Ansible: 10 tips and tricks

D02b5e0b9a348fa8d9bd2cac025eead3?s=47 Steven Ringo
March 12, 2015
Programming
2
1.6k

Ansible: 10 tips and tricks

Tips and tricks for Ansible. Code at git.io/pK57

D02b5e0b9a348fa8d9bd2cac025eead3?s=128

Steven Ringo

March 12, 2015
Tweet

More Decks by Steven Ringo

See All by Steven Ringo
D02b5e0b9a348fa8d9bd2cac025eead3?s=48 stevenringo
0
76
D02b5e0b9a348fa8d9bd2cac025eead3?s=48 stevenringo
0
280
D02b5e0b9a348fa8d9bd2cac025eead3?s=48 stevenringo
2
250
D02b5e0b9a348fa8d9bd2cac025eead3?s=48 stevenringo
6
3.5k
D02b5e0b9a348fa8d9bd2cac025eead3?s=48 stevenringo
0
700
D02b5e0b9a348fa8d9bd2cac025eead3?s=48 stevenringo
1
180
D02b5e0b9a348fa8d9bd2cac025eead3?s=48 stevenringo
2
280
D02b5e0b9a348fa8d9bd2cac025eead3?s=48 stevenringo
0
280
D02b5e0b9a348fa8d9bd2cac025eead3?s=48 stevenringo
0
140

Other Decks in Programming

See All in Programming
F2496b53b4e6d5a589d8dc1781c11978?s=48 tatsumi0000
1
400
Bb49e68eb46070029845fb3022d9026f?s=48 yukilabo
1
200
0b8291daeda1cd55e445af644d402bb0?s=48 aoiroaoino
2
330
B1f68959f14f39a7cba2bc9fd4b926e9?s=48 ruyadorno
2
300
1329e1c7848fb723452f5b9cdcd9bf2b?s=48 kasaharu
0
130
Fa5fd3405808cc6a9fe4b126b1ec39bd?s=48 gianarb
1
560
7e0087a19318ded4ba2203187694740f?s=48 christianweyer
0
200
40575ebf9c2f4a6e3bcb68630f446a3b?s=48 tomzoh
4
120
1fe64ebb176498be5f73ab51986c6b7b?s=48 davidfowl
9
3.6k
9987516c273a7874b12b742e7aef828f?s=48 smellman
0
210
342dde780fe56d44bdeada4bb429145a?s=48 codingluka
3
1.2k
51f4d2341131b6b9bfa996bdb9b8dfa8?s=48 showmant
3
770

Featured

See All Featured
78b475797a14c84799063c7cd073962f?s=48 holman
448
130k
1519587b1a0febb658c36c94f6272b0d?s=48 roundedbygravity
241
20k
9fa239b3154a0169d99ab7bf1422dd12?s=48 marcelosomers
220
14k
E43f8dfd01057f8304f5f8fb9a294d7d?s=48 jeffersonlam
325
15k
Eb8975af8e49e19e3dd6b6b84a542e26?s=48 qrush
283
18k
7edec06b5435e0dac07a353b2cc26253?s=48 geeforr
331
29k
11c84dff30266b907714802088852677?s=48 jasonvnalue
80
7.9k
C35e01544a0dd94a2cf1619ee8a42ebb?s=48 clairelew
12
1.3k
06f8b41980eb4c577fa40c41d5030c19?s=48 keathley
15
530
96270e4c3e5e9806cf7245475c00b275?s=48 addyosmani
309
21k
0bce06bd06ee7a2c4f5500f25dcf7f18?s=48 paulrobertlloyd
71
3.5k
4394ceb8b277f35ee3da7030384efb5d?s=48 davidbonilla
69
3.5k

Transcript

  1. 10 tips & tricks Sydney Ansible Meetup, Thursday 12 March

    2015 Dynamic Clarity

  2. define variables with a JSON web service 1

  3. { "server_ip": "192.168.0.44", "server_name": "dilbert" } https://api.site.com/config/staging

  4. { "server_ip": "10.10.11.34", "server_name": "pointy_haired_boss" } https://api.site.com/config/production

  5. multi-stage environments 2

  6. !"" inventory # !"" _common # # $"" inventory #

    !"" production # # !"" group_vars # # # $"" all # # !"" host_vars # # $"" inventory -> ../_common/inventory # $"" staging # !"" group_vars # # $"" all # !"" host_vars # $"" inventory -> ../_common/inventory

  7. ansible_connection=local for local connections, use 3

  8. single self-contained repo 4

  9. remove global config
 (/usr/local/etc/ansible/hosts) keep SSH config in Ansible project

    check out repo and run!

  10. cloud-local control host 5

  11. co-located on same VPC / VLAN

  12. ~zero latency no public SSH repo access required

  13. buildkite.com* for deployment 6

  14. install agent on Ansible control host

  15. None

  16. use roles 7

  17. don’t use roles, use include

  18. roles can’t strictly be mixed with tasks

  19. pre_tasks: - remove host from load balancer pool roles: -

    rails tasks: - do stuff post_tasks: - return load balancer back to pool

  20. pre_tasks: - remove host from load balancer pool tasks: -

    do stuff - role: nginx - do more other stuff - role: rails post_tasks: - return load balancer back to pool

  21. roles/ nginx/ files/ templates/ tasks/ handlers/ vars/ defaults/ meta/

  22. $ ansible-galaxy init

  23. Ruby* modules 8

  24. located in /library must be executable task name is file

    name

  25. #!/usr/bin/env ruby # WANT_JSON shebang warning!

  26. *any executable that can read a JSON formatted file (input)

    and returns JSON to stdout (output)

  27. instant offline access to documentation 9

  28. Dash Alfred +

  29. 10 style

  30. - name: Install Nginx. yum: name=nginx state=installed

  31. - name: copy something template: src: "templates/config.j2" dest: "/home/{{ deploy_user

    }}/config" owner: "{{ deploy_user }}" group: "{{ deploy_user }}" mode: 0755

  32. - name: copy something template: > src="templates/config.j2" dest="/home/{{ deploy_user }}/config"

    owner="{{ deploy_user }}" group="{{ deploy_user }}" mode=0755

  33. multiline for single parameter = good

  34. - name: decrypt the key on the server sudo_user: "{{

    deploy_key_user }}" command: > openssl rsa -in {{ deploy_key_path }}.protected -out {{ deploy_key_path }} -passin pass:{{ deploy_key_secret }}

  35. git.io/pK57

  36. None

  37. ansibleworkshop.com

  38. Steven Ringo | stevenringo | steven@dynamicclarity.com Dynamic Clarity