Re: [Puppet-dev] How I use the Ruby DSL (and I would like to keep it)

[R.I.Pienaar]

----- Original Message -----
> From: "Jens Braeuer" <braeuer.j...@gmail.com>
> To: puppet-dev@googlegroups.com
> Sent: Monday, January 28, 2013 10:13:09 AM
> Subject: [Puppet-dev] How I use the Ruby DSL (and I would like to keep it)
> 
> Hi everyone,
> 
> I would like to show my usage of the Ruby DSL. I use this in Production
> and together with Hiera this has been very helpful to me.
> The main reason for me to use the DSL, was Puppets lack of support for
> data structures. Maybe I am missing something here, so alternative
> solutions are very welcome.
> 
> I am sad to see the deprecation of the Ruby DSL with no new alternative
> being available. (New Ruby DSL was just removed from 3.1.0-RC2).
> 
> So here we go... I want to configure OpenVPN with per-client IPs. This
> is to work around the lack of multicast on CloudProviders. So I would
> like to have name/ip-pairs that I can iterate over. The name and number
> of clients changes from staging to production, so I made these hiera keys.
> 
> This is my hiera keys:
> ----
> openvpn.network: 172.16.0.0
> openvpn.netmask: 255.255.255.0
> openvpn.server.name: puppetmaster.grid.prod.example.com
> openvpn.server.ip: 172.16.0.1
> openvpn.clients:
>   - name: app0.grid.prod.example.com
>     ip: 172.16.0.100
>   - name: app1.grid.prod.example.com
>     ip: 172.16.0.101
>   - name: app2.grid.prod.example.com
>     ip: 172.16.0.102
>   - name: app3.grid.prod.example.com
>     ip: 172.16.0.103
>   - name: app4.grid.prod.example.com
>     ip: 172.16.0.104
>   - name: app5.grid.prod.example.com
>     ip: 172.16.0.105
>   - name: app6.grid.prod.example.com
>     ip: 172.16.0.106
>   - name: app7.grid.prod.example.com
>     ip: 172.16.0.107
> -----
> 
> Now follows the OpenVPN module (in parts). Let me know if you'd prefer
> gist or something else.
> 
> clustervpn/manifests/server.pp
> -----
> class clustervpn::server( $openvpn_clients=hiera("openvpn.clients"),
>                           $openvpn_network=hiera("openvpn.network"),
>                           $openvpn_netmask=hiera("openvpn.netmask")) {
> 
>   $configdir = "/etc/openvpn"
>   $sourcedir = "puppet:///modules/vpn/keys/"
> 
>   <some parts removed>
> 
>   file { "$configdir/server.conf":
>     content => template("clustervpn/server.conf.erb"),
>     owner => root, group => root, mode => 0644,
>     notify => Service["openvpn"]
>   }
> 
>   file { "$configdir/ccd":
>     ensure => directory,
>     owner => root, group => root, mode => 0755,
>   }
>   ->
>   clustervpn::clientconfigs { "ccd":
>     clients => $openvpn_clients,
>   }
> 
>   service { "openvpn":
>     ensure => running,
>     enable => true,
>     require => Package["openvpn"],
>   }
> }
> ------
> 
> Now the "clustervpn::clientconfigs" allows me to use the power of Ruby
> to iterate over the hash.
> 
> clustervpn/manifests/clientconfigs.rb
> ------
> define "clustervpn::clientconfigs", :clients do
>   @clients.each do |client|
>     scope.find_resource_type 'clustervpn::clientconfig'
>     create_resource 'clustervpn::clientconfig', "#{client['name']}", {
>       :ip => client['ip']
>     }
>   end
> end
> -------

Did you look at the create_resources function in the puppet dsl?

It should let you just do:

   create_resources("clustervpn::clientconfig", $openvpn_clients)

if you just structured your hash like:

   {"app0.grid.prod.example.com" => {"ip" => "1.2.3.4"},
    "app1.grid.prod.example.com" => {"ip" => "2.3.4.5"}}

I am not a huge create_resources fan - its like eval() with all the same
issues, so you can also do:

   define clustervpn::create_users($data) {
      clustervpn::clientconfig{$name:
         ip => $data[$name]["ip"]
      }
   }

   $clients = keys($openvpn_clients)

   clustervpn::create_users{$clients: data => $openvpn_clients}

This creates a helper define that takes the name of each client - effectively
that is an index into the $openvpn_clients data structure, it then creates
1 x clustervpn::clientconfig for each member of the data structure supplying
the ip address when needed.

Again this requires the data structure to be restructured like the one I showed
above in the create_resources example.



> 
> As soon as Puppet language is enough I go back again. Here to define a
> single client config.
> 
> clustervpn/manifests/clientconfig.pp
> -------
> define clustervpn::clientconfig($ip) {
>   file { "$clustervpn::server::configdir/ccd/$name":
>     owner => root, group => root, mode => 0644,
>     content => template("clustervpn/ccd.erb")
>   }
> }
> -------
> 
> Let me add that I used hashes/arrays in a couple of places in Hiera.
> Common examples are hostname/ip, ip/port, username/password etc. I
> recently got my hands dirty with custom types, but I thing to the above
> outlined the Ruby DSL is much much lighter and straight forward.
> 
> Cheers,
> Jens
> 
> 
> 

-- 
You received this message because you are subscribed to the Google Groups 
"Puppet Developers" group.
To post to this group, send email to puppet-dev@googlegroups.com.
To unsubscribe from this group, send email to 
puppet-dev+unsubscr...@googlegroups.com.
Visit this group at http://groups.google.com/group/puppet-dev?hl=en.
For more options, visit https://groups.google.com/groups/opt_out.