Jenkins & Hashicorp Vault

Hashicorp Vault & Jenkins What is HasiCorp Vault? It is an open-source tool that helps teams and projects manage and protect sensitive data and secrets. We want to store and use secrets from vault as much as possible to: Limit secret sprawl To make it easier to rotate secrets from a central place To have finer granularity on which pipelines have access to which secrets Limit secret exposure; If Jenkins server is compromised, the secrets aren’t also compromised Store the Jenkins Secret backup separately from the main backup....

December 29, 2024 · 4 min · Leen

Securing Jenkins

I’ve setup a Jenkins server to manage CI/CD for my various projects, and I want to verify if my setup is overly insecure and what things I could do improve my setups security posture. This post will serve mainly as a guide and checklist for myself. Securing the Server I used the linode marketplace to setup my instance. Securing a server is a big topic, and for now, I just want to make sure the basics are covered:...

December 24, 2024 · 3 min · Leen

Backing Up Jenkins

Backing up Jenkins Now that I have a running Jenkins instance with a few pipelines setup, I would like to be able to easily recover my setup in case something happens to the main instance. Also, it’s good practice to regularly backup things like your configurations, Jenkins, and databases. But, what do you need to back up exactly? What to Backup It depends exactly on your specific use-case and needs. Do you need to restore the exact version of plugins you had installed?...

December 20, 2024 · 3 min · Leen

Automating my operations - aka DevOps

Automating my operations - aka DevOps As part of my day job, I regularly interact with systems such as jenkins, terraform, ansible/salt, etc.. without really understand the full power of these systems and what they enable. Time to change and dive in deeper and actually use them for my personal projects. So, what are common tasks that I need to automate: Creating / Destroying the necessary infrastructure, such as setting up VM’s with a sane default firewall with all the common dependencies pre-built into the image or installed as part of user-data....

December 14, 2024 · 3 min · Leen

Foray into Web Development: Pet Meal Planner

I’m using React and NextJS to build out the UI and the frontend server for a personal project. I haven’t done any serious web development since college, and that was mostly using straight HTML/CSS and Javascript. There’s a lot I need to learn in order to be an effective web developer using the above frameworks. It took me 3 hours to get a graph to center on a page and respect the bounds of its parent container....

August 31, 2024 · 3 min · Leen