Ansible: 10 tips and tricks

D02b5e0b9a348fa8d9bd2cac025eead3?s=47 Steven Ringo
March 12, 2015
Programming
2
1.6k

Ansible: 10 tips and tricks

Tips and tricks for Ansible. Code at git.io/pK57

D02b5e0b9a348fa8d9bd2cac025eead3?s=128

Steven Ringo

March 12, 2015
Tweet

More Decks by Steven Ringo

See All by Steven Ringo
D02b5e0b9a348fa8d9bd2cac025eead3?s=48 stevenringo
0
75
D02b5e0b9a348fa8d9bd2cac025eead3?s=48 stevenringo
0
280
D02b5e0b9a348fa8d9bd2cac025eead3?s=48 stevenringo
2
250
D02b5e0b9a348fa8d9bd2cac025eead3?s=48 stevenringo
6
3.5k
D02b5e0b9a348fa8d9bd2cac025eead3?s=48 stevenringo
0
680
D02b5e0b9a348fa8d9bd2cac025eead3?s=48 stevenringo
1
180
D02b5e0b9a348fa8d9bd2cac025eead3?s=48 stevenringo
2
280
D02b5e0b9a348fa8d9bd2cac025eead3?s=48 stevenringo
0
280
D02b5e0b9a348fa8d9bd2cac025eead3?s=48 stevenringo
0
140

Other Decks in Programming

See All in Programming
A6a5e01b331d18dbd9c5de1f2cc2879f?s=48 erukiti
2
340
B67d76d100e6dbb2ec11087c44d02fbf?s=48 takahiro901
0
190
9ae4f3862d4cb0771cfd36e43252f755?s=48 kurotanshi
0
240
7eca3e06edc3c69004aaf57de51900c2?s=48 ajstarks
2
310
744a38d972036c3bd0bcdaddafdd5f26?s=48 mathetake
4
2.1k
F54b73a93fb75a12fa6c28b26ca0bb62?s=48 kawakawaryuryu
0
110
1a18bf1e50d7d2bdfe52a6c9fceec244?s=48 saiya_moebius
7
1.4k
B1412c9ed55333c1df561f64dfad69d3?s=48 pantuza
1
310
D9e4d5a4b36f83fbde1076815df1362f?s=48 bmack
0
380
Faf9deb49f754b79390b64d036725f67?s=48 yuukiyo
1
630
4131d2f57a0db2a2b4d9a62bd389fd44?s=48 tarcieri
0
260
58c7dad4dc33a4aeec9f4e63e9355528?s=48 otty375
0
100

Featured

See All Featured
D67fff74178013024d833b3eec6cf27f?s=48 lynnandtonic
265
16k
1177e050db6bafe62885362edf6e3537?s=48 lauravandoore
435
28k
Ecdea9b9714877b86cee08458f085481?s=48 trallard
6
240
D83926c323d4f9289f947b4b4e76b939?s=48 jensimmons
205
9.9k
Af6a12710770ad9a7cfd08c97efd40d3?s=48 pedronauck
648
110k
24fc194843a71f10949be18d5a692682?s=48 gr2m
82
11k
A9704266587836f7e784235e5073b93e?s=48 jmmastey
1
27
465724d73fe3a92c0879fdfb43a3a6f3?s=48 philhawksworth
190
8.6k
E6c6e133e74c3b83f04d2861deaa1c20?s=48 searls
202
35k
3d4519fd34b76fb265fc0237f3792bd4?s=48 danielanewman
196
19k
D09fad3e36ae6841f54820be0e907f7a?s=48 rocio
154
11k
C7393b7ba7ec9c8890dd77d209fbb3c9?s=48 maltzj
497
36k

Transcript

  1. 10 tips & tricks Sydney Ansible Meetup, Thursday 12 March

    2015 Dynamic Clarity

  2. define variables with a JSON web service 1

  3. { "server_ip": "192.168.0.44", "server_name": "dilbert" } https://api.site.com/config/staging

  4. { "server_ip": "10.10.11.34", "server_name": "pointy_haired_boss" } https://api.site.com/config/production

  5. multi-stage environments 2

  6. !"" inventory # !"" _common # # $"" inventory #

    !"" production # # !"" group_vars # # # $"" all # # !"" host_vars # # $"" inventory -> ../_common/inventory # $"" staging # !"" group_vars # # $"" all # !"" host_vars # $"" inventory -> ../_common/inventory

  7. ansible_connection=local for local connections, use 3

  8. single self-contained repo 4

  9. remove global config
 (/usr/local/etc/ansible/hosts) keep SSH config in Ansible project

    check out repo and run!

  10. cloud-local control host 5

  11. co-located on same VPC / VLAN

  12. ~zero latency no public SSH repo access required

  13. buildkite.com* for deployment 6

  14. install agent on Ansible control host

  15. None

  16. use roles 7

  17. don’t use roles, use include

  18. roles can’t strictly be mixed with tasks

  19. pre_tasks: - remove host from load balancer pool roles: -

    rails tasks: - do stuff post_tasks: - return load balancer back to pool

  20. pre_tasks: - remove host from load balancer pool tasks: -

    do stuff - role: nginx - do more other stuff - role: rails post_tasks: - return load balancer back to pool

  21. roles/ nginx/ files/ templates/ tasks/ handlers/ vars/ defaults/ meta/

  22. $ ansible-galaxy init

  23. Ruby* modules 8

  24. located in /library must be executable task name is file

    name

  25. #!/usr/bin/env ruby # WANT_JSON shebang warning!

  26. *any executable that can read a JSON formatted file (input)

    and returns JSON to stdout (output)

  27. instant offline access to documentation 9

  28. Dash Alfred +

  29. 10 style

  30. - name: Install Nginx. yum: name=nginx state=installed

  31. - name: copy something template: src: "templates/config.j2" dest: "/home/{{ deploy_user

    }}/config" owner: "{{ deploy_user }}" group: "{{ deploy_user }}" mode: 0755

  32. - name: copy something template: > src="templates/config.j2" dest="/home/{{ deploy_user }}/config"

    owner="{{ deploy_user }}" group="{{ deploy_user }}" mode=0755

  33. multiline for single parameter = good

  34. - name: decrypt the key on the server sudo_user: "{{

    deploy_key_user }}" command: > openssl rsa -in {{ deploy_key_path }}.protected -out {{ deploy_key_path }} -passin pass:{{ deploy_key_secret }}

  35. git.io/pK57

  36. None

  37. ansibleworkshop.com

  38. Steven Ringo | stevenringo | steven@dynamicclarity.com Dynamic Clarity