Ales Nosek - The Software Practitioner

Practicing to make software perfect.

Speaking at Red Hat Summit 2020, Part II

This year’s Red Hat Summit is not over yet! There is a second batch of sessions that will be released on Wednesday, July 15. I will have a joint presentation with Andrew Baumann, titled: Security and access control for microservices. We will be discussing OAuth 2.0, the Keycloak project, and Open Policy Agent.

More information about the session can be found in the session catalog.

Local Development with OpenShift and Tilt

In this blog post, I am going to show you how to use Tilt to facilitate local OpenShift development. Tilt’s capabilities will be demonstrated in a practical example that uses buildah and CodeReady Containers. If you develop containerized applications on OpenShift, this blog post is for you.

Speaking at Red Hat Summit 2020

This year’s Red Hat Summit is provided as a Virtual Experience on April 28-29, 2020. I will be presenting on the topic: Design considerations and patterns for event-driven microservices. The presentation will be available in three different time zones, and will cover patterns like transactional outbox, CQRS, and more:

  • EMEA: Wednesday, April 29, 1:00 p.m. CEST
  • NA & LATAM: Wednesday, April 29, 1:00 p.m. EDT
  • APAC: Wednesday, April 29, 4:00 p.m. SGT

More information about the session can be found in the session catalog.

OpenShift UPI Using Static IPs

Recently, I have been working on the openshift-auto-upi project, which automates UPI deployments of OpenShift. I was looking for a way to configure OpenShift nodes with static IP addresses. After several failed attempts, I found a working approach that can be easily automated. If you prefer using static IPs over the default DHCP provisioning, please read on as I share my approach with you.

The blog is published at openshift.com/blog.

Open Policy Agent, Part II — Developing Policies

In the previous part of the series, we explored Open Policy Agent and implemented an ACL-based access control for our application. In this entry, I am going to share with you some of the discoveries that I made while evaluating Open Policy Agent in regards to policy design and development.

Open Policy Agent, Part I — The Introduction

Recently I was looking for a way to implement access control for microservices. I needed a solution that would allow defining complex authorization rules that could be enforced across many services. After searching the web, I discovered a very promising Open Policy Agent project that seems to be the right tool for the job. In this series of three blog posts, I am going to introduce Open Policy Agent to you and highlight how it can help you.

Future-Proof Monolithic Applications with Modular Design

The Cloud Native Virtual Event, presented by Red Hat, is coming up on October 10th, 2019. As part of the Development track, I will be co-presenting on the topic: Future-proof monolithic applications with modular design. If you are interested in hearing Eric Murphy and myself discussing the development of highly-modular applications, you can register for the event here. As part of our presentation, we will be demonstrating a sample Quarkus + Vert.x application that can be deployed both as a monolith or as a set of microservices while using the same code and modular design.

Configuring Envoy to Auto-Discover Pods on Kubernetes

Pods on Kubernetes are ephemeral and can be created and destroyed at any time. In order for Envoy to load balance the traffic across pods, Envoy needs to be able to track the IP addresses of the pods over time. In this blog post, I am going to show you how to leverage Envoy’s Strict DNS discovery in combination with a headless service in Kubernetes to accomplish this.