A short talk given at the January 2013 NYC Chef meetup at Paperless Post HQ. This is a brief overview of how the Paperless Post ops team has formulated it's chef worfklow and the good and bad parts of it.
The setup • 5 Staging environments (1 per team, 1 pre-prod) • 4 Full time Ops team members • > 10 Developers who should be able to make changes • Many different applications and technologies being managed by chef
The setup • 5 Staging environments (1 per team, 1 pre-prod) • 4 Full time Ops team members • > 10 Developers who should be able to make changes • Many different applications and technologies being managed by chef • Private VMWare/VSphere backed “cloud”
The setup • 5 Staging environments (1 per team, 1 pre-prod) • 4 Full time Ops team members • > 10 Developers who should be able to make changes • Many different applications and technologies being managed by chef • Private VMWare/VSphere backed “cloud” • Hosted chef
The AGONY • Managing multiple versions of a cookbook for different developers each environment • Wanting to make and test small changes on different environments • Lack of visibility when deploying changes • Impossible to correlate CHANGES (git) with STATE (chef-server)
checkout the staging branch (earth) git merge the deploying branch(es) check for cookbooks changed from the last deploy to staging check latest versions of cookbooks in chef server
checkout the staging branch (earth) git merge the deploying branch(es) check for cookbooks changed from the last deploy to staging check latest versions of cookbooks in chef server bump version in metadata and environment.json
checkout the staging branch (earth) git merge the deploying branch(es) check for cookbooks changed from the last deploy to staging check latest versions of cookbooks in chef server bump version in metadata and environment.json commit and git push to env
checkout the staging branch (earth) git merge the deploying branch(es) check for cookbooks changed from the last deploy to staging check latest versions of cookbooks in chef server bump version in metadata and environment.json commit and git push to env send deploy to jenkins
checkout the staging branch (earth) git merge the deploying branch(es) check for cookbooks changed from the last deploy to staging check latest versions of cookbooks in chef server bump version in metadata and environment.json commit and git push to env send deploy to jenkins jenkins uploads cookbooks and environment file
checkout the staging branch (earth) git merge the deploying branch(es) check for cookbooks changed from the last deploy to staging check latest versions of cookbooks in chef server bump version in metadata and environment.json commit and git push to env send deploy to jenkins jenkins uploads cookbooks and environment file sends notifications to campfire/email
The Minor Discomforts • Dealing with conflicts is hard (especially in metadata) • MANY MANY VERSIONS (0.3.192) aka version numbers are meaningless • Doesn’t handle changes to roles (you cant scope a role to an environment) or new cookbooks very well
The Minor Discomforts • Dealing with conflicts is hard (especially in metadata) • MANY MANY VERSIONS (0.3.192) aka version numbers are meaningless • Doesn’t handle changes to roles (you cant scope a role to an environment) or new cookbooks very well • Chef server consistency is problematic
To improve • More code review as part of the process • Simple roles that map to recipes so that roles can be managed/tested at the env level • Using secondary store to keep track of versions (Zookeeper) • Chef versions could be tied to SHA instead of SemVer # (??)
aq
jacobian
marcduiker
eileencodes
reverentgeek
zakiyama
mclloyd
rmw
nonsquared
afnizarnur
sachag
chrisshort
lauravandoore