Containers

Autoscaling Amazon ECS services based on custom CloudWatch and Prometheus metrics

Introduction Horizontal scalability is a critical aspect of cloud native applications. Microservices deployed to Amazon ECS leverage the Application Auto Scaling service to automatically scale based on observed metrics data. Amazon ECS measures service utilization based on CPU and memory resources consumed by the tasks that belong to a service and publishes CloudWatch metrics, namely, […]

Read More

Deploy a Spring Boot application on a multi-architecture Amazon EKS cluster

Introduction Why might customers consider deploying applications on a multi-architecture Amazon Elastic Kubernetes Service (Amazon EKS) cluster, with both ARM-based and AMD-based instances? Cost optimization is often a key business driver of my customers. It’s also a key pillar for a well-architected design. Usually, there are a few widely applicable strategies for you to save […]

Read More

How to build container images with Amazon EKS on Fargate

This post was contributed by Re Alvarez Parmar and Olly Pomeroy Containers help developers simplify the way they package, distribute, and deploy their applications. Developers package their code into a container image that includes the application code, libraries, and any other dependencies. This image can be used to deploy the containerized application on any compatible […]

Read More

Amazon ECR’s credential helper now supports Amazon ECR Public

amazon-ecr-credential-helper is a credential helper for the Docker daemon that makes it easier to use Amazon Elastic Container Registry (ECR). Once configured, ECR credential helper automatically uses the same credentials as the AWS CLI and the AWS SDKs to first retrieve an ECR authentication token for secure access to repositories, then lets the Docker daemon […]

Read More

Theoretical cost optimization by Amazon ECS launch type: Fargate vs EC2

This post was contributed by Julia Beck, Thomas Le Moullec, Kevin Polossat, and Sam Sanders Customers often ask about best practices when using Amazon Elastic Container Service (Amazon ECS), in particular around the Well-Architected Framework pillar of Cost Optimization. Within this, choosing between the two different launch types, EC2 and Fargate, may be one of […]

Read More
mTLS in App Mesh

Using mTLS with SPIFFE/SPIRE in AWS App Mesh on Amazon EKS

By Efe Selcuk and Apurup Chevuru and Michael Hausenblas You know that here at AWS we consider security as “job zero” and in the context of the shared responsibility model we provide you with controls to take care of your part. One popular use case of service meshes is to strengthen the security posture of […]

Read More

Introducing OIDC identity provider authentication for Amazon EKS

Today, we introduced user authentication for Amazon EKS clusters from an OpenID Connect (OIDC) Identity Provider (IDP). This feature allows customers to integrate an OIDC identity provider with a new or existing Amazon EKS cluster running Kubernetes version 1.16 or later. The OIDC IDP can be used as an alternative to, or along with AWS […]

Read More

Building HTTP API-based services using Amazon API Gateway, AWS PrivateLink and AWS Fargate

Authors: Irshad A. Buchh, Sr. Partner Management Solutions Architect at AWS & Andy Warzon, CTO at Trek10 This post is contributed by Amazon Web Services and Trek10. As an AWS Partner Network (APN) Premier Technology Partner with AWS Competencies in DevOps, IoT, and SaaS Consulting, Trek10 provides consulting and managed services for AWS clients of […]

Read More

Amazon Elastic Container Service Anomaly Detector using Amazon EventBridge

This post was contributed by Ugur KIRA and Santosh Kumar. This concept originated from discussions with Skyscanner UK regarding to manage ECS clusters at large scale. Amazon EventBridge is a serverless event bus that makes it easy to connect applications together using data from your own applications, integrated Software-as-a-Service (SaaS) applications, and AWS services. EventBridge […]

Read More

Sharing Amazon ECR repositories with multiple accounts using AWS Organizations

Customers are adopting multi-account deployments in AWS given the improved security and separation of duties it provides. Some AWS services, like Amazon Elastic Container Registry (ECR), support scalability when a single instance is shared between accounts to reduce management overhead and increase visibility. AWS accounts have become an elastic resource, where the account number and […]

Read More