DEV Community: Tingwei The latest articles on DEV Community by Tingwei (@tingwei628). https://dev.to/tingwei628 https://media2.dev.to/dynamic/image/width=90,height=90,fit=cover,gravity=auto,format=auto/https:%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Fuser%2Fprofile_image%2F151054%2F288db3d5-73a2-45bd-9b96-db473ebc13f6.jpg DEV Community: Tingwei https://dev.to/tingwei628 en yeeKV: A Lightweight Redis-like Key-Value Store in Go Tingwei Fri, 15 Aug 2025 15:59:09 +0000 https://dev.to/tingwei628/yeekv-a-lightweight-redis-like-key-value-store-in-go-hh1 https://dev.to/tingwei628/yeekv-a-lightweight-redis-like-key-value-store-in-go-hh1 <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fre2wmvpmdlw4yhlauwy6.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fre2wmvpmdlw4yhlauwy6.png" alt="yeeKV_logo" width="512" height="512"></a><a href="https://github.com/tingwei628/yeeKV" rel="noopener noreferrer">Check it out on GitHub</a></p> <p><strong>yeeKV</strong> is a lightweight Redis-inspired key-value store, perfect for learning and experimentation. It supports core Redis features like strings, lists, and streams, and ensures <strong>thread-safe operations</strong>, so multiple clients can safely interact with the store concurrently. While it already works well, there’s still plenty of room for more features.</p> <h3> Features </h3> <ul> <li> <strong>RESP Protocol</strong>: Works with Redis clients</li> <li> <strong>Multiple Data Structures</strong>: Strings, Lists, Streams</li> <li> <strong>Key Expiration</strong>: Millisecond precision (<code>PX</code>)</li> <li> <strong>Thread-Safe</strong>: Concurrent access is safe</li> </ul> <h3> Quick Start </h3> <p>Start the server:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>go build <span class="nt">-o</span> yeekv main.go ./yeekv </code></pre> </div> <p>Use the built-in CLI:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>go build <span class="nt">-o</span> yeekv-cli cli.go ./yeekv-cli </code></pre> </div> <p>Example session:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>yeeKV&gt; SET foo bar OK yeeKV&gt; GET foo bar yeeKV&gt; exit bye~ </code></pre> </div> <h3> Roadmap </h3> <ul> <li>More Redis commands (DEL, EXPIRE, INCR…)</li> <li>Optimized storage &amp; memory management</li> <li>Persistence (RDB / AOF)</li> <li>Cluster mode &amp; Pub/Sub support</li> </ul> go nosql redis sideprojects My OOP Implementation of Twitter in C# Tingwei Tue, 01 Apr 2025 06:22:37 +0000 https://dev.to/tingwei628/my-oop-implementation-of-twitter-in-c-1m9d https://dev.to/tingwei628/my-oop-implementation-of-twitter-in-c-1m9d <div class="ltag_gist-liquid-tag"> </div> csharp systemdesign oop twitter I made lots efforts to write this blog !! Tingwei Fri, 24 Jan 2025 16:59:18 +0000 https://dev.to/tingwei628/i-made-lots-efforts-to-write-this-blog--317d https://dev.to/tingwei628/i-made-lots-efforts-to-write-this-blog--317d <div class="ltag__link"> <a href="/tingwei628" class="ltag__link__link"> <div class="ltag__link__pic"> <img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Fuser%2Fprofile_image%2F151054%2F288db3d5-73a2-45bd-9b96-db473ebc13f6.jpg" alt="tingwei628"> </div> </a> <a href="https://dev.to/tingwei628/how-to-build-a-logging-pipeline-with-opentelemetry-grafana-loki-and-grafana-in-docker-compose-4kk" class="ltag__link__link"> <div class="ltag__link__content"> <h2>How to Build a Logging Pipeline with OpenTelemetry, Grafana Loki, and Grafana in Docker Compose</h2> <h3>Tingwei ・ Jan 24</h3> <div class="ltag__link__taglist"> <span class="ltag__link__tag">#devops</span> <span class="ltag__link__tag">#docker</span> <span class="ltag__link__tag">#dotnet</span> <span class="ltag__link__tag">#postgres</span> </div> </div> </a> </div> devops docker monitoring How to Build a Logging Pipeline with OpenTelemetry, Grafana Loki, and Grafana in Docker Compose Tingwei Fri, 24 Jan 2025 16:52:57 +0000 https://dev.to/tingwei628/how-to-build-a-logging-pipeline-with-opentelemetry-grafana-loki-and-grafana-in-docker-compose-4kk https://dev.to/tingwei628/how-to-build-a-logging-pipeline-with-opentelemetry-grafana-loki-and-grafana-in-docker-compose-4kk <h2> Intro </h2> <p>This application outputs logs to the OpenTelemetry service, which collects them. Then, it pushes the logs to the Grafana Loki service for aggregation and storage. Finally, Grafana is used to visualize and analyze the log data from Grafana Loki.</p> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fnnea3z8sdgmv9xs1979g.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fnnea3z8sdgmv9xs1979g.png" alt="system" width="800" height="227"></a></p> <h2> Configuration </h2> <p>Using the environment variables from <code>docker-compose-config.txt</code>, they are passed into <code>docker-compose.yaml</code>. Additionally, <code>loki-config.yaml</code> is used to configure Grafana Loki, and <code>otel-collector-config.yaml</code> is used to configure the OpenTelemetry collector. Logs are stored in MiniO, while Postgres is used to store Grafana's configuration.</p> <ul> <li>docker-compose.yaml </li> </ul> <div class="highlight js-code-highlight"> <pre class="highlight yaml"><code><span class="na">services</span><span class="pi">:</span> <span class="c1"># I use .NET 8 to develop the application</span> <span class="na">dotnet-app</span><span class="pi">:</span> <span class="na">build</span><span class="pi">:</span> <span class="na">context</span><span class="pi">:</span> <span class="s">.</span> <span class="na">dockerfile</span><span class="pi">:</span> <span class="s">Dockerfile</span> <span class="c1"># Remeber to add Dockerfile of the application</span> <span class="na">container_name</span><span class="pi">:</span> <span class="s">dotnet-app</span> <span class="na">environment</span><span class="pi">:</span> <span class="na">ASPNETCORE_URLS</span><span class="pi">:</span> <span class="s">http://+:5000</span> <span class="na">DOTNET_LOG_LEVEL</span><span class="pi">:</span> <span class="s">Information</span> <span class="na">ports</span><span class="pi">:</span> <span class="pi">-</span> <span class="s2">"</span><span class="s">${DOTNET_APP_PORT}:5000"</span> <span class="c1"># .NET App port</span> <span class="na">depends_on</span><span class="pi">:</span> <span class="pi">-</span> <span class="s">opentelemetry-collector-svc</span> <span class="c1"># Loki (Log storage)</span> <span class="na">loki-svc</span><span class="pi">:</span> <span class="na">image</span><span class="pi">:</span> <span class="s">grafana/loki:3.3.2</span> <span class="na">container_name</span><span class="pi">:</span> <span class="s">loki-svc</span> <span class="na">ports</span><span class="pi">:</span> <span class="pi">-</span> <span class="s2">"</span><span class="s">3100"</span> <span class="c1"># Loki API port</span> <span class="na">command</span><span class="pi">:</span> <span class="s">-config.expand-env=true -config.file=/etc/loki/local-config.yaml</span> <span class="na">environment</span><span class="pi">:</span> <span class="na">MINIO_USER</span><span class="pi">:</span> <span class="s">${MINIO_USER}</span> <span class="na">MINIO_PASSWORD</span><span class="pi">:</span> <span class="s">${MINIO_PASSWORD}</span> <span class="na">MINIO_PORT</span><span class="pi">:</span> <span class="s">${MINIO_PORT}</span> <span class="na">volumes</span><span class="pi">:</span> <span class="pi">-</span> <span class="s">./loki-config.yaml:/etc/loki/local-config.yaml</span> <span class="na">depends_on</span><span class="pi">:</span> <span class="pi">-</span> <span class="s">minio-svc</span> <span class="na">postgres-grafana-svc</span><span class="pi">:</span> <span class="na">image</span><span class="pi">:</span> <span class="s">postgres</span> <span class="na">container_name</span><span class="pi">:</span> <span class="s">postgres-grafana-svc</span> <span class="c1"># set shared memory limit when using docker-compose</span> <span class="na">shm_size</span><span class="pi">:</span> <span class="s">128mb</span> <span class="na">environment</span><span class="pi">:</span> <span class="na">POSTGRES_USER</span><span class="pi">:</span> <span class="s">${POSTGRES_USER}</span> <span class="na">POSTGRES_PASSWORD</span><span class="pi">:</span> <span class="s">${POSTGRES_PASSWORD}</span> <span class="na">POSTGRES_DB</span><span class="pi">:</span> <span class="s">${POSTGRES_GRAFANA_DB}</span> <span class="na">ports</span><span class="pi">:</span> <span class="pi">-</span> <span class="s2">"</span><span class="s">${POSTGRES_GRAFANA_PORT}:5432"</span> <span class="na">volumes</span><span class="pi">:</span> <span class="pi">-</span> <span class="s">postgres_grafana_data:/var/lib/postgresql/data</span> <span class="c1"># Grafana (Visualization)</span> <span class="na">grafana-svc</span><span class="pi">:</span> <span class="na">image</span><span class="pi">:</span> <span class="s">grafana/grafana</span> <span class="na">container_name</span><span class="pi">:</span> <span class="s">grafana-svc</span> <span class="na">ports</span><span class="pi">:</span> <span class="pi">-</span> <span class="s2">"</span><span class="s">${GRAFANA_PORT}:3000"</span> <span class="c1"># Grafana UI port</span> <span class="na">environment</span><span class="pi">:</span> <span class="na">GF_DATABASE_TYPE</span><span class="pi">:</span> <span class="s">postgres</span> <span class="na">GF_DATABASE_HOST</span><span class="pi">:</span> <span class="s">postgres-grafana-svc:5432</span> <span class="na">GF_DATABASE_NAME</span><span class="pi">:</span> <span class="s">${POSTGRES_GRAFANA_DB}</span> <span class="na">GF_DATABASE_USER</span><span class="pi">:</span> <span class="s">${GF_SECURITY_ADMIN_USER}</span> <span class="na">GF_DATABASE_PASSWORD</span><span class="pi">:</span> <span class="s">${GF_SECURITY_ADMIN_PASSWORD}</span> <span class="na">depends_on</span><span class="pi">:</span> <span class="pi">-</span> <span class="s">postgres-grafana-svc</span> <span class="pi">-</span> <span class="s">loki-svc</span> <span class="na">entrypoint</span><span class="pi">:</span> <span class="pi">-</span> <span class="s">sh</span> <span class="pi">-</span> <span class="s">-euc</span> <span class="pi">-</span> <span class="pi">|</span> <span class="s">mkdir -p /etc/grafana/provisioning/datasources</span> <span class="s">cat &lt;&lt;EOF &gt; /etc/grafana/provisioning/datasources/ds.yaml</span> <span class="s">apiVersion: 1</span> <span class="s">datasources:</span> <span class="s">- name: Loki</span> <span class="s">type: loki</span> <span class="s">access: proxy</span> <span class="s">orgId: 1</span> <span class="s">url: http://loki-svc:3100</span> <span class="s">basicAuth: false</span> <span class="s">isDefault: true</span> <span class="s">version: 1</span> <span class="s">editable: false</span> <span class="s">EOF</span> <span class="s">/run.sh</span> <span class="c1"># OpenTelemetry Collector</span> <span class="na">opentelemetry-collector-svc</span><span class="pi">:</span> <span class="na">image</span><span class="pi">:</span> <span class="s">ghcr.io/open-telemetry/opentelemetry-collector-releases/opentelemetry-collector-contrib:latest</span> <span class="na">container_name</span><span class="pi">:</span> <span class="s">opentelemetry-collector-svc</span> <span class="na">ports</span><span class="pi">:</span> <span class="pi">-</span> <span class="s2">"</span><span class="s">4318"</span> <span class="c1"># OTLP HTTP port</span> <span class="na">volumes</span><span class="pi">:</span> <span class="pi">-</span> <span class="s">./otel-collector-config.yaml:/etc/otel-collector-config.yaml</span> <span class="na">environment</span><span class="pi">:</span> <span class="na">OTEL_LOG_LEVEL</span><span class="pi">:</span> <span class="s">debug</span> <span class="na">command</span><span class="pi">:</span> <span class="pi">-</span> <span class="s2">"</span><span class="s">--config=/etc/otel-collector-config.yaml"</span> <span class="na">depends_on</span><span class="pi">:</span> <span class="pi">-</span> <span class="s">loki-svc</span> <span class="c1"># MiniO (Object Storage)</span> <span class="na">minio-svc</span><span class="pi">:</span> <span class="na">image</span><span class="pi">:</span> <span class="s">minio/minio</span> <span class="na">container_name</span><span class="pi">:</span> <span class="s">minio-svc</span> <span class="na">ports</span><span class="pi">:</span> <span class="pi">-</span> <span class="s2">"</span><span class="s">${MINIO_PORT}:9000"</span> <span class="c1"># MiniO API port</span> <span class="pi">-</span> <span class="s2">"</span><span class="s">${MINIO_CONSOLE_PORT}:9001"</span> <span class="c1"># MiniO Console port for web ui</span> <span class="na">environment</span><span class="pi">:</span> <span class="na">MINIO_ROOT_USER</span><span class="pi">:</span> <span class="s">${MINIO_USER}</span> <span class="na">MINIO_ROOT_PASSWORD</span><span class="pi">:</span> <span class="s">${MINIO_PASSWORD}</span> <span class="na">command</span><span class="pi">:</span> <span class="s">server /data --console-address ":9001"</span> <span class="c1"># 9001 container port</span> <span class="na">volumes</span><span class="pi">:</span> <span class="pi">-</span> <span class="s">minio_data:/data</span> <span class="na">volumes</span><span class="pi">:</span> <span class="na">minio_data</span><span class="pi">:</span> <span class="na">postgres_grafana_data</span><span class="pi">:</span> </code></pre> </div> <ul> <li>docker-compose-config.txt </li> </ul> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>POSTGRES_USER=admin POSTGRES_PASSWORD=admin POSTGRES_DB=app POSTGRES_PORT=15432 POSTGRES_GRAFANA_DB=grafana POSTGRES_GRAFANA_PORT=15433 DOTNET_APP_PORT=15000 GRAFANA_PORT=15300 GF_SECURITY_ADMIN_USER=admin GF_SECURITY_ADMIN_PASSWORD=admin MINIO_PORT=15900 MINIO_CONSOLE_PORT=15901 MINIO_USER=minioadmin MINIO_PASSWORD=minioadmin </code></pre> </div> <ul> <li>otel-collector-config.yaml </li> </ul> <div class="highlight js-code-highlight"> <pre class="highlight yaml"><code><span class="na">receivers</span><span class="pi">:</span> <span class="na">otlp</span><span class="pi">:</span> <span class="na">protocols</span><span class="pi">:</span> <span class="na">http</span><span class="pi">:</span> <span class="na">endpoint</span><span class="pi">:</span> <span class="s">0.0.0.0:4318</span> <span class="na">processors</span><span class="pi">:</span> <span class="na">batch</span><span class="pi">:</span> <span class="na">exporters</span><span class="pi">:</span> <span class="na">otlphttp/loki</span><span class="pi">:</span> <span class="na">endpoint</span><span class="pi">:</span> <span class="s">http://loki-svc:3100/otlp</span> <span class="na">tls</span><span class="pi">:</span> <span class="na">insecure</span><span class="pi">:</span> <span class="kc">true</span> <span class="na">debug</span><span class="pi">:</span> <span class="na">service</span><span class="pi">:</span> <span class="na">pipelines</span><span class="pi">:</span> <span class="na">logs</span><span class="pi">:</span> <span class="na">receivers</span><span class="pi">:</span> <span class="pi">[</span><span class="nv">otlp</span><span class="pi">]</span> <span class="na">processors</span><span class="pi">:</span> <span class="pi">[</span><span class="nv">batch</span><span class="pi">]</span> <span class="na">exporters</span><span class="pi">:</span> <span class="pi">[</span><span class="nv">otlphttp/loki</span><span class="pi">,</span> <span class="nv">debug</span><span class="pi">]</span> </code></pre> </div> <ul> <li>loki-config.yaml </li> </ul> <div class="highlight js-code-highlight"> <pre class="highlight yaml"><code><span class="na">auth_enabled</span><span class="pi">:</span> <span class="kc">false</span> <span class="na">server</span><span class="pi">:</span> <span class="na">http_listen_port</span><span class="pi">:</span> <span class="m">3100</span> <span class="na">http_server_write_timeout</span><span class="pi">:</span> <span class="s">310s</span> <span class="na">http_server_read_timeout</span><span class="pi">:</span> <span class="s">310s</span> <span class="na">common</span><span class="pi">:</span> <span class="na">path_prefix</span><span class="pi">:</span> <span class="s">/loki</span> <span class="na">storage</span><span class="pi">:</span> <span class="na">s3</span><span class="pi">:</span> <span class="na">endpoint</span><span class="pi">:</span> <span class="s">minio-svc:9000</span> <span class="na">bucketnames</span><span class="pi">:</span> <span class="s">loki-bucket</span> <span class="c1"># important !!</span> <span class="na">insecure</span><span class="pi">:</span> <span class="kc">true</span> <span class="na">access_key_id</span><span class="pi">:</span> <span class="s">${MINIO_USER}</span> <span class="na">secret_access_key</span><span class="pi">:</span> <span class="s">${MINIO_PASSWORD}</span> <span class="na">s3forcepathstyle</span><span class="pi">:</span> <span class="kc">true</span> <span class="c1"># important !!</span> <span class="na">replication_factor</span><span class="pi">:</span> <span class="m">1</span> <span class="c1"># important !!</span> <span class="na">ring</span><span class="pi">:</span> <span class="na">kvstore</span><span class="pi">:</span> <span class="na">store</span><span class="pi">:</span> <span class="s">inmemory</span> <span class="na">ingester</span><span class="pi">:</span> <span class="na">chunk_encoding</span><span class="pi">:</span> <span class="s">snappy</span> <span class="na">chunk_idle_period</span><span class="pi">:</span> <span class="s">2h</span> <span class="na">chunk_target_size</span><span class="pi">:</span> <span class="m">1536000</span> <span class="na">max_chunk_age</span><span class="pi">:</span> <span class="s">2h</span> <span class="na">querier</span><span class="pi">:</span> <span class="na">max_concurrent</span><span class="pi">:</span> <span class="m">8</span> <span class="na">schema_config</span><span class="pi">:</span> <span class="na">configs</span><span class="pi">:</span> <span class="pi">-</span> <span class="na">from</span><span class="pi">:</span> <span class="s2">"</span><span class="s">2024-04-01"</span> <span class="na">store</span><span class="pi">:</span> <span class="s">tsdb</span> <span class="na">object_store</span><span class="pi">:</span> <span class="s">s3</span> <span class="na">schema</span><span class="pi">:</span> <span class="s">v13</span> <span class="na">index</span><span class="pi">:</span> <span class="na">prefix</span><span class="pi">:</span> <span class="s">index_</span> <span class="na">period</span><span class="pi">:</span> <span class="s">24h</span> <span class="na">compactor</span><span class="pi">:</span> <span class="na">working_directory</span><span class="pi">:</span> <span class="s">/loki/compactor</span> <span class="na">limits_config</span><span class="pi">:</span> <span class="na">max_query_parallelism</span><span class="pi">:</span> <span class="m">24</span> <span class="na">split_queries_by_interval</span><span class="pi">:</span> <span class="s">15m</span> <span class="na">ingestion_rate_mb</span><span class="pi">:</span> <span class="m">20</span> <span class="na">ingestion_burst_size_mb</span><span class="pi">:</span> <span class="m">30</span> <span class="na">per_stream_rate_limit</span><span class="pi">:</span> <span class="s2">"</span><span class="s">3MB"</span> <span class="na">per_stream_rate_limit_burst</span><span class="pi">:</span> <span class="s2">"</span><span class="s">10MB"</span> <span class="na">query_timeout</span><span class="pi">:</span> <span class="s">300s</span> <span class="na">allow_structured_metadata</span><span class="pi">:</span> <span class="kc">true</span> <span class="na">ruler</span><span class="pi">:</span> <span class="na">storage</span><span class="pi">:</span> <span class="na">type</span><span class="pi">:</span> <span class="s">s3</span> <span class="na">s3</span><span class="pi">:</span> <span class="na">endpoint</span><span class="pi">:</span> <span class="s">minio-svc:9000</span> <span class="na">bucketnames</span><span class="pi">:</span> <span class="s">loki-rules</span> <span class="c1"># important !!</span> <span class="na">insecure</span><span class="pi">:</span> <span class="kc">true</span> <span class="na">access_key_id</span><span class="pi">:</span> <span class="s">${MINIO_USER}</span> <span class="na">secret_access_key</span><span class="pi">:</span> <span class="s">${MINIO_PASSWORD}</span> <span class="na">s3forcepathstyle</span><span class="pi">:</span> <span class="kc">true</span> <span class="c1"># important !!</span> </code></pre> </div> <h3> In the Application (I used .NET 8) </h3> <ul> <li>Install packages </li> </ul> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>OpenTelemetry OpenTelemetry.Exporter.OpenTelemetryProtocol OpenTelemetry.Extensions.Hosting </code></pre> </div> <ul> <li>Program.cs </li> </ul> <div class="highlight js-code-highlight"> <pre class="highlight csharp"><code><span class="n">builder</span><span class="p">.</span><span class="n">Logging</span><span class="p">.</span><span class="nf">ClearProviders</span><span class="p">().</span><span class="nf">AddConsole</span><span class="p">().</span><span class="nf">AddOpenTelemetry</span><span class="p">(</span><span class="n">options</span> <span class="p">=&gt;</span> <span class="p">{</span> <span class="n">options</span><span class="p">.</span><span class="n">IncludeScopes</span> <span class="p">=</span> <span class="k">true</span><span class="p">;</span> <span class="n">options</span><span class="p">.</span><span class="n">IncludeFormattedMessage</span> <span class="p">=</span> <span class="k">true</span><span class="p">;</span> <span class="n">options</span><span class="p">.</span><span class="nf">SetResourceBuilder</span><span class="p">(</span><span class="n">ResourceBuilder</span><span class="p">.</span><span class="nf">CreateDefault</span><span class="p">()</span> <span class="p">.</span><span class="nf">AddService</span><span class="p">(</span><span class="n">serviceName</span><span class="p">:</span> <span class="s">"dotnet-app"</span><span class="p">)</span> <span class="c1">// your service name</span> <span class="p">.</span><span class="nf">AddAttributes</span><span class="p">(</span><span class="k">new</span> <span class="n">Dictionary</span><span class="p">&lt;</span><span class="kt">string</span><span class="p">,</span> <span class="kt">object</span><span class="p">&gt;</span> <span class="p">{</span> <span class="c1">// add whatever you want</span> <span class="p">[</span><span class="s">"environment.name"</span><span class="p">]</span> <span class="p">=</span> <span class="s">"dev"</span><span class="p">,</span> <span class="p">}));</span> <span class="n">options</span><span class="p">.</span><span class="nf">AddOtlpExporter</span><span class="p">(</span><span class="n">otlpOptions</span> <span class="p">=&gt;</span> <span class="p">{</span> <span class="n">otlpOptions</span><span class="p">.</span><span class="n">Protocol</span> <span class="p">=</span> <span class="n">OpenTelemetry</span><span class="p">.</span><span class="n">Exporter</span><span class="p">.</span><span class="n">OtlpExportProtocol</span><span class="p">.</span><span class="n">HttpProtobuf</span><span class="p">;</span> <span class="n">otlpOptions</span><span class="p">.</span><span class="n">Endpoint</span> <span class="p">=</span> <span class="k">new</span> <span class="nf">Uri</span><span class="p">(</span><span class="s">"http://opentelemetry-collector-svc:4318/v1/logs"</span><span class="p">);</span> <span class="c1">// This URL is only for logs, not trace or metric</span> <span class="p">});</span> <span class="p">});</span> </code></pre> </div> <h2> Test </h2> <p>1.start all services, and add two buckets <code>loki-bucket</code> and <code>loki-rules</code> in MiniO<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code> docker-compose <span class="nt">--env-file</span> docker-compose-config.txt up <span class="nt">--build</span> <span class="nt">-d</span> </code></pre> </div> <p>2.create logs in app, then go to <a href="http://localhost:15300/connections/datasources" rel="noopener noreferrer">http://localhost:15300/connections/datasources</a></p> <p>3.click "Explore"<br> <a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F0rm0tgeca087bs70q1nd.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F0rm0tgeca087bs70q1nd.png" alt="Loki Data Source" width="800" height="276"></a></p> <p>4.input <code>service_name</code> = "dotnet-app", <code>Line Contains</code> = "I am Log" (your logs), and click "Run query" (blue button)<br> <a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fvwbsfavi4ehbj69fhy7g.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fvwbsfavi4ehbj69fhy7g.png" alt="Log" width="800" height="305"></a></p> <p>5.get the result !<br> <a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F57wbvxmghy1u8icnntt4.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F57wbvxmghy1u8icnntt4.png" alt="Log description" width="800" height="197"></a></p> <ul> <li>clean all services </li> </ul> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>docker-compose down <span class="nt">-v</span> </code></pre> </div> <h2> Note </h2> <p>In Loki service, it is ok to see like this.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>caller=ratestore.go:109 msg="error getting ingester clients" err="empty ring" </code></pre> </div> <h2> References </h2> <p><a href="https://github.com/open-telemetry/opentelemetry-collector-contrib/blob/main/exporter/lokiexporter/README.md#logs-collection-migration" rel="noopener noreferrer">Loki Exporter: Migration instructions</a></p> devops docker dotnet postgres [Boost] Tingwei Tue, 31 Dec 2024 21:16:44 +0000 https://dev.to/tingwei628/-3fgd https://dev.to/tingwei628/-3fgd <div class="ltag__link"> <a href="/tingwei628" class="ltag__link__link"> <div class="ltag__link__pic"> <img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Fuser%2Fprofile_image%2F151054%2F288db3d5-73a2-45bd-9b96-db473ebc13f6.jpg" alt="tingwei628"> </div> </a> <a href="https://dev.to/tingwei628/hands-on-guide-to-sealed-secrets-deploying-net-6-apps-securely-in-kind-5c25" class="ltag__link__link"> <div class="ltag__link__content"> <h2>Hands-on Guide to Sealed Secrets: Deploying .NET 6 Apps Securely in KIND</h2> <h3>Tingwei ・ Dec 31 '24</h3> <div class="ltag__link__taglist"> <span class="ltag__link__tag">#kubernetes</span> <span class="ltag__link__tag">#devops</span> <span class="ltag__link__tag">#dotnet</span> <span class="ltag__link__tag">#security</span> </div> </div> </a> </div> dotnet devops security tutorial Hands-on Guide to Sealed Secrets: Deploying .NET 6 Apps Securely in KIND Tingwei Tue, 31 Dec 2024 21:15:39 +0000 https://dev.to/tingwei628/hands-on-guide-to-sealed-secrets-deploying-net-6-apps-securely-in-kind-5c25 https://dev.to/tingwei628/hands-on-guide-to-sealed-secrets-deploying-net-6-apps-securely-in-kind-5c25 <p><a href="https://github.com/tingwei628/ms/tree/main/ms" rel="noopener noreferrer">Repository</a></p> <h2> Objective </h2> <p>This guide demonstrates encrypting Kubernetes secrets with Sealed Secrets, using a PostgreSQL connection string as an example, and setting up a local Traefik TLS secret with mkcert.</p> <h2> Prerequisites </h2> <ul> <li>KIND</li> <li><a href="https://github.com/kubernetes-sigs/cloud-provider-kind" rel="noopener noreferrer">cloud-provider-kind</a></li> <li><a href="https://github.com/bitnami-labs/sealed-secrets" rel="noopener noreferrer">Sealed Secrets</a></li> <li>kubectl</li> <li>Helm</li> <li>Traefik</li> <li><a href="https://github.com/FiloSottile/mkcert" rel="noopener noreferrer">mkcert</a></li> <li>.NET 6</li> </ul> <h2> Installing Sealed Secrets </h2> <ul> <li>Sealed Secrets controller (Cluster-Side Controller) </li> </ul> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># by Helm</span> helm repo add sealed-secrets <span class="se">\</span> https://bitnami-labs.github.io/sealed-secrets helm <span class="nb">install </span>sealed-secrets <span class="nt">-n</span> kube-system <span class="se">\</span> <span class="nt">--set-string</span> <span class="nv">fullnameOverride</span><span class="o">=</span>sealed-secrets-controller <span class="se">\</span> sealed-secrets/sealed-secrets </code></pre> </div> <ul> <li>kubeseal (client-side utility) </li> </ul> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>go <span class="nb">install</span> <span class="se">\</span> github.com/bitnami-labs/sealed-secrets/cmd/kubeseal@main </code></pre> </div> <h2> Creating the sealed secret with Sealed Secrets </h2> <ul> <li>Create the Kubernetes secret </li> </ul> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>kubectl create secret generic ms-dev-secret <span class="se">\</span> <span class="nt">--dry-run</span><span class="o">=</span>client <span class="nt">-o</span> yaml <span class="o">&gt;</span> appsettings-secret.Development.yaml <span class="se">\</span> <span class="nt">--from-literal</span><span class="o">=</span>pg-cluster<span class="o">=</span><span class="s1">'Host=your_host_ip;Port=5432;Database=your_database;Username=your_username;Password=your_password'</span> </code></pre> </div> <blockquote> <p>pg-cluster is the name of the key in the secret.<br> ms-dev-secret is the name of the secret.</p> </blockquote> <ul> <li>Create the sealed secret from the secret </li> </ul> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>kubeseal <span class="nt">--scope</span> cluster-wide <span class="se">\</span> &lt; appsettings-secret.Development.yaml <span class="nt">-o</span> yaml <span class="se">\</span> <span class="o">&gt;</span> appsettings-sealed-secret.Development.yaml </code></pre> </div> <blockquote> <p>appsettings-sealed-secret.Development.yaml is the sealed secret.<br> <a href="https://github.com/bitnami-labs/sealed-secrets?tab=readme-ov-file#scopes" rel="noopener noreferrer">--scope</a></p> <ul> <li>How to decrypt the sealed secret to the secret </li> </ul> </blockquote> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># First, find the sealed secret controller</span> <span class="c"># Running kubectl get secrets -A will show secrets starting with sealed-secrets-</span> <span class="c"># For example, sealed-secrets-abc </span> kubectl get secrets <span class="nt">-A</span> <span class="c"># Secondly, get the private key "sealed-secret-key.pem"</span> kubectl get secret <span class="nt">-n</span> kube-system sealed-secrets-abc <span class="se">\</span> <span class="nt">-o</span> <span class="nv">jsonpath</span><span class="o">=</span><span class="s1">'{.data.tls\.key}'</span> | <span class="nb">base64</span> <span class="nt">--decode</span> <span class="se">\</span> <span class="o">&gt;</span> sealed-secret-key.pem <span class="c"># Finally, decrypt the sealed secret "appsettings-sealed-secret.Development.yaml"</span> <span class="c"># to the secret "appsettings-secret.Development.yaml"</span> kubeseal <span class="nt">--recovery-unseal</span> <span class="se">\</span> <span class="nt">--recovery-private-key</span> sealed-secret-key.pem <span class="se">\</span> &lt; appsettings-sealed-secret.Development.yaml <span class="se">\</span> <span class="nt">-o</span> yaml <span class="o">&gt;</span> appsettings-secret.Development.yaml <span class="c"># memo: decode base64 string</span> <span class="nb">echo</span> <span class="o">[</span>base64_string] | <span class="nb">base64</span> <span class="nt">--decode</span> </code></pre> </div> <h2> Running cloud-provider-kind </h2> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># Run As administrator</span> cloud-provider-kind </code></pre> </div> <h2> Setting up mkcert </h2> <ul> <li>Install the cert/key </li> </ul> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># on Windows, I used choco</span> choco <span class="nb">install </span>mkcert mkcert <span class="nt">-install</span> mkcert localhost 127.0.0.1 </code></pre> </div> <blockquote> <p>localhost.pem is the mkcert cert<br> localhost-key.pem is the mkcert key</p> </blockquote> <h2> Creating the Kubernetes tls secret for Traefik </h2> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>kubectl create secret tls localhost-tls-secret <span class="se">\</span> <span class="nt">--cert</span><span class="o">=</span>localhost.pem <span class="se">\</span> <span class="nt">--key</span><span class="o">=</span>localhost-key.pem <span class="se">\</span> <span class="nt">--namespace</span><span class="o">=</span>default </code></pre> </div> <blockquote> <p>localhost-tls-secret is the tls secret for Traefik</p> <ul> <li>Remove mkcert cert/key </li> </ul> </blockquote> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>mkcert <span class="nt">-uninstall</span> <span class="nb">rm</span> <span class="nt">-rf</span> <span class="s2">"</span><span class="si">$(</span>mkcert <span class="nt">-CAROOT</span><span class="si">)</span><span class="s2">"</span> </code></pre> </div> <h2> Configuring Traefik with TLS </h2> <ul> <li>Deploy Traefik </li> </ul> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>helm <span class="nb">install</span> <span class="nt">-f</span> traefik-values-localhost.yaml <span class="se">\</span> traefik traefik/traefik </code></pre> </div> <ul> <li>Update localhost tls from external ip of Traefik </li> </ul> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>mkcert localhost 127.0.0.1 172.19.0.6 </code></pre> </div> <blockquote> <p>172.19.0.6 is the Traefik external ip given by cloud-provider-kind<br> remember to rename new key and new cert as "localhost.pem" and "localhost-key.pem"</p> </blockquote> <ul> <li>traefik-values-localhost.yaml </li> </ul> <div class="highlight js-code-highlight"> <pre class="highlight yaml"><code><span class="na">ports</span><span class="pi">:</span> <span class="na">web</span><span class="pi">:</span> <span class="na">redirectTo</span><span class="pi">:</span> <span class="na">port</span><span class="pi">:</span> <span class="s">websecure</span> <span class="na">tlsStore</span><span class="pi">:</span> <span class="na">default</span><span class="pi">:</span> <span class="na">defaultCertificate</span><span class="pi">:</span> <span class="na">secretName</span><span class="pi">:</span> <span class="s">localhost-tls-secret</span> </code></pre> </div> <h2> Deploying the .NET 6 App with Sealed Secrets </h2> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># deploy sealed secret first</span> kubectl apply <span class="nt">-f</span> appsettings-sealed-secret.Development.yaml <span class="c"># deploy the app</span> kubectl apply <span class="nt">-f</span> deploy.yaml </code></pre> </div> <ul> <li>appsettings-sealed-secret.Development.yaml </li> </ul> <div class="highlight js-code-highlight"> <pre class="highlight yaml"><code><span class="nn">---</span> <span class="na">apiVersion</span><span class="pi">:</span> <span class="s">bitnami.com/v1alpha1</span> <span class="na">kind</span><span class="pi">:</span> <span class="s">SealedSecret</span> <span class="na">metadata</span><span class="pi">:</span> <span class="na">annotations</span><span class="pi">:</span> <span class="na">sealedsecrets.bitnami.com/cluster-wide</span><span class="pi">:</span> <span class="s2">"</span><span class="s">true"</span> <span class="na">creationTimestamp</span><span class="pi">:</span> <span class="kc">null</span> <span class="na">name</span><span class="pi">:</span> <span class="s">ms-dev-secret</span> <span class="na">namespace</span><span class="pi">:</span> <span class="s">default</span> <span class="na">spec</span><span class="pi">:</span> <span class="na">encryptedData</span><span class="pi">:</span> <span class="na">pg-cluster</span><span class="pi">:</span> <span class="s">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</span> <span class="na">template</span><span class="pi">:</span> <span class="na">metadata</span><span class="pi">:</span> <span class="na">annotations</span><span class="pi">:</span> <span class="na">sealedsecrets.bitnami.com/cluster-wide</span><span class="pi">:</span> <span class="s2">"</span><span class="s">true"</span> <span class="na">creationTimestamp</span><span class="pi">:</span> <span class="kc">null</span> <span class="na">name</span><span class="pi">:</span> <span class="s">ms-dev-secret</span> <span class="na">namespace</span><span class="pi">:</span> <span class="s">default</span> </code></pre> </div> <ul> <li>deploy.yaml </li> </ul> <div class="highlight js-code-highlight"> <pre class="highlight yaml"><code><span class="na">apiVersion</span><span class="pi">:</span> <span class="s">apps/v1</span> <span class="na">kind</span><span class="pi">:</span> <span class="s">Deployment</span> <span class="na">metadata</span><span class="pi">:</span> <span class="na">name</span><span class="pi">:</span> <span class="s">ms</span> <span class="na">labels</span><span class="pi">:</span> <span class="na">app</span><span class="pi">:</span> <span class="s">ms</span> <span class="na">spec</span><span class="pi">:</span> <span class="na">replicas</span><span class="pi">:</span> <span class="m">1</span> <span class="na">selector</span><span class="pi">:</span> <span class="na">matchLabels</span><span class="pi">:</span> <span class="na">app</span><span class="pi">:</span> <span class="s">ms</span> <span class="na">template</span><span class="pi">:</span> <span class="na">metadata</span><span class="pi">:</span> <span class="na">labels</span><span class="pi">:</span> <span class="na">app</span><span class="pi">:</span> <span class="s">ms</span> <span class="na">spec</span><span class="pi">:</span> <span class="na">containers</span><span class="pi">:</span> <span class="pi">-</span> <span class="na">name</span><span class="pi">:</span> <span class="s">ms-app</span> <span class="na">image</span><span class="pi">:</span> <span class="s">ghcr.io/tingwei628/ms/ms:latest</span> <span class="na">ports</span><span class="pi">:</span> <span class="pi">-</span> <span class="na">containerPort</span><span class="pi">:</span> <span class="m">10001</span> <span class="na">env</span><span class="pi">:</span> <span class="pi">-</span> <span class="na">name</span><span class="pi">:</span> <span class="s">DOTNET_ENVIRONMENT</span> <span class="na">value</span><span class="pi">:</span> <span class="s">Development</span> <span class="pi">-</span> <span class="na">name</span><span class="pi">:</span> <span class="s">ConnectionStrings__PgCluster</span> <span class="na">valueFrom</span><span class="pi">:</span> <span class="na">secretKeyRef</span><span class="pi">:</span> <span class="na">name</span><span class="pi">:</span> <span class="s">ms-dev-secret</span> <span class="na">key</span><span class="pi">:</span> <span class="s">pg-cluster</span> <span class="pi">-</span> <span class="na">name</span><span class="pi">:</span> <span class="s">ASPNETCORE_URLS</span> <span class="na">value</span><span class="pi">:</span> <span class="s">http://+:10001</span> <span class="na">livenessProbe</span><span class="pi">:</span> <span class="na">httpGet</span><span class="pi">:</span> <span class="na">path</span><span class="pi">:</span> <span class="s">/health</span> <span class="na">port</span><span class="pi">:</span> <span class="m">10001</span> <span class="na">initialDelaySeconds</span><span class="pi">:</span> <span class="m">10</span> <span class="na">periodSeconds</span><span class="pi">:</span> <span class="m">5</span> <span class="na">readinessProbe</span><span class="pi">:</span> <span class="na">httpGet</span><span class="pi">:</span> <span class="na">path</span><span class="pi">:</span> <span class="s">/health</span> <span class="na">port</span><span class="pi">:</span> <span class="m">10001</span> <span class="na">initialDelaySeconds</span><span class="pi">:</span> <span class="m">5</span> <span class="na">periodSeconds</span><span class="pi">:</span> <span class="m">5</span> <span class="nn">---</span> <span class="na">apiVersion</span><span class="pi">:</span> <span class="s">v1</span> <span class="na">kind</span><span class="pi">:</span> <span class="s">Service</span> <span class="na">metadata</span><span class="pi">:</span> <span class="na">name</span><span class="pi">:</span> <span class="s">ms-service</span> <span class="na">labels</span><span class="pi">:</span> <span class="na">app</span><span class="pi">:</span> <span class="s">ms</span> <span class="na">spec</span><span class="pi">:</span> <span class="na">selector</span><span class="pi">:</span> <span class="na">app</span><span class="pi">:</span> <span class="s">ms</span> <span class="na">ports</span><span class="pi">:</span> <span class="pi">-</span> <span class="na">port</span><span class="pi">:</span> <span class="m">10001</span> <span class="na">targetPort</span><span class="pi">:</span> <span class="m">10001</span> <span class="nn">---</span> <span class="na">apiVersion</span><span class="pi">:</span> <span class="s">traefik.io/v1alpha1</span> <span class="na">kind</span><span class="pi">:</span> <span class="s">IngressRoute</span> <span class="na">metadata</span><span class="pi">:</span> <span class="na">name</span><span class="pi">:</span> <span class="s">ms-ingress</span> <span class="na">namespace</span><span class="pi">:</span> <span class="s">default</span> <span class="na">labels</span><span class="pi">:</span> <span class="na">app</span><span class="pi">:</span> <span class="s">ms</span> <span class="na">spec</span><span class="pi">:</span> <span class="na">entryPoints</span><span class="pi">:</span> <span class="pi">-</span> <span class="s">websecure</span> <span class="na">routes</span><span class="pi">:</span> <span class="pi">-</span> <span class="na">match</span><span class="pi">:</span> <span class="s">Host(`172.19.0.6`) &amp;&amp; PathPrefix(`/ms`)</span> <span class="na">kind</span><span class="pi">:</span> <span class="s">Rule</span> <span class="na">middlewares</span><span class="pi">:</span> <span class="pi">-</span> <span class="na">name</span><span class="pi">:</span> <span class="s">strip-ms-prefix</span> <span class="na">services</span><span class="pi">:</span> <span class="pi">-</span> <span class="na">name</span><span class="pi">:</span> <span class="s">ms-service</span> <span class="na">port</span><span class="pi">:</span> <span class="m">10001</span> <span class="nn">---</span> <span class="na">apiVersion</span><span class="pi">:</span> <span class="s">traefik.io/v1alpha1</span> <span class="na">kind</span><span class="pi">:</span> <span class="s">Middleware</span> <span class="na">metadata</span><span class="pi">:</span> <span class="na">name</span><span class="pi">:</span> <span class="s">strip-ms-prefix</span> <span class="na">labels</span><span class="pi">:</span> <span class="na">app</span><span class="pi">:</span> <span class="s">ms</span> <span class="na">spec</span><span class="pi">:</span> <span class="na">stripPrefix</span><span class="pi">:</span> <span class="na">prefixes</span><span class="pi">:</span> <span class="pi">-</span> <span class="s">/ms</span> </code></pre> </div> <blockquote> <p>port = 10001 (whatever you want)<br> ConnectionStrings__PgCluster is from the key "pg-cluster" in the secret "ms-dev-secret"</p> </blockquote> <h2> Testing </h2> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fkddgxb7cqw0uxf3sleru.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fkddgxb7cqw0uxf3sleru.png" alt="ms swagger" width="800" height="647"></a></p> <blockquote> <p>Done!</p> </blockquote> kubernetes devops dotnet security Setting Up CloudNativePG on KIND with pgAdmin Tingwei Thu, 12 Dec 2024 08:52:43 +0000 https://dev.to/tingwei628/setting-up-cloudnativepg-on-kind-with-pgadmin-1i14 https://dev.to/tingwei628/setting-up-cloudnativepg-on-kind-with-pgadmin-1i14 <h3> 1. Install Prerequisites </h3> <p>Install Helm, KIND, kubectl, and pgAdmin4.</p> <h3> 2. Create KIND Cluster </h3> <p>Run <code>kind create cluster --name myk8s --config cluster.yaml</code><br> </p> <div class="highlight js-code-highlight"> <pre class="highlight yaml"><code><span class="c1">### cluster.yaml</span> <span class="na">kind</span><span class="pi">:</span> <span class="s">Cluster</span> <span class="na">apiVersion</span><span class="pi">:</span> <span class="s">kind.x-k8s.io/v1alpha4</span> <span class="na">nodes</span><span class="pi">:</span> <span class="pi">-</span> <span class="na">role</span><span class="pi">:</span> <span class="s">control-plane</span> <span class="pi">-</span> <span class="na">role</span><span class="pi">:</span> <span class="s">worker</span> <span class="pi">-</span> <span class="na">role</span><span class="pi">:</span> <span class="s">worker</span> </code></pre> </div> <h3> 3. Deploy CloudNativePG Operator </h3> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>helm repo add cnpg https://cloudnative-pg.github.io/charts helm repo update helm <span class="nb">install </span>cnpg cnpg/cloudnative-pg <span class="nt">--namespace</span> cnpg-system <span class="nt">--create-namespace</span> </code></pre> </div> <h3> 4. Deploy PostgreSQL Cluster </h3> <p>Run <code>kubectl apply -f postgres.yaml</code><br> </p> <div class="highlight js-code-highlight"> <pre class="highlight yaml"><code><span class="c1">## postgres.yaml</span> <span class="na">apiVersion</span><span class="pi">:</span> <span class="s">postgresql.cnpg.io/v1</span> <span class="na">kind</span><span class="pi">:</span> <span class="s">Cluster</span> <span class="na">metadata</span><span class="pi">:</span> <span class="na">name</span><span class="pi">:</span> <span class="s">pg-cluster</span> <span class="na">labels</span><span class="pi">:</span> <span class="na">app</span><span class="pi">:</span> <span class="s">pg</span> <span class="na">spec</span><span class="pi">:</span> <span class="na">instances</span><span class="pi">:</span> <span class="m">3</span> <span class="na">storage</span><span class="pi">:</span> <span class="na">pvcTemplate</span><span class="pi">:</span> <span class="na">accessModes</span><span class="pi">:</span> <span class="pi">-</span> <span class="s">ReadWriteOnce</span> <span class="na">resources</span><span class="pi">:</span> <span class="na">requests</span><span class="pi">:</span> <span class="na">storage</span><span class="pi">:</span> <span class="s">1Gi</span> <span class="na">storageClassName</span><span class="pi">:</span> <span class="s">standard</span> <span class="na">volumeMode</span><span class="pi">:</span> <span class="s">Filesystem</span> <span class="na">postgresql</span><span class="pi">:</span> <span class="na">parameters</span><span class="pi">:</span> <span class="na">shared_buffers</span><span class="pi">:</span> <span class="s">256MB</span> <span class="nn">---</span> <span class="c1"># pgBouncer</span> <span class="na">apiVersion</span><span class="pi">:</span> <span class="s">postgresql.cnpg.io/v1</span> <span class="na">kind</span><span class="pi">:</span> <span class="s">Pooler</span> <span class="na">metadata</span><span class="pi">:</span> <span class="na">name</span><span class="pi">:</span> <span class="s">pg-pooler</span> <span class="na">labels</span><span class="pi">:</span> <span class="na">app</span><span class="pi">:</span> <span class="s">pg</span> <span class="na">spec</span><span class="pi">:</span> <span class="na">cluster</span><span class="pi">:</span> <span class="na">name</span><span class="pi">:</span> <span class="s">pg-cluster</span> <span class="na">instances</span><span class="pi">:</span> <span class="m">3</span> <span class="na">type</span><span class="pi">:</span> <span class="s">rw</span> <span class="na">serviceTemplate</span><span class="pi">:</span> <span class="na">metadata</span><span class="pi">:</span> <span class="na">labels</span><span class="pi">:</span> <span class="na">app</span><span class="pi">:</span> <span class="s">pg</span> <span class="na">spec</span><span class="pi">:</span> <span class="na">type</span><span class="pi">:</span> <span class="s">LoadBalancer</span> <span class="na">pgbouncer</span><span class="pi">:</span> <span class="na">poolMode</span><span class="pi">:</span> <span class="s">session</span> <span class="na">parameters</span><span class="pi">:</span> <span class="na">max_client_conn</span><span class="pi">:</span> <span class="s2">"</span><span class="s">1000"</span> <span class="na">default_pool_size</span><span class="pi">:</span> <span class="s2">"</span><span class="s">10"</span> </code></pre> </div> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fribwzqf02vzauk2h83cx.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fribwzqf02vzauk2h83cx.png" alt="arch" width="475" height="562"></a></p> <h3> 5. Install Kubernetes Cloud Provider for KIND </h3> <ul> <li><a href="https://github.com/kubernetes-sigs/cloud-provider-kind/tree/main?tab=readme-ov-file#install" rel="noopener noreferrer">Installation</a></li> <li>Control-plane nodes need to remove the label to access workloads via a <strong>LoadBalancer</strong> service. </li> </ul> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>kubectl label node myk8s-control-plane node.kubernetes.io/exclude-from-external-load-balancers- </code></pre> </div> <ul> <li> <strong>Run As administrator</strong> </li> </ul> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>cloud-provider-kind </code></pre> </div> <h3> 6. Connect to PostgreSQL with pgAdmin4 </h3> <p>Open pgAdmin4, create a new server with PostgreSQL connection details</p> <ul> <li>EXTERNAL-IP </li> </ul> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>kubectl get svc pg-pooler </code></pre> </div> <ul> <li>Password (<a href="https://www.gabrielebartolini.it/articles/2024/03/cloudnativepg-recipe-2-inspecting-default-resources-in-a-cloudnativepg-cluster/#understanding-the-app-user-secret" rel="noopener noreferrer">pg-cluster-app</a>) </li> </ul> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>kubectl get secret pg-cluster-app <span class="nt">-o</span> yaml <span class="c">## check data.password</span> <span class="nb">echo</span> &lt;password&gt; | <span class="nb">base64</span> <span class="nt">-d</span> </code></pre> </div> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>host=&lt;External IP&gt; port=5432 database=app user=app password=&lt;password&gt; </code></pre> </div> <h3> References </h3> <ul> <li><a href="https://cloudnative-pg.io/documentation/preview/" rel="noopener noreferrer">CloudNativePG Documentation</a></li> <li><a href="https://kind.sigs.k8s.io/docs/" rel="noopener noreferrer">KIND Documentation</a></li> <li><a href="https://www.pgadmin.org/" rel="noopener noreferrer">pgAdmin4 Official Site</a></li> <li><a href="https://www.gabrielebartolini.it/articles/2024/08/cnpg-recipe-12-exposing-postgres-outside-kubernetes-with-service-templates/" rel="noopener noreferrer">CNPG Recipe 12 - Exposing Postgres outside Kubernetes with Service Templates</a></li> <li><a href="https://github.com/kubernetes-sigs/cloud-provider-kind" rel="noopener noreferrer">cloud-provider-kind</a></li> </ul> kubernetes postgres database webdev I made an URL shortener Tingwei Fri, 06 Dec 2024 10:38:23 +0000 https://dev.to/tingwei628/i-made-a-url-shortener-8p7 https://dev.to/tingwei628/i-made-a-url-shortener-8p7 <p><a href="https://github.com/tingwei628/pgo/tree/main/urlshortener" rel="noopener noreferrer">Repository</a></p> <p><iframe width="710" height="399" src="https://www.youtube.com/embed/-3Q5x0zhics"> </iframe> </p> <h2> Features </h2> <ul> <li>sha256</li> <li>TTL</li> <li>Rate limiter</li> <li>SQLite3</li> </ul> <h2> Flow </h2> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F2knwlezpf13mp64972vi.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F2knwlezpf13mp64972vi.png" alt="Image description" width="460" height="326"></a></p> go programming coding challenge In this article, I walk through the process of setting up k0s on a VPS and configuring Traefik as a reverse proxy with HTTPS enabled using Cloudflare Origin CA Certificates Tingwei Tue, 03 Dec 2024 06:41:38 +0000 https://dev.to/tingwei628/in-this-article-i-walk-through-the-process-of-setting-up-k0s-on-a-vps-and-configuring-traefik-as-a-41k1 https://dev.to/tingwei628/in-this-article-i-walk-through-the-process-of-setting-up-k0s-on-a-vps-and-configuring-traefik-as-a-41k1 <div class="ltag__link"> <a href="/tingwei628" class="ltag__link__link"> <div class="ltag__link__pic"> <img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Fuser%2Fprofile_image%2F151054%2F288db3d5-73a2-45bd-9b96-db473ebc13f6.jpg" alt="tingwei628"> </div> </a> <a href="https://dev.to/tingwei628/deploying-traefik-proxy-with-cloudflare-origin-ca-certificate-on-k0s-4of8" class="ltag__link__link"> <div class="ltag__link__content"> <h2>Deploying Traefik Proxy with Cloudflare Origin CA Certificate on k0s</h2> <h3>Tingwei ・ Dec 3 '24</h3> <div class="ltag__link__taglist"> <span class="ltag__link__tag">#devops</span> <span class="ltag__link__tag">#kubernetes</span> <span class="ltag__link__tag">#webdev</span> <span class="ltag__link__tag">#cloud</span> </div> </div> </a> </div> Deploying Traefik Proxy with Cloudflare Origin CA Certificate on k0s Tingwei Tue, 03 Dec 2024 06:09:55 +0000 https://dev.to/tingwei628/deploying-traefik-proxy-with-cloudflare-origin-ca-certificate-on-k0s-4of8 https://dev.to/tingwei628/deploying-traefik-proxy-with-cloudflare-origin-ca-certificate-on-k0s-4of8 <h2> Objective: </h2> <p>To perform a minimal installation of k0s on a VPS, set up Traefik as a reverse proxy, and enable HTTPS.</p> <h2> Prerequisites: </h2> <ul> <li>A VPS (4GB RAM, 2 vCPUs)</li> <li>A domain</li> <li>k0s (v1.31.2+k0s.0)</li> <li>Helm (v3.16.3)</li> <li>MetalLB (v0.14.8)</li> <li>Traefik (v3.2.0)</li> <li>Traefik Helm Chart (v33.0.0)</li> </ul> <h2> Steps: </h2> <h3> 1. k0s Setup: </h3> <p>A single-node k0s installation is ideal for this minimal VPS setup to minimize resource usage. Below are the installation commands:</p> <ul> <li>Download k0s </li> </ul> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>curl <span class="nt">--proto</span> <span class="s1">'=https'</span> <span class="nt">--tlsv1</span>.2 <span class="nt">-sSf</span> https://get.k0s.sh | <span class="nb">sudo </span>sh </code></pre> </div> <ul> <li>Install a single node k0s </li> </ul> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># output k0s.yaml</span> <span class="nb">sudo </span>k0s config create <span class="o">&gt;</span> k0s.yaml </code></pre> </div> <ul> <li>Modify k0s.yaml to install MetalLB </li> </ul> <div class="highlight js-code-highlight"> <pre class="highlight yaml"><code> <span class="na">extensions</span><span class="pi">:</span> <span class="na">helm</span><span class="pi">:</span> <span class="na">concurrencyLevel</span><span class="pi">:</span> <span class="m">5</span> <span class="na">repositories</span><span class="pi">:</span> <span class="pi">-</span> <span class="na">name</span><span class="pi">:</span> <span class="s">metallb</span> <span class="na">url</span><span class="pi">:</span> <span class="s">https://metallb.github.io/metallb</span> <span class="na">charts</span><span class="pi">:</span> <span class="pi">-</span> <span class="na">name</span><span class="pi">:</span> <span class="s">metallb</span> <span class="na">chartname</span><span class="pi">:</span> <span class="s">metallb/metallb</span> <span class="na">version</span><span class="pi">:</span> <span class="s2">"</span><span class="s">0.14.8"</span> <span class="na">namespace</span><span class="pi">:</span> <span class="s">default</span> </code></pre> </div> <ul> <li>Start k0s </li> </ul> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="nb">sudo </span>k0s <span class="nb">install </span>controller <span class="nt">--single</span> <span class="nt">--force</span> <span class="nt">--config</span> k0s.yaml <span class="nb">sudo </span>k0s start </code></pre> </div> <ul> <li>Create ConfigMap for MetalLB</li> </ul> <p>Remember to add your vps public ip<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight yaml"><code><span class="nn">---</span> <span class="na">apiVersion</span><span class="pi">:</span> <span class="s">metallb.io/v1beta1</span> <span class="na">kind</span><span class="pi">:</span> <span class="s">IPAddressPool</span> <span class="na">metadata</span><span class="pi">:</span> <span class="na">name</span><span class="pi">:</span> <span class="s">metallb-ip-pool</span> <span class="na">namespace</span><span class="pi">:</span> <span class="s">default</span> <span class="na">spec</span><span class="pi">:</span> <span class="na">addresses</span><span class="pi">:</span> <span class="pi">-</span> <span class="pi">[</span><span class="nv">your_vps_public_ip</span><span class="pi">]</span><span class="s">/32</span> <span class="nn">---</span> <span class="na">apiVersion</span><span class="pi">:</span> <span class="s">metallb.io/v1beta1</span> <span class="na">kind</span><span class="pi">:</span> <span class="s">L2Advertisement</span> <span class="na">metadata</span><span class="pi">:</span> <span class="na">name</span><span class="pi">:</span> <span class="s">metallb-l2-advertisment</span> <span class="na">namespace</span><span class="pi">:</span> <span class="s">default</span> <span class="na">spec</span><span class="pi">:</span> <span class="na">ipAddressPools</span><span class="pi">:</span> <span class="pi">-</span> <span class="s">metallb-ip-pool</span> </code></pre> </div> <p>After adding metallb-l2-pool.yaml, then<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>kubectl delete validatingwebhookconfigurations.admissionregistration.k8s.io metallb-webhook-configuration kubectl apply <span class="nt">-f</span> metallb-l2-pool.yaml </code></pre> </div> <blockquote> <p><a href="https://github.com/metallb/metallb/issues/1597#issuecomment-1571473129" rel="noopener noreferrer">Why kubectl delete validatingwebhookconfigurations.admissionregistration.k8s.io metallb-webhook-configuration</a></p> </blockquote> <h3> 2. Enabling HTTPS and Redirect HTTP to HTTPS: </h3> <ul> <li><p>Generate a Cloudflare Origin CA certificate for secure HTTPS<br> <a href="https://chinafyhelp.zendesk.com/hc/en-us/articles/4408168628761-How-to-generate-your-Origin-certificate-on-Cloudflare" rel="noopener noreferrer">How to generate your Origin certificate on Cloudflare</a></p></li> <li> <p>Create TLS secret <code>your-tls-secret</code></p> <ul> <li>your_origin_ca.pem (Origin Certificate)</li> <li>your_origin_ca.key (Private Key) </li> </ul> </li> </ul> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>kubectl create secret tls your-tls-secret <span class="nt">--cert</span><span class="o">=</span>your_origin_ca.pem <span class="nt">--key</span><span class="o">=</span>your_origin_ca.key <span class="nt">--namespace</span><span class="o">=</span>default </code></pre> </div> <h3> 3. Installing Traefik: </h3> <p>Install Traefik using the Helm chart.</p> <ul> <li><p><a href="https://helm.sh/docs/intro/install/#from-apt-debianubuntu" rel="noopener noreferrer">Install Helm</a></p></li> <li> <p>Add your traefik_values.yaml</p> <ul> <li>my-tls-secret is generated from the previous step.</li> <li>redirectTo is used for redirecting HTTP to HTTPS.</li> <li>nodeAffinity is because we need to schedule traefik pod in the controller node. </li> </ul> </li> </ul> <div class="highlight js-code-highlight"> <pre class="highlight yaml"><code><span class="c1"># traefik_values.yaml</span> <span class="na">ports</span><span class="pi">:</span> <span class="na">web</span><span class="pi">:</span> <span class="na">redirectTo</span><span class="pi">:</span> <span class="na">port</span><span class="pi">:</span> <span class="s">websecure</span> <span class="na">tlsStore</span><span class="pi">:</span> <span class="na">default</span><span class="pi">:</span> <span class="na">defaultCertificate</span><span class="pi">:</span> <span class="na">secretName</span><span class="pi">:</span> <span class="s">my-tls-secret</span> <span class="na">affinity</span><span class="pi">:</span> <span class="na">nodeAffinity</span><span class="pi">:</span> <span class="na">requiredDuringSchedulingIgnoredDuringExecution</span><span class="pi">:</span> <span class="na">nodeSelectorTerms</span><span class="pi">:</span> <span class="pi">-</span> <span class="na">matchExpressions</span><span class="pi">:</span> <span class="pi">-</span> <span class="na">key</span><span class="pi">:</span> <span class="s">node-role.kubernetes.io/control-plane</span> <span class="na">operator</span><span class="pi">:</span> <span class="s">Exists</span> </code></pre> </div> <p>Then<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>helm repo add traefik https://traefik.github.io/charts helm <span class="nb">install</span> <span class="nt">-f</span> traefik_values.yaml traefik traefik/traefik </code></pre> </div> <h3> 4. Test Deployment: </h3> <p>Deploy a simple <strong>whoami</strong> application to test if the setup is successful.</p> <ul> <li> <p>Add your whoami.yaml</p> <ul> <li>port = 8001 (or whatever you want)</li> <li>WHOAMI_PORT_NUMBER is necessary </li> </ul> </li> </ul> <div class="highlight js-code-highlight"> <pre class="highlight yaml"><code><span class="na">apiVersion</span><span class="pi">:</span> <span class="s">apps/v1</span> <span class="na">kind</span><span class="pi">:</span> <span class="s">Deployment</span> <span class="na">metadata</span><span class="pi">:</span> <span class="na">name</span><span class="pi">:</span> <span class="s">whoami</span> <span class="na">namespace</span><span class="pi">:</span> <span class="s">default</span> <span class="na">labels</span><span class="pi">:</span> <span class="na">app</span><span class="pi">:</span> <span class="s">whoami</span> <span class="na">spec</span><span class="pi">:</span> <span class="na">replicas</span><span class="pi">:</span> <span class="m">1</span> <span class="na">selector</span><span class="pi">:</span> <span class="na">matchLabels</span><span class="pi">:</span> <span class="na">app</span><span class="pi">:</span> <span class="s">whoami</span> <span class="na">template</span><span class="pi">:</span> <span class="na">metadata</span><span class="pi">:</span> <span class="na">labels</span><span class="pi">:</span> <span class="na">app</span><span class="pi">:</span> <span class="s">whoami</span> <span class="na">spec</span><span class="pi">:</span> <span class="na">containers</span><span class="pi">:</span> <span class="pi">-</span> <span class="na">name</span><span class="pi">:</span> <span class="s">whoami</span> <span class="na">image</span><span class="pi">:</span> <span class="s">traefik/whoami</span> <span class="na">env</span><span class="pi">:</span> <span class="pi">-</span> <span class="na">name</span><span class="pi">:</span> <span class="s">WHOAMI_PORT_NUMBER</span> <span class="na">value</span><span class="pi">:</span> <span class="s2">"</span><span class="s">8001"</span> <span class="nn">---</span> <span class="na">apiVersion</span><span class="pi">:</span> <span class="s">v1</span> <span class="na">kind</span><span class="pi">:</span> <span class="s">Service</span> <span class="na">metadata</span><span class="pi">:</span> <span class="na">name</span><span class="pi">:</span> <span class="s">whoami-service</span> <span class="na">namespace</span><span class="pi">:</span> <span class="s">default</span> <span class="na">labels</span><span class="pi">:</span> <span class="na">app</span><span class="pi">:</span> <span class="s">whoami</span> <span class="na">spec</span><span class="pi">:</span> <span class="na">ports</span><span class="pi">:</span> <span class="pi">-</span> <span class="na">port</span><span class="pi">:</span> <span class="m">8001</span> <span class="na">targetPort</span><span class="pi">:</span> <span class="m">8001</span> <span class="na">selector</span><span class="pi">:</span> <span class="na">app</span><span class="pi">:</span> <span class="s">whoami</span> <span class="nn">---</span> <span class="na">apiVersion</span><span class="pi">:</span> <span class="s">traefik.io/v1alpha1</span> <span class="na">kind</span><span class="pi">:</span> <span class="s">IngressRoute</span> <span class="na">metadata</span><span class="pi">:</span> <span class="na">name</span><span class="pi">:</span> <span class="s">whoami-ingress</span> <span class="na">namespace</span><span class="pi">:</span> <span class="s">default</span> <span class="na">spec</span><span class="pi">:</span> <span class="na">entryPoints</span><span class="pi">:</span> <span class="pi">-</span> <span class="s">websecure</span> <span class="na">routes</span><span class="pi">:</span> <span class="pi">-</span> <span class="na">match</span><span class="pi">:</span> <span class="s">Host(`your_domain`) &amp;&amp; PathPrefix(`/whoami`)</span> <span class="na">kind</span><span class="pi">:</span> <span class="s">Rule</span> <span class="na">services</span><span class="pi">:</span> <span class="pi">-</span> <span class="na">name</span><span class="pi">:</span> <span class="s">whoami-service</span> <span class="na">port</span><span class="pi">:</span> <span class="m">8001</span> </code></pre> </div> <p>Then<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>kubectl apply <span class="nt">-f</span> whoami.yaml </code></pre> </div> <p>So, you would see the whoami app from the url <code>your_domain/whoami</code></p> <h2> References: </h2> <ul> <li><a href="https://docs.k0sproject.io/stable/" rel="noopener noreferrer">k0s</a></li> <li><a href="https://metallb.universe.tf/" rel="noopener noreferrer">MetalLB</a></li> <li><a href="https://doc.traefik.io/traefik/" rel="noopener noreferrer">Traefik</a></li> <li><a href="https://github.com/traefik/traefik-helm-chart/tree/master" rel="noopener noreferrer">Traefik Helm Chart</a></li> <li><a href="https://developers.cloudflare.com/ssl/origin-configuration/origin-ca/" rel="noopener noreferrer">Cloudflare Origin CA certificates</a></li> <li><a href="https://github.com/traefik/whoami" rel="noopener noreferrer">traefik/whoami</a></li> </ul> devops kubernetes webdev cloud I made a hobby OS Tingwei Tue, 12 Nov 2024 21:15:32 +0000 https://dev.to/tingwei628/i-made-a-hobby-os-2fa5 https://dev.to/tingwei628/i-made-a-hobby-os-2fa5 <p><a href="https://github.com/tingwei628/barukanOS" rel="noopener noreferrer">Repository</a></p> <p><iframe width="710" height="399" src="https://www.youtube.com/embed/BXWBFuLpplc"> </iframe> </p> <h3> Features </h3> <ul> <li>Support for long mode</li> <li>Interrupt and exception handling</li> <li>Printing characters on the screen</li> <li>Memory manager with paging mechanism</li> <li>2MB page size support under 4-level paging</li> <li>Timer handler for process management</li> <li>Process manager for process scheduling</li> <li>System call interface</li> <li>PS/2 keyboard driver</li> <li>Command-line interface for interacting with the OS kernel</li> <li>FAT16 file system support</li> </ul> c assembly opensource [Deprecated] The payment test with a Telegram bot Tingwei Sun, 27 Feb 2022 21:59:29 +0000 https://dev.to/tingwei628/the-payment-test-with-a-telegram-bot-dgh https://dev.to/tingwei628/the-payment-test-with-a-telegram-bot-dgh <h1> This post is not working anymore !!! </h1> <p>I wrote a bot in Go to test the payment with <a href="https://stripe.com" rel="noopener noreferrer">Stripe</a>.</p> <p><iframe width="710" height="399" src="https://www.youtube.com/embed/D3oFsNR9u7Y"> </iframe> </p> <p>More details in <a href="https://github.com/tingwei628/pgo/tree/main/tgbotpay" rel="noopener noreferrer">Repo</a></p> go programming