How to Build/Bake CentOS RPM using Spinnaker

By default, Spinnaker does not have CentOS baking option. In this technical blog, we will be demonstrating how to bake a CentOS image and deploy an instance using the baked image on AWS cloud. Scope This procedure is performed under the following environment, – Spinnaker 17.4.0 (However the same can work on new versions of Spinnaker) – Cloud provider is…

Continue Reading

Migrating data store in Spinnaker from Redis to MySQL

Using MySQL for Orca and Clouddriver  Spinnaker uses Redis as the data store for all its microservices by default. In this blog, we are going to demonstrate how to configure MySQL as the datastore for Orca and Clouddriver microservices in an Openshift environment without any downtime. This is also applicable to any Kubernetes environment. We have been maintaining a number…

Continue Reading

How To Enable External Sources Authorization in Spinnaker

Before spinnaker 1.17.1, there were no restrictions in creating applications by users. It is important now to restrict creating applications for enterprises to enforce enterprise policies in onboarding applications. From 1.17.x, users can restrict application creation by setting the flag ‘fiat.restrictApplicationCreation’ to true. Permissions provided in the application will be ignored now and permissions provided in the external source are…

Continue Reading

Build a plan for DevOps and CD Success

Anyone who works in IT or software development will tell you, the pressure to deliver more, faster is as intense as ever. And this need for speed often comes at the expense of strategic planning.  This reminds us of the old quote, “You have to go slow in order to go fast.” which dates back to approximately 27 BC when…

Continue Reading

Dynamic External Account Configuration in Spinnaker

Introduction Can we keep the cloud provider account details in a remote repository? If so, what if an account change happens in that remote configuration while Spinnaker service is running? Will it take effect without service restart? What are the steps involved? What other use cases are possible with remote configuration? This blog provides answers to the above questions. In…

Continue Reading

Deploying Spinnaker to Kubernetes using Helm chart

Introduction The recommended way to deploy Spinnaker is in a Kubernetes environment. In this tutorial, we will show you how easy it is to setup a Spinnaker instance in Kubernetes using helm charts. You can have a Spinnaker up and running in less than 20 minutes. To be successful, the Kubernetes cluster needs to support: 18G of memory and 6…

Continue Reading

Spinnaker Authorization setup using GSuite

Purpose This document is a how-to-do guide to setup the authorization in Spinnaker applications and pipelines. Moreover, this is an extension of the Spinnaker SAML Authentication using GSuite SAML document to help in configuring the roles for authorization. We will discuss about passing GSuite roles to Spinnaker in two methods: Passing GSuite Custom attributes as implicite roles in Authentication, Passing GSuite…

Continue Reading

Managing Secrets in Spinnaker – Encryption using Symmetric Key

Spinnaker provides a way to encrypt secrets used by some of its services like clouddriver and igor (till this blog is published, only clouddriver, igor and echo services support this feature) through the Spring Config Server implementation. This document guides through the process of configuring encrypted secrets in Git repository and using them in two of the Spinnaker services –…

Continue Reading