Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Automation made simple with Ansible

Erika Heidi
June 26, 2015
Programming
3
1.1k

Automation made simple with Ansible

Talk presented at DPC 2015

Erika Heidi

June 26, 2015
Tweet

More Decks by Erika Heidi

See All by Erika Heidi
Hello Wolfi
erikaheidi
1
300
Container Images for the Cloud Native Era
erikaheidi
1
160
Creating Secure Container Images with apko
erikaheidi
0
270
Criando GitHub Actions em PHP com Minicli
erikaheidi
0
77
Building GitHub Actions in PHP with Minicli
erikaheidi
0
170
10 Code Search Tricks for Open Source
erikaheidi
2
120
The Art of Programming - Laracon Online Winter 22
erikaheidi
0
270
A Arte de Programar
erikaheidi
4
140
The Art of Programming - Codeland 2020
erikaheidi
39
12k

Other Decks in Programming

See All in Programming
Managing State Beyond ViewModels and Hilt (Updated)
vrallev
3
600
ドメインを中心にしたプロダクト開発/domain-driven-product
hirodragon112
1
190
新卒研修でNext.js AppRouterを導入した 学びと反省
iuchimasatoshi
1
200
たのしいドメイン駆動設計: 序 / Enjoy domain driven design : ZYO
jpt_corp_official
8
3.7k
Do Repeat Yourself: How to move from Development into Leadership
lukestringer90
1
140
A Practitioner's Journey from Ruby 1.8 to Present
koic
1
680
Chatwork プロダクト本部 紹介資料(エンジニア向け)
chatwork_hr
0
480
第6回 AWSとGitHub勉強会 - AWS ECS Fargate環境の構築 -
ogiwarat
0
120
Re:Android Studio 설정 살펴보기 및 생산성 올리기
pluu
0
560
Building Tebukuro with Hotwire and Rails
murajun1978
0
150
Migrating From Spring Boot 2 To Spring Boot 3 - What's Jakarta EE Got To Do with It?
ivargrimstad
0
560
RustでWasm Runtimeを書いた in UV_Study
skanehira
1
250

Featured

See All Featured
Bootstrapping a Software Product
garrettdimon
PRO
299
110k
GraphQLの誤解/rethinking-graphql
sonatard
44
8.5k
Fantastic passwords and where to find them - at NoRuKo
philnash
34
2.1k
The Illustrated Children's Guide to Kubernetes
chrisshort
26
45k
ReactJS: Keep Simple. Everything can be a component!
pedronauck
657
120k
Making the Leap to Tech Lead
cromwellryan
119
8.1k
Art Directing for the Web. Five minutes with CSS Template Areas
malarkey
197
11k
Why You Should Never Use an ORM
jnunemaker
PRO
49
8.2k
ピンチをチャンスに:未来をつくるプロダクトロードマップ #pmconf2020
aki_iinuma
36
22k
Building Applications with DynamoDB
mza
87
5.2k
The Pragmatic Product Professional
lauravandoore
23
4k
The Mythical Team-Month
searls
212
41k

Transcript

  1. View Slide

  2. whoami

    View Slide

  3. What to expect from this talk
    1. Ansible Overview
    2. Inventories / ad-hoc commands
    3. Using Playbooks
    4. Playbook crash-course

    View Slide

  4. ANSIBLE
    OVERVIEW

    View Slide

  5. Ansible Overview

    Simple and Straightforward

    Human-readable automation
    language

    Agentless - needs only SSH

    Extensive list of built-in modules

    Used by Twitter, Atlassian, EA,
    Spotify, even NASA!

    View Slide

  6. Installation
    $ brew update
    $ brew install ansible
    $ sudo apt-add-repository -y ppa:ansible/ansible
    $ sudo apt-get update
    $ sudo apt-get install -y ansible
    Detailed installation instructions: do.co/ansible-docs
    Mac OSX
    Ubuntu
    *Windows is not officially supported as controller machine.

    View Slide

  7. Setting up SSH access

    Servers should be accessible via SSH using
    keypair authentication

    It's recommended to have a user with sudo
    NOPASSWD permission to run the tasks in the
    server
    How to configure your SSH access for running
    Ansible: bit.ly/ansible-ssh

    View Slide

  8. INVENTORIES
    AND
    AD-HOC
    COMMANDS

    View Slide

  9. Inventory file
    #/etc/ansible/hosts
    [webservers]
    erikaheidi.com
    dev-human.com
    [testservers]
    178.62.192.53
    95.85.35.248

    View Slide

  10. ad-hoc commands
    $ ansible all -m ping
    $ ansible webservers -a “php -v”
    $ ansible all -i staging -a “sudo apt-get update”
    ansible group [-i inventory] [-m module]

    View Slide

  11. ad-hoc commands

    View Slide

  12. ad-hoc commands

    View Slide

  13. DEMO 1
    Running ad-hoc commands

    View Slide

  14. View Slide

  15. RUNNING
    PLAYBOOKS

    View Slide

  16. A Simple Playbook
    # playbook.yml
    ---
    - hosts: all
    sudo: true
    tasks:
    - name: Update apt-cache
    apt: update_cache=yes
    - name: Install Nginx
    apt: pkg=nginx state=latest

    View Slide

  17. Running playbooks
    $ ansible-playbook -i staging -l webservers playbook.yml
    $ ansible-playbook playbook.yml --list-hosts
    $ ansible-playbook playbook.yml --list-tasks
    ansible-playbook [-i inventory] [-l group] playbook.yml

    View Slide

  18. Running playbooks

    View Slide

  19. DEMO 2
    ansible-playbook

    View Slide

  20. View Slide

  21. PLAYBOOK
    CRASH-COURSE

    View Slide

  22. Variables
    ---
    - hosts: all
    sudo: yes
    vars:
    web_server: nginx
    tasks:
    - name: Install {{ web_server }}
    apt: pkg={{ web_server }} state=latest

    View Slide

  23. Variables (facts)

    Information discovered from systems

    Globally available

    Example: ansible_default_ipv4.address

    View Slide

  24. Loops (with_items)
    tasks:
    - name: Install Packages
    apt: pkg={{ item }} state=latest
    with_items:
    - nginx
    - php5-fpm
    - git

    View Slide

  25. Loops (with_items)
    ---
    - hosts: all
    sudo: yes
    vars:
    sys_packages: [ 'nginx', 'php5-fpm', 'git' ]
    tasks:
    - name: Install Packages
    apt: pkg={{ item }} state=latest
    with_items: sys_packages

    View Slide

  26. Conditionals
    - name: "shutdown Debian flavored systems"
    command: /sbin/shutdown -t now
    when: ansible_os_family == "Debian"
    - name: check if bar is defined
    fail: msg="This play requires 'bar'"
    when: bar is not defined

    View Slide

  27. Conditionals
    - name: Check if PHP is installed
    register: php_install
    command: php -v
    ignore_errors: true
    - name: Do something if PHP is installed
    debug: var=php_install
    when: php_install|success
    - name: Do something if PHP is NOT installed
    debug: msg='PHP is NOT installed!'
    when: php_install|failed

    View Slide

  28. DEMO 3
    conditionals

    View Slide

  29. View Slide

  30. Templates

    ServerAdmin webmaster@localhost
    DocumentRoot {{ doc_root }}

    AllowOverride All
    Require all granted


    View Slide

  31. Templates - Usage
    - name: Change default apache vhost
    template: src=templates/apache.tpl
    dest=/etc/apache2/sites-available/000-default.conf

    View Slide

  32. Handlers (services)
    vars:
    - doc_root: /vagrant
    tasks:
    - name: Change default apache vhost
    template: src=templates/apache.tpl
    dest=/etc/apache2/sites-available/000-default.conf
    notify: restart apache
    handlers:
    - name: restart apache
    service: name=apache2 state=restarted

    View Slide

  33. ORGANIZING
    YOUR PLAYS

    View Slide

  34. Roles
    .
    ├── playbook.yml
    └── roles
    ├── init
    │ └── tasks
    │ └── main.yml
    └── nginxphp
    ├── handlers
    │ └── main.yml
    ├── tasks
    │ └── main.yml
    └── templates
    └── vhost.tpl
    #playbook.yml
    ---
    - hosts: all
    sudo: true
    vars:
    doc_root: /vagrant/web
    roles:
    - init
    - nginxphp

    View Slide

  35. Includes
    .
    ├── playbook.yml
    └── roles
    ├── init
    │ └── tasks
    │ └── main.yml
    └── nginxphp
    ├── handlers
    │ └── main.yml
    ├── tasks
    │ └── main.yml
    | └── php.yml
    └── templates
    └── vhost.tpl
    #roles/nginxphp/tasks/main.yml
    - name: Install Nginx
    sudo: yes
    apt: pkg=nginx state=latest
    - include: php.yml

    View Slide

  36. Var Files
    .
    ├── playbook.yml
    ├── vars
    | └── all.yml
    └── roles
    ├── init
    │ └── tasks
    │ └── main.yml
    └── nginxphp
    ├── handlers
    │ └── main.yml
    ├── tasks
    │ └── main.yml
    └── templates
    └── vhost.tpl
    #playbook.yml
    ---
    - hosts: all
    sudo: true
    vars_files:
    - vars/all.yml
    roles:
    - init
    - nginxphp

    View Slide

  37. OTHER COOL
    STUFF

    View Slide

  38. Tags
    ---
    - hosts: webservers
    sudo: true
    roles:
    - { role: server, tags: [ 'server' ] }
    - { role: nginx, tags: [ 'nginx' ] }
    - { role: php, tags: [ 'php' ] }
    $ ansible-playbook playbook.yml --tags “php”

    View Slide

  39. Conditional Includes
    ---
    - hosts: webservers
    sudo: true
    roles:
    - { role: firewall, when: app.env == 'prod'}
    - include: sharedfolders.yml
    when: app.env == 'prod'
    ---
    - hosts: webservers
    sudo: true
    vars_files:
    - [ "vars/{{ ansible_os_family }}.yml", "vars/os_defaults.yml" ]

    View Slide

  40. Group Vars
    .
    ├── playbook.yml
    ├── group_vars
    | ├── all.yml
    | └── webservers.yml
    └── roles
    ├── init
    │ └── tasks
    │ └── main.yml
    └── nginxphp
    ├── handlers
    │ └── main.yml
    ├── tasks
    │ └── main.yml
    └── templates
    └── vhost.tpl
    #playbook.yml
    ---
    - hosts: webservers
    sudo: true
    roles:
    - init
    - nginxphp

    View Slide

  41. RESOURCES

    View Slide

  42. $ ansible-galaxy install vendor.role [ -p path ]

    View Slide

  43. Using Phansible with remote servers: bit.ly/phansible-remote

    View Slide

  44. QUESTIONS?

    View Slide

  45. Ansible Tutorials:
    http://do.co/ansible
    @erikaheidi

    View Slide