Learn Everything About Building Modern Applications from the Experts–Register Now for SpringOne and DevOps Loop at VMworld

This autumn will start full of high-quality and free events that you cannot miss out on: SpringOne and DevOps Loop at VMworld. These events are a unique opportunity to learn about the latest and greatest in the world of modern apps from world-class experts. Read more to discover what you can learn by attending these two online and free events.  

SpringOne  

From September 1-2 at 9AM–6PM ET, SpringOne brings you the opportunity to meet developers, DevOps pros, and software leaders that will teach you the latest trends on building modern cloud native applications.  

Whether you are a developer, an architect, a cloud engineer, or a tech leader, this conference has a session or workshop that perfectly fits your needs.  

In SpringOne, you will have the chance to learn about the following topics delivered as sessions and workshops: 

• CI/CD 
• Reactive 
• Kubernetes 
• DevOps 
• Agile 
• Modern web 
• Microservices 
• Core framework 
• Leadership 
• Modernization 

What can you expect to discover by attending SpringOne: 

• Five tracks of content with more than 15 breakout sessions classified by level of knowledge, covering Spring to Kubernetes to digital transformation —and everything in between. 
• Instructor-led workshops intended for you to boost your skills in building scalable applications.  
• Main Stage sessions with industry all-stars from all over the world. 
• Virtual fun in the Social track for engaging with the community.  

It is free, it is online – when are you going to register?  

Register for SpringOne 2021 for free now! 

DevOps Loop at VMworld 

SpringOne is not the only chance you will have to learn everything about modern applications. In October, VMware is hosting a one-day, free online event with world-class software industry experts just before VMworld starts: DevOps Loop at VMworld.  

DevOps Loop at VMworld is for anyone involved in automating, managing, and scaling modern applications.  

Connect on October 4 from 9AM–5PM EST to learn about: 

• DevOps in the age of Kubernetes 
• Using Kubernetes as a DevSecOps platform 
• Securing the software supply chain 
• Monitoring and observability 
• Operating your platform as a product 

Check out the agenda to learn more about the sessions and the speakers that will lead them.  

Do not miss the chance to attend DevOps Loop at VMworld and register for free today! 

Kubeapps Now Supports Private Helm and Docker Registries

The Kubeapps team has released a new version that provides support for private Helm repositories with private Docker images. This is the second release in a month, since last April, Kubeapps also extended its catalog with support for operators. 

From now on, Kubeapps users can include private Docker images in their customized Helm charts and deploy them directly from a private Helm repository.  This support is aligned with the Kubernetes RBAC authentication model with private credentials available only in the configured namespace. Users can only add private repositories in those namespaces in which they have the required permissions.  Similarly, only those users with access to that namespace have access to deploy the charts with private images.

Kubeapps officially supports the following private Helm repositories:

• ChartMuseum 
• Harbor 
• Artifactory (Pro) 

Chose the option that better suits your team and start deploying custom applications from your private repositories from the Kubeapps user interface.

Kubeapps simplifies the deployment from private registries within the Kubernetes security model 

To enable the full support for private repositories, Kubeapps introduced the option of associating Docker credentials to an application repository so that Kubeapps can ensure they are used to pull any matching private images within a chart.

This eliminates the manual configuration you would otherwise need to be able to deploy charts with private Docker images, without which Kubernetes is unable to find Docker images requiring credentials, resulting in a failed deployment.

Without this feature, the user has two options: either create manually an image pull secret in the Kubernetes namespace or ask the cluster operator to make the secret available, and then update the chart values to reference the created secret.

Both situations require that you or the people that will use the application know how to manually add the specific pull secret and reference it in the chart values at deployment time.

Here is where Kubeapps simplify things! How? By associating Docker image pull secrets to an application repository (only available for Helm 3).

From the Kubeapps user interface, create an application repository and after entering the normal URL of the private repository where the app is and basic authentication of the chart:

• Create the credentials for the image pull secret so that Kubernetes can pull the images from the Docker registry.  
• Then ensure the newly created image pull secret is selected for the application repository.  

This information tells Kubeapps that whenever deploying any chart from this application repository, if an image matching any associated pull secret is referenced in any pod, then Kubeapps will automatically add an image pull secret to that pod.

Watch the following video to learn step-by-step how to create an application repository to deploy a custom application from external private repositories:

Or check out the documentation for private application repositories to learn more.

Deploy the latest Kubeapps release now!

Try Kubeapps 1.10.0 Now

Kubeapps Extends its Catalog with Support for Operators

Over the last few weeks, the Bitnami team has worked on including a major change in the new Kubeapps version (available in alpha): support for Operators. With this, the Kubeapps catalog increases by more than 110 applications.

Operators extend Kubernetes capabilities, including those related to stateful applications. Operators may handle updates, failure recovery, application scale-out, etc., reducing the number of manual operations that are required for applications to run on a cluster. They contain the logic for deploying and operating an application on Kubernetes, handling almost all aspects of application management. Operators can also help with many so-called "day-2 operations", automating manual tasks like upgrades or backups.

Now, cluster administrators and developers will be able to deploy Operators directly from Kubeapps. Kubeapps users will be able to deploy instances directly from the UI to better manage applications and their components using custom resources.

Keep reading to learn how to use this new feature and to discover other enhancements in this new version of Kubeapps.

Why extend the Kubeapps catalog with Operators? 

Helm charts are a great way for deploying applications on Kubernetes. They package pre-configured Kubernetes resources and contain manifest files which describe how the application should be managed.

While Helm charts allow you to easily run an application on a cluster, once the application is deployed, you may still need to perform additional tasks to connect your application with external resources such a database or manual operations to scale a deployment.

Bitnami has added Operators to Kubeapps to give cluster administrators and developers the resources to automate the application lifecycle in their clusters. For example, when a security update is available for your application, you can now expect it to be automatically applied with no human intervention. This is especially useful for SRE teams that need to manage many clusters.


Now that the Kubeapps catalog includes both Helm charts and Operators (some applications are only available as Operators), administrators can mix and match Helm charts and Operators to create more complex / production-ready solutions.

Kubeapps is the first open source tool that allows you to manage charts, Operators, and instances through a single user-friendly interface.

Enable Operators Support and Start Deploying Operators on Your Cluster 

Support for Operators is being released as a feature in alpha state and it is not enabled by default. For that reason, users must manually enable it by adding the related flag at deployment time or when upgrading Kubeapps. 


When you finish the process, your Kubeapps “Catalog”  will add Operators to the catalog, and you can start using them from a web browser. Navigate to the “Configuration -> Operators” menu, and see the full list of Operators available and ready to be deployed on your cluster:

Click the Operator you wish to deploy, check the information displayed, click “Deploy” and follow the instructions to finish the installation. Check out the Kubeapps GitHub repository to learn how to get started with Operators.

Want to try Operators in Kubeapps?  Download the latest version and start using them!

Try Kubeapps 1.9.0 Now

Announcing New Stacksmith Features - Git Repository Support, Customized Deployment Templates, and CLI beta

Since launching Stacksmith this spring, we have been busy collecting feedback from our early enterprise customers in order to prioritize new feature developments appropriately. One of the consistent pieces of feedback we heard, whether they’re using Stacksmith to move-and-improve existing applications to the cloud, or upgrading their software delivery pipeline for containerization, has been the need for Stacksmith to work seamlessly with existing systems, tools, and workflows. We’re happy to announce several new features now available to address these requests.  Here is a brief overview of the most important improvements.

Oh, and if you are interested in getting a personalized walkthrough of these new features and / or Stacksmith in general, please email our Customer Success team at customersuccess@bitnami.com and we will be happy to set up some time with you.

Integration with Git repositories

Developers typically use a version control system as a 'source of truth' for their application code, and GitOps encourages operations, security, and support teams to follow similar practices. Now, Stacksmith aligns with this best practice via its support for Git repositories.  This new feature enables application runtime configurations and app customization scripts to be stored and tracked from a Git repository.

This means you no longer need to upload your build and configuration scripts manually to Stacksmith. You can now simply place them in your repository, provide the repository URL to Stacksmith, and Stacksmith will fetch them from there.

To make things even easier, Stacksmith continuously monitors your repository, and will show when and what changes have been made.

For example, if you need to make an OS configuration change, add new application dependencies, or modify your boot logic for your application, all you need to do now is update the script and check it in to Github.

This new feature is a another great example of how Stacksmith makes it easy to keep your applications up to date and secure while further automating your code to cloud pipeline!

Stacksmith currently supports public Git repositories with this feature. If you would like to connect to a private repository that requires authentication, please contact us at customersuccess@bitnami.com.

Customizable deployment templates

The Stacksmith packaging process produces not only a VM or container image, but also the deployment template you will need to deploy your image on your target platform. Stack templates are the place in Stacksmith where the policies that will end up in the deployment template are defined.

Stacksmith provides a set of default stack templates that cover most common scenarios, but some companies want the ability to customize these templates to their specific requirements.  Now you can.

The Stacksmith administrator can now create customized stack templates, and make them available  for others to use in the packaging process.

This gives the operations team a tremendous amount of flexibility in defining what the final deployment template will include. For example, it lets them add extra options at deploy time, define additional services like load balancing for the application, establish that the application should be exposed on a public IP, specify that a specific database type should be used, or pass additional configuration definition across to the application.

This new feature enables your operations team to further ensure your specific policies and best practices are included in the application packaging process.

Stacksmith CLI - In Beta

We’ve released an important improvement to the Stacksmith API in the form of a documented CLI. These tools are designed to make it easy to link Stacksmith to an existing CI system such as Jenkins, TeamCity or CircleCI, and enable teams to get deployable artifacts whenever a change in their application code is landed.

In combination with the release of the CLI, we are also implementing support for long lasting authentication tokens. Combined, these improvements enable you to embed and automate Stacksmith's processes into your existing pipeline. Using this CLI, you can enable automatic application rebuilds when dependencies or application code is changed.   

You can find this CLI, along with documentation and a sample integration, at https://github.com/bitnami/stacksmith-cli. We’re releasing the CLI in beta form at this point so we can better understand your use-cases and integration challenges. Issues and PRs are welcome on Github!

Try out these new features on Stacksmith today, or reach out to our customer success team at customersucess@bitnami.com for a customized walkthrough.

Speak with Bitnami Stacksmith experts at Gartner Catalyst 2018

We are excited to be a sponsor for the Gartner Catalyst Conference in San Diego on August 20th-23rd. During the conference, we will show you how your company can optimize your DevOps pipeline by automating your application packaging for today’s cloud and container platforms, and continuously maintain them to ensure they stay up-to-date and secure.

Stop by our booth to discuss how to package and maintain your applications today. Our experts will show you exactly how Stacksmith can improve, automate, and simplify your DevOps process. Not a cloud expert? No problem. Not interested in re-architecting your applications? No problem. Not interested in changing your current CI / CD process? No problem. Come see how Stacksmith meets you where you are!

If you are going to be at Gartner Catalyst, login to your event portal and schedule a meeting with us here.

Here is how Bitnami Stacksmith addresses the current pain points that you might be facing:

Application/Cloud Integration

• Package your applications for multiple platforms and formats, using one simple tool
• Simplify cloud migration and access cloud services from your applications - without having to re-write them!

Application Architecture/Development

• Automate application packaging and deployment template creation
• Improve your security profile and the interworking between developers, security, and operations
• Streamline application maintenance

Cloud Computing/Cloud Architecture

• Package for the cloud and containers with a tool that brings the platform specific knowledge and optimizes your application for your target platform
• Migrate to the cloud and access powerful cloud services you can’t access today

For $325 off your Gartner ticket, use the coupon code CATSP16 when registering for the event. We look forward to seeing you there!

Would you like to try out Stacksmith now? Sign up for a free trial here.

The Rise of Application-Centric DevOps - How Treating the Application as the Asset Increases Trust and Security in the DevOps Process

Written by Matt Small, Head of Solution Architecture

Application-centric DevOps

DevOps is about running applications not infrastructure.  For all we talk about DevOps, closing the gap between code running in dev and code running in production, it’s odd that Ops is still forced to take an infrastructure-centric view of the world, while Dev continues to take an application-centric one.   Shouldn’t we care most about the application itself?  After all, it’s the sum total of all the parts of an application--the code, the dependencies, the infrastructure, the deployment policies, the integrations--that is valuable to the business.

The solution to this--packaging everything required to install and run an application on a target--was solved a long time ago for desktop software with installers.  Since then, the steady waves of disruption to both engineering and operations practices have led to the decentralization of applications and infrastructure alike and proliferate ways to address and automate all of it.  Interestingly though, the idea that we should be taking all those increasingly distributed and disparate components and version controlling them as a package has not been compellingly reincorporated.

How did we get here?

In Ops, IaaS forced us to consider that infrastructure existing at any given moment is not, in fact, a given.  We planned for failure.  We imaged things and launched infrastructure from those images.  When that proved to be too inflexible for the agility of cloud, we adopted launch-time configuration management and orchestration as a best practice.  Let’s start with a golden image that’s versionable.  Let’s layer in scripts to configure the machines, also versionable.  Let’s tie it all together with orchestration so we get a fully functional deployment that can run the application that Dev provided us.

PaaS promised to simplify this tier by tier.  We incorporated that into our orchestration and stitched these services together with IaaS and other API-driven resources, again in the aim of running the code that Dev provided us.

Meanwhile, Dev ran down the path with ubiquitous source control, continuous integration and continuous code deployment processes.  We ensured they too could iterate quickly, partying on issues, testing and releasing early and often, breaking and fixing things with haste.

Then Dev hopped to the other side of the philosophical lemniscate with containers.  Suddenly Dev is the one imaging things and could hand something to Ops to run in staging or production that they had just been running locally.  Immutable image building was back in style and each tier could be more easily versioned once again.

Containerless...ahem...serverless is the next wave washing over us.  The code just runs in the box[es].  Pay no attention to the man behind the curtain!  Now we can incorporate all the best microservices from the most appropriate providers, and the middleware that glues them together with the datastores they need.

Ops trudged along and while they were happy to argue less frequently with Dev about what's going into the box, they were simultaneously dealing with exploding application architecture complexity.   We continue to do our best to stitch things together.  Though increasingly we’re dealing with broadly heterogeneous environments leveraging containers, instances, APIs, managed and unmanaged services (RIP CMDB).  An application can be made up of one, some or all of these.

What’s the alternative? 

Reconverging on the center of the DevOps leminscate, and bringing back the application-centric view of packaging and versioning everything as a unit. Take the code itself, its build dependencies and boot logic, the orchestration required to configure and deploy it and the governance policies it needs to follow to successfully run in a target platform, and make that an immutable, versionable object.  You now have the packaged concatenation of DevOps.  In this approach, the leminscate connects, it doesn’t overlap and chase its tail.  It creates a trusted handshake between development, security and operations whereby all of their requirements, opinions and policies are converged.

Dev maintains control over the application, its version, the explicit dependencies they care about and the application’s boot logic within their tool chain.  Ops and security lock things down, orchestrate the requisite cloud services, and integrate deployment and operational dependencies and policies using their preferred tool chain.  The creation of a versionable, immutable, deploy-ready Application Package during the asset build and assembly process ensures that everyone’s requirements and policies are factored in at a point in time.   Whenever we have a question about what is running and how, everyone knows exactly where to look--the Application Package.

When fully automated, the upstream CI tool converges the code and places a trusted code asset in an artifact repository and development manages their dependencies and application configuration requirements in source control.  Continuous Application Packaging consolidates the code and other artifacts with the policies and automation required to run it whenever there is a change and places a trusted Application Package back into the artifact repository.  Changes can be triggered by new code updates or external events such as a CVE that affects an included system package.  Downstream, a CD tool or orchestrator would pick up that Application Package and deploy it.  The deployment automatically wires up everything that was packaged in as a requirement, such as operational monitoring and logging tooling.

By acknowledging and packaging the hand-off of applications from Dev to Ops, we are  establishing new trust in the Enterprise between these teams, that their requirements, policies and opinions will be factored in.  We are allowing them to work with their preferred tooling and specialize in their domain knowledge.  We’re advancing our understanding of immutability by applying those principles to the entire application.  And we’re preparing ourselves for the next wave of disruption as applications continue to break apart into microservices, functions, and whatever the next building blocks will be called.

Packaging applications is as easy as v1, v2, v3 with Bitnami Stacksmith.  Stacksmith does the packaging, logs everything that goes into them and continuously monitors components and repackages applications with security and system package updates.  It provides a self-service and/or API-driven way for Dev and Ops to finally close the gap.

How Replatforming Applications Fits in with Modern DevOps Practices

Authored by Matt Small, Head of Customer Success

DevOps is a loaded term. Some would tell you that unless you are completely re-architecting your applications and continuously deploying production microservices to your private PaaS 100 times per day, you are not doing “DevOps”. However in essence, DevOps is about creating a culture of cooperation between Developers and the Operations team, and reducing the gap between the development process and any operational issues of software running in production, Technology plays a role: automation tools should be used to accelerate and scale repeatable processes and reduce the frequency and possibilities for human error; monitoring of the application and infrastructure should be leveraged to create a feedback loop; and source control and chat tools form a common foundation for humans and machines to collaborate.

A problem arises when you look at enterprise applications in the datacenter that were not developed with these cultural and technological ideals in mind. These applications are likely foundational to the business, but so is the need to modernize and move forward with cloud and container migrations. Enterprises are led to believe that they will either have to leave these applications behind (either technologically, by leaving them in the datacenter, or culturally by performing a simple lift-and-shift to a commensurate IaaS platform), or undertake costly application re-architecture projects. Fortunately, there is a DevOps Middle Way: replatform those applications by packaging your existing code with cloud native best practices.

Replatforming applications allows you to modernize the infrastructure. Continuing to use your application code on a modern cloud platform means you get the benefits of rapid provisioning and scaling of resources, and op-ex run rates over cap-ex guesses. You can finally get yourself out of the datacenter business.

Unfortunately, replatforming typically requires some level of application code change, so enterprises are left with a lingering questions: what are these “best practices” that we need to adopt to conform to our cloud or container platform of choice, and how do they impact our application code (how and where do I have to change my source code)?

Bitnami is developing a better approach to replatforming that answers these questions. It incorporates our deep experience in packaging applications and deploying hundreds of stacks across all the major public and private cloud and container platforms. This tool understands and interprets the requirements and best practices needed to make the best use of the target platform, allowing you to re-platform your application without having to make underlying code changes and without having any deep knowledge of the platform you are packaging the application for.

Cloud topologies differ from the datacenter, and Bitnami’s tool guides the adoption of crucial capabilities such as persistent volume storage, highly available Database-a-a-Service offerings and secure virtual private cloud networking to ensure applications can be successfully re-platformed. You can readily extend these capabilities to use other cloud-native features and Platform-as-a-Service features as you require--Bitnami places no limitations on what services you use or how, and we don’t abstract you away from the underlying innovations coming from those providers.

Bitnami also packages our best practices on how to run different frameworks in the cloud. For example, one of our reference architectures for Java configures Tomcat to use the JNDI connection pool for MySQL out-of-the box, making your application a lot more resource efficient and less likely to hit connection limits. Of course, everything is customizable so you can implement your own enterprise best practices and application requirements.

This new tool will make it possible to wrap an application written a decade or more ago in a set of scripts that both Dev and Ops can understand, collaborate on, and extend the functionality of. Culturally, you will be adopting an application-centric view of infrastructure. By investing in defining your application explicitly--where the code is, what dependencies it has, and how it’s meant to be started--you are taking one of the most important steps toward modernizing your deployment, a key pillar of DevOps practices.

Taking the first step by using Bitnami to package your code with our cloud- and container-optimized best practices will help you migrate quickly and begin enjoying the benefits of the cloud or container service. Congratulations, you’re now doing operations through development--DevOps!

Let Bitnami empower your successful cloud migration. Our new replatforming tool will be available soon. If you are interested in finding out more, let us know at https://bitnami.com/enterprise and we’ll be happy to schedule a demo.

Bitnami Cloud Sysadmin Bootcamp 3rd edition

We are happy to announce the third edition of the Bitnami Cloud Sysadmin Bootcamp. In case you are not familiar with Bitnami bootcamps, it is a fast-paced 2 week course that provides you with the knowledge and practical skills you need to automate the installation and management of server software, with an emphasis in the cloud. You will learn directly from developers and system administrators responsible for systems that manage tens of thousands of servers.

Bitnami Cloud Sysadmin Bootcamp will be taught in-person in our Seville, Spain office. The classes will take place from 9am – 2pm then we will break for lunch and in the afternoon we will have time for hands-on practice, typically until 6 – 7pm. We will have some guest instructors for specific topics and some of those classes may happen in the afternoon.

Apply for 2015

The following areas will be covered:

• Linux system administration: from the basics to advanced topics such as security and performance tuning
• Security administration basics: SSL/TLS, ssh, control access
• Server deployment: Apache, nginx, MySQL, PostgreSQL
• Server application deployment: Java, PHP, Python, Ruby and NodeJS runtimes
• Cloud deployment on Amazon Web Services (AWS), Google Cloud Platform (GCE) and OpenStack
• Containers deployment with Docker and Kubernetes
• IT automation with Ansible
• Modern software development with Phabricator, GIT

We would like to repeat the same great experience from previous editions. You can find more information about Bitnami Cloud Sysadmin Bootcamp 2015 here.