Birthday: 1987/12/28 Japanese Ex-ProGammer, CS1.6 Asian champion 2012
http://qiita.com/sion_cojp https://github.com/sioncojp https://sioncojp.hateblo.jp https://www.slideshare.net/shoheikoyama77/presentations https://speakerdeck.com/sioncojp
I have philosophy on the following.
- Work responsibly as a team instead of giving freedom
- Constructive and logical discussions
- Contribute to service growth and sales and get results.
- SRE but commit to ServerSide code if necessary
- Graduated Hiroshima Shudou High School
- Graduated Japan Electronics College: Computer Network department
2020/1/5 ~
- https://github.com/sioncojp/go-jamf-api
- https://github.com/sioncojp/terraform-provider-jamf
- https://registry.terraform.io/publish/provider/github/sioncojp/terraform-provider-jamf
- Sending each SaaS billing email to the slack and responding to it
- Also, as a criterion, it points to a slack pined for how much a pay-as-you-go or flat rate would be.
- Building a network of new offices
- Constructed in L3, L2 and AP (all meraki)
- All diagrams, operating procedures and information are managed on github.
- ref: https://tech.timee.co.jp/entry/2020/07/20/135854
- jamf proposal -> Introduction
- Introducing crowdstrike.
- There are many additional posts and I can not write much code. But the team is requesting the lead business
- Mainly cross-sectional business, catching up on DRE related parts and proactively putting it into proposals and teams
- Participate in constructive discussions to help teams progress
- Review of code written by members + operation (fix bugs and etc...)
- Install gcp to terraform
- GCP Project crete by terraform
- Architecture around IAM, service account
- Figure out existing code in a repository
- DL-> ETL-> DW-> DM, architecture proposal using BigQuery and team building, kicked off
https://sioncojp.hateblo.jp/entry/2020/10/13/195117
- Creating an aws account
- Create vpc
- Transfer route 53 operations to each account
- Creating RDS/ElastiCache
- added support for service, cron and runtask in ECS(Fargate)
- Creating a deploy mechanism (chatops via slack)
- ACM Creation
- Creating redash
- peering, etc.
- As for the front end, github actions can be used to deploy
- The part of the GCP that needed to be done with GCP was done with terraform.
- Built with s3 webhostring + cloudfront or went with vercel
- so this site https://timee.co.jp/jobs/
- https://sioncojp.hateblo.jp/entry/2020/04/06/153619
- 1on1 is weekly at first. Gradually shift to 2 per week
- Carry out 1on1 to work ways that are likely to get results and to expand the possibilities
- because there was no Docker environment
- Enabled to start with make command
$ make help
docker/dev/build docker build
docker/dev/run docker起動
docker/ecs/build docker build
docker/ecs/run docker起動
- to be continued
- aws
- datadog
- sentry
- Until now, manually set datadog, but now it with Terraform.
- Also added dashboard / alert settings
- As a result, it was possible to respond to a failure only when an alert was triggered
- As a task of rails on fargate, there was a problem that
rails c
could not be hit because the host or container could not be ssh. - Also, since RDS only allows access from the basic private subnet, the only option is to allow access from a private instance.
- Launch a cli tool for rails c in Golang, doing the following
- Saml authentication such as
saml2aws
is required. - Post a session on EC2 with session manager
- Decrypt the parameter store data and set it to environment variables
- Get commitHash value associated with prod / stg tag from ECR
- Set required arguments + launch docker with commitHash image
- Saml authentication such as
- before: Fargate-> cloudwatch-> firehose-> lambda-> datadog, s3
- after: fargate-> firehose-> datadog, s3
- so simple and cost-saving
- Enabled to deploy from slack
- slack-deploy is an in-house Golang tool
- https://twitter.com/i/status/1217724217350733824
- Jemalloc support to secure memory while preventing memory fragmentation due to memory leak
- Dockerfile modification
- Launch ecs-deploy in-house Golang tool
- ECS task definition generation and registration
- ECS service update
- Fargate, cron (cloudwatch + fargate), runtask can be executed
- Encrypted information is stored in SSM parameter store
- Launch Golang tool to manage parameter store
- Https: //github.com/sioncojp/pstore
- Verification because there was no knowledge whether it is able to apply to rails. and create tutorial
- AWS multi account Configuration (root, prod, stg, operation, sandbox ....)
- Compatible with GSuite SSO. And create IAN module
- RBAC Base
- Assume role with root account
- Each account has limited permissions
- Recreate from VPC
- terraform execute
make
command
2018/5 ~ 2020/1/4
- batch: fargate runtask
- cron: fargete + cloudwatch logging
- logging: firehose, datadog logs, s3
- Cron system architecture with Fargate + cloudwatch event
- Cron system logging design with Fargate + cloudwatch event
- logging: firehose, datadog logs, s3 / fluentd
- Consciously as containers scale flexibly.
- Implement container replacement detection + slack notification of service with Go
- Implement deploy tool with Go
- Manage a wealth of https://github.com/sioncojp/fargate-deploy/ in-house private
- Go + supervisor
- hugo(Fargate) + s3(audito/video files)
- s3 hosting + cloudfront + waf
- Since deploy tool was typescript, I threw PR around IAM authentication system.
Go/Python/TypeScript/Scala
terraform/aws/datadog/akamai/fluentd/jenkins
2017/7 ~ 2018/3
- Rewrite the impression measurement platform to PHP-> Go and Migrate to CentOS7
- Docker the batch processing used in the log collection infrastructure and migrate to on-pre-> ECS
Go/PHP/Perl/Ruby/Python
terraform/aws/on-premiss/keepalived/puppet ldap/cobbler/consul/apache/nginx/influxDB/grafana
2016/4 ~ 2017/2
-aws operation construction to support the traffic of pairs
Go/Ruby
terraform/aws/gcp ansible/mackerel/Docker/nginx/bigquery/MySQL
2012/7 ~ 2016/3
- Develop a mobile site API for career change site with Rails
- Infrastructure and network to support all of the company's media with Livesense
- Build and provide in-house development environment with openstack
Ruby/Rails
keepalived, nginx, openstack, cisco, vyos, drbd, ldap nfs, kvm, mackerel, nagios, munin, chef, ansible, packer, vagrant
2008/4 ~ 2012/6
- Rental server of data center, network construction operation
- Hardware kitting, testing
Cisco, Juniper, server, kitting, ioDrive, Linux