Puppet, profile picture
Uploaded byPuppet
PDF, PPTX4,887 views

Replacing "exec" with a type and provider: Return manifests to a declarative configuration

The document discusses converting Puppet exec commands into types and providers, highlighting the structure and functionalities of user management and apt key management types. It details how properties and parameters work, along with examples of creating custom types and providers, conducting validations, and managing resource existence. Additionally, it points to resources for further information on Puppet types and provider development.

Embed presentation

Download as PDF, PPTX
Replacing "exec" with a type and provider Return manifests to a declarative configuration Dominic Cleal <dcleal@redhat.com>
Puppet's declarative DSL user { 'dcleal': ensure => present, comment => 'Dominic Cleal', shell => '/bin/bash', } package { 'vim': ensure => 'present', }
How execs can fail $ puppet module install puppetlabs-apt $ vim apt/manifests/key.pp ... exec { "apt::key ${upkey} absent": command => "apt-key del '${upkey}'", path => '/bin:/usr/bin', onlyif => "apt-key list | grep '${upkey}'", user => 'root', group => 'root', logoutput => 'on_failure', }
Convert the exec to a type/provider 'user' type ensure name comment 'useradd' shell home provider exists?, create, destroy comment, comment= useradd <user> shell, shell= home, home= usermod <user> userdel <user>
Types: properties and parameters ● Properties are changeable, e.g. a user's shell or a service's start-at-boot flag ● Parameters represent other required data, e. g. hasrestart on service ● All data can be validated and munged ● Types can be "ensurable", if the object can: ○ exist and not exist ○ be created ○ be destroyed
Convert the exec to a type/provider 'apt_key' type ensure key 'keyring' provider key_server exists? create apt-key list destroy apt-key --recv-keys.. apt-key del
Types: simple example $ cat apt_key/lib/puppet/type/apt_key.rb Puppet::Type.newtype(:apt_key) do @doc = "Manages apt keys" ensurable newparam(:key) do desc "The key ID" isnamevar end newparam(:key_server) do desc "Key server to download key form" defaultto "pgp.mit.edu" end end
Types: known values Puppet::Type.type(:file).newparam(:checksum) do desc "The checksum type to use when determining whether to replace a file's conten ts. The default checksum type is md5." newvalues "md5", "md5lite", "mtime", "ctime", "none" defaultto :md5 end
Types: validation module Puppet newtype(:schedule) do newparam(:repeat) do desc "How often a given resource may be applied in this schedule's `period`. Defaults to 1; must be an integer." validate do |value| unless value.is_a?(Integer) or value =~ /^d+$/ raise Puppet::Error, "Repeat must be a number" end end
Providers: getters/setters, ensurable ● getters and setters are implemented for each property ● ensurable types also have exists?, create and destroy to manage its existence ● list of commands that are required to run ● confined to certain operating systems via facts
Providers: simple example $ cat apt_key/lib/puppet/provider/apt_key/keyring.rb Puppet::Type.type(:apt_key).provide(:keyring) do commands :aptkey => "/usr/bin/apt-key" def exists? aptkey("list").include? resource[:key].upcase end def create aptkey "adv", "--keyserver", resource[:key_server], "--recv- keys", resource[:key].upcase end def destroy aptkey "del", resource[:key].upcase end end
Providers: confinement Puppet::Type.type(:group).provide :aix do desc "Group management for AIX." confine :operatingsystem => :aix defaultfor :operatingsystem => :aix Puppet::Type.type(:exec).provide :posix do confine :feature => :posix defaultfor :feature => :posix
Providers: instances and ralsh $ puppet resource host host { 'argon': ensure => 'present', host_aliases => ['foo'], ip => '192.168.0.10', target => '/etc/hosts', } host { 'iridium': ensure => 'present', host_aliases => ['localhost.localdomain', 'localhost'], ip => '127.0.0.1', target => '/etc/hosts', }
Providers: instances and ralsh def self.instances resources = [] aptkey("list").each_line { |k| resources << new({: name => $1}) if k =~ /^pubs+w+/(w+)/ } resources end # puppet resource apt_key apt_key { '1F41B907': ensure => 'present' } apt_key { '46925553': ensure => 'present'
Testing providers with rspec prov_c = Puppet::Type.type(:apt_key).provider(:keyring) describe prov_c do it "should remove key" do resource = Puppet::Type.type(:apt_key).new( :name => '16BA136C', :ensure => :absent ) provider = prov_c.new(resource) provider.expects(:aptkey).with('del', '16BA136C') provider.destroy end end
Creating a module $ puppet module generate domcleal-apt_key $ cd domcleal-apt_key $ mkdir -p lib/puppet/type lib/puppet/provider/apt_key $ touch lib/puppet/type/apt_key.rb lib/puppet/provider/apy_key/keyring.rb $ puppet module build . upload pkg/domcleal-apt_key-0.0.1.tar.gz
Resources ● docs.puppetlabs.com guides ○ Writing custom types & providers ○ Provider development ● Puppet Types and Providers ○ Dan Bode & Nan Liu, O'Reilly, 2012 ● puppet source itself, spec/unit/provider/ ● puppetlabs_spec_helper

More Related Content

PDF
Puppet Camp Chicago 2014: Smoothing Troubles With Custom Types and Providers ...
byPuppet
 
PDF
Doing It Wrong with Puppet -
byPuppet
 
PDF
Intro to-puppet
byF.L. Jonathan Araña Cruz
 
PPTX
Puppet camp chicago-automated_testing2
bynottings
 
PDF
Can you upgrade to Puppet 4.x?
byMartin Alfke
 
PDF
Memory Manglement in Raku
byWorkhorse Computing
 
PDF
Puppet @ Seat
byAlessandro Franceschi
 
PDF
Getting testy with Perl
byWorkhorse Computing
 
Puppet Camp Chicago 2014: Smoothing Troubles With Custom Types and Providers ...
byPuppet
 
Doing It Wrong with Puppet -
byPuppet
 
Intro to-puppet
byF.L. Jonathan Araña Cruz
 
Puppet camp chicago-automated_testing2
bynottings
 
Can you upgrade to Puppet 4.x?
byMartin Alfke
 
Memory Manglement in Raku
byWorkhorse Computing
 
Puppet @ Seat
byAlessandro Franceschi
 
Getting testy with Perl
byWorkhorse Computing
 

What's hot

KEY
Perl: Hate it for the Right Reasons
byMatt Follett
 
PDF
Oliver hookins puppetcamp2011
byPuppet
 
PDF
Anatomy of a reusable module
byAlessandro Franceschi
 
PDF
Puppet: What _not_ to do
byPuppet
 
PDF
BSDM with BASH: Command Interpolation
byWorkhorse Computing
 
PDF
Puppet modules for Fun and Profit
byAlessandro Franceschi
 
PDF
Puppi. Puppet strings to the shell
byAlessandro Franceschi
 
PDF
Object Trampoline: Why having not the object you want is what you need.
byWorkhorse Computing
 
PDF
More tips n tricks
bybcoca
 
PDF
BASH Variables Part 1: Basic Interpolation
byWorkhorse Computing
 
PDF
Selenium sandwich-3: Being where you aren't.
byWorkhorse Computing
 
PDF
Keeping objects healthy with Object::Exercise.
byWorkhorse Computing
 
PDF
Follow the White Rabbit - Message Queues with PHP
byEric Rodriguez (Hiring in Lex)
 
PDF
Scaling Symfony2 apps with RabbitMQ - Symfony UK Meetup
byKacper Gunia
 
KEY
Tatsumaki
byTatsuhiko Miyagawa
 
PDF
Supercharging WordPress Development in 2018
byAdam Tomat
 
PDF
Test-Driven Puppet Development - PuppetConf 2014
byPuppet
 
PDF
Puppet for Sys Admins
byPuppet
 
PDF
Get your teeth into Plack
byWorkhorse Computing
 
PPTX
Php on the Web and Desktop
byElizabeth Smith
 
Perl: Hate it for the Right Reasons
byMatt Follett
 
Oliver hookins puppetcamp2011
byPuppet
 
Anatomy of a reusable module
byAlessandro Franceschi
 
Puppet: What _not_ to do
byPuppet
 
BSDM with BASH: Command Interpolation
byWorkhorse Computing
 
Puppet modules for Fun and Profit
byAlessandro Franceschi
 
Puppi. Puppet strings to the shell
byAlessandro Franceschi
 
Object Trampoline: Why having not the object you want is what you need.
byWorkhorse Computing
 
More tips n tricks
bybcoca
 
BASH Variables Part 1: Basic Interpolation
byWorkhorse Computing
 
Selenium sandwich-3: Being where you aren't.
byWorkhorse Computing
 
Keeping objects healthy with Object::Exercise.
byWorkhorse Computing
 
Follow the White Rabbit - Message Queues with PHP
byEric Rodriguez (Hiring in Lex)
 
Scaling Symfony2 apps with RabbitMQ - Symfony UK Meetup
byKacper Gunia
 
Tatsumaki
byTatsuhiko Miyagawa
 
Supercharging WordPress Development in 2018
byAdam Tomat
 
Test-Driven Puppet Development - PuppetConf 2014
byPuppet
 
Puppet for Sys Admins
byPuppet
 
Get your teeth into Plack
byWorkhorse Computing
 
Php on the Web and Desktop
byElizabeth Smith
 

Similar to Replacing "exec" with a type and provider: Return manifests to a declarative configuration

PDF
20090514 Introducing Puppet To Sasag
bygarrett honeycutt
 
PDF
Puppet fundamentals
byMurali Boyapati
 
KEY
20100425 Configuration Management With Puppet Lfnw
bygarrett honeycutt
 
PPTX
Learning Puppet basic thing
byDaeHyung Lee
 
PPT
Dance for the puppet master: G6 Tech Talk
byMichael Peacock
 
KEY
Puppet talk at OSCON 2010.
byteyotyree
 
PDF
Puppet Camp LA 2015: Package Managers and Puppet (Beginner)
byPuppet
 
PDF
Puppet Camp LA 2/19/2015
byice799
 
PDF
Developing IT infrastructures with Puppet
byAlessandro Franceschi
 
PDF
Using Puppet on Linux, Windows, and Mac OSX
byPuppet
 
PDF
The Worst Code I Ever Wrote
byPuppet
 
PDF
"The worst code I ever wrote"
byTomas Doran
 
PDF
Package manages and Puppet - PuppetConf 2015
byice799
 
KEY
modern module development - Ken Barber 2012 Edinburgh Puppet Camp
byPuppet
 
PDF
PuppetConf 2017: How People Actually Write Puppet- Gareth Rushgrove, Puppet
byPuppet
 
PDF
Systems Automation with Puppet
byelliando dias
 
KEY
Puppet for Java developers - JavaZone NO 2012
byCarlos Sanchez
 
PDF
Writing and Publishing Puppet Modules - PuppetConf 2014
byPuppet
 
PDF
DevOps Series: Extending vagrant with Puppet for configuration management
byFelipe
 
KEY
Stanford Hackathon - Puppet Modules
byPuppet
 
20090514 Introducing Puppet To Sasag
bygarrett honeycutt
 
Puppet fundamentals
byMurali Boyapati
 
20100425 Configuration Management With Puppet Lfnw
bygarrett honeycutt
 
Learning Puppet basic thing
byDaeHyung Lee
 
Dance for the puppet master: G6 Tech Talk
byMichael Peacock
 
Puppet talk at OSCON 2010.
byteyotyree
 
Puppet Camp LA 2015: Package Managers and Puppet (Beginner)
byPuppet
 
Puppet Camp LA 2/19/2015
byice799
 
Developing IT infrastructures with Puppet
byAlessandro Franceschi
 
Using Puppet on Linux, Windows, and Mac OSX
byPuppet
 
The Worst Code I Ever Wrote
byPuppet
 
"The worst code I ever wrote"
byTomas Doran
 
Package manages and Puppet - PuppetConf 2015
byice799
 
modern module development - Ken Barber 2012 Edinburgh Puppet Camp
byPuppet
 
PuppetConf 2017: How People Actually Write Puppet- Gareth Rushgrove, Puppet
byPuppet
 
Systems Automation with Puppet
byelliando dias
 
Puppet for Java developers - JavaZone NO 2012
byCarlos Sanchez
 
Writing and Publishing Puppet Modules - PuppetConf 2014
byPuppet
 
DevOps Series: Extending vagrant with Puppet for configuration management
byFelipe
 
Stanford Hackathon - Puppet Modules
byPuppet
 

More from Puppet

PPTX
Puppet Community Day: Planning the Future Together
byPuppet
 
PPTX
The Evolution of Puppet: Key Changes and Modernization Tips
byPuppet
 
PPTX
Can You Help Me Upgrade to Puppet 8? Tips, Tools & Best Practices for Your Up...
byPuppet
 
PPTX
Bolt Dynamic Inventory: Making Puppet Easier
byPuppet
 
PPTX
Customizing Reporting with the Puppet Report Processor
byPuppet
 
PPTX
Puppet at ConfigMgmtCamp 2025 Sponsor Deck
byPuppet
 
PPTX
The State of Puppet in 2025: A Presentation from Developer Relations Lead Dav...
byPuppet
 
PPTX
Let Red be Red and Green be Green: The Automated Workflow Restarter in GitHub...
byPuppet
 
PDF
Puppet camp2021 testing modules and controlrepo
byPuppet
 
PPTX
Puppetcamp r10kyaml
byPuppet
 
PDF
2021 04-15 operational verification (with notes)
byPuppet
 
PPTX
Puppet camp vscode
byPuppet
 
PDF
Modules of the twenties
byPuppet
 
PDF
Applying Roles and Profiles method to compliance code
byPuppet
 
PPTX
KGI compliance as-code approach
byPuppet
 
PDF
Enforce compliance policy with model-driven automation
byPuppet
 
PDF
Keynote: Puppet camp compliance
byPuppet
 
PPTX
Automating it management with Puppet + ServiceNow
byPuppet
 
PPTX
Puppet: The best way to harden Windows
byPuppet
 
PPTX
Simplified Patch Management with Puppet - Oct. 2020
byPuppet
 
Puppet Community Day: Planning the Future Together
byPuppet
 
The Evolution of Puppet: Key Changes and Modernization Tips
byPuppet
 
Can You Help Me Upgrade to Puppet 8? Tips, Tools & Best Practices for Your Up...
byPuppet
 
Bolt Dynamic Inventory: Making Puppet Easier
byPuppet
 
Customizing Reporting with the Puppet Report Processor
byPuppet
 
Puppet at ConfigMgmtCamp 2025 Sponsor Deck
byPuppet
 
The State of Puppet in 2025: A Presentation from Developer Relations Lead Dav...
byPuppet
 
Let Red be Red and Green be Green: The Automated Workflow Restarter in GitHub...
byPuppet
 
Puppet camp2021 testing modules and controlrepo
byPuppet
 
Puppetcamp r10kyaml
byPuppet
 
2021 04-15 operational verification (with notes)
byPuppet
 
Puppet camp vscode
byPuppet
 
Modules of the twenties
byPuppet
 
Applying Roles and Profiles method to compliance code
byPuppet
 
KGI compliance as-code approach
byPuppet
 
Enforce compliance policy with model-driven automation
byPuppet
 
Keynote: Puppet camp compliance
byPuppet
 
Automating it management with Puppet + ServiceNow
byPuppet
 
Puppet: The best way to harden Windows
byPuppet
 
Simplified Patch Management with Puppet - Oct. 2020
byPuppet
 

Recently uploaded

PDF
UiPath Modern Automation Playbook -Session 2
bysuhanisingh58689
 
PDF
final~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~.pdf
byomarbishtawi04
 
PDF
UiPath Automation Developer Associate Training Series 2025 - Session 4
byDianaGray10
 
PPTX
Tech Trends 2026: AI Agents, Quantum Computing, Robotics & Cybersecurity
byridwansassman
 
PPTX
apidays Paris 2025 | Building Agentic Workflows
byapidays
 
PDF
Digital Twin in IBM for Accelerated Discovery of Climate & Sustainability, K...
byMichiaki Tatsubori
 
PPTX
Microsoft Azure News - February 2026 - BAUG
byDaniel Toomey
 
PPTX
Workflow and decision Automation with Flowable
bychakib ch
 
PDF
February 2026 Patch Tuesday hosted by Chris Goettl and Todd Schell
byIvanti
 
PDF
Constraint Collapse and Fidelity Decay in Scaled Language Models
bySemantic Fidelity Lab | A. Jacobs
 
PDF
UiPath Automation Developer Associate Training Series 2026 - Session 3
byDianaGray10
 
PPTX
Introducing VisualSim 2610 The Next Leap in System Level Modeling
byDeepak Shankar
 
PPTX
PPTX game guess the logo with a twistppt
byAdrianAnig
 
PDF
Oracle Cloud Infrastructure 2025 Architect Professional (1Z0-1127-25) Master ...
byExamCert App
 
PDF
Session 1/5: Enhancing Automation with Screenplay & Business Rules
bysuhanisingh58689
 
PDF
final.pdf
byomarbishtawi04
 
PDF
NTG -Company Profile_Software_Vendor_Company_in_MENA
byMustafa Kuğu
 
PDF
Escape from the Forbidden Zone: Smuggling green and inclusive tech past the g...
byBookNet Canada
 
PDF
Transcript: Escape from the Forbidden Zone: Smuggling green and inclusive tec...
byBookNet Canada
 
PDF
How AI Can Help Platform Engineers Build Better Platforms
byAll Things Open
 
UiPath Modern Automation Playbook -Session 2
bysuhanisingh58689
 
final~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~.pdf
byomarbishtawi04
 
UiPath Automation Developer Associate Training Series 2025 - Session 4
byDianaGray10
 
Tech Trends 2026: AI Agents, Quantum Computing, Robotics & Cybersecurity
byridwansassman
 
apidays Paris 2025 | Building Agentic Workflows
byapidays
 
Digital Twin in IBM for Accelerated Discovery of Climate & Sustainability, K...
byMichiaki Tatsubori
 
Microsoft Azure News - February 2026 - BAUG
byDaniel Toomey
 
Workflow and decision Automation with Flowable
bychakib ch
 
February 2026 Patch Tuesday hosted by Chris Goettl and Todd Schell
byIvanti
 
Constraint Collapse and Fidelity Decay in Scaled Language Models
bySemantic Fidelity Lab | A. Jacobs
 
UiPath Automation Developer Associate Training Series 2026 - Session 3
byDianaGray10
 
Introducing VisualSim 2610 The Next Leap in System Level Modeling
byDeepak Shankar
 
PPTX game guess the logo with a twistppt
byAdrianAnig
 
Oracle Cloud Infrastructure 2025 Architect Professional (1Z0-1127-25) Master ...
byExamCert App
 
Session 1/5: Enhancing Automation with Screenplay & Business Rules
bysuhanisingh58689
 
final.pdf
byomarbishtawi04
 
NTG -Company Profile_Software_Vendor_Company_in_MENA
byMustafa Kuğu
 
Escape from the Forbidden Zone: Smuggling green and inclusive tech past the g...
byBookNet Canada
 
Transcript: Escape from the Forbidden Zone: Smuggling green and inclusive tec...
byBookNet Canada
 
How AI Can Help Platform Engineers Build Better Platforms
byAll Things Open
 

Replacing "exec" with a type and provider: Return manifests to a declarative configuration

  • 1.
    Replacing "exec" witha type and provider Return manifests to a declarative configuration Dominic Cleal <dcleal@redhat.com>
  • 2.
    Puppet's declarative DSL user{ 'dcleal': ensure => present, comment => 'Dominic Cleal', shell => '/bin/bash', } package { 'vim': ensure => 'present', }
  • 3.
    How execs canfail $ puppet module install puppetlabs-apt $ vim apt/manifests/key.pp ... exec { "apt::key ${upkey} absent": command => "apt-key del '${upkey}'", path => '/bin:/usr/bin', onlyif => "apt-key list | grep '${upkey}'", user => 'root', group => 'root', logoutput => 'on_failure', }
  • 4.
    Convert the execto a type/provider 'user' type ensure name comment 'useradd' shell home provider exists?, create, destroy comment, comment= useradd <user> shell, shell= home, home= usermod <user> userdel <user>
  • 5.
    Types: properties andparameters ● Properties are changeable, e.g. a user's shell or a service's start-at-boot flag ● Parameters represent other required data, e. g. hasrestart on service ● All data can be validated and munged ● Types can be "ensurable", if the object can: ○ exist and not exist ○ be created ○ be destroyed
  • 6.
    Convert the execto a type/provider 'apt_key' type ensure key 'keyring' provider key_server exists? create apt-key list destroy apt-key --recv-keys.. apt-key del
  • 7.
    Types: simple example $cat apt_key/lib/puppet/type/apt_key.rb Puppet::Type.newtype(:apt_key) do @doc = "Manages apt keys" ensurable newparam(:key) do desc "The key ID" isnamevar end newparam(:key_server) do desc "Key server to download key form" defaultto "pgp.mit.edu" end end
  • 8.
    Types: known values Puppet::Type.type(:file).newparam(:checksum)do desc "The checksum type to use when determining whether to replace a file's conten ts. The default checksum type is md5." newvalues "md5", "md5lite", "mtime", "ctime", "none" defaultto :md5 end
  • 9.
    Types: validation module Puppet newtype(:schedule) do newparam(:repeat) do desc "How often a given resource may be applied in this schedule's `period`. Defaults to 1; must be an integer." validate do |value| unless value.is_a?(Integer) or value =~ /^d+$/ raise Puppet::Error, "Repeat must be a number" end end
  • 10.
    Providers: getters/setters, ensurable ●getters and setters are implemented for each property ● ensurable types also have exists?, create and destroy to manage its existence ● list of commands that are required to run ● confined to certain operating systems via facts
  • 11.
    Providers: simple example $cat apt_key/lib/puppet/provider/apt_key/keyring.rb Puppet::Type.type(:apt_key).provide(:keyring) do commands :aptkey => "/usr/bin/apt-key" def exists? aptkey("list").include? resource[:key].upcase end def create aptkey "adv", "--keyserver", resource[:key_server], "--recv- keys", resource[:key].upcase end def destroy aptkey "del", resource[:key].upcase end end
  • 12.
    Providers: confinement Puppet::Type.type(:group).provide :aixdo desc "Group management for AIX." confine :operatingsystem => :aix defaultfor :operatingsystem => :aix Puppet::Type.type(:exec).provide :posix do confine :feature => :posix defaultfor :feature => :posix
  • 13.
    Providers: instances andralsh $ puppet resource host host { 'argon': ensure => 'present', host_aliases => ['foo'], ip => '192.168.0.10', target => '/etc/hosts', } host { 'iridium': ensure => 'present', host_aliases => ['localhost.localdomain', 'localhost'], ip => '127.0.0.1', target => '/etc/hosts', }
  • 14.
    Providers: instances andralsh def self.instances resources = [] aptkey("list").each_line { |k| resources << new({: name => $1}) if k =~ /^pubs+w+/(w+)/ } resources end # puppet resource apt_key apt_key { '1F41B907': ensure => 'present' } apt_key { '46925553': ensure => 'present'
  • 15.
    Testing providers withrspec prov_c = Puppet::Type.type(:apt_key).provider(:keyring) describe prov_c do it "should remove key" do resource = Puppet::Type.type(:apt_key).new( :name => '16BA136C', :ensure => :absent ) provider = prov_c.new(resource) provider.expects(:aptkey).with('del', '16BA136C') provider.destroy end end
  • 16.
    Creating a module $puppet module generate domcleal-apt_key $ cd domcleal-apt_key $ mkdir -p lib/puppet/type lib/puppet/provider/apt_key $ touch lib/puppet/type/apt_key.rb lib/puppet/provider/apy_key/keyring.rb $ puppet module build . upload pkg/domcleal-apt_key-0.0.1.tar.gz
  • 17.
    Resources ● docs.puppetlabs.com guides ○ Writing custom types & providers ○ Provider development ● Puppet Types and Providers ○ Dan Bode & Nan Liu, O'Reilly, 2012 ● puppet source itself, spec/unit/provider/ ● puppetlabs_spec_helper