puppet

Puppet, Meet Mgmt

Posted on June 12, 2016 | 26 minutes | 5493 words | Felix Frank

Welcome back I just realized that it has been almost 4 months since my last post. If you missed it, you should probably read it before this one. I kicked off quite a bit of work then and much has come to fruition in the meantime. This is my report. Update: This post is quite extensive and covers the guts of the implementation. For a succinct overview of the new functionality, see the follow-up. [Read More]

From Catalog To Mgmt

Posted on February 18, 2016 | 16 minutes | 3300 words | Felix Frank

Have you heard of mgmt yet? It’s (currently) a prototype config management engine written by James and brings some exciting new ideas to the table, building on the proven concepts of Puppet. You should probably read up on it right now. James gave the inaugural demo at ConfigMgmtCamp 2016 in Gent, Belgium, and mentioned that he can picture a sort of “transpiler” that will create resource graphs from Puppet manifest code. [Read More]

puppet catalog compiler mgmt graph

Using Http Files

Posted on February 6, 2016 | 4 minutes | 768 words | Felix Frank

Overview In the introductory post about the new support for source => "http://..." parameters in Puppet’s file resource type, I promised a follow-up that would explain the technical details of the implementation. This is not that post. Instead, seeing as Puppet 4.4 will hopefully be released soon and make this feature available to you, I will explain the caveats in greater detail first and add some perspective on how to best circumvent them. [Read More]

puppet http proxy ssl security file metadata md5 checksum mtime

Building Http Support

Posted on December 21, 2015 | 6 minutes | 1208 words | Felix Frank

Overview One of the most requested capabilities for Puppet has been to support code such as the following: file { '/opt/jdk.tar.gz': source => 'http://filerepo.local/java/jdk.tar.gz', } Retrieving files (especially larger archives) via HTTP is a very convenient practice. People have been doing it through custom exec resources and defined types all over the place, for years. There are several sophisticated modules that bring this capability along. Still, all these approaches lack some of the convenience that Puppet’s file type brings to the table. [Read More]

puppet bugs features code

Friends Don't Let Friends Use Refreshonly

Posted on May 26, 2015 | 4 minutes | 850 words | Felix Frank

Update 2017-09-03: A code example included an invalid resource reference. Many thanks to Jo Rhett for pointing it out. Manifest imperfection The goal of any Puppet manifest is to describe a desired state. Puppet’s abstraction model breaks this down into an arbitrary set of discrete resources. Each resource describes a specific piece of system state. file { '/etc/shadow': owner => 'root', mode => '0600', } This approach is oft proven to yield very maintainable and readable code. [Read More]

puppet exec parameter dependencies

Master Load Balancing

Posted on April 27, 2015 | 6 minutes | 1162 words | Felix Frank

Background At his amazing presentation of the new features in Puppet 4 at Puppet Camp Berlin 2015, Martin explained how masters can be configured to perform only a subset of the available master services. This way you can have, say, a single CA server, some file servers and a swarm of manifest compilers. Someone in the audience asked how to use this, since typically you address the master through just the one domain name (e. [Read More]

puppet master http ssl loadbalancing

Debugging Rspec Of Catalog Application

Posted on March 23, 2015 | 2 minutes | 217 words | Felix Frank

Running catalogs from RSpec tests is tricky. There are some examples in the existing test base that help doing it. One basic pattern goes like this: describe SomeThing let(:catalog) { Puppet::Resource::Catalog.new } context "when doing something else" do let(:resource) do Puppet::Type::MyType.new( :ensure => :present, :param => 'value', ) end it "behaves a certain way" do catalog.add_resource(resource) catalog.apply expect( check_result() ).to be_truthy end end end Of course, such tests can fail for various reasons. [Read More]

puppet rspec catalog logs debug

Turning Puppet's HTTP Support Up A Notch

Posted on March 4, 2015 | 4 minutes | 773 words | Felix Frank

Making HTTP requests from within Puppet Puppet without HTTP support is unthinkable. Most if not all communications between the different parts of a Puppet setup use REST APIs. Puppet modules from the Forge are retrieved through HTTPS exclusively. There are convenient methods available in the existing code base, which can be used by new features that need to perform HTTP requests. There are some details and limitations to keep in mind, though. [Read More]

puppet http proxy ssl security

The Belgium Conferences 2015 Edition

Posted on February 20, 2015 | 15 minutes | 3185 words | Felix Frank

Getting to the conference It was that magic time of the year again - Belgium lured professionals and enthusiasts to great conferences. FOSDEM is one of the world’s largest gathering of open source software contributors and vendors. For me, the place to be afterwards is Config Management Camp, a gathering of users and developers of configuration management software such as Puppet, Ansible or Chef. (Fun fact: attendees expressed broader interest in Ansible than Chef this year, apparently. [Read More]

fosdem cfgmgmtcamp conference log foss puppet

Who Moved My Cheese

Posted on December 30, 2014 | 3 minutes | 501 words | Felix Frank

Finding out why Travis fails your latest PR - 2 minutes. Reproducing locally and figuring out how to fix the issue - 3 hours. Squashing and rebasing to master, then finding out that the issue reappeared due to the rebase - priceless. What is it now? The work on PUP-3341 had basically been finished weeks earlier. The mailing list had consented (or something like that) and implementation had gone rather swimmingly. [Read More]

puppet bugs git rebase bisect testing