Eduardo Scarpellini, profile picture
Uploaded byEduardo Scarpellini
PDF, PPTX528 views

Dive into Chef

This document provides an overview of CHEF, including its architecture, main tools, cookbook building blocks, recipes, templates, attributes, roles, nodes, knife, LWRPs, testing with Kitchen, and best practices. The architecture includes a development workstation with chef-dk, knife, and chef-kitchen/other testing tools. Nodes use chef-client and ohai. Cookbooks contain metadata, resources, attributes, files/templates, recipes, libraries, and LWRPs. Recipes are collections of resources written in Ruby DSL. Templates combine text and Ruby. Attributes are accessed in recipes. Knife manages infrastructure on the Chef server. LWRPs extend Chef with custom resources. Kitchen tests cookbooks

Embed presentation

Download as PDF, PPTX
Dive into CHEF Eduardo S. Scarpellini @escarpellini Aug, 2016
Agenda - Architecture; - Main tools; - Cooking; - cookbooks, recipes, resources, templates, etc; - Knife; - LWRPs; - Tests; - Best practices;
Architecture
Main tools ● Development workstation: ○ chef-dk; ■ cookbook standardized skeletons, linting and testing tools, style checking; ○ knife; ■ swiss knife: cookbook/node management, search, many plugins (AWS, OpenStack, VMWare, etc); ○ chef-kitchen (or any other testing tool); ■ runs acceptance criterias in a brand new/isolated environment (docker, vagrant, etc); ● Nodes: ○ chef-client; ○ ohai; ■ node attributes: platform and kernel details, network configuration, hostname, cpu and memory data, etc;
Cookbook building blocks ● Metadata; ○ author, version, dependencies, documentation, etc; ● Resources; ○ desired state, several types (package, service), name+parameters, notifications/subscriptions; ● Attributes; ○ global hash table, precedence/override; ● Files and templates; ○ static or dynamic files (erb templates) that should be synchronized with nodes; ● Recipes; ○ collection of resources; ● Libraries, definitions and LWRPs; ○ custom resource types, ruby functions;
Cookbook anatomy chef generate <cookbook, recipe, attribute, lwrp, ...> attributes files repository recipes templates repository cookbook
Recipes: basics ● Ruby DSL; ● Collection of resources; ○ package, cookbook_file, directory, template, service, execute, user, group, cron, dsc_resource, etc. ● Interaction with attributes; ○ user defined or ohai; ● Everything is evaluated in the same order that they are declared; ● Can include other recipes; {yum install … apt-get install … msiexec.exe /i … type + name }parameters notification {service … systemctl … sc.exe … myapp/recipes/default.rb
Recipes: a bit more complex ohai attribute Powerful of Ruby: syntax, variables, data structures, conditionals, loopings, libraries, gems, etc. include external code local variables attribute notification timer Requires attribute definition: myapp/recipes/default.rb myapp/attributes/default.rb
Templates ohai attributeCombine plain text with Ruby code (<% … %>) for variable substitution and flow control. loop + attribute + local variables myapp/templates/default/haproxy.cfg.erb myapp/attributes/default.rb haproxy.cfg
What else... ● Attributes: ○ defined/accessed in/from attribute files, recipes, roles, environments and/or node JSONs; ○ precedence/overwritten (node.override > node.set > node.default); ○ accessed via node['key'] or node.key ● Data bags: ○ global variables stored as JSON files; ○ can be encrypted (suitable for passwords, shared keys, etc); ○ accessed via Chef::EncryptedDataBagItem.load('bag_name', 'bag_item') ● Roles describes nodes (group cookbooks, overwrite attributes); ● Nodes (JSON): ○ Node attributes (ohai + defined by cookbooks); ○ run_list: list (array) of roles, cookbooks and/or recipes that will run on the node.
Knife ● Provides an interface between a local chef-repo and the Chef server; ● Extensible; ● Helps to manage: ○ nodes: ■ knife node <create, edit, delete ,...> ○ cookbooks, roles and data bags: ■ knife cookbook <create, delete, upload, ...> ■ knife role <create, edit, delete, ...> ■ knife data bag <create, edit, delete, ...> ○ cloud/hypervisors/servers (plugins): ■ knife ec2 server create… ■ knife bootstrap <FQDN>…
LWRPs ● Is a simple extension of Chef; ● Is implemented as part of a cookbook; ● Follows easy, repeatable syntax patterns; ● Effectively leverages resources that are built into Chef; ● Is reusable in the same way as built-in resources;
LWRPs myapp/providers/hello_world.rbmyapp/resources/hello_world.rb resource parameter usage: resource name resource action resource attributes
Kitchen ● Test cookbook data across any combination of platforms and test suites; ● Defined in a YAML file (.kitchen.yaml); ● Uses a driver plugin architecture; ○ many cloud providers and virtualization technologies ■ AWS, VMWare, Docker, Vagrant, openstack, etc; ○ automatic chef-server provisioning; ■ environments, roles, data bags, dependencies (via Berkshelf), etc; ● Supports all common testing frameworks that are used by the Ruby community; ○ bats (bash), minitest, rspec, serverspec;
Kitchen will run all .bats files against all specified platforms Kitchen myapp/.kitchen.yml test/integration/default/bats/lb_haproxy.bats { driver plugin run_list + attributes bash commands
Kitchen kitchen test successful fail platform/instance
Best practices ● Plan in advance; ○ environments, roles, data bags and attributes hierarchy, naming conventions; ● Use foodcritic integrated to your favorite editor (sublime, atom); ● Versioning your cookbooks (at scm and at chef-server level); ○ use scm tags; ○ use one repository for each cookbook; ○ freeze stable versions on chef-server; ○ specify versions of the dependencies on metadata.rb; ○ specify versions of the application cookbooks either on roles or run_list; ● Use Berkshelf to manage your dependencies; ● Use search(...) instead hard-coded attributes whenever it's possible; ○ load-balancer members, cluster members, etc;
Best practices ● Build cookbooks that support external templates; ● Avoid repetition: use LWRPs; ● Don't reinvent the wheel: https://supermarket.chef.io/ ○ don't fork; ○ build wrapper cookbooks that match your needs; ○ replace original templates when it's needed; ● Write/run tests; ○ rely on chef built-in resources and write tests only for your code; ● Let your CI tool take care of your publishing process; ○ checkout + run tests + version bump + cookbook upload;
Going further ● Getting started: ○ https://docs.chef.io/chef_overview.html ○ https://www.linode.com/docs/applications/chef/beginners-guide-chef ○ https://www.digitalocean.com/community/tutorial_series/getting-started-managing-your-infrastr ucture-using-chef ● Books: ○ Chef Infrastructure Automation Cookbook; ○ Learning Chef: A Guide to Configuration Management and Automation ○ Customizing Chef;
Questions?

More Related Content

PDF
Introduction to redis - version 2
byDvir Volk
 
PDF
WordPress 運用を支える Perl
by鉄次 尾形
 
ODP
Web scraping with nutch solr part 2
byMike Frampton
 
PDF
Ceph Day New York 2014: Future of CephFS
byCeph Community
 
PPTX
Configuration management
byLuca De Vitis
 
ODP
LSA2 - 03 Http apache nginx
byMarian Marinov
 
PDF
Configuration management and orchestration with Salt
byAnirban Saha
 
KEY
CCResourceAsyncLoader
byKeisuke Hata
 
Introduction to redis - version 2
byDvir Volk
 
WordPress 運用を支える Perl
by鉄次 尾形
 
Web scraping with nutch solr part 2
byMike Frampton
 
Ceph Day New York 2014: Future of CephFS
byCeph Community
 
Configuration management
byLuca De Vitis
 
LSA2 - 03 Http apache nginx
byMarian Marinov
 
Configuration management and orchestration with Salt
byAnirban Saha
 
CCResourceAsyncLoader
byKeisuke Hata
 

What's hot

PDF
Large Scale Crawling with Apache Nutch and Friends
bylucenerevolution
 
PDF
Pgbr 2013 postgres on aws
byEmanuel Calvo
 
PDF
Apache Dispatch
byFred Moyer
 
PDF
What's new in Luminous and Beyond
bySage Weil
 
PDF
SaltStack – (Not) just another Automation & Remote Execution Tool
byinovex GmbH
 
PDF
Introduction to Redis
byDvir Volk
 
PDF
CoreOS Overview
byVictor S. Recio
 
PDF
Nsq & python worker
byFelinx Lee
 
ODP
Nagios Conference 2014 - Mike Weber - Expanding NRDS Capabilities on Linux Sy...
byNagios
 
PPTX
Install hadoop in a cluster
byXuhong Zhang
 
PDF
2017-03-11 02 Денис Нелюбин. Docker & Ansible - лучшие друзья DevOps
byОмские ИТ-субботники
 
PPT
eZ Publish cluster unleashed revisited
byBertrand Dunogier
 
PDF
Fluentd unified logging layer
byKiyoto Tamura
 
PPTX
Getting Started with Gulp
byJure Šuvak
 
PPTX
Practical Glusto Example
byGluster.org
 
PDF
Automating with ansible (Part c)
byiman darabi
 
PDF
Object Storage with Gluster
byGluster.org
 
PDF
Introduction to Redis
byRizky Abdilah
 
PDF
Managing PostgreSQL with Ansible - FOSDEM PGDay 2016
byGulcin Yildirim Jelinek
 
PDF
Friends of Solr - Nutch & HDFS
bySaumitra Srivastav
 
Large Scale Crawling with Apache Nutch and Friends
bylucenerevolution
 
Pgbr 2013 postgres on aws
byEmanuel Calvo
 
Apache Dispatch
byFred Moyer
 
What's new in Luminous and Beyond
bySage Weil
 
SaltStack – (Not) just another Automation & Remote Execution Tool
byinovex GmbH
 
Introduction to Redis
byDvir Volk
 
CoreOS Overview
byVictor S. Recio
 
Nsq & python worker
byFelinx Lee
 
Nagios Conference 2014 - Mike Weber - Expanding NRDS Capabilities on Linux Sy...
byNagios
 
Install hadoop in a cluster
byXuhong Zhang
 
2017-03-11 02 Денис Нелюбин. Docker & Ansible - лучшие друзья DevOps
byОмские ИТ-субботники
 
eZ Publish cluster unleashed revisited
byBertrand Dunogier
 
Fluentd unified logging layer
byKiyoto Tamura
 
Getting Started with Gulp
byJure Šuvak
 
Practical Glusto Example
byGluster.org
 
Automating with ansible (Part c)
byiman darabi
 
Object Storage with Gluster
byGluster.org
 
Introduction to Redis
byRizky Abdilah
 
Managing PostgreSQL with Ansible - FOSDEM PGDay 2016
byGulcin Yildirim Jelinek
 
Friends of Solr - Nutch & HDFS
bySaumitra Srivastav
 

Viewers also liked

PPT
State of Puppet 2013 - Puppet Camp DC
byPuppet
 
PDF
Chef Fundamentals Training Series Module 1: Overview of Chef
byChef Software, Inc.
 
PPT
Overview of chef ( Infrastructure as a Code )
byPravin Mishra
 
PPTX
Orchestration? You Don't Need Orchestration. What You Want Is Choreography by...
byDocker, Inc.
 
PPTX
CPU Performance Enhancements
byDilum Bandara
 
PDF
Chef - Administration for programmers
bymrsabo
 
PPTX
Infrastructure Automation with Chef
byREAN Cloud
 
KEY
Puppet for dummies - ZendCon 2011 Edition
byJoshua Thijssen
 
PPTX
Chef Compliance & Workflow w/Delivery
byChef
 
PDF
Etsy chef-workflow
byDaniel Schauenberg
 
PDF
Training Opscode Chef
byLeonardo Martins
 
PDF
“Debugging is on the table” Dr. House pergunta a um Sysadmin
byLeonardo Martins
 
PDF
Deploying infrastructure with Opscode Chef
byRobert Berger
 
State of Puppet 2013 - Puppet Camp DC
byPuppet
 
Chef Fundamentals Training Series Module 1: Overview of Chef
byChef Software, Inc.
 
Overview of chef ( Infrastructure as a Code )
byPravin Mishra
 
Orchestration? You Don't Need Orchestration. What You Want Is Choreography by...
byDocker, Inc.
 
CPU Performance Enhancements
byDilum Bandara
 
Chef - Administration for programmers
bymrsabo
 
Infrastructure Automation with Chef
byREAN Cloud
 
Puppet for dummies - ZendCon 2011 Edition
byJoshua Thijssen
 
Chef Compliance & Workflow w/Delivery
byChef
 
Etsy chef-workflow
byDaniel Schauenberg
 
Training Opscode Chef
byLeonardo Martins
 
“Debugging is on the table” Dr. House pergunta a um Sysadmin
byLeonardo Martins
 
Deploying infrastructure with Opscode Chef
byRobert Berger
 

Similar to Dive into Chef

ODP
Configuration management with Chef
byJuan Vicente Herrera Ruiz de Alejo
 
PPTX
Introducing Chef | An IT automation for speed and awesomeness
byRamit Surana
 
PPTX
Chef
byMohanRaviRohitth
 
PPTX
Chef advance
byRamesh Sencha
 
PDF
Chef Fundamentals Training Series Module 3: Setting up Nodes and Cookbook Aut...
byChef Software, Inc.
 
PDF
Chef, Vagrant and Friends
byBen McRae
 
PPTX
Kickstarter - Chef Opswork
byHamza Waqas
 
PPTX
Chef advance
byRamesh Sencha
 
PPTX
Chef for Openstack
byMohit Sethi
 
PDF
Cooking 5 Star Infrastructure with Chef
byG. Ryan Fawcett
 
PDF
Introduction to Cooking with Chef
byJohn Osborne
 
PDF
Automating your infrastructure with Chef
byJohn Ewart
 
PDF
Introduction to chef framework
bymorgoth
 
PDF
What is Chef and how we use it at tripsta
byGiedrius Rimkus
 
PPTX
Cook Infrastructure with chef -- Justeat.IN
byRajesh Hegde
 
PDF
Chef Intro @ SF Bay Area LSPE meetup
byPromet Source
 
PDF
IT Automation with Chef
byAnuchit Chalothorn
 
PPTX
Chef Jumpstart
byKimball Johnson
 
PDF
Cook like a Chef
byIan Yang
 
PDF
Chef 0.10 Overview
byMatt Ray
 
Configuration management with Chef
byJuan Vicente Herrera Ruiz de Alejo
 
Introducing Chef | An IT automation for speed and awesomeness
byRamit Surana
 
Chef
byMohanRaviRohitth
 
Chef advance
byRamesh Sencha
 
Chef Fundamentals Training Series Module 3: Setting up Nodes and Cookbook Aut...
byChef Software, Inc.
 
Chef, Vagrant and Friends
byBen McRae
 
Kickstarter - Chef Opswork
byHamza Waqas
 
Chef advance
byRamesh Sencha
 
Chef for Openstack
byMohit Sethi
 
Cooking 5 Star Infrastructure with Chef
byG. Ryan Fawcett
 
Introduction to Cooking with Chef
byJohn Osborne
 
Automating your infrastructure with Chef
byJohn Ewart
 
Introduction to chef framework
bymorgoth
 
What is Chef and how we use it at tripsta
byGiedrius Rimkus
 
Cook Infrastructure with chef -- Justeat.IN
byRajesh Hegde
 
Chef Intro @ SF Bay Area LSPE meetup
byPromet Source
 
IT Automation with Chef
byAnuchit Chalothorn
 
Chef Jumpstart
byKimball Johnson
 
Cook like a Chef
byIan Yang
 
Chef 0.10 Overview
byMatt Ray
 

Recently uploaded

PPT
INTRODUCTION_TO_SOFTWARE_APPLICATION.pptx
byMESFINBELAY4
 
PDF
A Day in the Life of IPv6 Scanning by Matsuzaki ʻmazʼ
byBangladesh Network Operators Group
 
PDF
Automating ISP Networks Using Ansible and IPAM as a Source of Truth [SoT]
byBangladesh Network Operators Group
 
PPTX
Passive Presentation pasdskpasdasdasdasf
byNoOne501682
 
PDF
DNSSEC Implementation Journey at Prime Bank’s Domain
byBangladesh Network Operators Group
 
PPTX
ENDNOTE refrencing how to do step by step..
byhumairasohaib19
 
PDF
OFFENSIVE OPERATIONS : THE ANATOMY OF A NETWORK TAKEOVER
byBangladesh Network Operators Group
 
PPTX
MEANING OF EMOJIS OF SOCIAL MEDIA - RUKUNDO Emmanuel..pptx
bysongsormusics
 
PPTX
BTCFi on Starknet,Troves.fi offers automated strategies for Bitcoin users on ...
bytrovesfi
 
PDF
Cybrain Software Solutions – Building Future-Ready Digital Tools
byCybrain Software Solutions
 
PDF
A La Recherche Du Temps Perdu: In Search of the Cozy Web
byJen Looper
 
PPTX
ARCHITECTURESACGCHCIUOHCOHCSAKJCOQKCHUO.pptx
bymchlrdpc2921
 
PPTX
evolution of internet (internet journey)
byyamunadevi49
 
PPTX
AI Presentation it all about what is ai and how to implement in real life
byshraddhasule1710
 
PPTX
Facebook: How to Maximize for Everyday Business
byLP3I Surabaya
 
INTRODUCTION_TO_SOFTWARE_APPLICATION.pptx
byMESFINBELAY4
 
A Day in the Life of IPv6 Scanning by Matsuzaki ʻmazʼ
byBangladesh Network Operators Group
 
Automating ISP Networks Using Ansible and IPAM as a Source of Truth [SoT]
byBangladesh Network Operators Group
 
Passive Presentation pasdskpasdasdasdasf
byNoOne501682
 
DNSSEC Implementation Journey at Prime Bank’s Domain
byBangladesh Network Operators Group
 
ENDNOTE refrencing how to do step by step..
byhumairasohaib19
 
OFFENSIVE OPERATIONS : THE ANATOMY OF A NETWORK TAKEOVER
byBangladesh Network Operators Group
 
MEANING OF EMOJIS OF SOCIAL MEDIA - RUKUNDO Emmanuel..pptx
bysongsormusics
 
BTCFi on Starknet,Troves.fi offers automated strategies for Bitcoin users on ...
bytrovesfi
 
Cybrain Software Solutions – Building Future-Ready Digital Tools
byCybrain Software Solutions
 
A La Recherche Du Temps Perdu: In Search of the Cozy Web
byJen Looper
 
ARCHITECTURESACGCHCIUOHCOHCSAKJCOQKCHUO.pptx
bymchlrdpc2921
 
evolution of internet (internet journey)
byyamunadevi49
 
AI Presentation it all about what is ai and how to implement in real life
byshraddhasule1710
 
Facebook: How to Maximize for Everyday Business
byLP3I Surabaya
 

Dive into Chef

  • 1.
    Dive into CHEF EduardoS. Scarpellini @escarpellini Aug, 2016
  • 2.
    Agenda - Architecture; - Maintools; - Cooking; - cookbooks, recipes, resources, templates, etc; - Knife; - LWRPs; - Tests; - Best practices;
  • 3.
  • 4.
    Main tools ● Developmentworkstation: ○ chef-dk; ■ cookbook standardized skeletons, linting and testing tools, style checking; ○ knife; ■ swiss knife: cookbook/node management, search, many plugins (AWS, OpenStack, VMWare, etc); ○ chef-kitchen (or any other testing tool); ■ runs acceptance criterias in a brand new/isolated environment (docker, vagrant, etc); ● Nodes: ○ chef-client; ○ ohai; ■ node attributes: platform and kernel details, network configuration, hostname, cpu and memory data, etc;
  • 5.
    Cookbook building blocks ●Metadata; ○ author, version, dependencies, documentation, etc; ● Resources; ○ desired state, several types (package, service), name+parameters, notifications/subscriptions; ● Attributes; ○ global hash table, precedence/override; ● Files and templates; ○ static or dynamic files (erb templates) that should be synchronized with nodes; ● Recipes; ○ collection of resources; ● Libraries, definitions and LWRPs; ○ custom resource types, ruby functions;
  • 6.
    Cookbook anatomy chef generate<cookbook, recipe, attribute, lwrp, ...> attributes files repository recipes templates repository cookbook
  • 7.
    Recipes: basics ● RubyDSL; ● Collection of resources; ○ package, cookbook_file, directory, template, service, execute, user, group, cron, dsc_resource, etc. ● Interaction with attributes; ○ user defined or ohai; ● Everything is evaluated in the same order that they are declared; ● Can include other recipes; {yum install … apt-get install … msiexec.exe /i … type + name }parameters notification {service … systemctl … sc.exe … myapp/recipes/default.rb
  • 8.
    Recipes: a bitmore complex ohai attribute Powerful of Ruby: syntax, variables, data structures, conditionals, loopings, libraries, gems, etc. include external code local variables attribute notification timer Requires attribute definition: myapp/recipes/default.rb myapp/attributes/default.rb
  • 9.
    Templates ohai attributeCombine plaintext with Ruby code (<% … %>) for variable substitution and flow control. loop + attribute + local variables myapp/templates/default/haproxy.cfg.erb myapp/attributes/default.rb haproxy.cfg
  • 10.
    What else... ● Attributes: ○defined/accessed in/from attribute files, recipes, roles, environments and/or node JSONs; ○ precedence/overwritten (node.override > node.set > node.default); ○ accessed via node['key'] or node.key ● Data bags: ○ global variables stored as JSON files; ○ can be encrypted (suitable for passwords, shared keys, etc); ○ accessed via Chef::EncryptedDataBagItem.load('bag_name', 'bag_item') ● Roles describes nodes (group cookbooks, overwrite attributes); ● Nodes (JSON): ○ Node attributes (ohai + defined by cookbooks); ○ run_list: list (array) of roles, cookbooks and/or recipes that will run on the node.
  • 11.
    Knife ● Provides aninterface between a local chef-repo and the Chef server; ● Extensible; ● Helps to manage: ○ nodes: ■ knife node <create, edit, delete ,...> ○ cookbooks, roles and data bags: ■ knife cookbook <create, delete, upload, ...> ■ knife role <create, edit, delete, ...> ■ knife data bag <create, edit, delete, ...> ○ cloud/hypervisors/servers (plugins): ■ knife ec2 server create… ■ knife bootstrap <FQDN>…
  • 12.
    LWRPs ● Is asimple extension of Chef; ● Is implemented as part of a cookbook; ● Follows easy, repeatable syntax patterns; ● Effectively leverages resources that are built into Chef; ● Is reusable in the same way as built-in resources;
  • 13.
  • 14.
    Kitchen ● Test cookbookdata across any combination of platforms and test suites; ● Defined in a YAML file (.kitchen.yaml); ● Uses a driver plugin architecture; ○ many cloud providers and virtualization technologies ■ AWS, VMWare, Docker, Vagrant, openstack, etc; ○ automatic chef-server provisioning; ■ environments, roles, data bags, dependencies (via Berkshelf), etc; ● Supports all common testing frameworks that are used by the Ruby community; ○ bats (bash), minitest, rspec, serverspec;
  • 15.
    Kitchen will runall .bats files against all specified platforms Kitchen myapp/.kitchen.yml test/integration/default/bats/lb_haproxy.bats { driver plugin run_list + attributes bash commands
  • 16.
  • 17.
    Best practices ● Planin advance; ○ environments, roles, data bags and attributes hierarchy, naming conventions; ● Use foodcritic integrated to your favorite editor (sublime, atom); ● Versioning your cookbooks (at scm and at chef-server level); ○ use scm tags; ○ use one repository for each cookbook; ○ freeze stable versions on chef-server; ○ specify versions of the dependencies on metadata.rb; ○ specify versions of the application cookbooks either on roles or run_list; ● Use Berkshelf to manage your dependencies; ● Use search(...) instead hard-coded attributes whenever it's possible; ○ load-balancer members, cluster members, etc;
  • 18.
    Best practices ● Buildcookbooks that support external templates; ● Avoid repetition: use LWRPs; ● Don't reinvent the wheel: https://supermarket.chef.io/ ○ don't fork; ○ build wrapper cookbooks that match your needs; ○ replace original templates when it's needed; ● Write/run tests; ○ rely on chef built-in resources and write tests only for your code; ● Let your CI tool take care of your publishing process; ○ checkout + run tests + version bump + cookbook upload;
  • 19.
    Going further ● Gettingstarted: ○ https://docs.chef.io/chef_overview.html ○ https://www.linode.com/docs/applications/chef/beginners-guide-chef ○ https://www.digitalocean.com/community/tutorial_series/getting-started-managing-your-infrastr ucture-using-chef ● Books: ○ Chef Infrastructure Automation Cookbook; ○ Learning Chef: A Guide to Configuration Management and Automation ○ Customizing Chef;
  • 20.