puppet公有资源的用途:

puppet将资源完成任务与否的结果看为状态,正是这种特性让我们可以通过资源公有属性来建立与资源的关系,当建立了资源关联关系后,前者资源状态未成功时,后者资源可以通过资源共有属性来确认其最终执行结果,这就是公有资源属性的用途.

 常用的公有资源:

before/require:定义资源的先后顺序,除此之外还有"->".

require:资源依赖,自身资源依赖哪个资源。

before:自身资源在哪个资源之前使用.

notify/subscribe:通知订阅.

notify:通知,自身发生改变通知remote资源

subcribe:订阅,当远程remote资源改变,自身做刷新操作

无关系示例:

以安装、启动httpd服务为例,puppet代码如下:

1
2
3
4
5
6
7
8
9
[root@sh-web1 ~]# cat httpd.pp 
package {"httpd":
    ensure => present,
    provider => ‘yum‘,
}
service {"httpd":
    ensure => running,
    enable => true,
}

 

注释:希望的结果是先安装httpd软件包,再启动httpd服务.

 

运行结果如下:

1
2
3
4
5
6
7
8
9
10
[root@sh-web1 ~]# puppet apply httpd.pp 
Notice: Compiled catalog for sh-web1.localdomain in environment production in 0.04 seconds
Error: Could not start Service[httpd]: Execution of ‘/sbin/service httpd start‘ returned 1: httpd: unrecognized service
Error: /Stage[main]/Main/Service[httpd]/ensure: change from stopped to running failed: Could not start Service[httpd]: Execution of ‘/sbin/service httpd start‘ returned 1: httpd: unrecognized service
Notice: /Stage[main]/Main/Package[httpd]/ensure: created
Notice: Finished catalog run in 3.71 seconds
[root@sh-web1 ~]# rpm -qa httpd
httpd-2.2.15-60.el6.centos.6.x86_64
[root@sh-web1 ~]# /etc/init.d/httpd status
httpd is stopped

 

注释:可以看到puppet代码运行过程中先启动了httpd服务,然后再安装的httpd包,顺序并非所希望的那样运行.

---------------------------------------------------------------------------------------------------

 

依赖关系示例:

引入资源的公有属性require和before属性.

 

引入require的puppet代码:

1
2
3
4
5
6
7
8
9
10
[root@sh-web1 ~]# cat httpd.pp 
package {"httpd":
    ensure => present,
    provider => ‘yum‘,
}
service {"httpd":
    ensure => running,
    enable => true,
    require => Package[‘httpd‘],
}

 

运行结果如下:

1
2
3
4
5
6
7
8
9
[root@sh-web1 ~]# puppet apply httpd.pp 
Notice: Compiled catalog for sh-web1.localdomain in environment production in 0.04 seconds
Notice: /Stage[main]/Main/Package[httpd]/ensure: created
Notice: /Stage[main]/Main/Service[httpd]/ensure: ensure changed ‘stopped‘ to ‘running‘
Notice: Finished catalog run in 1.83 seconds
[root@sh-web1 ~]# rpm -qa httpd
httpd-2.2.15-60.el6.centos.6.x86_64
[root@sh-web1 ~]# /etc/init.d/httpd status
httpd (pid  14413) is running...

---------------------------------------------------------------------------------------------

引入before资源的puppet代码:

1
2
3
4
5
6
7
8
9
10
[root@sh-web1 ~]# cat httpd.pp 
package {"httpd":
    ensure => present,
    provider => ‘yum‘,
    before => Service[‘httpd‘],
}
service {"httpd":
    ensure => running,
    enable => true,
}

 

运行的结果如下:

1
2
3
4
5
6
7
8
9
[root@sh-web1 ~]# puppet apply httpd.pp 
Notice: Compiled catalog for sh-web1.localdomain in environment production in 0.05 seconds
Notice: /Stage[main]/Main/Package[httpd]/ensure: created
Notice: /Stage[main]/Main/Service[httpd]/ensure: ensure changed ‘stopped‘ to ‘running‘
Notice: Finished catalog run in 2.14 seconds
[root@sh-web1 ~]# rpm -qa httpd
httpd-2.2.15-60.el6.centos.6.x86_64
[root@sh-web1 ~]# /etc/init.d/httpd status
httpd (pid  14665) is running...

-------------------------------------------------------------------------------------

 

通知示例:

之前的文档写过exec示例时有subcribe参数,刚好拿来使用.

 

引入notify/subscribe公有资源:

改变haproxy的timeout的值,使用puppet的subcribe订阅功能的代码如下:

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
class haproxy::service {
    file {‘/etc/haproxy/haproxy.cfg‘:
        ensure => present,
        source => ‘puppet:///modules/haproxy/haproxy.cfg‘,
}
    exec {"/etc/init.d/haproxy restart":
        path => [‘/sbin‘,‘/bin‘,],
        command => ‘service haproxy restart‘,
        subscribe => File[‘/etc/haproxy/haproxy.cfg‘],
        timeout => ‘5‘,
        refreshonly => true,
        tries   => ‘2‘,
        try_sleep => ‘3‘,
    }
}

 

运行结果如下:

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
[root@sh-web1 ~]# puppet agent -t
Notice: Ignoring --listen on onetime run
Info: Retrieving pluginfacts
Info: Retrieving plugin
Info: Loading facts
Info: Caching catalog for sh-web1.localdomain
Info: Applying configuration version ‘1509023682‘
Notice: /Stage[main]/Haproxy::Service/File[/etc/haproxy/haproxy.cfg]/content
--- /etc/haproxy/haproxy.cfg2017-10-19 00:26:55.535720143 +0800
+++ /tmp/puppet-file20171026-15120-3hpwyh-02017-10-26 14:04:57.471321465 +0800
@@ -50,7 +50,7 @@
     retries                 3
     timeout http-request    10s
     timeout queue           1m
-    timeout connect         10s
+    timeout connect         20s
     timeout client          1m
     timeout server          1m
     timeout http-keep-alive 10s
Info: Computing checksum on file /etc/haproxy/haproxy.cfg
Info: /Stage[main]/Haproxy::Service/File[/etc/haproxy/haproxy.cfg]: Filebucketed /etc/haproxy/haproxy.cfg to puppet with sum 034aa86fec81774e5f81c691df0d92a3
Notice: /Stage[main]/Haproxy::Service/File[/etc/haproxy/haproxy.cfg]/content: content changed ‘{md5}034aa86fec81774e5f81c691df0d92a3‘ to ‘{md5}d94dac291f5d754ea13c2799f0c065c7‘
Info: /Stage[main]/Haproxy::Service/File[/etc/haproxy/haproxy.cfg]: Scheduling refresh of Exec[/etc/init.d/haproxy restart]
Notice: /Stage[main]/Haproxy::Service/Exec[/etc/init.d/haproxy restart]: Triggered ‘refresh‘ from 1 events
Notice: /Stage[main]/Admin/Exec[selinux]/returns: executed successfully
Notice: Finished catalog run in 0.57 seconds

 

注释:当haprxoy的/etc/haproxy/haproxy.cfg发生改变是就会重启服务.

 

---------------------------------------------------------------------------------------------

 

引入puppet公有资源属性notify主动通知功能的puppet代码:

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
class haproxy::service {
    file {‘/etc/haproxy/haproxy.cfg‘:
        ensure => present,
        source => ‘puppet:///modules/haproxy/haproxy.cfg‘,
        notify => Exec[‘/etc/init.d/haproxy restart‘],
    }
    exec {"/etc/init.d/haproxy restart":
        path => [‘/sbin‘,‘/bin‘,],
        command => ‘service haproxy restart‘,
        timeout => ‘5‘,
        refreshonly => true,
        tries   => ‘2‘,
        try_sleep => ‘3‘,
    }
}

 

运行结果如下:

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
[root@sh-web1 ~]# puppet agent -t
Notice: Ignoring --listen on onetime run
Info: Retrieving pluginfacts
Info: Retrieving plugin
Info: Loading facts
Info: Caching catalog for sh-web1.localdomain
Info: Applying configuration version ‘1509027044‘
Notice: /Stage[main]/Haproxy::Service/File[/etc/haproxy/haproxy.cfg]/content
--- /etc/haproxy/haproxy.cfg2017-10-26 14:04:57.538321466 +0800
+++ /tmp/puppet-file20171026-15376-1fnh0f2-02017-10-26 14:10:44.544847207 +0800
@@ -50,7 +50,7 @@
     retries                 3
     timeout http-request    10s
     timeout queue           1m
-    timeout connect         20s
+    timeout connect         30s
     timeout client          1m
     timeout server          1m
     timeout http-keep-alive 10s
Info: Computing checksum on file /etc/haproxy/haproxy.cfg
Info: /Stage[main]/Haproxy::Service/File[/etc/haproxy/haproxy.cfg]: Filebucketed /etc/haproxy/haproxy.cfg to puppet with sum d94dac291f5d754ea13c2799f0c065c7
Notice: /Stage[main]/Haproxy::Service/File[/etc/haproxy/haproxy.cfg]/content: content changed ‘{md5}d94dac291f5d754ea13c2799f0c065c7‘ to ‘{md5}d5baea01fcfcb635dec5737a4ae67a3f‘
Info: /Stage[main]/Haproxy::Service/File[/etc/haproxy/haproxy.cfg]: Scheduling refresh of Exec[/etc/init.d/haproxy restart]
Notice: /Stage[main]/Haproxy::Service/Exec[/etc/init.d/haproxy restart]: Triggered ‘refresh‘ from 1 events
Notice: /Stage[main]/Admin/Exec[selinux]/returns: executed successfully
Notice: Finished catalog run in 0.65 seconds

 

注释:/etc/haproxy/haproxy.cfg文件发生变化,puppet主动去推的exec执行.