Adam Johnson

Home | Blog | Training | Projects | Colophon | Contact

Posts tagged ‘cloudformation’


CloudFront Updates Are No Longer Soul Destroying

Much less idle cloud gazing

I’ve mentioned CloudFront’s speed, or lack thereof, several times in my past posts.

Read more...

Converting my CloudFront Lambda@Edge Function from JavaScript to Python

A Cloud Front

I previously blogged about how I configured my CloudFront hosted website to score A+ on securityheaders.com. I worked around CloudFront’s lack of an “add headers” feature by adding a Lambda@Edge function in JavaScript.

Read more...

Scoring A+ for SSL Labs on My Cloudfront-Hosted Static Website

Another Security Castle!

I previously covered how I scored A+ for security headers on my site, which uses AWS CloudFront. I didn’t touch on scoring A+ for your TLS configuration though.

Read more...

Adding EC2 Instance Recovery Alarms with CloudFormation

Automatically Push the “Recover” Button

Instance Recovery is a little-advertised, little-used feature of EC2. It doesn’t take long to set up and promises to recover your instance on the rare occasion that the underlying hardware fails. Recovery resumes the instance on new hardware, retaining its instance ID, private IP addresses, Elastic IP addresses, and all instance metadata.

Read more...

A Minimum Viable CloudFormation Template

Watching the clouds form

Sometimes when testing CloudFormation features I need a minimum viable template to try that feature with.

Read more...

Validating CloudFormation Templates With cfn-lint

Watching the clouds form

I’ve been working with CloudFormation in some form for about five years now. Two years ago at Time Out, I helped write an in-house tool that performed some basic template linting. One year ago at Genus AI, I started using the AWS Labs tool cfn-lint to validate my templates before deployment. It’s really neat, covers a lot more than our in-house tool did, and has saved me from a number of mistakes.

Read more...

Running CloudFormation Drift Detection on All Your Stacks

Fighting drift in the cloud

CloudFormation’s stack drift detection feature is useful. It discovers ways your infrastructure that you beautifully set up with Infrastructure-as-Code has been fiddled with manually. Often this results from a “quick temporary fix” being applied manually on the web console at 2am, then forgotten about.

Read more...

Updating My AWS CodeBuild Project from Ubuntu 14.04 to 18.04

Builder's Forge Hammer

I received a cheery notification email (twice) from AWS that they’re deprecating Ubuntu 14.04 on CodeBuild:

Read more...

Scoring A+ for Security Headers on My Cloudfront-Hosted Static Website

Secure like this castle

On Saturday, I posted my guide on Scoring A+ for Security Headers in Django, following my talk at DjangoCon Europe. I thought it would be a good idea to step up and make my own site score A+, rather than a dismal F! My site isn’t built in Django, but as a Jekyll static site. It’s hosted on AWS S3 and CloudFront.

Read more...

Making the CloudFormation release history into RSS

Clouds forming

Update (2018-09-16): I've taken this down as AWS now provide a feed.

Read more...

All tags: