Changelog
This changelog lists all updates, improvements and new features our Engineering team develops for our Skyscrapers Reference Developer Platform. These are rolled out automatically to all DevOps-as-a-Service customers.
2019 Q3
- 2019-09-25
Maintenance
Upgrade EKS to 1.14
We have updated our EKS control planes and nodes to the latest version: 1.14. In the process of upgrading EKS we updated: CoreDNS from 1.2.6 to 1.3.1 KubeProxy from 1.13.10 to 1.14.6 Actions to take No specific actions are rerquired. Upstream resources EKS …
- 2019-09-25
Maintenance
Upgrade Concourse to version 5.5.1
During the coming days, we’ll roll out Concourse version 5.5.1 to all our setups. This is a minor version upgrade, comming from version 5.4.1, and it includes the following: a bunch of features a new container placement strategy more autocomplete …
- 2019-09-24
Maintenance
Upgrade Calico to 3.8.2
We have updated Calico on our AWS EKS-based reference solution to the latest version: 3.8.2. Calico is the CNI (Container Network Interface) plugin we use in our Kubernetes clusters. It’s responsible for setting up all the cluster networking and it uses …
- 2019-09-19
Maintenance
Concourse docker-image deprecation and how to migrate to the new registry-image
In the new Concourse 5.0.0 version, a new resource was released to track and upload Docker images to a registry, the registry-image-resource. This new resource is intended to replace the current docker-image-resource, as it’s more lightweight and …
- 2019-09-17
Maintenance
Switch Terraform Dynamodb tables and Vault Dynamodb backend to pay per request
Previously we were still on the default provisioned capacity for our tables. This however led to over provisioned tables and/or autoscaling to be in place. As of now we defaulted to the PPR cost type for internal Dynamodb tables and for the Dynamodb …
- 2019-09-05
Maintenance
Upgrade kops-based clusters to Kubernetes 1.11.10
We are in the process of upgrading our kops-managed Kubernetes clusters from v1.11.9 to v1.11.10. This is a bug fix release. For the complete Kubernetes 1.11.10 changelog, see https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG-1.11.md#v11110. …
- 2019-09-02
Maintenance
Upgrade to EKS 1.13
We have updated our AWS EKS-based reference solution to be compatible with Kubernetes 1.13. More specifically, EKS uses K8s v1.13.10. Actions to take No specific actions are rerquired. Notable features The following features are now supported in Kubernetes …
- 2019-09-02
Maintenance
Upgrade Concourse to version 5.4.1
During the comming days, we’ll roll out Concourse version 5.4.1 to all our setups. This is a minor version upgrade, comming from version 5.0.1, and it includes the following: a lot of internal fixes performance optimisations UI fixes. This upgrade …
- 2019-08-29
Maintenance
Prometheus-blackbox-exporter available as optional cluster addon
We’ve added the prometheus-blackbox-exporter as a K8s cluster addon which can be enabled upon request. The blackbox exporter can be used for probing HTTP(S), DNS, TCP and ICMP endpoints, for example to check whether an external resource is up/down. …
- 2019-08-29
Maintenance
Concourse task that checks the status of the service after the deployment
We extended the functionallity for the ECS deployments with concourse. After the service gets deployed Concourse would just exit because Terraform doesn’t take the deployment itself into account. This resulted in having false deploys sometimes …
- 2019-08-28
Maintenance
Redshift monitoring via Prometheus
We have updated our stacks to support Redshift monitoring via the Prometheus Operator running on our K8s clusters. If you have Redshift running, you will now be able to see alerts in Alertmanager and on slack when there is something wrong with the cluster. …
- 2019-08-26
Maintenance
Neo4j monitoring via Prometheus
We have updated our stacks to support Neo4j monitoring (Neo4j >= 3.4) via the Prometheus Operator running on our K8s clusters. If you have Neo4j running, you will see metrics appearing in the new Neo4j Grafana dashboard. Previously we still monitored …
- 2019-08-20
Maintenance
Fix for dashboards HTTP 500 error when refreshing token
Since our SSO overhaul you might’ve been noticing sudden HTTP 500 errors while using the Alertmanager, Kubernetes of Prometheus dashboards when your token’s TTL expires. Normally when your OIDC token expires, your session should automatically …
- 2019-08-19
Maintenance
A note on CVE-2019-11247
Two weeks ago a patch for Kubernetes vulnerability CVE-2019-11247 was released for K8s 1.13, 1.14 and 1.15. Unfortunately as of writing clusters using older K8s versions (like our kops-based 1.11 clusters) are still vulnerable. In short this vulnerability …
- 2019-08-12
Maintenance
Kubernetes dashboards ERR_TOO_MANY_REDIRECTS bug
During the past days you might’ve been getting ERR_TOO_MANY_REDIRECTS and or Bad Request - Login session expired errors. This bug was introduced during last week’s cluster add-ons upgrade. We have reverted the change that’s causing these …
- 2019-08-09
Maintenance
Add Bitbucket, GitLab and Google authentication to Concourse
By default we only allowed authenticating to Concourse through GitHub and local users. It’s now possible to plug into other systems like Bitbucket, GitLab or Google. Let us know if you’d like to change to any of these authentication systems.
- 2019-08-06
Maintenance
Kubernetes add-on upgrades
In the following days we’ll be rolling-out a bunch of upgrades to the deployed add-ons on your clusters. You don’t have to do anything to apply these upgrades, we’ll do that for you. And it won’t cause any downtime to the cluster or …
- 2019-08-01
Maintenance
We're moving to EKS
The past months we’ve beeen heavily re-evaluting and testing AWS EKS as base for our reference solution. Today we can consider our platform GA and moving forward all new clusters will be setup using EKS. Naturally we’ll keep on supporting and …
- 2019-07-16
Maintenance
Cluster and Persistent Volume backups with Velero 1.0
Staging Kubernetes clusters are now backed up through Heptio Velero. Production rollout is happening in the following days. As default schedule, backups are taken each night (0:00 UTC) and are retained for 10 days, however these are configurable. Backups …
- 2019-07-09
Maintenance
SSO / OAuth2 overhaul
We’ve completely updated our cluster’s Single-Sign-On setup, adding new features and fixing some long-standing bugs. What has changed: DEX, which we use as a single Identity Service for all authentication within the cluster, has been separated …
2019 Q2
- 2019-06-06
Maintenance
Support for Cognito in ElasticSearch
in v2.3.8 we added support for Cognito and its options to our terraform-awselasticsearch module.
- 2019-06-04
Maintenance
Adding Prometheus monitoring for Elasticsearch on ECS
Our ECS monitoring solution now supports monitoring Elasticsearch clusters using Elasticsearch Exporter, Prometheus and AlertManager, so we can get notified via slack (critical/warnings) and via OpsGenie (critical) for any issues with ES. This is similar …
- 2019-04-17
Maintenance
Move to the AWS provided Kibana
We’re in the process of removing our kibana deployment from all the Staging clusters and replacing it with the AWS provided kibana setup that comes with the AWS ElasticSearch service. Production clusters will follow. This change will free up some …
- 2019-04-16
Maintenance
Update kube2iam to 0.10.7
We’ve updated kube2iam to the latest version (0.10.7) on all clusters. For context, kube2iam is the component that provides IAM credentials to containers running in your Kubernetes clusters without the need to distribute secrets. This new version of …
- 2019-04-10
Maintenance
Upgrade Concourse to version 5
During the comming days, we’ll roll out Concourse version 5.0.1 to all our setups. This is a major version upgrade, comming from version 4.2.3, and it includes some important new features and fixes. The most relevant change for Concourse users is …