The Kitchen Hooks provide a GitLab WebHoook for automated Chef Server uploads following Kitchen standards.
So the Kitchen is this thing we have now in Operations at Blue Jeans Network to help guide cookbook development. The Workflow sction of the docs prescribes how to go about your day in Chef land including how to version, release, and deploy changes to a Chef server.
But that's only one Chef server. What if we want redundancy?
A distributed/highly-available Chef would do the job. It comes in a few flavors:
- Pay for whatever they're calling Hosted Chef nowadays
- Manually deploy a highly-available setup in AWS
- Manually deploy a highly-available setup with DRBD
The third option is basically a recipe for disaster. DRBD is known to lose data in split-brain scenarios. So that's actually two flavors.
Hosted Chef seems like a great option. Until you start using it. They give you whatever bleeding-edge version of Chef they're testing so you don't have time to breathe between incompatible versions. Chef is notorious for yanking gems and botching releases. They've also got some odd permissions you probably have never seen before, because vanilla Chef server doesn't have organizations.
That leaves AWS as an option. But it's a lot of work, and weirdly completely not automated.
All I care about is having my Chef data replicated, why does it have to be hard?
I mean, we've been using git hooks to fan out to Chef servers for years now!
The old post-receive hook was pretty basic, but it worked. By default, it would
look up the knife and berks configuration files (.rb and .json) in
~/knives then loop over them when uploading Chef objects found in the
checkout specified by the hook.
The new Kitchen Hooks works much the same, except we're using GitLab WebHooks
rather than traditional git hooks. This makes the Hooks easier to maintain,
as installing git hooks has not been automated, and WebHooks are opt-in.
The new Hooks cover three scenarios:
- Pushes to the
masterbranch of the Kitchen trigger an upload of all roles, environments, and data bags. This will overwrite any changes made on the Chef server, but you shouldn't be doing that anyway. Importantly, this has no effect on cookbook versions pinned in any environment. - Version tag pushes (e.g.
v1.0.0) to cookbooks trigger aknife-style cookbook upload withfreezeset to true. ABerksfile.lockwill also trigger the equivalent ofberks installandberks upload. - Environment tag pushes (e.g.
bjn_logger_prod) to realm cookbooks triggerberks applybehavior. Remember to delete both the local and remote tags when you want to update an environment with a later version of the realm.
Actions performed by Kitchen Hooks are stored in a Daybreak database and presented as a timeline in the Web UI. Notifcations may be sent to HipChat.
Try gem install kitchen_hooks. Or add it to your Gemfile. Or clone the repo
and rake build. Do all three, I don't care!
After installing the gem, the kitchen_hooks executable should be available:
$ kitchen_hooks help
Commands:
kitchen_hooks art # Show application art
kitchen_hooks help [COMMAND] # Describe available commands or one specific command
kitchen_hooks server # Start application web server
kitchen_hooks version # Show application version
Use the server command to start the WebHook receiver:
$ kitchen_hooks server -c etc/config.json -p 80 -e production
== Sinatra/1.4.5 has taken the stage on 80 for production with backup from Thin
Thin web server (v1.6.3 codename Protein Powder)
Maximum connections set to 1024
Listening on 0.0.0.0:80, CTRL+C to stop
...
The configuration file is just JSON. Hopefully it's obvious:
{
"hipchat": {
"nick": "name",
"room": "test",
"token": "your_v1_api_token"
},
"git_protocol": "daemon",
"cookbook_upload_method": "berkshelf",
"knives": {
"user": "~/.chef/knife.rb",
"system": "/etc/chef/knife.rb",
"another": "/path/to/knife.rb"
}
}
The server command also exposes some options for Sinatra configuration. See
kitchen_hooks help server.
- Use Ridley for data bag, role, and environment uploads to remove Chef dependency
- Allows more kinds of repo layouts (@luisdavim via PR #1)
- Upgrade to Chef 12 and Berkshelf 4
- Sync nodes between Chef servers
- Speedup sync by cachine Ohai update times
- First public release
- Parallelize most operations
- Add requests to backlog for serial processing
- Add release notifications
- Add indication of success or failure
- Only upload on commits to Kitchen
masterbranch - Add custom timeline icons to distinguish event types
- Simplified configuration format (breaking!)
- Added support for HipChat notifications when configured
- Linked to tag name with
.../commits/TAGwhere appropriate - Replaced "modified" with more appropriate verb where appropriate
- Corrected
berks uploadfunctionality (berks installfirst)
- Added local database to store history (Daybreak), visualized on homepage
- Added
databaseoption toservercommand - Corrected GitLab link for tagged commits
- Process events in the background to avoid duplicate entries [INF-6040]
- Added
bindoption toservercommand - Added
berks uploadfunctionality when tagging realm versions
- Moved
examplestoetc - Started checking in
Gemfile.lockfor future reference - Added
portandenvironmentoptions tokitchen_hooks server - Move
rake fpm.debartifacts underpkgalongside.gemfiles - Commits to the Kitchen trigger data bag, role, and environment uploads
- Tagging a cookbook with a version triggers a cookbook upload (frozen)
- Tagging a realm with the name of an environment applies version constraints
- Initial release. Gem structure in place, but lacking functionaily