The lost love for writing Terraform modules

The ability to write effectively and elegant Terraform modules has long been revered and rewarded. Though, I see too many modules that are not written in a way that is easy to understand, they contain a lot of complexity and try to be the “complete package”. I’m writing this post to share my thoughts on the art of writing elegant Terraform modules by using four key principals: Do one thing and do it right Balance repetition and complexity Use industry-standard tooling Don’t cover what you don’t know Far from your garden-variety style guide, this post covers the art of writing Terraform modules in a nutshell....

June 26, 2022 · 4 min

Going global with KMS and Secrets Manager

In this post I want to give you a brief introduction on how to deploy KMS keys and secrets in Secret Manager across multiple regions. We’ll do so by making use of replication to minimize waste and prevent repetition. Multi-region KMS key July last year AWS introduced multi-region KMS keys. A new capability that lets you replicate keys from one region into another. With multi-region keys, you can more easily move encrypted data between regions without having to decrypt and re-encrypt with different keys in each region....

January 23, 2022 · 4 min