(Steps taken from: https://www.baeldung.com/x-509-authentication-in-spring-security)
All passwords: changeit
openssl req -x509 -sha256 -days 3650 -newkey rsa:4096 -keyout rootCA.key -out rootCA.crt
us3r5pac3
us3r5pac3
/ cloud9 resize command with volume size 60 GB
Created
December 29, 2022 15:45
— forked from wongcyrus/cloud9 resize command with volume size 60 GB
Cloud9 Disk Resize
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| curl -s https://gist.github.com/wongcyrus/a4e726b961260395efa7811cab0b4516/raw/6a045f51acb2338bb2149024a28621db2abfcaab/resize.sh | bash /dev/stdin 60 |
us3r5pac3
/ ansible vault secrets
Last active
June 9, 2022 18:52
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| ansible-vault decrypt secrets_file.enc | |
| ansible-vault edit secrets_file.enc | |
| ansible-vault encrypt secrets_file.enc | |
| ansible-playbook -i inventory -e @secrets_file.enc --vault-password-file password_file main.yml |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| docker network create --driver bridge iso_net | |
| docker run -itd --net=iso_net -v $PWD:/code -w /code --name ansible1 ansible/awx:latest | |
| docker network inspect iso_net |
us3r5pac3
/ create_x509_certs.md
Created
November 10, 2021 20:37
— forked from dasniko/create_x509_certs.md
Creating self signed tls certificates with self-signed root CA
us3r5pac3
/ RDS MasterUser Secrets Snippet
Created
September 15, 2021 23:26
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| MasterUser: | |
| Type: "AWS::SecretsManager::Secret" | |
| Properties: | |
| Name: !Sub "${ServerName}-MasterUser" | |
| Description: !Sub "RDS master username and password" | |
| GenerateSecretString: | |
| SecretStringTemplate: | | |
| { | |
| "username": "postgres", | |
| "database": "postgres" |
us3r5pac3
/ pipeline.yaml
Created
September 13, 2021 20:26
— forked from mikebroberts/pipeline.yaml
Selectively triggering a GitHub sourced CodePipeline (only for one file)
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # CodePipeline by default runs an execution whenever any change is detected in the configured source repository | |
| # We can use a CodePipeline Webhook resource to filter such executions. | |
| # | |
| # This is a snippet that would be part of a CloudFormation template containing | |
| # a CodePipeline resource (AWS::CodePipeline::Pipeline), named CodePipeline in this case, and | |
| # assumes the GutHub OAuth token is available in the parameter GitHubOAuthToken. | |
| # Typically a CodePipeline Webhook only contains the $.ref filter to check for | |
| # the desired branch. | |
| # However we can add up to 4 more filters, each of which can query the incoming webhook payload from Github. | |
| # Such payloads are of the form: |
us3r5pac3
/ unattended file xfer
Created
August 4, 2021 21:58
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| run tmux session for each file transferring |
us3r5pac3
/ enable-multi-region-guardduty.sh
Created
July 29, 2021 21:11
Enable Amazon Inspector in multiple regions
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| for region in `aws ec2 describe-regions --region us-west-2 --output text | cut -f4` | |
| do | |
| echo "Enabling GuardDuty in region:'$region'..." | |
| aws guardduty create-detector --enable --region $region | |
| done |