Upgrade to Pro — share decks privately, control downloads, hide ads and more …

GitOps Best Practices

Avatar for awedis awedis
July 22, 2023
Technology
100
0

GitOps Best Practices

Avatar for awedis

awedis

July 22, 2023

More Decks by awedis

See All by awedis
"The Road to AWS Cloud Practitioner Certification"
Avatar for awedis awedis
0
58
“Automate Everything: Streamline AWS Operations”
Avatar for awedis awedis
0
23
Journey to AWS Serverless
Avatar for awedis awedis
0
99
Intro to AWS
Avatar for awedis awedis
0
200
Introduction to AWS & Services
Avatar for awedis awedis
0
82
AWS re:Invent re:Cap (Builde Experience & Serverless)
Avatar for awedis awedis
0
52
Intro to AWS
Avatar for awedis awedis
0
77
Use Step Functions to Simplify Complex Architectures
Avatar for awedis awedis
0
83
Amplify with Demo (Cognito & S3)
Avatar for awedis awedis
0
160

Other Decks in Technology

See All in Technology
2026TECHFRESH畢業分享會 - Lightning Talk - 資料也要 CI/CD? 用 Airbyte 自動化資料同步
Avatar for LINE Developers Taiwan line_developers_tw
PRO
0
1k
LLMにもCAP定理があるという話
Avatar for Haruka Sakihara harukasakihara
0
370
データサイエンスを価値につなげるプロジェクト設計 〜 DS一年目が現場で得た気づき 〜
Avatar for Yusei Doi ysd113
1
240
連合学習と機密コンピューティング
Avatar for LINEヤフーTech (LY Corporation Tech) lycorptech_jp
PRO
0
120
手塩にかけりゃいいってもんじゃない
Avatar for ming ming_ayami
0
580
Oracle AI Database@AWS:サービス概要のご紹介
Avatar for oracle4engineer oracle4engineer
PRO
4
2.9k
新しいVibe Codingと”自走”について
Avatar for watany watany
6
330
AmazonRoute 53ではじめてのドメイン取得!HTTPS化までの道のりを整理してみた
Avatar for usanchuu usanchuu
3
140
ACE-Step-1.5で見る 音楽生成AIのしくみと“破綻だけ直す”Retake機能の開発【zennfes spring 2026 登壇資料】
Avatar for asap personabb
1
470
SONiCの統計情報を取得したい
Avatar for SONiC Users Group Japan sonic
0
170
RSA暗号を手計算したくなること、ありますよね?? (20260615_orestudy6_rsa)
Avatar for Koki Senda thousanda
0
430
【2026年版】 ベクトル検索䛸 Embedding最前線
Avatar for Tomoko Uchida mocobeta
0
130

Featured

See All Featured
Save Time (by Creating Custom Rails Generators)
Avatar for Garrett Dimon garrettdimon
PRO
32
3.4k
Building Flexible Design Systems
Avatar for Yesenia Perez-Cruz yeseniaperezcruz
330
40k
The Myth of the Modular Monolith - Day 2 Keynote - Rails World 2024
Avatar for Eileen M. Uchitelle eileencodes
28
3.5k
実際に使うSQLの書き方 徹底解説 / pgcon21j-tutorial
Avatar for soudai sone soudai
PRO
201
75k
Agile Actions for Facilitating Distributed Teams - ADO2019
Avatar for Mark Kilby mkilby
0
210
Google's AI Overviews - The New Search
Avatar for Barry Adams badams
0
1k
WENDY [Excerpt]
Avatar for Tessa Abrams tessaabrams
11
38k
No one is an island. Learnings from fostering a developers community.
Avatar for Antonio thoeni
21
3.7k
Noah Learner - AI + Me: how we built a GSC Bulk Export data pipeline
Avatar for Tech SEO Connect techseoconnect
PRO
0
200
My Coaching Mixtape
Avatar for mlcsv mlcsv
0
150
Public Speaking Without Barfing On Your Shoes - THAT 2023
Avatar for David Neal reverentgeek
1
420
Hiding What from Whom? A Critical Review of the History of Programming languages for Music
Avatar for Tomoya Matsuura tomoyanonymous
2
850

Transcript

  1. “GitOps Best Practices” Awedis Keofteian DevOps Engineer at Anghami AWS

    UG Leader /awedis

  2. Agenda Using IaC in the wrong way Infrastructure as Code

    - IaC What is GitOps How does GitOps work CD Pipeline: Push vs. Pull Model Increasing Security

  3. Oscar’s Story Heard about GitOps Did I Misunderstood the core

    concepts? Hmm this coffee tastes really good

  4. Using IaC the wrong way Directly modifying the live environment

    Lack of version control No testing or validation Lack of reviews and approvals Directly commits to the master branch Making changes directly to the live production environment Oscar skips the review process and directly applies changes to the production Doesn't perform proper testing or validation of changes before applying

  5. Infrastructure as Code Instead of creating it manually Can be

    easily reproduced Infrastructure as Code Network as Code Policy as Code Configuration as Code Security as Code

  6. What is GitOps? Treat Infrastructure Code the same as Application

    Code Separate Git Repository for Infrastructure Full CI/CD pipeline for it Automated Process More Transparency Quality IaC Easy Rollback Better Security

  7. How does GitOps work? IaC hosted on Git Repository (Version

    Controlled & Collaborated) GitOps Flow Run CI Pipeline Run Automated Tests Create Pull/Merge Request Approve Changes Run CD Pipeline & Deploy

  8. CD Pipeline: Push vs Pull Model Push Deployment Pull Deployment

    CI/CD (like Jenkins etc..) Push to Deployment Environment Agent installed in the environment, e.g. in K8s cluster Applies the needed changes to get to desired state Monitors and compares desired state with actual state

  9. CD Pipeline: Push vs Pull Model Push Git Pull Deploy

  10. Increase Security Not everyone has access to the infrastructure (or

    K8s Cluster) Anyone can propose changes in the git repository Smaller group can approve the changes (DevOps, SRE etc..) Less Permission to Manage More Secure Environment

  11. Thank you, Questions time Awedis Keofteian DevOps Engineer at Anghami

    AWS UG Leader /awedis