...

Provide certificates.  Is this what we’ll use or do we have an alternative?

mongoDb

A noSQL db.  Not a AWS service. Provisioned on an EC2 instance directly.

openIDL Use

HDS.

EC2

Amazon Elastic Compute Cloud (Amazon EC2) is a web service that provides secure, resizable compute capacity in the cloud. It is designed to make web-scale computing easier for developers.

...

Amazon Simple Storage Service (Amazon S3) is an object storage service that offers industry-leading scalability, data availability, security, and performance. This means customers of all sizes and industries can use it to store and protect any amount of data for a range of use cases, such as websites, mobile applications, backup and restore, archive, enterprise applications, IoT devices, and big data analytics. Amazon S3 provides easy-to-use management features so you can organize your data and configure finely-tuned access controls to meet your specific business, organizational, and compliance requirements. Amazon S3 is designed for 99.999999999% (11 9's) of durability, and stores data for millions of applications for companies all around the world.

openIDL Use

??

Elastic Blockstore

Amazon Elastic Block Store (Amazon EBS) provides persistent block storage volumes for use with Amazon EC2 instances in the AWS Cloud. Each Amazon EBS volume is automatically replicated within its Availability Zone to protect you from component failure, offering high availability and durability. Amazon EBS volumes offer the consistent and low-latency performance needed to run your workloads. With Amazon EBS, you can scale your usage up or down within minutes—all while paying a low price for only what you provision.

...

With AWS Transit Gateway, you only have to create and manage a single connection from the central gateway in to each Amazon VPC, on-premises data center, or remote office across your network. Transit Gateway acts as a hub that controls how traffic is routed among all the connected networks which act like spokes. This hub and spoke model significantly simplifies management and reduces operational costs because each network only has to connect to the Transit Gateway and not to every other network. Any new VPC is simply connected to the Transit Gateway and is then automatically available to every other network that is connected to the Transit Gateway. This ease of connectivity makes it easy to scale your network as you grow.

openIDL Use

??

Identity and Access Management (IAM)

...

• Manage IAM users and their access: You can create users in IAM, assign them individual security credentials (access keys, passwords, and multi-factor authentication devices), or request temporary security credentials to provide users access to AWS services and resources. You can manage permissions in order to control which operations a user can perform.
• Manage IAM roles and their permissions: You can create roles in IAM and manage permissions to control which operations can be performed by the entity, or AWS service, that assumes the role. You can also define which entity is allowed to assume the role.
• Manage federated users and their permissions: You can enable identity federation to allow existing identities (users, groups, and roles) in your enterprise to access the AWS Management Console, call AWS APIs, and access resources, without the need to create an IAM user for each identity.

openIDL Use

Control access to AWS services used in the openIDL node.

Other Services / Technologies (Not AWS)

mongoDb

A noSQL db.  Not a AWS service. Provisioned on an EC2 instance directly.

openIDL Use

HDS.

Hashicorp Vault

Manages key value pairs for secrets.

openIDL use

Manage secrets used in Infrastructure as Code and applications for authentication and permissioning as well as other configuration tasks.

Hashicorp Terraform

Infrastructure as Code

openIDL use

Provisioning of cloud resources.

Shell Scripts

Execute linux commands for various reasons.

openIDL Use

Configure hlf network.

Ansible

Infrastructure as Code

openIDL Use

Lower level provisioning and configuration that Terraform is not suited for.

Helm

Kubernetes configuration tool.

openIDL Use

Configure Kubernetes.