both a Linux desktop and a MacBook. Here’s my comprehensive checklist and setup notes, including tooling, config files, and references I found useful.

June 3, 2024
in redis, java, aws, docker
2 min read

Using Redis with SpringBoot

On my other project, I use Redis as a caching layer. This time I would like to use it as a database in a SprintBoot project.

May 8, 2024
in devops, aws, shell script, kubernetes
2 min read

Amazon ECR Public allows users to store and access public container images. While ECR Public repositories are open to the public, access to pull or download images from these repositories may still require authentication.

While there are multiple reasons such as access control and security concern, the main benefit of getting an authentication token or login is to deal with rate limiting in my use case.