Tweet
Tweet

Slide 1

Slide 1 text

3%4ͷύεϫʔυϩʔςʔγϣϯʹ͍ͭͯ ߟ͑ͯΈͨ࿩ PNPUFTBOEPSC

Slide 2

Slide 2 text

ࣗݾ঺հ w ໊લIPTIJOPUTVZPTIJ HJUIVC IPQQJFTUBS UXJUUFS w PNPUFTBOEPSCճ໨͙Β͍ͷ-5Ͱ͢ ໿೥ͿΓ w 8FCΞϓϦέʔγϣϯΤϯδχΞ w %9ؔ࿈ͷ4BB4اۀॴଐ

Slide 3

Slide 3 text

࿩͍ͨ͜͠ͱ w ࢓૊Έ w 3BJMTΞϓϦͰͲ͏΍Δ͔ w ΠϯϑϥपΓͷઃఆ ͕࣌ؒ͋Ε͹

Slide 4

Slide 4 text

ࠓճྫͱͯ͠ߟ͑Δ3BJMTΞϓϦपลͷߏ੒ w 'BSHBUF্Ͱ&$4λεΫ ͕ಈ͘ w QVNB XFC w TJEFLJR XPSLFS w όονॲཧ ύεϫʔυ͸3BJMTͷ$SFEFOUJBMػೳɺ"844FDSFU.BOBHFSɺ"8444.ύϥϝʔλ ετΞ౳Λ࢖͏͜ͱ͕ଟ͍ͱࢥ͍·͢ ϢʔβʔɾύεϫʔυͰೝূ ϢʔβʔɾύεϫʔυͰೝূ

Slide 5

Slide 5 text

΋͠ɺ͍·%#αʔόʔͷύεϫʔυΛม͑ͨ͘ͳͬͨΒʁ ʢΈͳ͞Μ΋ߟ͑ͯΈ͍ͯͩ͘͞ʣ w ͍͖ͳΓม͑ΒΕΔ͔ʁ w όονॲཧతͳ΋ͷͷ৔߹ w w ࠓ·͞ʹಈ͍͍ͯΔXFCαʔόʔ QVNB ΍XPSLFSαʔόʔ TJEFLJR w w

Slide 6

Slide 6 text

΋͠ɺ͍·%#αʔόʔͷύεϫʔυΛม͑ͨ͘ͳͬͨΒʁ ʢΈͳ͞Μ΋ߟ͑ͯΈ͍ͯͩ͘͞ʣ w ͍͖ͳΓม͑ΒΕΔ͔ʁ w όονॲཧతͳ΋ͷͷ৔߹ w Ͱ͖ͦ͏ w ࠓ·͞ʹಈ͍͍ͯΔXFCαʔόʔ QVNB ΍XPSLFSαʔόʔ TJEFLJR w w

Slide 7

Slide 7 text

΋͠ɺ͍·%#αʔόʔͷύεϫʔυΛม͑ͨ͘ͳͬͨΒʁ ʢΈͳ͞Μ΋ߟ͑ͯΈ͍ͯͩ͘͞ʣ w ͍͖ͳΓม͑ΒΕΔ͔ʁ w όονॲཧతͳ΋ͷͷ৔߹ w Ͱ͖ͦ͏ w ࠓ·͞ʹಈ͍͍ͯΔXFCαʔόʔ QVNB ΍XPSLFSαʔόʔ TJEFLJR w %#αʔόʔଆͰมߋͨ͠ॠؒʹΤϥʔଟൃͦ͠͏ w Τϥʔͳ͘ߦ͏ͷ͸೉ͦ͠͏ʁ🤔Ͳ͏͢Ε͹Α͍͔

Slide 8

Slide 8 text

💡ϢʔβʔΛͭ࡞Ε͹͍͍ͷͰ͸ʁ w ࠓ࢖͍ͬͯΔ%#ϢʔβʔΛϢʔβʔ"ͱ͢Δ w ͦΕΛίϐʔͯ͠શ͘ಉ͡ݖݶΛ࣋ͭϢʔβʔ#Λ࡞Δ w 3BJMTΞϓϦͰ࢖͏ϢʔβʔɾύεϫʔυΛϢʔβʔ#ͷ΋ͷʹ͢Δ ճ໨׬ w w w

Slide 9

Slide 9 text

💡ϢʔβʔΛͭ࡞ͬͯ౎౓ύεϫʔυΛ৽͍͠΋ͷʹ͢Ε͹ w ࠓ࢖͍ͬͯΔ%#ϢʔβʔΛϢʔβʔ"ͱ͢Δ w ͦΕΛίϐʔͯ͠શ͘ಉ͡ݖݶΛ࣋ͭϢʔβʔ#Λ࡞Δ w 3BJMTΞϓϦͰ࢖͏ϢʔβʔɾύεϫʔυΛϢʔβʔ#ͷ΋ͷʹ͢Δ ճ໨׬ w 3BJMTΞϓϦͰ࢖͏ϢʔβʔɾύεϫʔυΛϢʔβʔ"ͷ΋ͷʹ͢Δ ճ໨׬ w 3BJMTΞϓϦͰ࢖͏ϢʔβʔɾύεϫʔυΛϢʔβʔ#ͷ΋ͷʹ͢Δ ճ໨׬ w

Slide 10

Slide 10 text

"84ʹ͸ͳΜͰ΋͋Δ

Slide 11

Slide 11 text

"844FDSFUT.BOBHFS

Slide 12

Slide 12 text

"84ʹ͸ͳΜͰ΋͋Δ w ࢀߟ<ϩʔςʔγϣϯઓུ"844FDSFUT.BOBHFSͷ֓೦"844FDSFUT.BOBHFS> IUUQT EPDTBXTBNB[PODPNKB@KQTFDSFUTNBOBHFSMBUFTUVTFSHVJEFHFUUJOHTUBSUFEIUNMSPUBUJPOTUSBUFHZ

Slide 13

Slide 13 text

"84ʹ͸ͳΜͰ΋͋Δ w ࢀߟ<ϩʔςʔγϣϯઓུ"844FDSFUT.BOBHFSͷ֓೦"844FDSFUT.BOBHFS> IUUQT EPDTBXTBNB[PODPNKB@KQTFDSFUTNBOBHFSMBUFTUVTFSHVJEFHFUUJOHTUBSUFEIUNMSPUBUJPOTUSBUFHZ 1⃣ 2⃣ 3⃣ 4⃣

Slide 14

Slide 14 text

1⃣ 2⃣

Slide 15

Slide 15 text

2⃣ 3⃣

Slide 16

Slide 16 text

3⃣ 4⃣

Slide 17

Slide 17 text

࢓૊Έͷઆ໌

Slide 18

Slide 18 text

࢓૊Έͷઆ໌ ϩʔςʔγϣϯؔ਺ "84MBNCEB 3%4 ϩʔςʔγϣϯؔ਺Ͱ3%4ʹΞΫηεͯ͠42-࣮ߦͯ͠Ϣʔβʔ৘ใΛߋ৽͢Δ

Slide 19

Slide 19 text

"844FDSFUT.BOBHFSઃఆΠϝʔδ

Slide 20

Slide 20 text

"844FDSFUT.BOBHFSઃఆΠϝʔδ

Slide 21

Slide 21 text

"844FDSFUT.BOBHFSઃఆΠϝʔδ w ˠը໘ΛਐΊ͍ͯ͘ͱɺ-BNCEBؔ਺΍$MPVE'PSNBUJPOͷઃఆ͕࢝·Δ Β͍͠ w ެࣜࢀߟIUUQTEPDTBXTBNB[PODPNKB@KQTFDSFUTNBOBHFSMBUFTU VTFSHVJEFUVUPSJBMT@SPUBUJPOBMUFSOBUJOHIUNMUVUPSJBMT@SPUBUJPO BMUFSOBUJOH@TUFQSPUBUF w ࠓճ͸͜ͷը໘͸࢖ΘͣʹUFSSBGSPNͷBXT@DMPVEGSPNBUJPO@TUBDLΛ࢖͍·ͨ͠ w ҎԼͷϖʔδ΋େ͍ʹࢀߟʹ͠·ͨ͠ w <"844FDSFUT.BOBHFSͰ3%4ͷύεϫʔυϩʔςʔγϣϯͯ͠ΈΔJO @%FWFMPQFST*0> IUUQTEFWDMBTTNFUIPEKQBSUJDMFTTFDSFUTNBOBHFS QBTTXPSESPUBUJPO

Slide 22

Slide 22 text

࿩͍ͨ͜͠ͱ w ࢓૊Έ✅ w 3BJMTΞϓϦͰͲ͏΍Δ͔ˡ w ΠϯϑϥपΓͷઃఆ ͕࣌ؒ͋Ε͹

Slide 23

Slide 23 text

3BJMTΞϓϦͰͲ͏͢Δ͔ w ࠓ·Ͱʮύεϫʔυ୯ମʯΛTFDSFUͱͯ͠؅ཧ͍͕ͯͨ͠ɺࠓޙ͸ ʮ"844FDSFUT.BOBHFSγʔΫϨοτͷ+40/ߏ଄ʯͰ؅ཧ͞ΕΔΑ ͏ʹͳͬͨɻ w ͳͷͰɺͦΕʹରԠ͢Δ

Slide 24

Slide 24 text

"844FDSFUT.BOBHFSγʔΫϨοτͷ+40/ߏ଄ ͱ͸ w "VSPSB1PTUHSFTͷ৔߹ w ࢀߟ<"844FDSFUT.BOBHFSγʔΫϨοτͷ+40/ߏ଄"844FDSFUT.BOBHFS> IUUQTEPDTBXTBNB[PODPNKB@KQ TFDSFUTNBOBHFSMBUFTUVTFSHVJEFSFGFSFODF@TFDSFU@KTPO@TUSVDUVSFIUNMSFGFSFODF@TFDSFU@KTPO@TUSVDUVSF@SETQPTUHSFT

Slide 25

Slide 25 text

3BJMTଆରॲ࡞ઓ w લทͷ+40/ΛA3%4@%#@4&$3&5Aͱ͍͏؀ڥม਺Ͱड͚औΔ͜ͱʹ͠ ͨ w ͜ΕΛύʔεͯ͠૊Έཱͯ௚ͯ͠A%"5"#"4&@63-Aͷܗʹ͢Δ w 3BJMT͸ɺ؀ڥม਺A%"5"#"4&@63-A͕͋Ε͹͜ΕΛར༻͢Δ࢓૊Έ w AQPTUHSFTVTFSOBNF!QBTTXPSEQPSUECOBNF PQUJPOTAͷܗʹ ͢Δ

Slide 26

Slide 26 text

CFGPSF DPO fi HEBUBCBTFZNM BGUFS

Slide 27

Slide 27 text

CFGPSF ίϯςφఆٛͷKTPO KTPOOFU BGUFS

Slide 28

Slide 28 text

ύʔε CJOSFBE@SET@EC@TFDSFU

Slide 29

Slide 29 text

૊Έཱͯ௚͢ EPDLFSFOUSZQPJOUTI

Slide 30

Slide 30 text

ಈ͔ͳ͔ͬͨ࿩ ͭ·͖ͮϙΠϯτ

Slide 31

Slide 31 text

͍ΖΜͳ౎߹Ͱ ύεϫʔυʹ͸࢖͑ͳ͍จࣈ͕͋Δ w ϥϯμϜʹ࡞ͬͨύεϫʔυΛಡ΋͏ͱ͢ΔͱSBJMTىಈ࣌ʹΤϥʔ w ௐ΂Δͱύεϫʔυʹʮʨ ʯ͕ೖͬͯΔͱΤϥʔ w ϥϯμϜʹ࡞ͬͨύεϫʔυΛಡ΋͏ͱ͢ΔͱSJEHFQPMF࣮ߦ࣌ʹΤϥʔ w ௐ΂Δͱύεϫʔυʹʮʴ ʯ͕ೖͬͯΔͱΤϥʔ

Slide 32

Slide 32 text

͍ΖΜͳ౎߹Ͱ ύεϫʔυʹ͸࢖͑ͳ͍จࣈ͕͋Δ TFFBMTP<3BJMTͷ%"5"#"4&@63-ͰࢦఆͰ͖ Δύεϫʔυͷจࣈछ> IUUQT TJOTPLVIBUFOBCMPHDPNFOUSZ

Slide 33

Slide 33 text

͜ͷํ๏Ͱͷϩʔςʔγϣϯͷ஫ҙ w ϩʔςʔγϣϯͷִؒΑΓ΋୹͍εύϯͰ&$4λεΫ͕ೖΕସΘΔඞཁ͕ ͋Δ w ྫճ໨ͷϩʔςʔγϣϯͷͱ͖ʹ͸ɺճ໨ͷϩʔςʔγϣϯΑΓલ ͔Βಈ͍͍ͯΔ&$4λεΫ͕͋Δ৔߹͸ͦͷ&$4λεΫΛઌʹTUPQ͢ Δඞཁ͕͋Δ

Slide 34

Slide 34 text

͜ͷํ๏Ͱͷϩʔςʔγϣϯͷ஫ҙ ճ໨ͷϩʔςʔγϣϯͷ͋ͱ͸ɺ1⃣ͷͱ͖ ʹಈ͍͍ͯͨίϯςφ͕·ͩ࢒͍ͬͯΔ৔߹ ͸઀ଓΤϥʔʹͳͬͯ͠·͏ w ࠶ܝ 1⃣ 2⃣ 3⃣

Slide 35

Slide 35 text

࿩͍ͨ͜͠ͱ w ࢓૊Έ✅ w 3BJMTΞϓϦͰͲ͏΍Δ͔✅ w ΠϯϑϥपΓͷઃఆ ͕࣌ؒ͋Ε͹ ˡ

Slide 36

Slide 36 text

$MPVE'PSNBUJPOͰઃఆ͞ΕΔ΋ͷ w -BNCEBؔ਺ w ͦͷ-BNCEBؔ਺ͷύʔϛογϣϯ w 4FDSFU.BOBHFS͔ΒͷΞΫηεʹݶఆ͞ΕΔ w *".ϩʔϧ

Slide 37

Slide 37 text

ͲΜͳ-BNCEBؔ਺͔ʁ w IUUQTHJUIVCDPNBXTTBNQMFTBXTTFDSFUTNBOBHFSSPUBUJPOMBNCEBTͱ͍͏Ϧϙ δτϦͰެ։͞Ε͍ͯΔ

Slide 38

Slide 38 text

ͲΜͳ-BNCEBؔ਺͔ʁ w MBNCEB@IBOEMFSͱ͍͏ϝΠϯؔ਺͔ΒҎԼͷؔ਺ΛݺͿ lambda_handlerؔ਺͸AWS Secrets Manager͔ΒͷϩʔςʔγϣϯΠϕϯτΛॲཧ͢ΔͨΊͷΤϯτϦ ϙΠϯτͱͳΓ·͢ɻ ͜ͷؔ਺͸࣍ͷ4ͭͷεςοϓΛ࣮ߦ͠·͢: •createSecret: ৽͍͠γʔΫϨοτΛ࡞੒͠·͢ɻ •setSecret: ৽͍͠γʔΫϨοτΛσʔλϕʔεʹద༻͠·͢ɻ •testSecret: ৽͍͠γʔΫϨοτ͕σʔλϕʔεʹਖ਼͘͠ద༻͞Εͨ͜ͱΛςετ͠·͢ɻ • fi nishSecret: ৽͍͠γʔΫϨοτΛAWSCURRENTͱͯ͠ϚʔΫ͠ɺݹ͍γʔΫϨοτΛ AWSPREVIOUSͱͯ͠ϚʔΫ͠·͢ɻ

Slide 39

Slide 39 text

ͦͷଞඞཁͳઃఆFUD w -BNCEBؔ਺͕࣮ࡍʹ3%4ʹΞΫηε͢ΔͨΊͷ४උ w ωοτϫʔΫपΓ w 71$΍ηΩϡϦςΟάϧʔϓͷઃఆ͕ඞཁ w 3%4ࣗମ w ͜ͷ-BNCEBؔ਺༻ͷ%#Ϣʔβʔ ٴͼύεϫʔυ ΋ࣄલʹඞཁ w ͦͷೝূ৘ใ΋ผ్4FDSFUT.BOBHFSʹೖΕ͓ͯ͘ඞཁ͋Γ w 1PTUHSFTͷ৔߹͸$3&"5&30-&ݖݶ͕ඞཁ

Slide 40

Slide 40 text

UFSSBGPSNઃఆྫ

Slide 41

Slide 41 text

࿩͍ͨ͜͠ͱ w ࢓૊Έ✅ w 3BJMTΞϓϦͰͲ͏΍Δ͔✅ w ΠϯϑϥपΓͷઃఆ ͕࣌ؒ͋Ε͹ ✅

Slide 42

Slide 42 text

͜͜·ͰͰ৮Εͳ͔ͬͨ࿩ w 3BJMTͷDPO fi HDSFEFOUJBMTZNMFOD 3"*-4@."45&3@,&: w 💭࢖͏ʹ͸͏·͘؂ࠪϩάऔΓ͍ͨ w 3%4ͷ*".ೝূ w 💭͜Ε͸΋͔ͨ͠͠Β΂ΜΓͦ͏ɾ3BJMTͰ͏·͘࢖͑ͨΒڭ͑ͯ΄ ͍͠ɾύϑΥʔϚϯε͸ͪΐͬͱؾ͕͔Γ

Slide 43

Slide 43 text

࠷ޙʹ w 3BJMTʹ͸σʔλϕʔεͷύεϫʔυʹ࢖͑ͳ͍จࣈ͕͋Δ͜ͱΛ஌ͬͨ ͷ͸ऩ֭Ͱͨ͠ w օ͞Μͷ΍Γํͱ͔ΞΠσΞ΍ϊ΢ϋ΢ͱ͔͋Ε͹ڭ͑ͯԼ͍͞