Puppet - Resource Collectors

  • Resource collectors select a group of resources by searching the attributes of every resource in the catalog

• This search is independent of evaluation-order (that is, it even includes resources which haven’t yet been declared at the time the collector is written)

• Collectors realize virtual resources, can be used in chaining statements, and can override resource attributes

User <| title == 'luke' |> # Will collect a single user resource whose title is 'luke’ 

User <| groups == 'admin' |> # Will collect any user resource whose list of supplemental groups includes 'admin’ 

Yumrepo['custom_packages'] -> Package <| tag == 'custom' |> # Will create an order relationship with several package resources


Puppet Virtual Resources

• A virtual resource declaration specifies a desired state for a resource without enforcing that state

• Puppet manages the resource by realizing it elsewhere in your manifests

• This divides the work done by a normal resource declaration into two steps

• Although virtual resources are declared once, they can be realized any number of times, similar to a class.

Uses of Virtual Resources

• Virtual resources are useful for:

• Resources whose management depends on at least one of multiple conditions being met

• Overlapping sets of resources required by any number of classes

• Resources which should only be managed if multiple cross-class conditions are met

• Because they both offer a safe way to add a resource to the catalog in multiple locations, virtual resources can be used in some of the same situations as classes

• The features that distinguish virtual resources are:

• Searchability via resource collectors, which helps to realize overlapping clumps of virtual resources.

• Flatness, such that you can declare a virtual resource and realize it a few lines later without having to clutter your modules with many single-resource classes.


Example Virtual Resources

• Virtual resources are used in two steps: declaring and realizing

• Declare: modules/apache/manifests/init.pp @a2mod { 'rewrite': ensure => present, } # note: The a2mod resource type is from the puppetlabs-apache module

• Realize: modules/wordpress/manifests/init.pp realize A2mod['rewrite']

• Realize again: modules/freight/manifests/init.pp realize A2mod['rewrite']

• To declare a virtual resource, prepend @ (the “at” sign) to the resource type of a normal resource declaration: 

@user {'deploy': uid => 2004, comment => 'Deployment User', group => 'www-data', groups => ["enterprise"], tag => [deploy, web], }

• To realize one or more virtual resources by title, use the realize function, which accepts one or more resource references: 

realize(User['deploy'], User['zleslie'])


Puppet Exported Resources

• An exported resource declaration specifies a desired state for a resource, and publishes the resource for use by other nodes
• It does not manage the resource on the target system
• Any node, including the node that exports it, can collect the exported resource and manage its own copy of it.

Uses of Puppet Exported Resources

• Exported resources enable the Puppet compiler to share information among nodes by combining information from multiple nodes’ catalogs
• This helps manage things that rely on nodes knowing the states or activity of other nodes
• The common use cases are monitoring and backups
• A class that manages a service like PostgreSQL, exports a nagios_service resource which describes how to monitor the service, including information such as its hostname and port
• The Nagios server collects every nagios_service resource, and automatically starts monitoring the Postgres server

Exported Resource Example

class ssh { 
# Declare: @@sshkey { $::hostname: type => dsa, key => $::sshdsakey, } # Collect: Sshkey <<| |>> 
}

Exported Resource Example

•To declare an exported resource, prepend @@ to the resource type of a standard resource declaration:

@@nagios_service { "check_zfs${::hostname}": use => 'generic-service', host_name => $::fqdn, check_command => 'check_nrpe_1arg!check_zfs', service_description => "check_zfs${::hostname}", target => '/etc/nagios3/conf.d/nagios_service.cfg', notify => Service[$nagios::params::nagios_service], }

•To collect exported resources, use an exported resource collector. Collect all exported nagios_service resources: 
Nagios_service <<| |>>


Puppet Relationships - Metaparameters


• Puppet uses four metaparameters to establish relationships, and you can set each of them as an attribute in any resource 

before -- Applies a resource before the target resource 

package { 'openssh-server': ensure => present, before => File['/etc/ssh/sshd_config'], } 

require -- Applies a resource after the target resource 

file { '/etc/ssh/sshd_config': ensure => file, mode => '0600', source => 'puppet:///modules/sshd/sshd_config', require => Package['openssh-server'], }

notify -- Applies a resource before the target resource. The target resource refreshes if the notifying resource changes 

file { '/etc/ssh/sshd_config': ensure => file, mode => '0600', source => 'puppet:///modules/sshd/sshd_config', notify => Service['sshd'], }

subscribe -- Applies a resource after the target resource. The subscribing resource refreshes if the target resource changes 

service { 'sshd': ensure => running, enable => true, subscribe => File['/etc/ssh/sshd_config'], }


Comments

Post a Comment

Popular posts from this blog

Terraform

Image
  Terraform is an infrastructure as code tool that lets you build, change, and version cloud and on-prem resources safely and efficiently. HashiCorp Terraform is an infrastructure as code tool that lets you define both cloud and on-prem resources in human-readable configuration files that you can version, reuse, and share. You can then use a consistent workflow to provision and manage all of your infrastructure throughout its lifecycle. Terraform can manage low-level components like compute, storage, and networking resources, as well as high-level components like DNS entries and SaaS features. How does Terraform work? Terraform creates and manages resources on cloud platforms and other services through their application programming interfaces (APIs). Providers enable Terraform to work with virtually any platform or service with an accessible API. HashiCorp and the Terraform community have already written  thousands of providers  to manage many different types of resources and services.
Read more

Scrum Master Interview help - Bootcamp

Understanding the MoSCoW prioritization | How to implement it into your project Projects, irrespective of their size or complexity, often juggle numerous tasks and requirements. In such a scenario,  MoSCoW prioritization  becomes essential to ensure the successful completion of the project.  Besides, it is also a very effective way to manage project priorities. With a straightforward and adaptable approach, the MoSCoW method helps manage stakeholder expectations and improve project outcomes. What is the MoSCoW prioritization technique?  The MoSCoW method is a prioritization matrix widely used in project management and software development. The term MoSCoW is an acronym that stands for  Must have ,  Should have ,  Could have , and  Won’t have , each denoting a level of priority. Here is the breakdown of the MoSCoW method:  Must have:  These are critical requirements that the project cannot be completed without them. If these are not fulfilled, the project is con
Read more

Kubernetes

  Using containers to host applications and other processes has gone mainstream. As more and more workload is moved into containers, management systems are needed to handle the demands of containerized applications at scale. One of the most popular options for managing  container-based workload is Kubernetes . Kubernetes combines container management automation with an extensible API to create a cloud-native application management powerhouse. At its core, Kubernetes manages the placement of pods, which can consist of one or more containers, on a Kubernetes cluster node. Additionally, if one of these pods crashes, Kubernetes can create a new instance of it. If a cluster node is removed, Kubernetes can move any affected workload to a different node in the cluster. On top of that, Kubernetes pods can be scaled to provide more or less throughput to meet scale demands and these scale operations can be triggered manually or automatically using Kuberentes horizontal pod auto-scaling. Finally,
Read more