Book Image

Puppet 3 Cookbook - Second Edition

By : John Arundel
Book Image

Puppet 3 Cookbook - Second Edition

By: John Arundel

Overview of this book

A revolution is happening in web operations. Configuration management tools can build servers in seconds, and automate your entire network. Tools like Puppet are essential to taking full advantage of the power of cloud computing, and building reliable, scalable, secure, high-performance systems. More and more systems administration and IT jobs require some knowledge of configuration management, and specifically Puppet."Puppet 3 Cookbook" takes you beyond the basics to explore the full power of Puppet, showing you in detail how to tackle a variety of real-world problems and applications. At every step it shows you exactly what commands you need to type, and includes full code samples for every recipe.The book takes the reader from a basic knowledge of Puppet to a complete and expert understanding of Puppet's latest and most advanced features, community best practices, writing great manifests, scaling and performance, and extending Puppet by adding your own providers and resources. It starts with guidance on how to set up and expand your Puppet infrastructure, then progresses through detailed information on the language and features, external tools, reporting, monitoring, and troubleshooting, and concludes with many specific recipes for managing popular applications.The book includes real examples from production systems and techniques that are in use in some of the world's largest Puppet installations, including a distributed Puppet architecture based on the Git version control system. You'll be introduced to powerful tools that work with Puppet such as Hiera. The book also explains managing Ruby applications and MySQL databases, building web servers, load balancers, high-availability systems with Heartbeat, and many other state-of-the-art techniques
Table of Contents (16 chapters)
Puppet 3 Cookbook
Credits
About the Author
About the Reviewers
www.PacktPub.com
Preface
Index

Storing secret data with hiera-gpg


In Chapter 4, Working with Files and Packages, we looked at a way to store encrypted data in our Puppet manifest which can be decrypted only with the appropriate key (see the Using GnuPG to encrypt secrets recipe in Chapter 4, Working with Files and Packages).

If you're using Hiera to store your configuration data, there's a gem available called hiera-gpg which adds an encryption backend to Hiera to achieve the same result.

Getting ready...

To set up hiera-gpg, follow these steps:

  1. Run this command to install hiera-gpg:

    ubuntu@cookbook:~$ sudo gem install hiera-gpg --no-ri --no-rdoc
    Fetching: json_pure-1.8.0.gem (100%)
    Fetching: hiera-1.2.1.gem (100%)
    Fetching: gpgme-2.0.2.gem (100%)
    Building native extensions.  This could take a while...
    Fetching: hiera-gpg-1.1.0.gem (100%)
    Successfully installed json_pure-1.8.0
    Successfully installed hiera-1.2.1
    Successfully installed gpgme-2.0.2
    Successfully installed hiera-gpg-1.1.0
    4 gems installed
    
  2. Modify your hiera.yaml...