Blog

DevOps, tools, tips, and tech

Showing 11 posts tagged “terraform” · Clear filter

Filter:All #ai +101

Filter:All #ai #alerting #alpine +99

Filter:All #ai #alerting #alpine #analytics #announcements +97

Filter:All #ai #alerting #alpine #analytics #announcements #arch #architecture#argocd#automation

Website Hosting for Customer Workloads - AWS Amplify Done Properly diagram

Click to expand

1068 × 429px

4 March 2026·

#aws#nextjs#terraform#cicd#dns#iam

Website Hosting for Customer Workloads - AWS Amplify Done Properly

Part 11 of the AWS account structure series. How the customer-facing website is hosted on AWS Amplify with cross-account deployment roles, DNS integration, and an operational runbook.

DNS Management at Scale - Route 53 with Terraform diagram

Click to expand

992 × 483px

2 March 2026·

#aws#dns#terraform#opentofu#infrastructure

DNS Management at Scale - Route 53 with Terraform

Part 10 of the AWS account structure series. Managing Route 53 hosted zones and records with Terraform, email delegation patterns, and cross-account DNS access for certificate validation.

Organizational Guardrails with Service Control Policies diagram

Click to expand

708 × 433px

28 February 2026·

#aws#organizations#security#terraform

Organizational Guardrails with Service Control Policies

Part 9 of the AWS account structure series. Using Service Control Policies (SCPs) to set permission boundaries across your organization, with practical examples and common patterns.

IAM Identity Center - Why It Replaces IAM Users diagram

22 February 2026·

#aws#iam#security#terraform#opentofu

IAM Identity Center - Why It Replaces IAM Users

Part 6 of the AWS account structure series. Setting up AWS IAM Identity Center for human access, understanding the identity store, and why it's the recommended approach over IAM users.

Permission Sets - Designing Access Patterns diagram

Click to expand

426 × 417px

22 February 2026·

#aws#iam#security#terraform#opentofu

Permission Sets - Designing Access Patterns

Part 7 of the AWS account structure series. Creating permission sets in IAM Identity Center with managed policies, inline policies, and appropriate session durations.

Cross-Account Access Patterns - Deployment Roles and Role Chaining diagram

22 February 2026·

#aws#iam#security#terraform#opentofu#cicd

Cross-Account Access Patterns - Deployment Roles and Role Chaining

Part 8 of the AWS account structure series. Designing cross-account deployment roles, understanding role chaining, and implementing external ID protection.

Keyless CI/CD with GitHub Actions OIDC diagram

20 February 2026·

#aws#github-actions#security#cicd#terraform

Keyless CI/CD with GitHub Actions OIDC

Part 5 of the AWS account structure series. Eliminating long-lived AWS credentials by using GitHub Actions OIDC for secure, keyless authentication.

Solving the State Problem - Terraform Backend Bootstrap diagram

18 February 2026·

#aws#terraform#opentofu#infrastructure

Solving the State Problem - Terraform Backend Bootstrap

Part 4 of the AWS account structure series. The chicken-and-egg problem of Terraform state storage, and how to bootstrap an S3 backend with DynamoDB locking.

Security Foundations - CloudTrail, Config, and Password Policies diagram

Click to expand

620 × 487px

16 February 2026·

#aws#security#terraform#opentofu

Security Foundations - CloudTrail, Config, and Password Policies

Part 3: Setting up the security baseline with CloudTrail audit logging, AWS Config compliance monitoring, and password policies.

AWS Organizations - The Foundation of Multi-Account diagram

14 February 2026·

#aws#organizations#multi-account#terraform#opentofu

AWS Organizations - The Foundation of Multi-Account

Part 2 of the AWS account structure series. Setting up AWS Organizations, the bootstrap chicken-and-egg problem, and creating the account hierarchy.