Dipchand Yadav - KubeBlogs - DevOps and Cloud content

Sign in Subscribe

Dipchand Yadav

DevOps Engineer at KubeNine

Comparison diagram of EKS IRSA vs EKS Pod Identity for secure AWS access from Kubernetes pods

EKS IRSA vs EKS Pod Identity (2025): Which Is Better for Secure AWS Access?

Introduction Every Kubernetes workload on Amazon EKS eventually needs to talk to AWS services—pulling files from S3, fetching secrets from Secrets Manager, publishing to SNS, or writing to DynamoDB. The question is not if your pods need access, but how to grant that access without hardcoding long-lived keys or

GKE 504 gateway timeout error fix using BackendConfig timeout settings

GKE 504 Timeout Fix Using BackendConfig (Step-by-Step)

Introduction We first noticed this problem during normal API calls. Everything worked fine at first for all API calls, but when we ran the application for some time we realised that all our API requests that needed more than 30 seconds to process were failing with 503 and 504 Gateway

GKE Workload Identity Federation architecture diagram

GKE Workload Identity Federation: Secure Google Cloud Access for Kubernetes Pods Without Service Account Keys

Introduction When applications run on Google Kubernetes Engine (GKE), they often need to call Google Cloud services like Cloud Storage, Pub/Sub, or BigQuery. The traditional pattern was to place JSON service account keys in Kubernetes Secrets and mount them in pods. That approach creates security risks and operational overhead.

Google Cloud Storage zero-byte folder problem and object storage behavior

Google Cloud Storage and the Problem with Zero-Byte Folders

Overview On Google Cloud, we were creating a basic event-driven pipeline. The plan was to have a Cloud Function call our backend API whenever a file was uploaded to a GCS bucket. However, an odd thing began to happen: even when no actual file was uploaded, our backend was being

AWS architecture for repeated CloudWatch alarm notifications until issue is fixed

How This AWS Architecture Keeps Notifying You Until You Fix It - Repeated Alarm

By default, Amazon CloudWatch Alarms send a notification only when the alarm changes state — for example, from OK to ALARM. If the alarm remains in the ALARM state, no additional messages are sent. This can be a problem in production environments or for support teams who rely on timely updates