SlideShare uma empresa Scribd logo

Facilitating continuous delivery in a FinTech world with Salt, Jenkins, Nexus and Chocolatey

Michel Buczynski
Michel Buczynski

Michel Buczynski is a DevOps coach working at TD Securities to help implement continuous delivery tools and standardize workflows. He discussed his team's journey from no version control or automation to using tools like Jenkins, SaltStack, Nexus, and Chocolatey. His goals are to produce software efficiently using these tools and coach his team on their use. He emphasized standardizing processes, cleaning up repositories, and enforcing new workflows to help with adoption. He also demonstrated some of the tools in a live session.

Software
1 de 46
Baixar para ler offline
Internal Facilitating continuous delivery in a FinTech world with Salt, Jenkins, Nexus and Chocolatey Michel Buczynski, DevOps Coach TD Securities
Internal Disclaimer While this session is mainly based on work done for various employers and my contemporary observations, this session will focus on my personal opinions. As such, material herein is not necessarily representative of my present or my previous employers' opinion.
Internal Who am I Born in '73 and raised in Montreal, work and live in Toronto. About me: • I disassembled (hum! Destroy) the family TV at 3 years old to understand where the images and sounds were coming from. • I got my first programming contract at 16. • I practiced Agile before Agile, and DevOps before DevOps, and I think I am not alone.
Internal What I am doing now DevOps Coach • Implementation of a tools-chain for Continuous Delivery (CD). • Define a standardized workflow for the CD pipeline. • Coach team members on how to properly use the tools-chain and follow the workflow. • My goal is to ensure that our team produces, delivers, and maintains efficient and quality software in the easiest and fastest possible manner.
Internal Current Gig TD Securities is part of the TD Bank Group • The Toronto-Dominion Bank & its subsidiaries are collectively known as TD Bank Group (TD). TD is the sixth largest bank in North America by branches & serves approximately 22 million customers in a number of locations in key financial centers around the globe. Over 85,000 TD employees represent the strongest team in banking. Delivering legendary customer experiences is who we are & is part of being the Better Bank. • I am working in the capital markets division (TD Securities); specifically for the global equity derivatives business.
Internal FinTech • FinTech Wikipedia definition: Financial technology (FinTech or fintech) is the new technology and innovation that aims to compete with traditional financial methods in the delivery of financial services. • FinTech uses the latest IT technologies like Big Data, IoT, Machine Learning, etc. • The banking industry is the major provider of financial services. • Since the banking industry was one the first users of computer systems, banks sometimes have to rely on legacy systems.
Internal The Challenge of DevOps in the Banking Industry • The size and the age of the enterprise. • Regulations, compliance, audits, separation of duties, … • A varied infrastructure based on both legacy and modern technologies. • The use of 3rd party and legacy software. • New Technology Introduction (NTI). • Conservative approach with a very strong need for stability. • Changes will be always difficult to apply because it is especially difficult to change the way people works. But, it is also difficult to make change without changing the way people work.
Internal What our Team Does • We are a cross-functional team dedicated to producing cutting- edge FinTech software. • Most of our development is based on FOSS (Free Open Source Software) framework or platform: Node.JS, Erlang/Elixir, Angular5, Scala, Python, R and Java. • Our software architecture is microservice oriented. • Our system is integrated with some legacy COTS (Commercial Off-The-Shelf) applications tied to Windows desktop and server. • Developing in-house software permits us to have more flexible and adapted software, effectively leveraging our knowledge capital and reducing our dependency on 3rd parties.
Internal Our Team's DevOps Journey A Long Journey Begins with a Single Step • Most of our application code uses version control (VC) GIT. • No centralized GIT VC systems employed. • No automated testing. • Weekly painful manual deployment. It was honestly an achievement to have such a short yet manual release cycle.
Internal Our Team's DevOps Journey Today • Application code, configuration (source) and packaged artifacts (target) are all in VC. • Continuous Integration. • Automated deployments. • Most of our system configuration is automated. • Most of the application testing is automated.
Internal Our Team's DevOps Journey The Future • Provide self-serve services and resources for non- developers. Ex: Release management, pick commit for release candidate, release notes automation, etc… • Make automated testing of infrastructure changes. • Make provisioning automated on all targets. • Make success metrics visible. • Make incident responses automated.
Internal Standardize your Workflow Everything in VC • Source code, Source library, Application configs. • Artifacts, System configuration. • Package everything, put it in a VC repositories. Especially what is not your own code. • The good, the bad and the ugly about .MSI. • Chocolatey: the solution for Windows.
Internal Standardize your Workflow Set a common branching model. • Create your own or use the standard GitFlow. • The branching model set relations between the target environment, the approval process, the version numbering, CI steps, ...
Internal Standardize your Workflow GitFlow
Internal Standardize your Workflow Set a common version numbering system • Chocolatey and Nuget package versioning: SemVer. • The good, the bad and the ugly about SemVer. • A solutions the YMX.
Internal Standardize your Workflow Chocolatey and Nuget package versioning. All version Chocolatey and Nuget support SemVer 1.0 : A specific version number is in the form Major.Minor.Patch[-Suffix], where the components have the following meanings: •Major: Breaking changes •Minor: New features, but backwards compatible •Patch: Backwards compatible bug fixes only •-Suffix (optional): a hyphen followed by a string denoting a pre-release version. Examples: 1.0.1 6.11.1231 4.3.1-rc 2.2.44-beta 11.0.1-alpha All version Chocolatey and Nuget also support Microsoft Version Numbers: A specific version number has the a 4 number form: Major.Minor.Buid.Revision Chocolatey call this form : Package Fix version Notation Examples: 1.2.0.20181008
Internal Standardize your Workflow The good, the bad and the ugly about SemVer. The good: • Has release and pre-release version • Tell you if you need to update: • MAJOR: Breaking API change Not safe to update • MINOR: New features Safe to update • PATCH: Bugfixes Must update
Internal Standardize your Workflow The good, the bad and the ugly about SemVer. The bad: • With rapid space of CD is difficult to follow MAJOR, MINOR and PATCH ordering. • It's assumes that every goes well and arrive on time. • It's only great once the product is done and tested.
Internal Standardize your Workflow The good, the bad and the ugly about SemVer. The ugly: • Difficult to automate. • Need a lots manual intervention. • With things like versioning of things API, the MAJOR and MINOR doesn't mean anything for artifacts version. • You can always put the major version in the product name. Ex: X11, Oracle12c and C
Internal Standardize your workflow A solution the YMX. • Inspired on Docker’s versioning scheme • RELEASE version for master branch: YY.M.N 18.1.9 • RELEASE CANDIDATE Version for release/ and hotfixe/ branch: YY.M.N-rcX 18.1.9-rc 18.3.2-rc4 • ALPHA Version for feature/ branch: YY.M.N-alpha-DD-hhhhhhh 18.3.3-alpha-08-df81230 for the commit done the Mars 8th 2018 in preparation for third release in Mars 2018 RELEASE CANDIDATE Version for release/ and hotfixe/ branch: YY.M.N-rcX
Internal Standardize your Workflow Clean up and Enforce • Clean up all your repositories. • By doing a clean-up, it is the right time to introduce new tools and processes. • Train your team to use new tools and teach them how to apply your workflow and demonstrate why. • Enforce workflow progressively by applying it, with a small group of team members and target applications.
Internal Jenkins 2 • Pipeline as a code. • Create your own Shared Libraries. • YMX automatic versioning. • <Live demo>
Internal Jenkins 2 Pipeline as a code. • Pipeline as Code describes a set of features that allow Jenkins users to define pipelined job processes with code, stored and versioned in a source repository. These features allow Jenkins to discover, manage, and run jobs for multiple source repositories and branches — eliminating the need for manual job creation and management. • To use Pipeline as Code, projects must contain a file named Jenkinsfile in the repository root, which contains a "Pipeline script."
Internal Jenkins 2 Create your own Shared Libraries. • As Pipeline is adopted for more and more projects in an organization, common patterns are likely to emerge. Oftentimes it is useful to share parts of Pipelines between various projects to reduce redundancies and keep code "DRY". • Pipeline has support for creating "Shared Libraries" which can be defined in external source control repositories and loaded into existing Pipelines
Internal Jenkins 2 Create your own Shared Libraries. • Declarative Pipeline • Scripted Pipeline Directory structure The directory structure of a Shared Library repository is as follows: (root) +- src # Groovy source files | +- org | +- foo | +- Bar.groovy # for org.foo.Bar class +- vars | +- foo.groovy # for global 'foo' variable | +- foo.txt # help for 'foo' variable | +- bar.groovy # bar custom step, call def call() +- resources # resource files (external libraries only) | +- org | +- foo | +- bar.json # static helper data for org.foo.Bar
Internal Jenkins 2 <Live demo>
Internal Sonatype Nexus • Nexus introduction. • Consideration for Chocolatey. • <Live demo>
Internal Sonatype Nexus Nexus Reposory Manager introduction • Universal package manager That give us the ability to apply security and compliance metrics across all artifact types. Universal package managers have been referred to as being at the center of a DevOps toolchain • Nexus Repository OSS 3.xx, supports those formats: APT, Composer, Conan, CPAN, Docker, ELPA, Git LFS, Helm, Maven, npm, NuGet, P2, PyPI, R, Raw, RubyGems, Yum
Internal Sonatype Nexus Consideration for Chocolatey. • Don’t mix Nuget package with Chocolatey package. Even if Chocolatey is based on the NuGet framework, it doesn’t mean that they are the same type of package. • Separated in different repositories, depending on the target. Users workstations, developer workstations, agents workstations, servers. You can also create separate repositories for certain products.
Internal Sonatype Nexus <Live demo>
Internal SaltStack • Introducing SaltStack • Salt architecture • Execute remote or local command • Salt and Chocolatey. • Defining the desired States • Jinja2 and Pillars • Live demo.
Internal SaltStack Introducing SaltStack • Open-source configuration management software and remote execution engine. • Infrastructure as code • Python based • Use asynchronous messaging queue • Fast and scalable • Mainly referred as “Salt”
Internal SaltStack Salt architecture • Designed for high speed data collection and execution in system administration environments. At beginning Salt was relying on ZeroMQ. Salt now has is own realiable queuing transport system: RAET (Reliable Asynchronous Event Transport Protocol). Which permit Salt to be scalable well beyond tens of thousands of servers.
Internal SaltStack Salt architecture • Salt mainly use a slave-master setup, that enables Salt to do push or pull remote execution. The slave or the agent is called : Minion. • Minion can be also be used alone in a MasterLess mode. • Salt has also AgentLess mode called: Salt-SSH. Salt has no Windows AgentLess mode yet.
Internal SaltStack Salt architecture • Salt mainly use a slave-master setup, that enables Salt to do push or pull execution. The slave or the agent is called : Minion. • Minion can be also be used alone in a MasterLess mode. • Salt has also AgentLess mode called: Salt-SSH. Salt has no Windows AgentLess mode yet. • Salt permit also event-driven execution and self-healing.
Internal SaltStack Salt architecture • The modular design of Salt is done by module written in Python. By the abilities to write your own Salt Module, Salt is easily extensible. • Module types: • Execution modules • State modules • Grains • Renderer modules • Returners • Runners
Internal SaltStack Execute remote command • salt-call '*' test.ping • salt-call '*' disk.usage • salt-call -G 'os:Windows' cmd.run ‘dir‘ • salt-call –local cmd.powershell “Get-ChildItem c:”
Internal SaltStack Saltstack and chocolatey • salt-call --local chocolatey.bootstrap • salt-call --local chocolatey.update firefox
Internal SaltStack Defining the desired States • firefox.sls : chocolatey: pkg.installed firefox: chocolatey.upgraded: - pkgs: - firefox • salt-call state.apply firefox
Internal SaltStack Jinja2 and Pillars • Using grains in SLS • Pillars apache: {% if grains['os'] == 'RedHat' %} pkg.installed: - name: httpd {% elif grains['os'] == 'Ubuntu' %} pkg.installed: - name: apache2 {% if grains['os'] == ‘Windows' %} chocolatey.installed: - name: apache-httpd {% endif %}
Internal SaltStack <Live demo>
Internal Choclatey hacks • Multiple instances of Chocolatey. • Mock a package install. Workstations • Internalize your Chocolatey packages. • Onboarding developers workstation. • Life without Citrix.
Internal What we've Learned • Patience. Renovating a house will always take more resources than building a new one. But the importance is to always be evolving. • Impose standardization of your process. Less experienced team members will often have a certain lack of discipline. But some older team members are more resistant to change their discipline. • Make the jobs fun. Try to replace boring tasks by automated process or try to reduce time past on those boring tasks.
Internal What we learn • Try to avoid everything that is not human readable like .MSI, .XML and Windows registry. • Click, click alone is really very bad. If you can write a how-to wiki. You can write a script (preferably with a CM). If you have a good script, you can do a one- liner command. With that you can easily create a WebUI or GUI for a secure self-service. • Concentrate on useful metrics and make only useful alerts. • Innovate and don't be afraid to push the envelope
Internal Thanks • A special thanks to my team at TD. • To Rob Reynolds, to make me love Windows again. • Chocolatey Fest team…
Internal Q&A

Recomendados

Install MariaDB on IBM i - Tips, troubleshooting, and more
Install MariaDB on IBM i - Tips, troubleshooting, and moreInstall MariaDB on IBM i - Tips, troubleshooting, and more
Install MariaDB on IBM i - Tips, troubleshooting, and more
Rod Flohr
 
Kitware: Qt and Scientific Computing
Kitware: Qt and Scientific ComputingKitware: Qt and Scientific Computing
Kitware: Qt and Scientific Computing
account inactive
 
PHP Installed on IBM i - the Nickel Tour
PHP Installed on IBM i - the Nickel TourPHP Installed on IBM i - the Nickel Tour
PHP Installed on IBM i - the Nickel Tour
Rod Flohr
 
Atril-Déjà Vu Tea mserver 2 general presentation
Atril-Déjà Vu Tea mserver 2 general presentationAtril-Déjà Vu Tea mserver 2 general presentation
Atril-Déjà Vu Tea mserver 2 general presentation
cohlmann
 
How we test tvideo at skype
How we test tvideo at skypeHow we test tvideo at skype
How we test tvideo at skypeQA Club Kiev
 
Enterprise OSGi at eBay
Enterprise OSGi at eBayEnterprise OSGi at eBay
Enterprise OSGi at eBayTony Ng
 
02 - Build and Deployment Management
02 - Build and Deployment Management02 - Build and Deployment Management
02 - Build and Deployment ManagementSergii Shmarkatiuk
 
TERMINALFOUR t44u 2009 TERMINALFOUR Site Manager 7 QA & Beta Programme
TERMINALFOUR t44u 2009 TERMINALFOUR Site Manager 7 QA & Beta ProgrammeTERMINALFOUR t44u 2009 TERMINALFOUR Site Manager 7 QA & Beta Programme
TERMINALFOUR t44u 2009 TERMINALFOUR Site Manager 7 QA & Beta ProgrammeTerminalfour
 

Recomendados

Install MariaDB on IBM i - Tips, troubleshooting, and more
Install MariaDB on IBM i - Tips, troubleshooting, and moreInstall MariaDB on IBM i - Tips, troubleshooting, and more
Install MariaDB on IBM i - Tips, troubleshooting, and more
Rod Flohr
 
Kitware: Qt and Scientific Computing
Kitware: Qt and Scientific ComputingKitware: Qt and Scientific Computing
Kitware: Qt and Scientific Computing
account inactive
 
PHP Installed on IBM i - the Nickel Tour
PHP Installed on IBM i - the Nickel TourPHP Installed on IBM i - the Nickel Tour
PHP Installed on IBM i - the Nickel Tour
Rod Flohr
 
Atril-Déjà Vu Tea mserver 2 general presentation
Atril-Déjà Vu Tea mserver 2 general presentationAtril-Déjà Vu Tea mserver 2 general presentation
Atril-Déjà Vu Tea mserver 2 general presentation
cohlmann
 
How we test tvideo at skype
How we test tvideo at skypeHow we test tvideo at skype
How we test tvideo at skypeQA Club Kiev
 
Enterprise OSGi at eBay
Enterprise OSGi at eBayEnterprise OSGi at eBay
Enterprise OSGi at eBayTony Ng
 
02 - Build and Deployment Management
02 - Build and Deployment Management02 - Build and Deployment Management
02 - Build and Deployment ManagementSergii Shmarkatiuk
 
TERMINALFOUR t44u 2009 TERMINALFOUR Site Manager 7 QA & Beta Programme
TERMINALFOUR t44u 2009 TERMINALFOUR Site Manager 7 QA & Beta ProgrammeTERMINALFOUR t44u 2009 TERMINALFOUR Site Manager 7 QA & Beta Programme
TERMINALFOUR t44u 2009 TERMINALFOUR Site Manager 7 QA & Beta ProgrammeTerminalfour
 
Continuous Integration
Continuous IntegrationContinuous Integration
Continuous Integration
XPDays
 
Continuous Delivery: releasing Better and Faster at Dashlane
Continuous Delivery: releasing Better and Faster at DashlaneContinuous Delivery: releasing Better and Faster at Dashlane
Continuous Delivery: releasing Better and Faster at Dashlane
Dashlane
 
SQL Server DevOps Jumpstart
SQL Server DevOps JumpstartSQL Server DevOps Jumpstart
SQL Server DevOps Jumpstart
Ori Donner
 
Continuos Integration and Delivery: from Zero to Hero with TeamCity, Docker a...
Continuos Integration and Delivery: from Zero to Hero with TeamCity, Docker a...Continuos Integration and Delivery: from Zero to Hero with TeamCity, Docker a...
Continuos Integration and Delivery: from Zero to Hero with TeamCity, Docker a...
Lean IT Consulting
 
Primeros pasos del Software Libre en infraestructura civil Civil Infrastructu...
Primeros pasos del Software Libre en infraestructura civil Civil Infrastructu...Primeros pasos del Software Libre en infraestructura civil Civil Infrastructu...
Primeros pasos del Software Libre en infraestructura civil Civil Infrastructu...
Agustin Benito Bethencourt
 
Versioning for Developers
Versioning for DevelopersVersioning for Developers
Versioning for Developers
Michelangelo van Dam
 
Making software development processes to work for you
Making software development processes to work for youMaking software development processes to work for you
Making software development processes to work for you
Ambientia
 
DevOps - IaC | Talk | AGILE GURUGRAM 2018 | 23 - 24 March, 2018
DevOps - IaC | Talk | AGILE GURUGRAM 2018 | 23 - 24 March, 2018DevOps - IaC | Talk | AGILE GURUGRAM 2018 | 23 - 24 March, 2018
DevOps - IaC | Talk | AGILE GURUGRAM 2018 | 23 - 24 March, 2018
AgileNetwork
 
PHP Unconference Continuous Integration
PHP Unconference Continuous IntegrationPHP Unconference Continuous Integration
PHP Unconference Continuous Integration
Nils Hofmeister
 
DevOps Training | DevOps Online Training in Hyderabad.pptx
DevOps Training | DevOps Online Training in Hyderabad.pptxDevOps Training | DevOps Online Training in Hyderabad.pptx
DevOps Training | DevOps Online Training in Hyderabad.pptx
ranjithvisualpath44
 
DevOps & DevEx
DevOps & DevExDevOps & DevEx
DevOps & DevEx
Ifunga Ndana
 
Dev Ops for systems of record - Talk at Agile Australia 2015
Dev Ops for systems of record - Talk at Agile Australia 2015Dev Ops for systems of record - Talk at Agile Australia 2015
Dev Ops for systems of record - Talk at Agile Australia 2015
Mirco Hering
 
The NRB Group mainframe day 2021 - DevOps on Z - Jerome Klimm - Benoit Ebner
The NRB Group mainframe day 2021 - DevOps on Z - Jerome Klimm - Benoit EbnerThe NRB Group mainframe day 2021 - DevOps on Z - Jerome Klimm - Benoit Ebner
The NRB Group mainframe day 2021 - DevOps on Z - Jerome Klimm - Benoit Ebner
NRB
 
To successfully deliver your IT project: build your team, build your Agile it...
To successfully deliver your IT project: build your team, build your Agile it...To successfully deliver your IT project: build your team, build your Agile it...
To successfully deliver your IT project: build your team, build your Agile it...
Jean-François Nguyen
 
Building a custom cms with django
Building a custom cms with djangoBuilding a custom cms with django
Building a custom cms with django
Yann Malet
 
DevOps Delivery Pipeline
DevOps Delivery PipelineDevOps Delivery Pipeline
DevOps Delivery Pipeline
Denis Korchuganov
 
DITA Interoperability
DITA InteroperabilityDITA Interoperability
DITA Interoperability
Kristen Eberlein
 
Lessons Learned from Large Scale Adoption of DevOps for IBM z Systems Software
Lessons Learned from Large Scale Adoption of DevOps for IBM z Systems SoftwareLessons Learned from Large Scale Adoption of DevOps for IBM z Systems Software
Lessons Learned from Large Scale Adoption of DevOps for IBM z Systems Software
DevOps for Enterprise Systems
 
(SPOT205) 5 Lessons for Managing Massive IT Transformation Projects
(SPOT205) 5 Lessons for Managing Massive IT Transformation Projects(SPOT205) 5 Lessons for Managing Massive IT Transformation Projects
(SPOT205) 5 Lessons for Managing Massive IT Transformation Projects
Amazon Web Services
 
Key items for a digital enterprise
Key items for a digital enterpriseKey items for a digital enterprise
Key items for a digital enterprise
Jean-François Nguyen
 
A Study of Variable-Role-based Feature Enrichment in Neural Models of Code
A Study of Variable-Role-based Feature Enrichment in Neural Models of CodeA Study of Variable-Role-based Feature Enrichment in Neural Models of Code
A Study of Variable-Role-based Feature Enrichment in Neural Models of Code
Aftab Hussain
 
Mobile App Development Company In Noida | Drona Infotech
Mobile App Development Company In Noida | Drona InfotechMobile App Development Company In Noida | Drona Infotech
Mobile App Development Company In Noida | Drona Infotech
Drona Infotech
 

Mais conteúdo relacionado

Semelhante a Facilitating continuous delivery in a FinTech world with Salt, Jenkins, Nexus and Chocolatey

Continuous Integration
Continuous IntegrationContinuous Integration
Continuous Integration
XPDays
 
Continuous Delivery: releasing Better and Faster at Dashlane
Continuous Delivery: releasing Better and Faster at DashlaneContinuous Delivery: releasing Better and Faster at Dashlane
Continuous Delivery: releasing Better and Faster at Dashlane
Dashlane
 
SQL Server DevOps Jumpstart
SQL Server DevOps JumpstartSQL Server DevOps Jumpstart
SQL Server DevOps Jumpstart
Ori Donner
 
Continuos Integration and Delivery: from Zero to Hero with TeamCity, Docker a...
Continuos Integration and Delivery: from Zero to Hero with TeamCity, Docker a...Continuos Integration and Delivery: from Zero to Hero with TeamCity, Docker a...
Continuos Integration and Delivery: from Zero to Hero with TeamCity, Docker a...
Lean IT Consulting
 
Primeros pasos del Software Libre en infraestructura civil Civil Infrastructu...
Primeros pasos del Software Libre en infraestructura civil Civil Infrastructu...Primeros pasos del Software Libre en infraestructura civil Civil Infrastructu...
Primeros pasos del Software Libre en infraestructura civil Civil Infrastructu...
Agustin Benito Bethencourt
 
Versioning for Developers
Versioning for DevelopersVersioning for Developers
Versioning for Developers
Michelangelo van Dam
 
Making software development processes to work for you
Making software development processes to work for youMaking software development processes to work for you
Making software development processes to work for you
Ambientia
 
DevOps - IaC | Talk | AGILE GURUGRAM 2018 | 23 - 24 March, 2018
DevOps - IaC | Talk | AGILE GURUGRAM 2018 | 23 - 24 March, 2018DevOps - IaC | Talk | AGILE GURUGRAM 2018 | 23 - 24 March, 2018
DevOps - IaC | Talk | AGILE GURUGRAM 2018 | 23 - 24 March, 2018
AgileNetwork
 
PHP Unconference Continuous Integration
PHP Unconference Continuous IntegrationPHP Unconference Continuous Integration
PHP Unconference Continuous Integration
Nils Hofmeister
 
DevOps Training | DevOps Online Training in Hyderabad.pptx
DevOps Training | DevOps Online Training in Hyderabad.pptxDevOps Training | DevOps Online Training in Hyderabad.pptx
DevOps Training | DevOps Online Training in Hyderabad.pptx
ranjithvisualpath44
 
DevOps & DevEx
DevOps & DevExDevOps & DevEx
DevOps & DevEx
Ifunga Ndana
 
Dev Ops for systems of record - Talk at Agile Australia 2015
Dev Ops for systems of record - Talk at Agile Australia 2015Dev Ops for systems of record - Talk at Agile Australia 2015
Dev Ops for systems of record - Talk at Agile Australia 2015
Mirco Hering
 
The NRB Group mainframe day 2021 - DevOps on Z - Jerome Klimm - Benoit Ebner
The NRB Group mainframe day 2021 - DevOps on Z - Jerome Klimm - Benoit EbnerThe NRB Group mainframe day 2021 - DevOps on Z - Jerome Klimm - Benoit Ebner
The NRB Group mainframe day 2021 - DevOps on Z - Jerome Klimm - Benoit Ebner
NRB
 
To successfully deliver your IT project: build your team, build your Agile it...
To successfully deliver your IT project: build your team, build your Agile it...To successfully deliver your IT project: build your team, build your Agile it...
To successfully deliver your IT project: build your team, build your Agile it...
Jean-François Nguyen
 
Building a custom cms with django
Building a custom cms with djangoBuilding a custom cms with django
Building a custom cms with django
Yann Malet
 
DevOps Delivery Pipeline
DevOps Delivery PipelineDevOps Delivery Pipeline
DevOps Delivery Pipeline
Denis Korchuganov
 
DITA Interoperability
DITA InteroperabilityDITA Interoperability
DITA Interoperability
Kristen Eberlein
 
Lessons Learned from Large Scale Adoption of DevOps for IBM z Systems Software
Lessons Learned from Large Scale Adoption of DevOps for IBM z Systems SoftwareLessons Learned from Large Scale Adoption of DevOps for IBM z Systems Software
Lessons Learned from Large Scale Adoption of DevOps for IBM z Systems Software
DevOps for Enterprise Systems
 
(SPOT205) 5 Lessons for Managing Massive IT Transformation Projects
(SPOT205) 5 Lessons for Managing Massive IT Transformation Projects(SPOT205) 5 Lessons for Managing Massive IT Transformation Projects
(SPOT205) 5 Lessons for Managing Massive IT Transformation Projects
Amazon Web Services
 
Key items for a digital enterprise
Key items for a digital enterpriseKey items for a digital enterprise
Key items for a digital enterprise
Jean-François Nguyen
 

Semelhante a Facilitating continuous delivery in a FinTech world with Salt, Jenkins, Nexus and Chocolatey (20)

Continuous Integration
Continuous IntegrationContinuous Integration
Continuous Integration
 
Continuous Delivery: releasing Better and Faster at Dashlane
Continuous Delivery: releasing Better and Faster at DashlaneContinuous Delivery: releasing Better and Faster at Dashlane
Continuous Delivery: releasing Better and Faster at Dashlane
 
SQL Server DevOps Jumpstart
SQL Server DevOps JumpstartSQL Server DevOps Jumpstart
SQL Server DevOps Jumpstart
 
Continuos Integration and Delivery: from Zero to Hero with TeamCity, Docker a...
Continuos Integration and Delivery: from Zero to Hero with TeamCity, Docker a...Continuos Integration and Delivery: from Zero to Hero with TeamCity, Docker a...
Continuos Integration and Delivery: from Zero to Hero with TeamCity, Docker a...
 
Primeros pasos del Software Libre en infraestructura civil Civil Infrastructu...
Primeros pasos del Software Libre en infraestructura civil Civil Infrastructu...Primeros pasos del Software Libre en infraestructura civil Civil Infrastructu...
Primeros pasos del Software Libre en infraestructura civil Civil Infrastructu...
 
Versioning for Developers
Versioning for DevelopersVersioning for Developers
Versioning for Developers
 
Making software development processes to work for you
Making software development processes to work for youMaking software development processes to work for you
Making software development processes to work for you
 
DevOps - IaC | Talk | AGILE GURUGRAM 2018 | 23 - 24 March, 2018
DevOps - IaC | Talk | AGILE GURUGRAM 2018 | 23 - 24 March, 2018DevOps - IaC | Talk | AGILE GURUGRAM 2018 | 23 - 24 March, 2018
DevOps - IaC | Talk | AGILE GURUGRAM 2018 | 23 - 24 March, 2018
 
PHP Unconference Continuous Integration
PHP Unconference Continuous IntegrationPHP Unconference Continuous Integration
PHP Unconference Continuous Integration
 
DevOps Training | DevOps Online Training in Hyderabad.pptx
DevOps Training | DevOps Online Training in Hyderabad.pptxDevOps Training | DevOps Online Training in Hyderabad.pptx
DevOps Training | DevOps Online Training in Hyderabad.pptx
 
DevOps & DevEx
DevOps & DevExDevOps & DevEx
DevOps & DevEx
 
Dev Ops for systems of record - Talk at Agile Australia 2015
Dev Ops for systems of record - Talk at Agile Australia 2015Dev Ops for systems of record - Talk at Agile Australia 2015
Dev Ops for systems of record - Talk at Agile Australia 2015
 
The NRB Group mainframe day 2021 - DevOps on Z - Jerome Klimm - Benoit Ebner
The NRB Group mainframe day 2021 - DevOps on Z - Jerome Klimm - Benoit EbnerThe NRB Group mainframe day 2021 - DevOps on Z - Jerome Klimm - Benoit Ebner
The NRB Group mainframe day 2021 - DevOps on Z - Jerome Klimm - Benoit Ebner
 
To successfully deliver your IT project: build your team, build your Agile it...
To successfully deliver your IT project: build your team, build your Agile it...To successfully deliver your IT project: build your team, build your Agile it...
To successfully deliver your IT project: build your team, build your Agile it...
 
Building a custom cms with django
Building a custom cms with djangoBuilding a custom cms with django
Building a custom cms with django
 
DevOps Delivery Pipeline
DevOps Delivery PipelineDevOps Delivery Pipeline
DevOps Delivery Pipeline
 
DITA Interoperability
DITA InteroperabilityDITA Interoperability
DITA Interoperability
 
Lessons Learned from Large Scale Adoption of DevOps for IBM z Systems Software
Lessons Learned from Large Scale Adoption of DevOps for IBM z Systems SoftwareLessons Learned from Large Scale Adoption of DevOps for IBM z Systems Software
Lessons Learned from Large Scale Adoption of DevOps for IBM z Systems Software
 
(SPOT205) 5 Lessons for Managing Massive IT Transformation Projects
(SPOT205) 5 Lessons for Managing Massive IT Transformation Projects(SPOT205) 5 Lessons for Managing Massive IT Transformation Projects
(SPOT205) 5 Lessons for Managing Massive IT Transformation Projects
 
Key items for a digital enterprise
Key items for a digital enterpriseKey items for a digital enterprise
Key items for a digital enterprise
 

Último

A Study of Variable-Role-based Feature Enrichment in Neural Models of Code
A Study of Variable-Role-based Feature Enrichment in Neural Models of CodeA Study of Variable-Role-based Feature Enrichment in Neural Models of Code
A Study of Variable-Role-based Feature Enrichment in Neural Models of Code
Aftab Hussain
 
Mobile App Development Company In Noida | Drona Infotech
Mobile App Development Company In Noida | Drona InfotechMobile App Development Company In Noida | Drona Infotech
Mobile App Development Company In Noida | Drona Infotech
Drona Infotech
 
Artificia Intellicence and XPath Extension Functions
Artificia Intellicence and XPath Extension FunctionsArtificia Intellicence and XPath Extension Functions
Artificia Intellicence and XPath Extension Functions
Octavian Nadolu
 
Vitthal Shirke Java Microservices Resume.pdf
Vitthal Shirke Java Microservices Resume.pdfVitthal Shirke Java Microservices Resume.pdf
Vitthal Shirke Java Microservices Resume.pdf
Vitthal Shirke
 
Quarkus Hidden and Forbidden Extensions
Quarkus Hidden and Forbidden ExtensionsQuarkus Hidden and Forbidden Extensions
Quarkus Hidden and Forbidden Extensions
Max Andersen
 
Cracking the code review at SpringIO 2024
Cracking the code review at SpringIO 2024Cracking the code review at SpringIO 2024
Cracking the code review at SpringIO 2024
Paco van Beckhoven
 
Fundamentals of Programming and Language Processors
Fundamentals of Programming and Language ProcessorsFundamentals of Programming and Language Processors
Fundamentals of Programming and Language Processors
Rakesh Kumar R
 
Empowering Growth with Best Software Development Company in Noida - Deuglo
Empowering Growth with Best Software Development Company in Noida - DeugloEmpowering Growth with Best Software Development Company in Noida - Deuglo
Empowering Growth with Best Software Development Company in Noida - Deuglo
Deuglo Infosystem Pvt Ltd
 
Transform Your Communication with Cloud-Based IVR Solutions
Transform Your Communication with Cloud-Based IVR SolutionsTransform Your Communication with Cloud-Based IVR Solutions
Transform Your Communication with Cloud-Based IVR Solutions
TheSMSPoint
 
AI Pilot Review: The World’s First Virtual Assistant Marketing Suite
AI Pilot Review: The World’s First Virtual Assistant Marketing SuiteAI Pilot Review: The World’s First Virtual Assistant Marketing Suite
AI Pilot Review: The World’s First Virtual Assistant Marketing Suite
Google
 
Essentials of Automations: The Art of Triggers and Actions in FME
Essentials of Automations: The Art of Triggers and Actions in FMEEssentials of Automations: The Art of Triggers and Actions in FME
Essentials of Automations: The Art of Triggers and Actions in FME
Safe Software
 
GOING AOT WITH GRAALVM FOR SPRING BOOT (SPRING IO)
GOING AOT WITH GRAALVM FOR SPRING BOOT (SPRING IO)GOING AOT WITH GRAALVM FOR SPRING BOOT (SPRING IO)
GOING AOT WITH GRAALVM FOR SPRING BOOT (SPRING IO)
Alina Yurenko
 
2024 eCommerceDays Toulouse - Sylius 2.0.pdf
2024 eCommerceDays Toulouse - Sylius 2.0.pdf2024 eCommerceDays Toulouse - Sylius 2.0.pdf
2024 eCommerceDays Toulouse - Sylius 2.0.pdf
Łukasz Chruściel
 
A Sighting of filterA in Typelevel Rite of Passage
A Sighting of filterA in Typelevel Rite of PassageA Sighting of filterA in Typelevel Rite of Passage
A Sighting of filterA in Typelevel Rite of Passage
Philip Schwarz
 
Utilocate provides Smarter, Better, Faster, Safer Locate Ticket Management
Utilocate provides Smarter, Better, Faster, Safer Locate Ticket ManagementUtilocate provides Smarter, Better, Faster, Safer Locate Ticket Management
Utilocate provides Smarter, Better, Faster, Safer Locate Ticket Management
Utilocate
 
Launch Your Streaming Platforms in Minutes
Launch Your Streaming Platforms in MinutesLaunch Your Streaming Platforms in Minutes
Launch Your Streaming Platforms in Minutes
Roshan Dwivedi
 
E-commerce Application Development Company.pdf
E-commerce Application Development Company.pdfE-commerce Application Development Company.pdf
E-commerce Application Development Company.pdf
Hornet Dynamics
 
GraphSummit Paris - The art of the possible with Graph Technology
GraphSummit Paris - The art of the possible with Graph TechnologyGraphSummit Paris - The art of the possible with Graph Technology
GraphSummit Paris - The art of the possible with Graph Technology
Neo4j
 
Navigating the Metaverse: A Journey into Virtual Evolution"
Navigating the Metaverse: A Journey into Virtual Evolution"Navigating the Metaverse: A Journey into Virtual Evolution"
Navigating the Metaverse: A Journey into Virtual Evolution"
Donna Lenk
 
Automated software refactoring with OpenRewrite and Generative AI.pptx.pdf
Automated software refactoring with OpenRewrite and Generative AI.pptx.pdfAutomated software refactoring with OpenRewrite and Generative AI.pptx.pdf
Automated software refactoring with OpenRewrite and Generative AI.pptx.pdf
timtebeek1
 

Último (20)

A Study of Variable-Role-based Feature Enrichment in Neural Models of Code
A Study of Variable-Role-based Feature Enrichment in Neural Models of CodeA Study of Variable-Role-based Feature Enrichment in Neural Models of Code
A Study of Variable-Role-based Feature Enrichment in Neural Models of Code
 
Mobile App Development Company In Noida | Drona Infotech
Mobile App Development Company In Noida | Drona InfotechMobile App Development Company In Noida | Drona Infotech
Mobile App Development Company In Noida | Drona Infotech
 
Artificia Intellicence and XPath Extension Functions
Artificia Intellicence and XPath Extension FunctionsArtificia Intellicence and XPath Extension Functions
Artificia Intellicence and XPath Extension Functions
 
Vitthal Shirke Java Microservices Resume.pdf
Vitthal Shirke Java Microservices Resume.pdfVitthal Shirke Java Microservices Resume.pdf
Vitthal Shirke Java Microservices Resume.pdf
 
Quarkus Hidden and Forbidden Extensions
Quarkus Hidden and Forbidden ExtensionsQuarkus Hidden and Forbidden Extensions
Quarkus Hidden and Forbidden Extensions
 
Cracking the code review at SpringIO 2024
Cracking the code review at SpringIO 2024Cracking the code review at SpringIO 2024
Cracking the code review at SpringIO 2024
 
Fundamentals of Programming and Language Processors
Fundamentals of Programming and Language ProcessorsFundamentals of Programming and Language Processors
Fundamentals of Programming and Language Processors
 
Empowering Growth with Best Software Development Company in Noida - Deuglo
Empowering Growth with Best Software Development Company in Noida - DeugloEmpowering Growth with Best Software Development Company in Noida - Deuglo
Empowering Growth with Best Software Development Company in Noida - Deuglo
 
Transform Your Communication with Cloud-Based IVR Solutions
Transform Your Communication with Cloud-Based IVR SolutionsTransform Your Communication with Cloud-Based IVR Solutions
Transform Your Communication with Cloud-Based IVR Solutions
 
AI Pilot Review: The World’s First Virtual Assistant Marketing Suite
AI Pilot Review: The World’s First Virtual Assistant Marketing SuiteAI Pilot Review: The World’s First Virtual Assistant Marketing Suite
AI Pilot Review: The World’s First Virtual Assistant Marketing Suite
 
Essentials of Automations: The Art of Triggers and Actions in FME
Essentials of Automations: The Art of Triggers and Actions in FMEEssentials of Automations: The Art of Triggers and Actions in FME
Essentials of Automations: The Art of Triggers and Actions in FME
 
GOING AOT WITH GRAALVM FOR SPRING BOOT (SPRING IO)
GOING AOT WITH GRAALVM FOR SPRING BOOT (SPRING IO)GOING AOT WITH GRAALVM FOR SPRING BOOT (SPRING IO)
GOING AOT WITH GRAALVM FOR SPRING BOOT (SPRING IO)
 
2024 eCommerceDays Toulouse - Sylius 2.0.pdf
2024 eCommerceDays Toulouse - Sylius 2.0.pdf2024 eCommerceDays Toulouse - Sylius 2.0.pdf
2024 eCommerceDays Toulouse - Sylius 2.0.pdf
 
A Sighting of filterA in Typelevel Rite of Passage
A Sighting of filterA in Typelevel Rite of PassageA Sighting of filterA in Typelevel Rite of Passage
A Sighting of filterA in Typelevel Rite of Passage
 
Utilocate provides Smarter, Better, Faster, Safer Locate Ticket Management
Utilocate provides Smarter, Better, Faster, Safer Locate Ticket ManagementUtilocate provides Smarter, Better, Faster, Safer Locate Ticket Management
Utilocate provides Smarter, Better, Faster, Safer Locate Ticket Management
 
Launch Your Streaming Platforms in Minutes
Launch Your Streaming Platforms in MinutesLaunch Your Streaming Platforms in Minutes
Launch Your Streaming Platforms in Minutes
 
E-commerce Application Development Company.pdf
E-commerce Application Development Company.pdfE-commerce Application Development Company.pdf
E-commerce Application Development Company.pdf
 
GraphSummit Paris - The art of the possible with Graph Technology
GraphSummit Paris - The art of the possible with Graph TechnologyGraphSummit Paris - The art of the possible with Graph Technology
GraphSummit Paris - The art of the possible with Graph Technology
 
Navigating the Metaverse: A Journey into Virtual Evolution"
Navigating the Metaverse: A Journey into Virtual Evolution"Navigating the Metaverse: A Journey into Virtual Evolution"
Navigating the Metaverse: A Journey into Virtual Evolution"
 
Automated software refactoring with OpenRewrite and Generative AI.pptx.pdf
Automated software refactoring with OpenRewrite and Generative AI.pptx.pdfAutomated software refactoring with OpenRewrite and Generative AI.pptx.pdf
Automated software refactoring with OpenRewrite and Generative AI.pptx.pdf
 

Facilitating continuous delivery in a FinTech world with Salt, Jenkins, Nexus and Chocolatey

  • 1. Internal Facilitating continuous delivery in a FinTech world with Salt, Jenkins, Nexus and Chocolatey Michel Buczynski, DevOps Coach TD Securities
  • 2. Internal Disclaimer While this session is mainly based on work done for various employers and my contemporary observations, this session will focus on my personal opinions. As such, material herein is not necessarily representative of my present or my previous employers' opinion.
  • 3. Internal Who am I Born in '73 and raised in Montreal, work and live in Toronto. About me: • I disassembled (hum! Destroy) the family TV at 3 years old to understand where the images and sounds were coming from. • I got my first programming contract at 16. • I practiced Agile before Agile, and DevOps before DevOps, and I think I am not alone.
  • 4. Internal What I am doing now DevOps Coach • Implementation of a tools-chain for Continuous Delivery (CD). • Define a standardized workflow for the CD pipeline. • Coach team members on how to properly use the tools-chain and follow the workflow. • My goal is to ensure that our team produces, delivers, and maintains efficient and quality software in the easiest and fastest possible manner.
  • 5. Internal Current Gig TD Securities is part of the TD Bank Group • The Toronto-Dominion Bank & its subsidiaries are collectively known as TD Bank Group (TD). TD is the sixth largest bank in North America by branches & serves approximately 22 million customers in a number of locations in key financial centers around the globe. Over 85,000 TD employees represent the strongest team in banking. Delivering legendary customer experiences is who we are & is part of being the Better Bank. • I am working in the capital markets division (TD Securities); specifically for the global equity derivatives business.
  • 6. Internal FinTech • FinTech Wikipedia definition: Financial technology (FinTech or fintech) is the new technology and innovation that aims to compete with traditional financial methods in the delivery of financial services. • FinTech uses the latest IT technologies like Big Data, IoT, Machine Learning, etc. • The banking industry is the major provider of financial services. • Since the banking industry was one the first users of computer systems, banks sometimes have to rely on legacy systems.
  • 7. Internal The Challenge of DevOps in the Banking Industry • The size and the age of the enterprise. • Regulations, compliance, audits, separation of duties, … • A varied infrastructure based on both legacy and modern technologies. • The use of 3rd party and legacy software. • New Technology Introduction (NTI). • Conservative approach with a very strong need for stability. • Changes will be always difficult to apply because it is especially difficult to change the way people works. But, it is also difficult to make change without changing the way people work.
  • 8. Internal What our Team Does • We are a cross-functional team dedicated to producing cutting- edge FinTech software. • Most of our development is based on FOSS (Free Open Source Software) framework or platform: Node.JS, Erlang/Elixir, Angular5, Scala, Python, R and Java. • Our software architecture is microservice oriented. • Our system is integrated with some legacy COTS (Commercial Off-The-Shelf) applications tied to Windows desktop and server. • Developing in-house software permits us to have more flexible and adapted software, effectively leveraging our knowledge capital and reducing our dependency on 3rd parties.
  • 9. Internal Our Team's DevOps Journey A Long Journey Begins with a Single Step • Most of our application code uses version control (VC) GIT. • No centralized GIT VC systems employed. • No automated testing. • Weekly painful manual deployment. It was honestly an achievement to have such a short yet manual release cycle.
  • 10. Internal Our Team's DevOps Journey Today • Application code, configuration (source) and packaged artifacts (target) are all in VC. • Continuous Integration. • Automated deployments. • Most of our system configuration is automated. • Most of the application testing is automated.
  • 11. Internal Our Team's DevOps Journey The Future • Provide self-serve services and resources for non- developers. Ex: Release management, pick commit for release candidate, release notes automation, etc… • Make automated testing of infrastructure changes. • Make provisioning automated on all targets. • Make success metrics visible. • Make incident responses automated.
  • 12. Internal Standardize your Workflow Everything in VC • Source code, Source library, Application configs. • Artifacts, System configuration. • Package everything, put it in a VC repositories. Especially what is not your own code. • The good, the bad and the ugly about .MSI. • Chocolatey: the solution for Windows.
  • 13. Internal Standardize your Workflow Set a common branching model. • Create your own or use the standard GitFlow. • The branching model set relations between the target environment, the approval process, the version numbering, CI steps, ...
  • 15. Internal Standardize your Workflow Set a common version numbering system • Chocolatey and Nuget package versioning: SemVer. • The good, the bad and the ugly about SemVer. • A solutions the YMX.
  • 16. Internal Standardize your Workflow Chocolatey and Nuget package versioning. All version Chocolatey and Nuget support SemVer 1.0 : A specific version number is in the form Major.Minor.Patch[-Suffix], where the components have the following meanings: •Major: Breaking changes •Minor: New features, but backwards compatible •Patch: Backwards compatible bug fixes only •-Suffix (optional): a hyphen followed by a string denoting a pre-release version. Examples: 1.0.1 6.11.1231 4.3.1-rc 2.2.44-beta 11.0.1-alpha All version Chocolatey and Nuget also support Microsoft Version Numbers: A specific version number has the a 4 number form: Major.Minor.Buid.Revision Chocolatey call this form : Package Fix version Notation Examples: 1.2.0.20181008
  • 17. Internal Standardize your Workflow The good, the bad and the ugly about SemVer. The good: • Has release and pre-release version • Tell you if you need to update: • MAJOR: Breaking API change Not safe to update • MINOR: New features Safe to update • PATCH: Bugfixes Must update
  • 18. Internal Standardize your Workflow The good, the bad and the ugly about SemVer. The bad: • With rapid space of CD is difficult to follow MAJOR, MINOR and PATCH ordering. • It's assumes that every goes well and arrive on time. • It's only great once the product is done and tested.
  • 19. Internal Standardize your Workflow The good, the bad and the ugly about SemVer. The ugly: • Difficult to automate. • Need a lots manual intervention. • With things like versioning of things API, the MAJOR and MINOR doesn't mean anything for artifacts version. • You can always put the major version in the product name. Ex: X11, Oracle12c and C
  • 20. Internal Standardize your workflow A solution the YMX. • Inspired on Docker’s versioning scheme • RELEASE version for master branch: YY.M.N 18.1.9 • RELEASE CANDIDATE Version for release/ and hotfixe/ branch: YY.M.N-rcX 18.1.9-rc 18.3.2-rc4 • ALPHA Version for feature/ branch: YY.M.N-alpha-DD-hhhhhhh 18.3.3-alpha-08-df81230 for the commit done the Mars 8th 2018 in preparation for third release in Mars 2018 RELEASE CANDIDATE Version for release/ and hotfixe/ branch: YY.M.N-rcX
  • 21. Internal Standardize your Workflow Clean up and Enforce • Clean up all your repositories. • By doing a clean-up, it is the right time to introduce new tools and processes. • Train your team to use new tools and teach them how to apply your workflow and demonstrate why. • Enforce workflow progressively by applying it, with a small group of team members and target applications.
  • 22. Internal Jenkins 2 • Pipeline as a code. • Create your own Shared Libraries. • YMX automatic versioning. • <Live demo>
  • 23. Internal Jenkins 2 Pipeline as a code. • Pipeline as Code describes a set of features that allow Jenkins users to define pipelined job processes with code, stored and versioned in a source repository. These features allow Jenkins to discover, manage, and run jobs for multiple source repositories and branches — eliminating the need for manual job creation and management. • To use Pipeline as Code, projects must contain a file named Jenkinsfile in the repository root, which contains a "Pipeline script."
  • 24. Internal Jenkins 2 Create your own Shared Libraries. • As Pipeline is adopted for more and more projects in an organization, common patterns are likely to emerge. Oftentimes it is useful to share parts of Pipelines between various projects to reduce redundancies and keep code "DRY". • Pipeline has support for creating "Shared Libraries" which can be defined in external source control repositories and loaded into existing Pipelines
  • 25. Internal Jenkins 2 Create your own Shared Libraries. • Declarative Pipeline • Scripted Pipeline Directory structure The directory structure of a Shared Library repository is as follows: (root) +- src # Groovy source files | +- org | +- foo | +- Bar.groovy # for org.foo.Bar class +- vars | +- foo.groovy # for global 'foo' variable | +- foo.txt # help for 'foo' variable | +- bar.groovy # bar custom step, call def call() +- resources # resource files (external libraries only) | +- org | +- foo | +- bar.json # static helper data for org.foo.Bar
  • 27. Internal Sonatype Nexus • Nexus introduction. • Consideration for Chocolatey. • <Live demo>
  • 28. Internal Sonatype Nexus Nexus Reposory Manager introduction • Universal package manager That give us the ability to apply security and compliance metrics across all artifact types. Universal package managers have been referred to as being at the center of a DevOps toolchain • Nexus Repository OSS 3.xx, supports those formats: APT, Composer, Conan, CPAN, Docker, ELPA, Git LFS, Helm, Maven, npm, NuGet, P2, PyPI, R, Raw, RubyGems, Yum
  • 29. Internal Sonatype Nexus Consideration for Chocolatey. • Don’t mix Nuget package with Chocolatey package. Even if Chocolatey is based on the NuGet framework, it doesn’t mean that they are the same type of package. • Separated in different repositories, depending on the target. Users workstations, developer workstations, agents workstations, servers. You can also create separate repositories for certain products.
  • 31. Internal SaltStack • Introducing SaltStack • Salt architecture • Execute remote or local command • Salt and Chocolatey. • Defining the desired States • Jinja2 and Pillars • Live demo.
  • 32. Internal SaltStack Introducing SaltStack • Open-source configuration management software and remote execution engine. • Infrastructure as code • Python based • Use asynchronous messaging queue • Fast and scalable • Mainly referred as “Salt”
  • 33. Internal SaltStack Salt architecture • Designed for high speed data collection and execution in system administration environments. At beginning Salt was relying on ZeroMQ. Salt now has is own realiable queuing transport system: RAET (Reliable Asynchronous Event Transport Protocol). Which permit Salt to be scalable well beyond tens of thousands of servers.
  • 34. Internal SaltStack Salt architecture • Salt mainly use a slave-master setup, that enables Salt to do push or pull remote execution. The slave or the agent is called : Minion. • Minion can be also be used alone in a MasterLess mode. • Salt has also AgentLess mode called: Salt-SSH. Salt has no Windows AgentLess mode yet.
  • 35. Internal SaltStack Salt architecture • Salt mainly use a slave-master setup, that enables Salt to do push or pull execution. The slave or the agent is called : Minion. • Minion can be also be used alone in a MasterLess mode. • Salt has also AgentLess mode called: Salt-SSH. Salt has no Windows AgentLess mode yet. • Salt permit also event-driven execution and self-healing.
  • 36. Internal SaltStack Salt architecture • The modular design of Salt is done by module written in Python. By the abilities to write your own Salt Module, Salt is easily extensible. • Module types: • Execution modules • State modules • Grains • Renderer modules • Returners • Runners
  • 37. Internal SaltStack Execute remote command • salt-call '*' test.ping • salt-call '*' disk.usage • salt-call -G 'os:Windows' cmd.run ‘dir‘ • salt-call –local cmd.powershell “Get-ChildItem c:”
  • 38. Internal SaltStack Saltstack and chocolatey • salt-call --local chocolatey.bootstrap • salt-call --local chocolatey.update firefox
  • 39. Internal SaltStack Defining the desired States • firefox.sls : chocolatey: pkg.installed firefox: chocolatey.upgraded: - pkgs: - firefox • salt-call state.apply firefox
  • 40. Internal SaltStack Jinja2 and Pillars • Using grains in SLS • Pillars apache: {% if grains['os'] == 'RedHat' %} pkg.installed: - name: httpd {% elif grains['os'] == 'Ubuntu' %} pkg.installed: - name: apache2 {% if grains['os'] == ‘Windows' %} chocolatey.installed: - name: apache-httpd {% endif %}
  • 42. Internal Choclatey hacks • Multiple instances of Chocolatey. • Mock a package install. Workstations • Internalize your Chocolatey packages. • Onboarding developers workstation. • Life without Citrix.
  • 43. Internal What we've Learned • Patience. Renovating a house will always take more resources than building a new one. But the importance is to always be evolving. • Impose standardization of your process. Less experienced team members will often have a certain lack of discipline. But some older team members are more resistant to change their discipline. • Make the jobs fun. Try to replace boring tasks by automated process or try to reduce time past on those boring tasks.
  • 44. Internal What we learn • Try to avoid everything that is not human readable like .MSI, .XML and Windows registry. • Click, click alone is really very bad. If you can write a how-to wiki. You can write a script (preferably with a CM). If you have a good script, you can do a one- liner command. With that you can easily create a WebUI or GUI for a secure self-service. • Concentrate on useful metrics and make only useful alerts. • Innovate and don't be afraid to push the envelope
  • 45. Internal Thanks • A special thanks to my team at TD. • To Rob Reynolds, to make me love Windows again. • Chocolatey Fest team…