When you read Terraform docs there's a page with lifecycle attributes that you can specify for the resources. Among the others there's prevent_destroy attribute whose behaviour is documented as:

prevent_destroy (bool) - This flag provides extra protection against the destruction of a given resource. When this is set to true, any plan that includes a destroy...

Read More

Recently I've been doing some research on the abilities to restore MySQL databases on AWS RDS. The customer requirement was to have 15 minutes RPO for databases. Can we meet the requirement with AWS RDS alone?

At the first moment I thought so, but then I considered whan happens when someone does "accidential deletion" of RDS instance. Yeah, I know...

Read More

As I work with multiple AWS accounts every day I need to switch between them very often. It's a key issue for me to always be sure on which account I work and execute AWS CLI command. So I wrote a quick bash function that I put in my .bashrc. The function is used in my PS1 prompt and shows current AWS CLI profile (from env variable...

Read More

If one uses more than one AWS account it's absolutely necessary to configure profiles for AWS CLI. The configuration is made of two files: .aws/credentials and .aws/config. The former contains access keys to AWS accounts - you should never add the file to the version control, the latter contains additional configuration and can be versioned.

Separate credentials for each account

The typical case is the one with separate credentials for...

Read More

I'd like to invite you to my first speech on AWS User Group in Kraków. The group has reborn after a long period of being inactive and I'm happy I can be a part of it. During my speech I'll tell you about "immutable infrastructure" approach, why it is worth to create virtual machine templates, how to do it in a quick and efficient way and...

Read More