Archive for the ‘tips and tricks’ Category

19 Feb

Perspective: User Requirements for Technology Projects

Posted by ssmusoke in enterprenur, frugal innovation, software delivery, tips and tricks. Tagged: , , , , .

I was asked to talk about the handling of user requirements, how to link them to implementation within technology projects, by The Medical Concierge Group (TMCG) a digital ehealth service provider.

The key principles are being able to respond to change (agile), keep learning, and how to capture business/customer outcomes as well as improving communication across different departments and external stakeholders.

Advertisement

17 Feb

TechTip: Secure Access to S3 Folder

Posted by ssmusoke in aws, devops, tips and tricks. Tagged: .

This is more a reminder to myself, so that I do not always have to struggle. Amazon S3 is probably the cheapest cloud storage service, that exists, and in these days of multi-tenant architecutures, provides a great way of accessing data from multiple instances.

However in some cases, you need to store files in S3 that are not viewable to anyone in the world, only to your app. I am hoping that this guide will help with that, and I will keep improving it with feedback and additional learning

The steps are as follows:

  1. Optional: Create an IAM group for users to help in user management
  2. Create an IAM user for each app environment with programmatic access to provide isolation from all other users who share the AWS account, I recommend creating separate users for dev, qa and production environment
  3. Generate access keys for each user which will be used to configure the app
  4. Create an access policy for each environment to restrict access to a bucket or a collection of buckets like below for restricting access to only the dev bucket
    {
  "Version": "2012-10-17",
  "Statement": [
    {
      "Sid": "VisualEditor1",
      "Effect": "Allow",
      "Action": [
        "s3:ListBucket"
      ],
      "Resource": [
        "arn:aws:s3:::project-dev"
      ]
    },
    {
      "Sid": "VisualEditor0",
      "Effect": "Allow",
      "Action": "s3:*",
      "Resource": [
        "arn:aws:s3:::project-dev/*"
      ]
    }
  ]
}
  5. Create S3 buckets with no public access, but with the names matching what is defined in the policies
  6. Test adding files to S3 using the credentials to confirm access (I tend to use the AWS cli with profiles for this case)
    

    aws s3 ls s3://project-dev –profile project-dev
    

    7. 



UPDATE 1 – February 24, 2019: Added a poilicy for being able to read the bucket which is different from the bucket contents, see Sid: VisualEditor1.

			

		


	
		

			

				26
				Oct
			

			
Agile Software Development for Ugandan Context 2019 Edition

			

			Posted by ssmusoke in APIs, opensource, software delivery, software development lifecycle, tips and tricks.			Tagged: .			

			

				
Excited to share my thoughts and experiences in agile software delivery for use within Uganda at the Google Dev Fest in Kampala, on October 26, 2019



 


 

			

		


	
		

			

				18
				Oct
			

			
My OpenSource Journey

			

			Posted by ssmusoke in opensource, software development lifecycle, tips and tricks.			Tagged: .			

			

				
I am having a great time sharing my experiences with new developers as part of giving back to the community hoping to encourage them on their own journeys…


			

		


	
		

			

				16
				Oct
			

			
Application and Data Security in the Software Development Lifecycle

			

			Posted by ssmusoke in APIs, devops, opensource, software delivery, software development lifecycle, tips and tricks.			Tagged: , , .			

			

				
This is presentation to Computer Engineering 4th year undergraduate students at Makerere University, Faculty of Technology, College of Design, Art and Technology to introduce them to concepts and approaches for application and data security in the software development process.



Looking for ideas on what I may have missed or omitted to help make this presentation more useful for others

			

		


	
		

			
« Older Entries

			
Newer Entries »

		
















		
		




	

		

	

		
						
		

		
		



	
	


	
	
						
		
		
		




		
				
			
	

		

			%d bloggers like this: