投稿時間:2021-07-09 08:42:04 RSSフィード2021-07-09 08:00 分まとめ(53件)

カテゴリー等	サイト名等	記事タイトル・トレンドワード等	リンクURL	頻出ワード・要約等/検索ボリューム	登録日
IT	気になる、記になる…	｢Google Pixel 6｣シリーズのスペックが明らかに	https://taisy0.com/2021/07/09/142829.html	frontpage	2021-07-08 22:38:40
IT	気になる、記になる…	Apple、テスター向けに｢macOS Big Sur 11.5 public beta 5｣をリリース	https://taisy0.com/2021/07/09/142827.html	apple	2021-07-08 22:29:19
IT	気になる、記になる…	Apple、テスター向けに｢iOS/iPadOS 14.7 Public Beta 5｣と｢watchOS 7.6 Public Beta 5｣をリリース	https://taisy0.com/2021/07/09/142825.html	apple	2021-07-08 22:28:58
IT	気になる、記になる…	Apple、開発者に対し｢macOS Big Sur 11.5 beta 5｣をリリース	https://taisy0.com/2021/07/09/142823.html	apple	2021-07-08 22:27:06
IT	気になる、記になる…	Apple、開発者に対し｢iOS/iPadOS 14.7 beta 5｣や｢watchOS 7.6 beta 5｣などをリリース	https://taisy0.com/2021/07/09/142821.html	apple	2021-07-08 22:26:15
TECH	Engadget Japanese	生地を知り尽くした老舗テーラーがつくる「マルチテキスタイルPCケース」	https://japanese.engadget.com/multi-textile-pc-case-225509992.html		2021-07-08 22:55:09
TECH	Engadget Japanese	「Oculus Quest 2」の世界から戻れなくなった、ボクシング・釣り・ゴルフがあるから	https://japanese.engadget.com/oculus-quest-2-083535342-223040509.html	engadget	2021-07-08 22:30:40
TECH	Engadget Japanese	AQUOS R6に搭載されたライカレンズと1インチセンサーの実力はいかに	https://japanese.engadget.com/aquos-r6-220008094.html	aquosr	2021-07-08 22:00:08
IT	ITmedia 総合記事一覧	[ITmedia Mobile] Qualcomm、インサイダー限定オリジナルスマホ発表　製造はASUS	https://www.itmedia.co.jp/mobile/articles/2107/09/news072.html	asusqualcomm	2021-07-09 07:30:00
IT	ITmedia 総合記事一覧	[ITmedia エンタープライズ] 7月後半からの約1カ月はサイバー攻撃「多発の可能性」警戒と対策呼びかけ	https://www.itmedia.co.jp/enterprise/articles/2107/08/news128.html	itmedia	2021-07-09 07:30:00
TECH	Techable（テッカブル）	リアルとバーチャルの公共空間を連動させるVR宮下公園オープン！	https://techable.jp/archives/157794	poweredbyparallelsite	2021-07-08 22:00:22
AWS	AWS Big Data Blog	Case-insensitive collation support for string processing in Amazon Redshift	https://aws.amazon.com/blogs/big-data/case-insensitive-collation-support-for-string-processing-in-amazon-redshift/	Case insensitive collation support for string processing in Amazon RedshiftAmazon Redshift is a fast fully managed cloud native data warehouse Tens of thousands of customers have successfully migrated their workloads to Amazon Redshift We hear from customers that they need case insensitive collation for strings in Amazon Redshift in order to maintain the same functionality and meet their performance goals when they migrate their existing workloads …	2021-07-08 22:47:59
AWS	AWS Machine Learning Blog	Announcing managed inference for Hugging Face models in Amazon SageMaker	https://aws.amazon.com/blogs/machine-learning/announcing-managed-inference-for-hugging-face-models-in-amazon-sagemaker/	Announcing managed inference for Hugging Face models in Amazon SageMakerHugging Face is the technology startup with an active open source community that drove the worldwide adoption of transformer based models thanks to its eponymous Transformers library Earlier this year Hugging Face and AWS collaborated to enable you to train and deploy over pre trained models on Amazon SageMaker For more information on training Hugging Face models …	2021-07-08 22:59:17
Program	[全てのタグ]の新着質問一覧｜teratail（テラテイル）	C#でルートフォルダの監視をしたい	https://teratail.com/questions/348499?rss=all	Cでルートフォルダの監視をしたい前提・実現したいことUSB接続の外付けHDDが切断・接続されたことを、プログラムで検知したいです。	2021-07-09 07:49:33
Program	[全てのタグ]の新着質問一覧｜teratail（テラテイル）	同一バケット内同一アカウントでファイルコピーしたのにAccessDeniedエラーになる	https://teratail.com/questions/348498?rss=all	同一バケット内同一アカウントでファイルコピーしたのにAccessDeniedエラーになるrailsnbspnbspawsnbspsdknbspvrailsからですが、sバケット内のファイルを移動コピー・削除しました。	2021-07-09 07:25:46
Program	[全てのタグ]の新着質問一覧｜teratail（テラテイル）	AWS EC2デプロイができません	https://teratail.com/questions/348497?rss=all	AWSECデプロイができませんrubynbsponnbsprailsnbspでオリジナルアプリを制作しており、ECでデプロイをしようとしても、エラーが出てうまくいきません。	2021-07-09 07:16:16
Ruby	Rubyタグが付けられた新着投稿 - Qiita	【Cloud9】Rails + React + MySQL 環境構築	https://qiita.com/syukan3/items/d886c5e917ee8de07fe4	yarnインストールnpminstallglobalyarnyarnversionpackagejsonのライブラリインストールpackagejsonのライブラリインストールyarninstallpackagejson書き換えstartrailsspPORTbIPampbinwebpackdevserverサーバー起動Railsでサーバー起動するためにはrailssをするのが普通ですが、CloudではrailsspPORTbIPを実行する必要があります。	2021-07-09 07:54:06
Ruby	Railsタグが付けられた新着投稿 - Qiita	【Cloud9】Rails + React + MySQL 環境構築	https://qiita.com/syukan3/items/d886c5e917ee8de07fe4	yarnインストールnpminstallglobalyarnyarnversionpackagejsonのライブラリインストールpackagejsonのライブラリインストールyarninstallpackagejson書き換えstartrailsspPORTbIPampbinwebpackdevserverサーバー起動Railsでサーバー起動するためにはrailssをするのが普通ですが、CloudではrailsspPORTbIPを実行する必要があります。	2021-07-09 07:54:06
海外TECH	Ars Technica	All fans banned from Tokyo Olympics as COVID cases rise, delta spreads	https://arstechnica.com/?p=1778991	minister	2021-07-08 22:38:01
海外TECH	Ars Technica	It’s a mad, mad multiverse as Marvel drops first trailer for What If…?	https://arstechnica.com/?p=1778899	marvel	2021-07-08 22:05:39
海外TECH	DEV Community	How I created a Photo Booth with AWS Serverless	https://dev.to/aws-builders/how-i-created-a-photo-booth-with-aws-serverless-3h2k	How I created a Photo Booth with AWS Serverless IntroThis is how I built a photo booth application with AWS Serverless services Once user capture an image and provide an email background of the image is removed and new background applied and watermark with timestamp will be added Then the image will be emailed to the given email address Below tools and technologies are used to built this Backend AWS Lambda with runtime Node jsStep FunctionSSESremove bg APIFrontend VueJSvue web cam pluginHosted on Amplify web hostingIAC Serverless Framework Architecture How It WorksIn the frontend VueJS app hosted in Amplify first a image will be captured with the email address Then the app will request for pre signed url Captured image will be uploaded to S with the pre signed url and the email address as a meta data Once the image is uploaded Init lambda function will be triggered to initialise step function execution Within the Step Function execution first the background of the image will be removed For this I use remove bg external service Then a new background will be applied to the image This background must be in the backgrounds path of the S bucket As the next step watermark will be added with the timestamp Finally the image will be sent to the given email address using AWS Simple Email Service SES How to set up PrerequisitesAWS cliServerless Framework cliyarn amp jq installedCreate a free account at remove bg and generate a API token Set up and verified SES send email address DeploymentClone the repository Copy env example to env and fill in with the appropriate values Runmake install amp amp make deployThis will create the backend stack and make the frontend deployment bundle ready FrontendOnce step above is finished you can deploy the frontend code in frontend dist frontend zip easily with Amplify web hosting Of course if you use amplify you can configure your own custom domain quite easily as well If you need to run the frontend in local navigate to frontend directory and run yarn run serve To Delete the stackTo remove the backend run make down Make sure the s directory created in the stack is empty before run this command DemoYou may check the live demo at Key points Lessons learntHere I used remove bg external tool to remove background because it doesn t need for example green background to extract the foreground objects I don t have any affiliation with this service and there are lot of other alternatives as well Please select any service you prefer and you will need to modify the removeBackground lambda accordingly I have used Step Functions general workflows here but using express workflow also a good option I have NOT implemented any error handling in this project since this is just a POC but in general you need to address failure scenarios Refer error handling with Step Functions here This is the first time I used Serverless Optimize Plugin and surprised how easy it is to bundle the packages only relevant to each lambda functions As the email service I have used AWS s own Simple Email Service SES However you need to first verify your sending email address in order to send emails to any address This can be done with a support request Optionally you can use any other email service provider and you have to modify the sendEmail lambda accordingly In this project I don t use any database to record the data that goes through the system I use s object meta data to record the email address entered by user to send out the email vue web cam is simply awesome plugin for VueJS to get camera input into your application You have option to select the preferred video source if you have multiple FeedbackYour valuable feedback on this project is mostly welcome I would like you to play around with this and if you have any questions or general comments please reach out to me via LinkedIn Twitter or Github Keep building keep sharing Cover Photo by Kevin Grieve on Unsplash	2021-07-08 22:29:36
海外TECH	DEV Community	Effective Remote Team Stand-Up Meetings	https://dev.to/statushero/effective-remote-team-stand-up-meetings-1ond	Effective Remote Team Stand Up MeetingsTo run an effective stand up meeting with a remote team follow these simple steps to focus your team s attention keep the meeting moving and provide the most value for everyone involved Use a standard set of Q and AsKeep it shortHave a solid A V setupMake sure everyone participatesShare updatesAccount for time zone differencesDon t have one Use a standard set of Q and AsRegardless of whether your team is remote distributed or co located the best stand up or scrum meetings consist of team members answering a standard set of questions and answers Consistent questions help people prepare as they know in advance what information they re expected to share This helps keep the stand up both efficient and short more on that later We think the traditional scrum questions are very effective but you can adjust the questions to fit your specific needs What did I do yesterday This one should be easy Team members share what they accomplished yesterday Updates should focus on deliverables allowing the entire team to understand what work has been done What are my goals for today Team members should say what they are planning to work on for the day This question helps the whole team understand what s left to do As far as goal setting goes people who make stuff like programmers writers and designers are generally limited to working on one or two intellectual tasks per day That s it Tasks are any exercise that requires mental setup then translating from an abstracted notion to an executed concept So if you re someone who makes stuff and sharing a list of goals with your team each day either your goals are too small or you are not focused on meaningful tasks Is there anything blocking me This one is perhaps the most critical If something is blocking progress on your team you need to know Team members should share anything that is in their way as unresolved blockers can be extremely harmful to your team velocity and overall project or product success Keep it shortA stand up meeting whether in person or online virtual shouldn t be longer than minutes If it runs longer than that your team is not well prepared their updates are not clear oryou are discussing items in too much depthIt could also be that your team is just too large Once your meetings start going beyond minutes take a closer look at the root cause and address it Have a solid A V setupFor remote teams a solid A V setup is absolutely critical for an effective stand up meeting If you can t hear or understand your teammates how will you know what they re working on Whether you use Google Hangouts GoToMeeting or video capabilities built into HipChat and Slack make sure that it works for all team members and everyone can hear and see one another Otherwise your stand up meetings will be spent troubleshooting wasting everyone s time Make sure everyone participatesUltimately the success of any stand up meeting depends on team participation If you can t get people to engage most of the value is lost The entire purpose of stand up meetings is to hear from and communicate to all members of the team For software teams this would include developers designers QE and product managers If participation from your team is lacking try to understand why Are time zone challenges the problem Or meeting conflicts Maybe schedules just don t line up well If scheduling is the problem try to adjust meeting times or working hours or use a tool that allows you to collect updates from the team asynchronously Share updatesMake sure that updates discussed at the stand up meeting are shared with the entire team People may be out sick or have missed the meeting due to a conflict and it s important they understand what was discussed in order to stay well aligned Traditional stand up meetings can make sharing updates hard unless someone like the scrum master is taking notes and then distributing them Even then it s easy to miss pieces of information once the meeting gets going If you re on a remote or distributed team A V issues can get in the way And it s not like you can just stop by their desk to chat If you re having trouble capturing updates try using a tool to automatically collect and distribute them to the team like Status Hero Having update information at your fingertips is also nice in cases where there are questions about someone s work Account for time zone differencesIf your team is remote there s a good chance that it spans several time zones Ideally the stand up meeting will be held at an hour when the majority of your team is starting their day This way people can get aligned on the highest priority tasks before they start working Don t have one Some folks especially engineers will tell you that the best meetings are the ones that don t happen Not only do people hate being interrupted they hate wasting time And if the stand up is not run well people can show up late unprepared and not pay attention This is tough for managers but if the team isn t engaged it just doesn t work One option is to skip traditional stand up meetings that require everyone to get together at the same time Teams with remote members or distributed across time zones are great candidates for this approach An app like Status Hero makes it really easy for teammates to share their updates at times that work best for them and you of course Team members dash off an update in a minute or two and get on with their day Status Hero then sends an overview that compiles everyone s update in an easy to read format that lets you comment and tag people for clarification No meetings necessary So there you have it Simple tips to run an effective stand up meeting with a remote team	2021-07-08 22:13:15
Apple	AppleInsider - Frontpage News	'iPhone 13' dummy units hands on: What we can learn about Apple's upcoming iPhones	https://appleinsider.com/articles/21/07/08/iphone-13-dummy-units-hands-on-what-we-can-learn-about-apples-upcoming-iphones?utm_medium=rss	x iPhone x dummy units hands on What we can learn about Apple x s upcoming iPhonesAhead of Apple s expected iPhone upgrade this fall we got our hands on four iPhone dummy units to see what we can learn about the rumored lineup Comparing the iPhone lineup to the iPhone lineupSpecifically we have Apple s iPhone mini iPhone iPhone Pro and iPhone Pro Max assuming Apple sticks with its numbering scheme and increments as it has in years past ーnot including the iPhone X Read more	2021-07-08 22:30:20
Apple	AppleInsider - Frontpage News	Tim Cook, Eddy Cue return to annual elite Sun Valley conference [u]	https://appleinsider.com/articles/21/07/06/tim-cook-returns-to-annual-elite-sun-valley-conference?utm_medium=rss	Tim Cook Eddy Cue return to annual elite Sun Valley conference u Apple CEO Tim Cook and Eddy Cue are attending the Sun Valley Conference this weekーan event described as summer camp for billionaires Tim Cook and Eddy Cue attend the Sun Valley Conference in The Sun Valley Conference is a venue for the leaders of major corporations to make deals with many significant media deals usually agreed at the Idaho event each year Hosted by Allen Co the conference is an invitation only affair Read more	2021-07-08 22:45:01
海外TECH	Engadget	Age-based kung fu game 'Sifu' gets pushed to early 2022	https://www.engadget.com/sifu-kung-fu-game-delay-early-2022-223415620.html?src=rss	Age based kung fu game x Sifu x gets pushed to early Absolver studio Sloclap is working on a new kind of kung fu game Sifu and it requires a little more time and attention than developers originally planned Sifu was supposed to hit PlayStation PS and the Epic Games Store this year but it s been delayed to early nbsp Sloclap shared the new release date in a trailer that also shows off the game s unique death system Sifu is a kung fu inspired game much like Absolver but it s narrative driven and every time a player dies they return to the fight as an older version of themselves Sifu is all about hand to hand combat and magical age progression and it tells a violent tale of revenge suitable for any age ーwell teens and up according to the ESRB The game s first trailer was inspired by Old Boy and today s video is called quot Sifu Fight Club Gameplay Teaser quot so we re sensing a film centric theme too	2021-07-08 22:34:15
海外TECH	Engadget	'Moss: Book II' continues the story of Quill on PSVR	https://www.engadget.com/moss-book-ii-psvr-annoucement-222537105.html?src=rss	x Moss Book II x continues the story of Quill on PSVRSony hasn t forgotten about one of the PSVR s hidden gems During its State of Play showcase on Thursday the company shared the trailer for Moss Book II It s the sequel to Polyarc s excellent Moss which featured a cute mouse named Quill as its heroine nbsp The trailer sets the stage for the story that will unfold After successfully rescuing her uncle in the first game Quill now finds herself the target of a winged tyrant As in the original you ll have a physical presence in the game thanks to a ghostly figure that can interact with Quill and her environment With Book II Polyarc promises they ll be new weapons and abilities for players to discover and that those tools will create new ways for players to explore the world the studio has crafted nbsp nbsp nbsp nbsp Moss Book II does not currently have a release date but Polyarc promised to share more information about the game in the coming months nbsp	2021-07-08 22:25:37
海外TECH	Engadget	'Death Stranding Director's Cut' will hit PS5 September 24th	https://www.engadget.com/death-stranding-directors-cut-trailer-release-date-220511148.html?src=rss	x Death Stranding Director x s Cut x will hit PS September thDeath Stranding Director s Cut an extended version of Kojima Productions sci fi action game will come to PlayStation on September th Sony debuted the first full trailer for Death StrandingDirector s Cut during today s State of Play livestream alongside the game s release date and news that pre orders are open now Check out the trailer right here Today s trailer confirms the Director s Cut will have new boss battles and combat mechanics including fresh weapons and accessories like an ambulatory Buddy Bot There s also a shooting range a racing mode new campaign missions and upgraded transportation options The game was revealed during the Summer Game Fest kickoff livestream in June but these are the first concrete details about what ll be included All of that is in addition to the core game which is difficult to summarize like most Kojima titles but we ll do our best Death Stranding is beautiful and tedious It s an expansive strange futuristic adventure about isolation death and social connection and it s often cinematic to a fault Which oddly enough makes a director s cut feel like the next logical step	2021-07-08 22:05:11
海外TECH	WIRED	Microsoft Keeps Failing to Patch a Critical Windows Bug	https://www.wired.com/story/microsoft-keeps-failing-patch-windows-printnightmare-bug	windows	2021-07-08 22:10:15
金融	金融総合：経済レポート一覧	FX Daily(7月7日)～FOMC議事要旨公表後も、ドル円の反応は限定的	http://www3.keizaireport.com/report.php/RID/461415/?rss	fxdaily	2021-07-09 00:00:00
金融	金融総合：経済レポート一覧	貸出・預金動向（2021年6月）	http://www3.keizaireport.com/report.php/RID/461416/?rss	日本銀行	2021-07-09 00:00:00
金融	金融総合：経済レポート一覧	中国ネット企業への統制強化と米中間で進む資金のデカップリング：木内登英のGlobal Economy ＆ Policy Insight	http://www3.keizaireport.com/report.php/RID/461421/?rss	lobaleconomypolicyinsight	2021-07-09 00:00:00
金融	金融総合：経済レポート一覧	6月FOMCのMinutes～Reaction function：井上哲也のReview on Central Banking	http://www3.keizaireport.com/report.php/RID/461422/?rss	minutesreactionfunction	2021-07-09 00:00:00
金融	金融総合：経済レポート一覧	IAIGsの指定の公表に関する最近の状況（３）～情報が更新され、49グループのうちの46グループが明らかに：保険・年金フォーカス	http://www3.keizaireport.com/report.php/RID/461424/?rss	iaigs	2021-07-09 00:00:00
金融	金融総合：経済レポート一覧	金融仲介機能の発揮に向けたプログレスレポート	http://www3.keizaireport.com/report.php/RID/461426/?rss	金融庁	2021-07-09 00:00:00
金融	金融総合：経済レポート一覧	テーパリングは既定路線（FOMC 議事要旨）：Market Flash	http://www3.keizaireport.com/report.php/RID/461433/?rss	marketflash	2021-07-09 00:00:00
金融	金融総合：経済レポート一覧	経済安全保障の視点で見る「中央銀行デジタル通貨（ＣＢＤＣ）」：ニッセイ基礎研所報	http://www3.keizaireport.com/report.php/RID/461434/?rss	中央銀行	2021-07-09 00:00:00
金融	金融総合：経済レポート一覧	シャドーバンク問題は目標水準低下の転機になるのか～リーマンショックは伝統的金融セクター、コロナショックはシャドーバンクの不安...：高田レポート	http://www3.keizaireport.com/report.php/RID/461456/?rss	岡三証券	2021-07-09 00:00:00
金融	金融総合：経済レポート一覧	「令和バブル考」繰り返される生成と崩壊＝歴史に学び、将来に備えるには？＝	http://www3.keizaireport.com/report.php/RID/461461/?rss	経済	2021-07-09 00:00:00
金融	金融総合：経済レポート一覧	J-REIT不動産価格指数（2021年6月分）	http://www3.keizaireport.com/report.php/RID/461462/?rss	jreit	2021-07-09 00:00:00
金融	金融総合：経済レポート一覧	KAMIYAMA Seconds!：東京都議会選の後、日本の政治リスクについて考える	http://www3.keizaireport.com/report.php/RID/461466/?rss	kamiyamaseconds	2021-07-09 00:00:00
金融	金融総合：経済レポート一覧	豪州準備銀行は7月会合で政策金利を据え置き：オーストラリアレポート	http://www3.keizaireport.com/report.php/RID/461467/?rss	政策金利	2021-07-09 00:00:00
金融	金融総合：経済レポート一覧	グローバルリート市場レポート（2021年7月号）：REITレポート	http://www3.keizaireport.com/report.php/RID/461468/?rss	発表	2021-07-09 00:00:00
金融	金融総合：経済レポート一覧	豪州リート市場動向と見通し（2021年7月号）：REITレポート	http://www3.keizaireport.com/report.php/RID/461469/?rss	豪州	2021-07-09 00:00:00
金融	金融総合：経済レポート一覧	日経平均株価30,000円台回復の条件：市川レポート	http://www3.keizaireport.com/report.php/RID/461470/?rss	三井住友	2021-07-09 00:00:00
金融	金融総合：経済レポート一覧	アジア・マーケット・マンスリー（2021年7月）～【株式】まちまち、【通貨】下落、【債券】まちまち	http://www3.keizaireport.com/report.php/RID/461471/?rss	三井住友	2021-07-09 00:00:00
金融	金融総合：経済レポート一覧	【キーワード】『TCFD』で加速する、企業のサステナビリティ情報開示～『TCFD』って何ですか？、ESG投資の拡大と『TCFD』...	http://www3.keizaireport.com/report.php/RID/461472/?rss	三井住友	2021-07-09 00:00:00
金融	金融総合：経済レポート一覧	2020年の国際収支統計および本邦対外資産負債残高	http://www3.keizaireport.com/report.php/RID/461490/?rss	国際収支統計	2021-07-09 00:00:00
金融	金融総合：経済レポート一覧	2021年６月末の預金・貸出金動向(速報) ～信用金庫は預金4.9％増、貸出金4.4％増とさらに鈍化：ニュース＆トピックス	http://www3.keizaireport.com/report.php/RID/461504/?rss	中小企業	2021-07-09 00:00:00
金融	金融総合：経済レポート一覧	【注目検索キーワード】コーポレートガバナンス・コード	http://search.keizaireport.com/search.php/-/keyword=コーポレートガバナンス・コード/?rss	検索キーワード	2021-07-09 00:00:00
金融	金融総合：経済レポート一覧	【お薦め書籍】小さなメーカーが生き残る経営術 独自市場のつくり方	https://www.amazon.co.jp/exec/obidos/ASIN/486367662X/keizaireport-22/	経営	2021-07-09 00:00:00
ビジネス	ダイヤモンド・オンライン - 新着記事	米債利回りの低下なぜ続く？　短期金利にも波及 - WSJ発	https://diamond.jp/articles/-/276407	短期金利	2021-07-09 07:10:00
ビジネス	東洋経済オンライン	復権狙うトランプ前大統領と一族企業起訴の行方 現代の｢テフロン･ドン｣をめぐる政治的駆け引き | アメリカ | 東洋経済オンライン	https://toyokeizai.net/articles/-/439777?utm_source=rss&utm_medium=http&utm_campaign=link_back	donaldtrump	2021-07-09 07:30:00
GCP	Cloud Blog	Build a platform with KRM: Part 5 - Manage hosted resources from Kubernetes	https://cloud.google.com/blog/topics/developers-practitioners/build-platform-krm-part-5-manage-hosted-resources-kubernetes/	Build a platform with KRM Part Manage hosted resources from KubernetesThis is the fifth and final post in a multi part series about the Kubernetes Resource Model Check out parts and to learn more   In part of this series we learned how the Kubernetes Resource Model works and how the Kubernetes control plane takes action to ensure that your desired resource state matches the running state  Up until now that “running resource state has existed inside the world of Kubernetes Pods for example run on Nodes inside a cluster The exception to this is any core Kubernetes resource that depends on your cloud provider For instance GKE Services of type Load Balancer depend on Google Cloud network load balancers and GKE has a Google Cloud specific controller that will spin up those resources on your behalf  But if you re operating a Kubernetes platform it s likely that you have resources that live entirely outside of Kubernetes You might have CI CD triggers IAM policies firewall rules databases The first post of this series introduced the platform diagram below and asserted that “Kubernetes can be the powerful declarative control plane that manages large swaths of that platform Let s close that loop by exploring how to use the Kubernetes Resource Model to configure and provision resources hosted in Google Cloud Click to enlargeWhy use KRM for hosted resources Before diving into the “what and “how of using KRM for cloud hosted resources let s first ask “why There is already an active ecosystem of infrastructure as code tools including Terraform that can manage cloud hosted resources Why use KRM to manage resources outside of the cluster boundary  Three big reasons The first is consistency The last post explored ways to ensure consistency across multiple Kubernetes clusters but what about consistency between Kubernetes resources and cloud resources If you have org wide policies you d like to enforce on Kubernetes resources chances are that you also have policies around hosted resources So one reason to manage cloud resources with KRM is to standardize your infrastructure toolchain unifying your Kubernetes and cloud resource configuration into one language YAML one Git config repo one policy enforcement mechanism  The second reason is continuous reconciliation One major advantage of Kubernetes is its control loop architecture So if you use KRM to deploy a hosted firewall rule Kubernetes will work constantly to make sure that resource is always deployed to your cloud provider even if it gets manually deleted  A third reason to consider using KRM for hosted resources is the ability to integrate tools like kustomize into your hosted resource specs allowing you to customize resource specifications without templating languages  These benefits have resulted in a new ecosystem of KRM tools designed to manage cloud hosted resources including the Crossplane project as well as first party tools from AWS Azure and Google Cloud  Let s explore how to use Google Cloud Config Connector to manage GCP hosted resources with KRM  Introducing Config ConnectorConfig Connector is a tool designed specifically for managing Google Cloud resources with the Kubernetes Resource Model It works by installing a set of GCP specific resource controllers onto your GKE cluster along with a set of Kubernetes Custom Resources for Google Cloud products from Cloud DNS to Pub Sub How does it work Let s say that a security administrator at Cymbal Bank wants to start working more closely with the platform team to define and test Policy Controller constraints But they don t have access to a Linux machine which is the operating system used by the platform team  The platform team can address this by manually setting up a Google Compute Engine GCE Linux instance for the security admin But with Config Connector the platform team can instead create a declarative KRM resource for a GCE instance commit it to the config repo and Config Connector will spin up the instance on their behalf Click to enlargeWhat does this declarative resource look like A Config Connector resource is just a regular Kubernetes style YAML file in this case a custom resource called Compute Instance In the resource spec the platform team can define specific fields like what GCE machine type to use  Once the platform team commits this resource to the Config Sync repo Config Sync will deploy the resource to the cymbal admin GKE cluster and Config Connector running on that same cluster will spin up the GCE resource represented in the file Click to enlargeThis KRM workflow for cloud resources opens the door for powerful automation like custom UIs to automate resource requests within the Cymbal Bank org  Integrating Config Connector with Policy Controller By using Config Connector to manage Google Cloud hosted resources as KRM you can adopt Policy Controller to enforce guardrails across your cloud and Kubernetes resources   Let s say that the data analytics team at Cymbal Bank is beginning to adopt BigQuery While the security team is approving production usage of that product the platform team wants to make sure no real customer data is imported Together Config Connector and Policy Controller can set up guardrails for BigQuery usage within Cymbal Bank  Click to enlargeConfig Connector supports BigQuery resources including Jobs Datasets and Tables The platform team can work with the analytics team to define a test dataset containing mocked data as KRM pushing those resources to the Config Sync repo as they did with the GCE instance resource  From there the platform team can create a custom Constraint Template for Policy Controller limiting the allowed Cymbal datasets to only the pre vetted mock dataset  These guardrails combined with IAM can allow your organization to adopt new cloud products safely not only defining who can set up certain resources but within those resources what field values are allowed  Manage existing GCP resources with Config Connector Another useful feature of Config Connector is that it supports importing existing Google Cloud resources into KRM format allowing you to bring live running resources into the management domain of Config Connector  You can use the config connector command line tool to do this exporting specific resource URIs into static files  Output From here we can push these KRM resources to the config repo and allow Config Sync and Config Controller to start lifecycling the resources on our behalf The screenshot below shows that the cymbal dev Cloud SQL database now has the “managed by cnrm label indicating that it s now being managed from Config Connector CNRM “cloud native resource management Click to enlargeThis resource export tool is especially useful for teams looking to try out KRM for hosted resources without having to invest in writing a new set of YAML files for their existing resources And if you re ready to adopt Config Connector for lots of existing resources the tool has a bulk export option as well  Overall while managing hosted resources with KRM is still a newer paradigm it can provide lots of benefits for resource consistency and policy enforcement Want to try out Config Connector yourself Check out the part demo This post concludes the Build a Platform with KRM series Hopefully these posts and demos provided some inspiration on how to build a platform around Kubernetes with the right abstractions and base layer tools in mind  Thanks for reading and stay tuned for new KRM products and features from Google	2021-07-08 22:30:00