Book Image

Mastering Chef

By : Mayank Joshi
Book Image

Mastering Chef

By: Mayank Joshi

Overview of this book

Related Content you might be interested in

Current Title:

Small book image
Mastering Chef
Mayank Joshi
Jun, 2015 | 374 pages
No titles found
Table of Contents (20 chapters)
Mastering Chef
Mastering Chef
Credits
Credits
About the Author
About the Author
About the Reviewers
About the Reviewers
www.PacktPub.com
www.PacktPub.com
Preface
Preface
Free Chapter
1
Introduction to the Chef Ecosystem
Introduction to the Chef Ecosystem
Different modes of running Chef
Terminology used in the world of Chef
The anatomy of a Chef run
Setting up a work environment
Summary
2
Knife and Its Associated Plugins
Knife and Its Associated Plugins
Introducing Knife
Summary
3
Chef and Ruby
Chef and Ruby
Ruby
IRB
Variables and types
Symbols
Basic operations
Conditional statements and loops
Methods
Arrays
Bang methods
Hashes
Classes and objects
Summary
4
Controlling Access to Resources
Controlling Access to Resources
The bootstrap process
Authentication
Authorization
Summary
5
Starting the Journey to the World of Recipes
Starting the Journey to the World of Recipes
Resources
Recipes
Best practices when writing recipes
Summary
6
Cookbooks and LWRPs
Cookbooks and LWRPs
Cookbooks
Custom resources
Summary
7
Roles and Environments
Roles and Environments
Managing roles
Managing environments
Setting up an environment on a node
Role and environment attributes
Environment run lists
Summary
8
Attributes and Their Uses
Attributes and Their Uses
Attribute naming
Different types of attributes
Different sources of attributes
Attribute precedence
Attribute whitelisting
Summary
9
Ohai and Its Plugin Ecosystem
Ohai and Its Plugin Ecosystem
Running the Ohai binary
Ohai plugins
Custom plugins
Summary
10
Data Bags and Templates
Data Bags and Templates
Data bags
Templates
Summary
11
Chef API and Search
Chef API and Search
Prerequisites for using Chef API
Authentication of requests
Endpoints
Search
Ridley
Summary
12
Extending Chef
Extending Chef
Custom Knife plugins
Custom Chef handlers
Summary
13
(Ab)Using Chef
(Ab)Using Chef
The dynamic server list in Capistrano using Chef
Capistrano style deployments using Chef's "deploy" resource
Extending Chef to bootstrap distributed systems
Test-driven development with Chef
Types of tests
Summary
Index
Index

Chapter 4. Controlling Access to Resources

So you decided that you were going to set up a Chef server and configure your infrastructure in a smart way. Good for you! However, once you've moved past this stage, the next stage that will come and haunt most organizations is: How do we ensure that everyone is able to contribute towards using Chef, while ensuring that no big mess up happens when everyone is busy modifying the Chef code? Above all, how to ensure that anybody who is not supposed to access resources on the Chef server is denied access?

Chef provides a very fine-grained, role-based access to resources through Enterprise Chef.

Any system that has to provide for such a mechanism has to have two components included in it:

  • Authentication

  • Authorization

All communication with the Chef server is through the Chef Server API. The API provided by Chef is a REST API, and the access to the API is restricted using authentication mechanisms. Public key encryption is used in both Enterprise and Open...

Previous Section
End of Section 1
Next Section