I put together a quick blog post on how to get up and running with Consul and Docker using DockerConsulAgent.
https://open.substack.com/pub/zentourist/p/bridging-docker-and-consul-with-elixir?r=1niag&utm_campaign=post&utm_medium=web&showWelcomeOnShare=false

#docker #consul #ConsulProject #elixir #HashiCorp

Y'all ever get that feeling that surely you can't be the first one that actually tries to use a software feature as documented, but how could anyone ever have used it considering that it's fundamentally broken? And there are zero bug reports about your issue?!

This is me right now with #Nomad #WorkloadIdentity w/ #Consul. Clearly I'm doing something terribly wrong, because for me the bit that's supposed to keep the Consul token valid and renewed is doing a whole lot of renewing of the JWT token, but not any of the renewing the Consul side access token it gives you. Even worse than that, every JWT renew causes a change_mode trigger, i.e. a task restart, because it's changed! Yeah sure, you fiddled with the JWT yes, but the Consul token is still super valid? So what was there to re-render?

And yeah, the latest Nomad version makes the use of these mandatory. The feature was first published late 2023 but I've been putting it off, because very complex. Going on day 16 now of trying to get ready for the upgrade. :blobcatnotlikethisgoogly:​

Super fun finding out that Consul ACL roles are handy but if a token has multiple, the ACL expansion just breaks somehow? And that you actually can't expand a token to show it's full effective ACL?!

And why do I assign two you ask? Nomad workload identity JWTs for Consul do not have a role attribute. Ergo, on the receiving ACL binding end it's now impossible to have a catch-all default role and still infer more specific roles from the identity. The moment you do, it gets both roles which breaks portions of the subsequent policies in weird ways, and not just due to precedent rules. (For example both contain an identical rule allowing read to all services, but then they somehow cancel out?!)

Now this is probably a fixable bug in Consul, but from what I'm seeing HashiCorp has abandoned reading or reacting to their Consul bug reports. So I probably need to hunt it down myself, and perhaps bother sending them a PR they can ignore.
#HomeLab #Consul #Nomad

Want your Docker containers to register automatically in your dev Consul environment? I wrote a lightweight container to do that for you. Check it out: https://github.com/zenchild/docker-consul-agent
#HashiCorp #consul #ConsulProject

Deploy Consul as OpenTofu Backend with Azure & Ansible

https://developer-friendly.blog/blog/2025/04/14/deploy-consul-as-opentofu-backend-with-azure--ansible/

#sre
#terraform
#consul
#ansible

Ford Consul Coupe

The Ford Consul is a car that was manufactured by Ford of Britain from 1951 until 1962. The name was later revived for a model produced by Ford in both the UK and in Germany from 1972 until 1975...

https://en.wikipedia.org/wiki/Ford_Consul

#Ford #Consul #Oldtimer #Classiccars #vintagecars

Just wrapped up our live session where we dove into setting up HashiCorp Consul policies!Missed it? Catch the VOD on our channel and stay tuned for more DevOps deep dives.

Follow @theDevCastOps for more live infra and cloud-native content!

#DevOps #HashiCorp #Consul #InfrastructureAsCode #TwitchDev

Gian Carlo Menotti's The Consul, an opera we now need to hear more than ever, was first performed in Philadeiphia #OTD in 1960.

Patricia Neway, who created the role of Magda, sings To This We've Come, in an American TV production from 1960. It is one of the greatest performances of anything you will ever see.

https://www.youtube.com/watch?v=AIB9cGlLkm0

@classicalmusic #Menotti #Consul #Neway

Lets check out #hashicorp #consul #roles and #policies https://youtu.be/cx13jLHes24

🚀 I migrated my Mastodon instance from DigitalOcean to my self-hosted Nomad cluster!

✅ Lower costs
✅ Much faster performance
✅ Full control

I wrote about my setup, including Nomad, Consul, Caddy, and Cloudflare Tunnels.
🔗 Read the full post: https://www.patreon.com/posts/self-hosted-with-121790567?utm_medium=clipboard_copy&utm_source=copyLink&utm_campaign=postshare_creator&utm_content=join_link

Subscribers get ready-to-deploy config files!

#SelfHosting #Mastodon #Nomad #Consul #Cloudflare #Caddy #DevOps #Infra #Homelab #HashiCorp #FOSS #OpenSource #Linux #SelfHost

Lets implement script based service checks in #hashicorp #consul https://youtu.be/ScSatK1cZ24

Let's learn about #hashicorp #consul #acl https://youtu.be/SSAkPLXRQaE

#JavaScript #Java #Flutter #Angular #Rust #GitOps #Kafka #HashiCorp #AI #ChatGPT #DevOps #Terraform #Consul #Vault #Nomad #RAG #GameDev #Unity #UnrealEngine #WebDev #Cloud #REST #API #Go #Python #Kubernetes #Docker #TypeScript #React #NodeJS #Spring

🗓️ Next week's highlights:
Feb 4: Game Dev Stockholm #5 (Waterfront Congress Centre)
Feb 4: Jforum #122 - Java Next and multimodal RAG (Waterfront Congress Centre)
Feb 5: Simplify and Secure: The Future of Infrastructure and hashtag#DevOps

New video up. https://youtu.be/vesOhBMNHKI #hashicorp #consul #service #configuration #tutorial

Cuatro familias hondureñas afectadas por incendios forestales en Los Ángeles#Incendio #California #Familias #LosÁngeles #Cónsul
https://tinyurl.com/29cusm5z

Vor diesem Hintergrund finde ich immer auch "#Bürgerbeteiligungsportale" leicht absurd, egal ob #Mängelmelder oder #Consul (https://github.com/consuldemocracy/consuldemocracy)

Absurd daran finde ich u.a. so Sachen wie, a) dass das typischerweise immer projektspezifisch oder bezogen auf eine spezifische Beziehung zwischen Exekutive und Bürger*innen zum Einsatz kommt, b) politische Vereine und Parteien bestenfalls als "Gäste" am Tisch sitzen usw. Mir schwebt eher vor, sowas zum demokratischen Alltagstool zu machen 6/x

Castro advierte a Trump sobre política migratoria y cuestiona presencia militar de EE.UU. en Honduras#DonaldTrump #Palmerola #XiomaraCastro #Basemilitar #Cónsul
https://tinyurl.com/29rrym2k

#Consul templates have a bunch of functions, but what they don't have is an urlencode function. It has a useless base64urlencode, but then better hope you have control over the code to do a nonstandard urldecode!

An hour of my life wasted yet again where in the end I just mangle password generation to strip out "bad" characters because the DSN can't handle them and I can't urlencode.

Je découvre Tricot de l'association #Deuxfleurs , un reverseproxy qui utilise #consul et ça m'a l'air bien génial. Ils font aussi le serveur S3 #Garage (que j'utilise https://fredix.xyz/2024/06/garage/ )

Les 2 outils sont en #Rust mais ils font aussi du #Go (voir bottin un serveur LDAP)

https://guide.deuxfleurs.fr/infrastructures/tricot/
https://guide.deuxfleurs.fr/infrastructures/garage/
https://guide.deuxfleurs.fr/infrastructures/bottin/