October 30, 2020

Updating custom certificates on Red Hat Satellite 6

Updating custom certificates on Red Hat Satellite 6 Overview Satellite 6 hides the certificates used as part of installation away somewhere special and does not like them to be updated. This is a huge pain when certificates expire, the process to update current certificates is to run a command to re-install certificates. Finding this information online took way longer than it should have and it made me mad, I wanted to add this post to help the next person struggling with an upgrade due to expired custom certificates with Red Hat Satellite 6.

August 17, 2020

Golang in Production

Golang has finally reached the big leagues at reecetech! We have released a rewritten REST API microservice - users-service - which is core to The Reece System. The Reece System is Reece’s internally built point of sale system, referred to as TRS for simplicity. This article will look at the motivations of the rewrite, the architecture and also the performance of the microservice. Motivation In the Delivery Engineering team there is a backlog of exciting new epics (aka projects), tech debt items and various impromptu items fighting for the team’s attention.

May 20, 2020

Extracting files from multi-stage Docker Builds using BuildKit

Extracting files from multi-stage Docker Builds - BuildKit What seems to be the problem here officer? reecetech use Docker multi-stage builds to run code compilation and test cases as a set of stages, copying the resulting application directory to a clean version of the runtime. This is a very neat model keeping a single Dockerfile to perform multiple tasks on the code. This also means tests have to pass before a runtime image is created.

May 12, 2020

Renovate Bot at reecetech

Renovate Bot at reecetech Renovate What is Renovate? Renovate is a software robot. It’s an open-source software program that is intended to keep your software dependencies up-to-date. It does this by: scanning your software repositories for files that specify dependencies; checking if any of the dependencies have updates available; and then raising pull requests to use updated dependencies if they are available. Software dependencies are the other items of software that your software requires to build, be tested, or to run.

May 1, 2020

How to hack the SAA-CO2: Solution architect associate exam in 2 months?

How to hack the SAA-CO2: Solution architect associate exam in 2 months? Table of Contents: Overview COVID-19 Online Exam Experience High level Tips Low level Tips Conclusion Overview Hi, my name is Kenny and I work for the fantastic ReeceConnect team. A bit of background of myself, I was a technical consultant (it’s like a really boring version of the solution architect role) in my previous job dealing with proprietary tech and I was itching to get back to software development again as that was my forte.

April 17, 2020

Hosting CentOS and Rocky Linux yum repositories in AWS S3

Hosting CentOS 7,8 and Rocky Linux yum repositories in AWS S3 Overview We are utilising compute instances in different cloud environments as well as traditional data centres. On-premise virtual machines usually run RHEL 7/8, CentOS 7/8 and Rocky Linux 8. Scope This post explains how to create and host your own yum repositories in an S3 bucket and how to maintain secure, consistent and reliable server builds. This method also allows for a controlled package version and patch level lifecycle across environments.

April 7, 2020

Renewing Kubernetes certificates

Renewing Kubernetes certificates Overview Kubernetes uses many different TLS certificates for various levels of internal and external cluster service communication such as kubelet, apiserver, scheduler to name a few. Usually these certificates are only valid for 12 months. These certificates are created (and signed by the K8s internal CA) during initial installation. However even though there are some options for automated renewals available, they are not always utilised and these certs can become out of date.

February 11, 2020

Creating a CUPS print server in Kubernetes

Kubernetes CUPS print server Why did Reece want to do this? Printing via CUPS is a very well trodden path. So much so that at Reece we are migrating away from VM’s running CUPS to Kubernetes pods. Adding, deleting and managing printers can be automated via git to allow a CUPS pod to support the thousands of print jobs we do at Reece every day. Removing the overhead of managing VM’s and moving to a more structured pipeline as code build and deploy model allows more people to offer ideas and support for printing at Reece.

February 7, 2020

Upgrading Kubernetes to 1.16 and decommissioned API versions

Upgrading Kubernetes to 1.16 and decommissioned API versions Overview Here at Reece we tend to upgrade our Kubernetes clusters quite frequently. Recently we started the upgrade journey to 1.16. Some upgrades are rather eventless and completed within in a few minutes (we run 5 master nodes per cluster), however this particular upgrade was different. Preparation The biggest change in 1.16 is that certain (and commonly used) API versions have been removed completely.

October 21, 2019

Deploying custom Chrome Extensions via Group Policy

Recently, reecetech (more accurately, a hackathon project gone wild) had a requirement to deploy an internally written Google Chrome Extension to our fleet of Windows clients. Unfortunately, the documentation for doing this is poor to say the least, and Google strongly discourage the publication of Chrome Extensions except via their store for security reasons. So, here goes – a guide to deploying an internal-only Chrome Extension to Windows Computers via Group Policy.