MrTrustor's shiny blog

Biography

I am a Solutions Architect at Google. I specifically work for Google Cloud Platform, for the EMEA SA team. You can see the work of the Google Solutions Architects here.

Born in Lyon, France, I have always had a taste for mathematics and physics. This lead me to study computer science at the Lycée du Parc. At the Ecole Centrale de Lyon, this new taste for computer science allowed me to invest myself heavily in the student computer association ECLAIR which serves, among other things, as an ISP for all students of the university. I finished my formal education at the Royal Institute of Technology of Sweden, also known as KTH, where I learned about cryptography, networks, and so many other things. Today, I still try to learn as much as I can on various topics such as Machine Learning or distributed systems.

My professional life began very much in accordance with the DevOps philosophy (even if I did not know it at the time) by designing the software development and CI workflow of the ANSSI, following some extremely strict security rules. My next job, at Oxalide, allowed me to gain a very important insight on the Ops side of the industry. Managing major web infrastructures on a day-to-day basis convinced me of the importance of the quality of the work earlier in the software lifecycle.

Today, my job is to help you make the best software possible at every level:

by choosing the right software architecture (micro-services, here I come!),

by ensuring that this software is production-ready (tests, 12-factor apps, etc.),

by running this software on highly efficient and resilient infrastructures,

by making your life easier and letting you concentrate on what you do well: coding great apps!

Disclaimer: This is my personal blog, the opinions expressed here represent my own and not those of my employer.

Interests

Automation
Software & infra architecture
Artificial Intelligence

Diplomas

LFS258 - Kubernetes Fundamentals, 2017

The Linux Foundation
Certified Cloud Architect, 2017

Google, Cert. ID: 3jgAQY
Professional Cloud DevOps Engineer, 2020

Google, Cert. ID: dC2PPe
Certified Cloud Engineer, 2018

Google, Cert. ID: 1MrnTV
Solutions Architect – Professional, 2015

Amazon Web Services, AWS-PSA-1551
Civilingenjör (M Sc./Eng.), 2012

Kungliga Tekniska Högskolan (Stockholm, Sweden)
Ingénieur (M Sc./Eng.), 2011

Ecole Centrale de Lyon (Lyon, France)

2020-03-09 3 min read

Identity-Aware Proxy for On-Prem applications

I have a couple internal systems that I run at home, and that I want to be able to access from outside. I want only my partner and myself to be able to access those systems, and I want that access to be as transparent as possible for her. For that, I decided to use Google’s Identity-Aware Proxy (IAP)! IAP is a Google Cloud feature that allows you to implement Google’s BeyondCorp security model.

2020-01-21 1 min read

My talks at the Google Cloud Summit Paris 2019

I know it’s a little bit late, but here are the videos (in French) of my talks at the Google Cloud Paris Summit 2019 (which happened on June 18th, 2019). The first is a demo of Anthos I gave during the keynote. My laptop failed to recognize the projector when it woke up, which is why I talk without any demo for the first 3 minutes (which were the longest in my life!

2019-09-13 1 min read

Change the billing account of all your GCP projects at once

If you are using GCP, you may at one point need to change the billing account associated with all your projects. This “billing account migration” can happen for a number of reasons, but a common one is the consolidation of several existing billing accounts under a new one. Below, you’ll find a small script to allow you to do that quickly. This script takes all the projects linked to one billing account and reassigns them to a new one.

2019-06-05 2 min read

Protect your GCP projects against accidental deletion

Google Cloud Platform (GCP) uses a specific resource hierarchy. At the very top, you have an organisation, tied to a domain (for example: mrtrustor.net). Inside that organisation, you can have folders and subfolders. Finally, you have projects, which can be inside folders, or directly under the organisation node. Projects are where your cloud resources (VMs, databases, etc.) actually live. By default, projects are completely isolated from one another, especially at a network level.

2019-04-11 6 min read

Making this blog with Cloud Run

Until now In my first post on this blog, I explained how I created this blog. At the time, I was using: Hugo as a static site generator, that is a tool that turns Markdown into a pretty static website. AWS S3 to host the website itself. Docker to run Hugo and generate the website from my Markdown files. Since then, I joined Google and using Amazon’s services to host my personal blog didn’t seem very “corporate” :-) So, I had updated my setup like this:

Théo Chamley

Solutions Architect

Google