SlideShare a Scribd company logo

Environments - Fundamentals Webinar Series Week 5

Chef
Chef

This document outlines an upcoming six-week webinar series on Chef fundamentals. The topics to be covered include node setup, roles, environments, cookbook version constraints, and using data bags for common configuration. Participants are encouraged to ask questions during the webinars or in the associated discussion group. Recordings and slides from each session will be made available online after the event.

1 of 44
Download to read offline
Chef Fundamentals training@getchef.com Copyright (C) 2014 Chef Software, Inc.
Nathen Harvey • Community Director • Co-host of the Food Fight Show Podcast ! • @nathenharvey
Questions & Answers • Ask questions in the chat window when they come to you • We’ll answer as many questions as we can at the end of the session
Questions & Answers • Ask questions in the Google Discussion Forum ! • This can be used during the webinar and outside of the webinar, too. ! • https://groups.google.com/d/ forum/learnchef-fundamentals- webinar
Slides and Video • This webinar is being recorded. The video will be made available shortly after the session has ended. ! • The slides used throughout this webinar will be made available at the end of each webinar. ! • Watch http://learnchef.com for updates.
Topics • Overview of Chef • Workstation Setup • Node Setup • Chef Resources and Recipes • Working with the Node object • Roles • Common configuration with Data Bags • Environments • Community Cookbooks and Further Resources
Quick Recap Where are we? 7
In the last module • Refactored our apache cookbook to include multiple sites 8
Where did my Node go? • We still need a CentOS machine to manage • The one we launched last time has likely expired • Launch a new one using the Chef Lab • Hopefully, you’ve already done this. We’re not going to spend time walking through it now. 9
Launch Chef Training Lab 10
$ ssh root@<EXTERNAL_ADDRESS> Lab - Login The authenticity of host 'uvo1qrwls0jdgs3blvt.vm.cld.sr (69.195.232.110)' can't be established.! RSA key fingerprint is d9:95:a3:b9:02:27:e9:cd: 74:e4:a2:34:23:f5:a6:8b.! Are you sure you want to continue connecting (yes/no)? yes! Warning: Permanently added 'uvo1qrwls0jdgs3blvt.vm.cld.sr, 69.195.232.110' (RSA) to the list of known hosts.! chef@uvo1qrwls0jdgs3blvt.vm.cld.sr's password: ! Last login: Mon Jan 6 16:26:24 2014 from host86-145-117-53.range86-145.btcentralplus.com! [chef@CentOS63 ~]$ 11
$ knife bootstrap <EXTERNAL_ADDRESS> -x root -P chef -N ‘module5’ -r ‘role[webserver]’ "Bootstrap" the Target Instance Bootstrapping Chef on uvo1qrwls0jdgs3blvt.vm.cld.sr! ...! ...! uvo1qrwls0jdgs3blvt.vm.cld.sr Creating a new client identity for module3 using the validator key.! uvo1qrwls0jdgs3blvt.vm.cld.sr resolving cookbooks for run list: []! uvo1qrwls0jdgs3blvt.vm.cld.sr Synchronizing Cookbooks:! uvo1qrwls0jdgs3blvt.vm.cld.sr Compiling Cookbooks...! uvo1qrwls0jdgs3blvt.vm.cld.sr [2014-01-28T11:03:14-05:00] WARN: Node module3 has an empty run list.! uvo1qrwls0jdgs3blvt.vm.cld.sr Converging 0 resources! uvo1qrwls0jdgs3blvt.vm.cld.sr Chef Client finished, 0 resources updated 12
Exercise: Verify that the home page works • Open a web browser • Type in the the URL for your test node 13
v2.1.0 Environments Cookbook Version Constraints and Override Attributes 14
Lesson Objectives • After completing the lesson, you will be able to • Describe what an Environment is, and how it is different from an Organization • Set cookbook version constraints • Explain when to set attributes in an environment 15
Organization Environments Development Staging Production 16
Environments • Every Organization starts with a single environment • Environments reflect your patterns and workflow • Development • Test • Staging • Production • etc. 17
Environments Define Policy • Each environment may include attributes necessary for configuring the infrastructure in that environment • Production needs certain Yum repos • QA needs different Yum repos • The version of the Chef cookbooks to be used 18
Environment Best Practice • We cannot share cookbooks between organizations • Best Practice: If you need to share cookbooks or roles, you likely want an Environment rather than an organization ! • Environments allow for isolating resources within a single organization 19
$ knife cookbook show apache Exercise: Use knife to show the available cookbook versions apache 0.2.0 0.1.0 20
Exercise: List current environments _default • The _default environment is read-only, and sets no policy at all 21
$ knife environment list Exercise: List current environments _default • The _default environment is read-only, and sets no policy at all 21
$ mkdir environments Make an environments directory (No output) 22
OPEN IN EDITOR: SAVE FILE! environments/dev.rb name "dev"! description "For developers!"! cookbook "apache", "= 0.2.0" Exercise: Create a dev environment • Environments have names • Environments have a description • Environments can have one or more cookbook constraints 23
• = Equal to • There are other options but equality is the recommended practice. • Learn more at http://docs.opscode.com/chef/ essentials_cookbook_versions.html Cookbook Version Constraints 24
Exercise: Create the dev environment Updated Environment dev 25
$ knife environment from file dev.rb Exercise: Create the dev environment Updated Environment dev 25
Exercise: Show your dev environment chef_type: environment! cookbook_versions: ! apache: = 0.2.0! default_attributes: ! description: For developers!! json_class: Chef::Environment! name: dev! override_attributes: 26
$ knife environment show dev Exercise: Show your dev environment chef_type: environment! cookbook_versions: ! apache: = 0.2.0! default_attributes: ! description: For developers!! json_class: Chef::Environment! name: dev! override_attributes: 26
Exercise: Change your node’s environment to "dev" • Click the ‘Nodes’ tab then select node ‘module5’ • Select dev from the ‘Environments’ drop-down list • Click ‘Save’ 27
Exercise: Re-run the Chef Client INFO: Chef Run complete in 1.587776095 seconds! INFO: Running report handlers! INFO: Report handlers complete 28
chef@module5$ sudo chef-client Exercise: Re-run the Chef Client INFO: Chef Run complete in 1.587776095 seconds! INFO: Running report handlers! INFO: Report handlers complete 28
name "production"! description "For Production!"! cookbook "apache", "= 0.1.0"! OPEN IN EDITOR: environments/production.rb SAVE FILE! Exercise: Create a production environment • Make sure the apache cookbook is set to version 0.1.0 29
Exercise: Create the production environment Updated Environment production 30
$ knife environment from file production.rb Exercise: Create the production environment Updated Environment production 30
Exercise: Change your node’s environment to "production" • Click the ‘Nodes’ tab then select node ‘module5’ • Select production from the ‘Environments’ drop-down list • Click ‘Save’ 31
Exercise: Re-run the Chef Client INFO: Loading cookbooks [apache, motd, pci, users]! Synchronizing Cookbooks:! ...! Recipe: motd::default! * template[/etc/motd] action create[2014-01-07T08:40:00-05:00] INFO: Processing template[/etc/motd] action create (motd::default line 9)! [2014-01-07T08:40:00-05:00] INFO: template[/etc/motd] backed up to /var/chef/backup/etc/motd.chef-20140107084000.070961! [2014-01-07T08:40:00-05:00] INFO: template[/etc/motd] updated file contents /etc/motd! ! - update content in file /etc/motd from d36e1f to 62ebb9! (current file is binary, diff output suppressed)! ...! * cookbook_file[/var/www/index.html] action create[2014-01-07T08:40:05-05:00] INFO: Processing cookbook_file[/var/ www/index.html] action create (apache::default line 18)! (up to date)! [2014-01-07T08:40:06-05:00] INFO: Chef Run complete in 8.048307322 seconds! [2014-01-07T08:40:06-05:00] INFO: Removing cookbooks/apache/templates/default/index.html.erb from the cache; it is no longer needed by chef-client.! [2014-01-07T08:40:06-05:00] INFO: Removing cookbooks/apache/templates/default/custom.erb from the cache; it is no longer needed by chef-client. 32
chef@module5$ sudo chef-client Exercise: Re-run the Chef Client INFO: Loading cookbooks [apache, motd, pci, users]! Synchronizing Cookbooks:! ...! Recipe: motd::default! * template[/etc/motd] action create[2014-01-07T08:40:00-05:00] INFO: Processing template[/etc/motd] action create (motd::default line 9)! [2014-01-07T08:40:00-05:00] INFO: template[/etc/motd] backed up to /var/chef/backup/etc/motd.chef-20140107084000.070961! [2014-01-07T08:40:00-05:00] INFO: template[/etc/motd] updated file contents /etc/motd! ! - update content in file /etc/motd from d36e1f to 62ebb9! (current file is binary, diff output suppressed)! ...! * cookbook_file[/var/www/index.html] action create[2014-01-07T08:40:05-05:00] INFO: Processing cookbook_file[/var/ www/index.html] action create (apache::default line 18)! (up to date)! [2014-01-07T08:40:06-05:00] INFO: Chef Run complete in 8.048307322 seconds! [2014-01-07T08:40:06-05:00] INFO: Removing cookbooks/apache/templates/default/index.html.erb from the cache; it is no longer needed by chef-client.! [2014-01-07T08:40:06-05:00] INFO: Removing cookbooks/apache/templates/default/custom.erb from the cache; it is no longer needed by chef-client. 32
• Chef is not magic - it manages state for declared resources • We just rolled back to an earlier version of the apache cookbook • While the recipe applied fine, investigating the system will reveal Apache is still configured as it was in the 0.2.0 cookbook Rollbacks and Desired State Best Practice 33
Chef Fundamentals Webinar Series
Six Week Series • Module 1 - Overview of Chef • Module 2 - Node Setup, Chef Resources & Recipes • Module 3 - Working with the Node object & Roles • June 10 - Common configuration data with Databags • Today - Environments • June 24 - Community Cookbooks and Further Resources ! ! • * Topics subject to change, schedule unlikely to change
Sign-up for Webinar • http://pages.getchef.com/ cheffundamentalsseries.html
Additional Resources • Chef Fundamentals Webinar Series • https://www.youtube.com/watch? v=S5lHUpzoCYo&list=PL11cZfNdwNyPnZA9D1MbVqldGuOWqbum Z ! • Discussion group for webinar participants • https://groups.google.com/d/forum/learnchef-fundamentals-webinar 37
Additional Resources • Learn Chef • http://learnchef.com ! • Documentation • http://docs.opscode.com 38

More Related Content

Environments - Fundamentals Webinar Series Week 5

  • 2. Nathen Harvey • Community Director • Co-host of the Food Fight Show Podcast ! • @nathenharvey
  • 3. Questions & Answers • Ask questions in the chat window when they come to you • We’ll answer as many questions as we can at the end of the session
  • 4. Questions & Answers • Ask questions in the Google Discussion Forum ! • This can be used during the webinar and outside of the webinar, too. ! • https://groups.google.com/d/ forum/learnchef-fundamentals- webinar
  • 5. Slides and Video • This webinar is being recorded. The video will be made available shortly after the session has ended. ! • The slides used throughout this webinar will be made available at the end of each webinar. ! • Watch http://learnchef.com for updates.
  • 6. Topics • Overview of Chef • Workstation Setup • Node Setup • Chef Resources and Recipes • Working with the Node object • Roles • Common configuration with Data Bags • Environments • Community Cookbooks and Further Resources
  • 8. In the last module • Refactored our apache cookbook to include multiple sites 8
  • 9. Where did my Node go? • We still need a CentOS machine to manage • The one we launched last time has likely expired • Launch a new one using the Chef Lab • Hopefully, you’ve already done this. We’re not going to spend time walking through it now. 9
  • 11. $ ssh root@<EXTERNAL_ADDRESS> Lab - Login The authenticity of host 'uvo1qrwls0jdgs3blvt.vm.cld.sr (69.195.232.110)' can't be established.! RSA key fingerprint is d9:95:a3:b9:02:27:e9:cd: 74:e4:a2:34:23:f5:a6:8b.! Are you sure you want to continue connecting (yes/no)? yes! Warning: Permanently added 'uvo1qrwls0jdgs3blvt.vm.cld.sr, 69.195.232.110' (RSA) to the list of known hosts.! chef@uvo1qrwls0jdgs3blvt.vm.cld.sr's password: ! Last login: Mon Jan 6 16:26:24 2014 from host86-145-117-53.range86-145.btcentralplus.com! [chef@CentOS63 ~]$ 11
  • 12. $ knife bootstrap <EXTERNAL_ADDRESS> -x root -P chef -N ‘module5’ -r ‘role[webserver]’ "Bootstrap" the Target Instance Bootstrapping Chef on uvo1qrwls0jdgs3blvt.vm.cld.sr! ...! ...! uvo1qrwls0jdgs3blvt.vm.cld.sr Creating a new client identity for module3 using the validator key.! uvo1qrwls0jdgs3blvt.vm.cld.sr resolving cookbooks for run list: []! uvo1qrwls0jdgs3blvt.vm.cld.sr Synchronizing Cookbooks:! uvo1qrwls0jdgs3blvt.vm.cld.sr Compiling Cookbooks...! uvo1qrwls0jdgs3blvt.vm.cld.sr [2014-01-28T11:03:14-05:00] WARN: Node module3 has an empty run list.! uvo1qrwls0jdgs3blvt.vm.cld.sr Converging 0 resources! uvo1qrwls0jdgs3blvt.vm.cld.sr Chef Client finished, 0 resources updated 12
  • 13. Exercise: Verify that the home page works • Open a web browser • Type in the the URL for your test node 13
  • 15. Lesson Objectives • After completing the lesson, you will be able to • Describe what an Environment is, and how it is different from an Organization • Set cookbook version constraints • Explain when to set attributes in an environment 15
  • 17. Environments • Every Organization starts with a single environment • Environments reflect your patterns and workflow • Development • Test • Staging • Production • etc. 17
  • 18. Environments Define Policy • Each environment may include attributes necessary for configuring the infrastructure in that environment • Production needs certain Yum repos • QA needs different Yum repos • The version of the Chef cookbooks to be used 18
  • 19. Environment Best Practice • We cannot share cookbooks between organizations • Best Practice: If you need to share cookbooks or roles, you likely want an Environment rather than an organization ! • Environments allow for isolating resources within a single organization 19
  • 20. $ knife cookbook show apache Exercise: Use knife to show the available cookbook versions apache 0.2.0 0.1.0 20
  • 21. Exercise: List current environments _default • The _default environment is read-only, and sets no policy at all 21
  • 22. $ knife environment list Exercise: List current environments _default • The _default environment is read-only, and sets no policy at all 21
  • 23. $ mkdir environments Make an environments directory (No output) 22
  • 24. OPEN IN EDITOR: SAVE FILE! environments/dev.rb name "dev"! description "For developers!"! cookbook "apache", "= 0.2.0" Exercise: Create a dev environment • Environments have names • Environments have a description • Environments can have one or more cookbook constraints 23
  • 25. • = Equal to • There are other options but equality is the recommended practice. • Learn more at http://docs.opscode.com/chef/ essentials_cookbook_versions.html Cookbook Version Constraints 24
  • 26. Exercise: Create the dev environment Updated Environment dev 25
  • 27. $ knife environment from file dev.rb Exercise: Create the dev environment Updated Environment dev 25
  • 28. Exercise: Show your dev environment chef_type: environment! cookbook_versions: ! apache: = 0.2.0! default_attributes: ! description: For developers!! json_class: Chef::Environment! name: dev! override_attributes: 26
  • 29. $ knife environment show dev Exercise: Show your dev environment chef_type: environment! cookbook_versions: ! apache: = 0.2.0! default_attributes: ! description: For developers!! json_class: Chef::Environment! name: dev! override_attributes: 26
  • 30. Exercise: Change your node’s environment to "dev" • Click the ‘Nodes’ tab then select node ‘module5’ • Select dev from the ‘Environments’ drop-down list • Click ‘Save’ 27
  • 31. Exercise: Re-run the Chef Client INFO: Chef Run complete in 1.587776095 seconds! INFO: Running report handlers! INFO: Report handlers complete 28
  • 32. chef@module5$ sudo chef-client Exercise: Re-run the Chef Client INFO: Chef Run complete in 1.587776095 seconds! INFO: Running report handlers! INFO: Report handlers complete 28
  • 33. name "production"! description "For Production!"! cookbook "apache", "= 0.1.0"! OPEN IN EDITOR: environments/production.rb SAVE FILE! Exercise: Create a production environment • Make sure the apache cookbook is set to version 0.1.0 29
  • 34. Exercise: Create the production environment Updated Environment production 30
  • 35. $ knife environment from file production.rb Exercise: Create the production environment Updated Environment production 30
  • 36. Exercise: Change your node’s environment to "production" • Click the ‘Nodes’ tab then select node ‘module5’ • Select production from the ‘Environments’ drop-down list • Click ‘Save’ 31
  • 37. Exercise: Re-run the Chef Client INFO: Loading cookbooks [apache, motd, pci, users]! Synchronizing Cookbooks:! ...! Recipe: motd::default! * template[/etc/motd] action create[2014-01-07T08:40:00-05:00] INFO: Processing template[/etc/motd] action create (motd::default line 9)! [2014-01-07T08:40:00-05:00] INFO: template[/etc/motd] backed up to /var/chef/backup/etc/motd.chef-20140107084000.070961! [2014-01-07T08:40:00-05:00] INFO: template[/etc/motd] updated file contents /etc/motd! ! - update content in file /etc/motd from d36e1f to 62ebb9! (current file is binary, diff output suppressed)! ...! * cookbook_file[/var/www/index.html] action create[2014-01-07T08:40:05-05:00] INFO: Processing cookbook_file[/var/ www/index.html] action create (apache::default line 18)! (up to date)! [2014-01-07T08:40:06-05:00] INFO: Chef Run complete in 8.048307322 seconds! [2014-01-07T08:40:06-05:00] INFO: Removing cookbooks/apache/templates/default/index.html.erb from the cache; it is no longer needed by chef-client.! [2014-01-07T08:40:06-05:00] INFO: Removing cookbooks/apache/templates/default/custom.erb from the cache; it is no longer needed by chef-client. 32
  • 38. chef@module5$ sudo chef-client Exercise: Re-run the Chef Client INFO: Loading cookbooks [apache, motd, pci, users]! Synchronizing Cookbooks:! ...! Recipe: motd::default! * template[/etc/motd] action create[2014-01-07T08:40:00-05:00] INFO: Processing template[/etc/motd] action create (motd::default line 9)! [2014-01-07T08:40:00-05:00] INFO: template[/etc/motd] backed up to /var/chef/backup/etc/motd.chef-20140107084000.070961! [2014-01-07T08:40:00-05:00] INFO: template[/etc/motd] updated file contents /etc/motd! ! - update content in file /etc/motd from d36e1f to 62ebb9! (current file is binary, diff output suppressed)! ...! * cookbook_file[/var/www/index.html] action create[2014-01-07T08:40:05-05:00] INFO: Processing cookbook_file[/var/ www/index.html] action create (apache::default line 18)! (up to date)! [2014-01-07T08:40:06-05:00] INFO: Chef Run complete in 8.048307322 seconds! [2014-01-07T08:40:06-05:00] INFO: Removing cookbooks/apache/templates/default/index.html.erb from the cache; it is no longer needed by chef-client.! [2014-01-07T08:40:06-05:00] INFO: Removing cookbooks/apache/templates/default/custom.erb from the cache; it is no longer needed by chef-client. 32
  • 39. • Chef is not magic - it manages state for declared resources • We just rolled back to an earlier version of the apache cookbook • While the recipe applied fine, investigating the system will reveal Apache is still configured as it was in the 0.2.0 cookbook Rollbacks and Desired State Best Practice 33
  • 41. Six Week Series • Module 1 - Overview of Chef • Module 2 - Node Setup, Chef Resources & Recipes • Module 3 - Working with the Node object & Roles • June 10 - Common configuration data with Databags • Today - Environments • June 24 - Community Cookbooks and Further Resources ! ! • * Topics subject to change, schedule unlikely to change
  • 42. Sign-up for Webinar • http://pages.getchef.com/ cheffundamentalsseries.html
  • 43. Additional Resources • Chef Fundamentals Webinar Series • https://www.youtube.com/watch? v=S5lHUpzoCYo&list=PL11cZfNdwNyPnZA9D1MbVqldGuOWqbum Z ! • Discussion group for webinar participants • https://groups.google.com/d/forum/learnchef-fundamentals-webinar 37
  • 44. Additional Resources • Learn Chef • http://learnchef.com ! • Documentation • http://docs.opscode.com 38