Database access via AWS SSO

Every Team/Products owns a RDS(Mysql/Postgres) instance. Infra Team will use superuser account to create new application users with permissions to the databases as required. These new user accounts are not bound to any individual, so it is shared within the team and all team members use the…

Read More

Simplifying tunnel to private network

How our current ssh config looks like below and it will have multiple line of local forward to tunnel the traffic. Host pg User admin HostName 18.139.62.211 Port 22 ForwardAgent yes LocalForward localhost:6767 xxx-db.ap-southeast-1.production.org:5432 LocalForward localhost:9898 yyyy-db.ap-southeast-1.production.org:443…

Read More

AWS SSO CLI

Topic Client machine Pre-Requisite Configure AWS CLIPrerequisite in the client machine (MacBook):Install/Update ¬†AWS CLI version 2Install session-manager-pluginInstall ec2 instance connect cliInstall AWS CLI v2 curl "https://awscli.amazonaws.com/AWSCLIV2.pkg" -o "AWSCLIV2.pkg" sudo installer -pkg AWSCLIV2.pkg -target /Successful installation should output like below Install session-manager-plugin…

Read More