https://platformengineering.org logo
#platform-design
Title
# platform-design
n

Neil Millard

06/09/2022, 9:08 AM
It is rare for devs to need to log into a cloud account. this is down the route of having a platform they can log into to perform the deploy, status functions. I support 100s of dev teams, and most interaction with the cloud is minimal, instead Jenkins tools and ELK abstract
j

Johannes Würbach

06/09/2022, 9:12 AM
Are you using a lot of high-level offerings? I've seen the same if you use primarily k8s or other tools as that is the interface for developers, but have seen that quickly change if you want to use lambda/sqs/etc. where usage essentially requires developers to interact with the cloud provider for monitoring etc.
n

Neil Millard

06/09/2022, 9:13 AM
The deployment pattern is developer kicks off jenkins build job, then deployment job, which in turn kicks off a lambda. The logs are available via ELK
j

Johannes Würbach

06/09/2022, 9:16 AM
Who is monitoring those lambdas (e.g. resource usage)? We found that the standard AWS Lambda Dashboard requires already a gazillion of permissions making it fairly tedious to manually maintain least privilege.
n

Neil Millard

06/09/2022, 9:18 AM
There is an API which triggers and monitors the lambda
j

Johannes Würbach

06/09/2022, 9:20 AM
Sorry I meant, CPU/Memory usage of the Lambda itself so developers can understand any performance issues etc.
n

Neil Millard

06/09/2022, 9:39 AM
the lambda just deploys the code. CPU and memory stats are exposed via ELK and Graphana
Everything runs on EC2, with an agent to get the stats
j

Johannes Würbach

06/09/2022, 9:43 AM
Ah sorry I assumed you are also using lambda for your code. So no high-level offerings, just EC2?
n

Neil Millard

06/09/2022, 9:43 AM
ECS on EC2
25 Views