Book Image

Mastering Chef

By : Mayank Joshi
Book Image

Mastering Chef

By: Mayank Joshi

Overview of this book

Related Content you might be interested in

Current Title:

Small book image
Mastering Chef
Mayank Joshi
Jun, 2015 | 374 pages
No titles found
Table of Contents (20 chapters)
Mastering Chef
Mastering Chef
Credits
Credits
About the Author
About the Author
About the Reviewers
About the Reviewers
www.PacktPub.com
www.PacktPub.com
Preface
Preface
Free Chapter
1
Introduction to the Chef Ecosystem
Introduction to the Chef Ecosystem
Different modes of running Chef
Terminology used in the world of Chef
The anatomy of a Chef run
Setting up a work environment
Summary
2
Knife and Its Associated Plugins
Knife and Its Associated Plugins
Introducing Knife
Summary
3
Chef and Ruby
Chef and Ruby
Ruby
IRB
Variables and types
Symbols
Basic operations
Conditional statements and loops
Methods
Arrays
Bang methods
Hashes
Classes and objects
Summary
4
Controlling Access to Resources
Controlling Access to Resources
The bootstrap process
Authentication
Authorization
Summary
5
Starting the Journey to the World of Recipes
Starting the Journey to the World of Recipes
Resources
Recipes
Best practices when writing recipes
Summary
6
Cookbooks and LWRPs
Cookbooks and LWRPs
Cookbooks
Custom resources
Summary
7
Roles and Environments
Roles and Environments
Managing roles
Managing environments
Setting up an environment on a node
Role and environment attributes
Environment run lists
Summary
8
Attributes and Their Uses
Attributes and Their Uses
Attribute naming
Different types of attributes
Different sources of attributes
Attribute precedence
Attribute whitelisting
Summary
9
Ohai and Its Plugin Ecosystem
Ohai and Its Plugin Ecosystem
Running the Ohai binary
Ohai plugins
Custom plugins
Summary
10
Data Bags and Templates
Data Bags and Templates
Data bags
Templates
Summary
11
Chef API and Search
Chef API and Search
Prerequisites for using Chef API
Authentication of requests
Endpoints
Search
Ridley
Summary
12
Extending Chef
Extending Chef
Custom Knife plugins
Custom Chef handlers
Summary
13
(Ab)Using Chef
(Ab)Using Chef
The dynamic server list in Capistrano using Chef
Capistrano style deployments using Chef's "deploy" resource
Extending Chef to bootstrap distributed systems
Test-driven development with Chef
Types of tests
Summary
Index
Index

Authentication

Communication with the Chef server can be initiated by different mechanisms such as chef-client, Knife, and using API in code. Let's see how authentication works under different circumstances.

chef-client

Every time a chef-client needs to communicate with the Chef server to fetch some data required for bootstrapping a machine, the chef-client needs to authenticate itself with the Chef server. It does so by using a private key located at /etc/chef/client.pem. However, as we saw in the bootstrap process, when a chef-client is executed for the very first time, there is no private key on the concerned machine. Hence, a chef-client makes use of the private key assigned to the chef-validator (/etc/chef/validation.pem). Once the initial request is authenticated, a chef-client will register with the Chef server using validation.pem, and subsequently the Chef server will return back a new private key to use for future communication. Once the initial chef-client run is over, validation...

Previous Section
End of Section 3
Next Section