Open madcharlie02 opened 12 months ago
epics:
Judson says CI/CD is outside of the scope of incubator and should be handled by GitHub Actions. Bonnie says the responsibility should land with Devops
-
-
-reviewed the apply to add users to the team AWS -reviewed how to create access keys for AWS platform in Terraform
-
https://github.com/hackforla/ops/issues/72 - Create a “user-management” IAM group
https://github.com/hackforla/ops/issues/60 - Establish IAM Policy
https://github.com/hackforla/devops-security/issues/24 - AWS IAM security improvements
https://github.com/hackforla/incubator/issues/35 - Investigate automating IAM user management with Terraform
https://github.com/hackforla/incubator/issues/79 - Create Adding and Managing IAM Permissions to Users with Wiki
From last week's ops meeting
Join HfLA and DevOps Fundamentals and Concepts Deploy a Terraform hello world project Get read access to infrastructure organization (see resources) Get assigned to project as their DevOps person Administration get access to do stuff to that projects' deployment Become a mentor across all projects DevOps people expert level Ability to do stuff to any project Permissions and Resources management IAM supervisor / Services Supervisor Dispenses new permissions and removes permissions for user Add new services in partnership with Owner Billing (owner)
Level 1 - Current ‘Ops-group’ minus write access is a good starting point Level 2 - most common services read and write + exclusion list.
Revised the Create Levels List to add new steps to 1. Fundamentals and Concepts Create Levels
name
is their name)@robinglov "The incubator will need to be dockerized."
There are two misconceptions here. I'm not 100% clear where they arise, so forgive me from covering all the bases, which for sure means I'll be saying things you already know.
First, Incubator is a) the AWS project where we host HfLA projects before they're ready for their own deployments, and b) this whole Git repo, where the Terraform code to manage that project lives. New HfLA volunteers won't be creating incubators, but adding projects to Incubator.
Second, it's won't be dockerized. "Dockerizing" is the process of taking an application that runs conventionally - e.g. a developer executes it locally, or sets it up to run directly on the host system, and creating a Dockerfile
for it in order to build and publish a Docker image. Incubator code doesn't run that way, so dockerizing it isn't sensible. I wouldn't expect the Incubator project to ever include a Dockerfile.
In general no one in the Ops CoP should be dockerizing anything as part of their Ops responsibilities. Each project's developers knows their application better than Ops could, and should be responsible for writing their Dockerfile and publishing the docker image. Ops will provide them with a repo name to publish to. That said, because that's the handoff between Dev and Ops (and having a clear handoff that's the same for every project is hugely valuable), Ops should understand that process, so it makes sense for there to be some training about how to create a Docker image - so that Ops engineers can help train Dev in doing it.
Does that all make sense? I know it's a lot to come out of one sentence, but I think it's important to all be aligned early in the project. Please feel free to @ me in Slack, or schedule some time to go over it.
Does that all make sense?
Thank you @nyarly . This will be immensely helpful to have us all aligned in future discussions.
@robinglov I created a Google Doc to store this stuff and track versions
### Level 1: Fundamentals and Concepts
- Learn Terraform
- Setup personal AWS (we need to find a tutorial for that)
- Do [HashiCorp Tutorials](https://developer.hashicorp.com/terraform/tutorials/aws-get-started?ajs_aid=7fca1289-6e29-4e26-8e02-a4e898dad031&product_intent=terraform)
- Get Access and Submit your first PRs
- Create a PR to Create user account
- Add your user to the read-only-group to get read access to infrastructure organization (see resources)
and the tasks to make it happen (as defined in prior meetings), and who will do the tasks
- Make or revise existing issues for the following
- Ops: Create an issue template for new members who are onboarding.
- Ops: Find a tutorial for setting up personal AWS sandbox
- Make it so that only Merge team members can Merge PRs on both the
- CB-ops: Devops-security
- BW-incubator: incubator repos
- CB-ops: Add examples of terraform file templates for new member to use to create the following prs (How will the instructions change on this [Incubator usage](https://github.com/hackforla/incubator/wiki/Incubator-usage) wiki page)
- Create a PR to Create user account
- Add your user to the read-only-group to get read access to infrastructure organization (see resources)
Notes for the project support section of the meeting
- Project Name: website-wiki
- Hack for LA has a Docker Hub account (https://hub.docker.com/u/hackforlaops).
- Will Ops CoP be managing that resource (i.e., should I make issues for it in the ops repo)?
- The current need for this project is to copy an image from a volunteer's Docker Hub to our Docker Hub. https://hub.docker.com/r/vraer/hfla-website-wiki
1. fork the repo to your own github
2. Clone the forked repository into local hackforla directory
https://github.com/[YOUR GITHUB NAME/incubator.git
cd incubator
git checkout -b [CREATE A BRANCH NAME]
[x] Create a recruitment issue to publicize the open roles we have #51
### Overview
We need to recruit some developers who can review pull requests using terraform on the incubator repo.
#### Details. In future we will be growing people on the team to do this, but in the meantime, we need someone to review the PRs that are coming in now.
### Action Items
- [ ] Copy the template on the Ops repo open roles board to a comment on this issue and add the following title
- [ ] Copy it again to another comment and give it the following title
- [ ] Edit the draft to customize it for what we need done
- [ ] Get signoff from whomever we think should weigh in on this
### Resources
- [Instructions for how to post a volunteer opportunity on the ops board](https://github.com/hackforla/UI-UX/projects/3#card-53874282)
- [Ops open role board](https://github.com/hackforla/ops/projects/1)
- [Link to the new card we create on the board]
- Currently there are no specific general team meetings, however there is a Team leads meeting on Tuesdays at 6:30pm pst, and tech leads attend on an as needed basis.
### Action Items
- [ ] Set up a folder called sample-project as a child folder of https://github.com/hackforla/incubator/tree/main/terraform-incubator
- [ ] Write template versions.tf and main.tf file templates
- [ ] Add tf templates to the sample-project folder
1. Create a folder called [NAME OF YOUR PROJECT] as a child folder of `/terraform-incubator`
1. Create copies of the files inside /terraform-incubator/sample-project to your new folder
1. Edit files to customize to your project details.
### Action items
- [ ] Review the below potential issues and see how https://www.runatlantis.io/guide/#getting-started fits into our CI/CD plan.
- Answer it can be used later once projects are moving out of incubator if we even need it.
Template to Use
This team member will be responsible for developing data pipelines to clean, transform, and process data. They will ensure data integration between systems, including deployment of machine-learning pipelines where necessary.
Draft for Current Open Role
This team member will develop data pipelines to clean, transform, and process data. They will ensure data integration between systems, including code deployment within Terraform, an Amazon Webservice platform, where necessary. They will design and implement effective database solutions and models to store and retrieve company data. Examine and identify database structural necessities by evaluating client operations, applications, and programming.
-
-
-
-
Overview
This issue tracks the agenda for our weekly meetings
Issue Template
Links to other agenda issues for your team
(so that you can easily post on their agendas items that come up at yours)
Previous Meetings (link to each comment with the date)