A deep dive into CPython 3.11 Enum module source code, explaining core Python OOP concepts including metaclasses, descriptors, duck typing, magic methods, protocols, and decorators.

Deploy Keycloak with Ansible, manage users and OIDC via Terraform, and build role-based permissions in Flask using OAuth2.0, enum classes, and decorators. Based on Arch Linux team’s code.

How to build a Borg-based backup system with deduplication, compression, and encryption, covering btrfs snapshots, GFS pruning, SSH access control, and Prometheus monitoring.

Codify multi-cloud resources (AWS, Alibaba Cloud, Tencent Cloud) with Terraform, and securely store sensitive credentials (AK/SK) using Ansible Vault and GnuPG to replace manual click-ops.

How Arch Linux and Rust secure secrets in public infrastructure code: Arch Linux uses ansible-vault with GnuPG, while Rust leverages AWS STS and SSM.

Set up self-hosted virtualization on Arch Linux with libvirt/virsh: template-based VM cloning, bridge networking, snapshots, QCOW2 disk expansion, GPU passthrough, and remote SSH management.

How GitOps practices – unified dev environment, reproducible testing, WireGuard encryption, GitLab CI sync, and secret management – cut Apollo cluster deployment from 1-2 days to 18 min.

How codifying operations achieves sustainable ops by separating operations from data – enabling code reuse, modular composition, parameterized deployment, and encrypted data storage.

Using the Arch Linux infrastructure repo as an example, this article shows how to achieve Infrastructure as Code with Ansible, Git, and GitLab for sustainable, version-controlled operations.

The inaugural post of this blog, marking the launch of a personal blog focused on DevOps, Infrastructure as Code (IaC), WireGuard, and related topics.