CloudSnap Pro: Built with Terraform, Secured by DevSecOps

Build a secure, scalable photo-sharing app using Terraform, AWS EKS, and DevSecOps tools—complete with chaos testing. A perfect starter for real-world cloud deployment skills.

Comment

Inspiration

In today's world, security, scalability, and reliability are not optional — they’re a must. We wanted to build an app that reflects what real-world production systems look like, complete with DevSecOps best practices, IaC (Terraform), container orchestration with AWS EKS, and even chaos engineering to test resilience under failure. The idea was to teach how to deploy a modern, secure, and highly available photo-sharing application — just like companies do in production!

What it does

  1. Secured infrastructure using DevSecOps practices
  2. End-to-end deployment using Terraform
  3. Kubernetes-based hosting using Amazon EKS
  4. Built-in security scans, monitoring, and resilience testing

How we built it

  1. Terraform to automate the provisioning of AWS infrastructure (EKS, VPC, IAM, RDS, etc.)
  2. AWS EKS (Elastic Kubernetes Service) to run and manage the containerized application
  3. DevSecOps tools integrated into the CI/CD pipeline:
  4. Trivy, Checkov, and Gitleaks for code and image security scanning
  5. SonarQube for code quality
  6. Chaos Engineering tools to simulate failures and test app resilience

Challenges we ran into

  1. Integrating multiple DevSecOps tools while keeping the pipeline efficient
  2. Managing Kubernetes networking and service discovery
  3. Securing secrets, IAM roles, and Kubernetes resources
  4. Injecting chaos experiments without breaking the pipeline

Accomplishments that we're proud of

  1. Deployed a secure, scalable, and production-grade application entirely on AWS
  2. Integrated DevSecOps scanning at every stage of the workflow
  3. Successfully ran chaos experiments to test system reliability
  4. Created an architecture that mirrors real-world enterprise setups
  5. Designed the project as a reusable learning tool for the community

What we learned

  1. How to automate everything using Terraform.
  2. How to build a secure CI/CD pipeline with scanning tools
  3. How to orchestrate containers using EKS and Kubernetes best practices
  4. How to simulate failures and test system reliability using chaos engineering

What's next for CloudSnap Pro: Built with Terraform, Secured by DevSecOps

  1. Introduce multi-region failover with Route 53
  2. Integrate AWS Cognito for authentication
  3. Create a frontend UI with React and connect it to the backend
  4. Turn it into a full-fledged workshop or training series for DevOps and security learners

Built With

Share this project:

Updates