foreman_chef 0.1.1 → 0.1.2

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA1:
-  metadata.gz: fff5918bb11a35f73136413c50bde46eed3fb15b
-  data.tar.gz: 8fff9ce30b6efea5cc8ea8f207e4d61acbd2061e
+  metadata.gz: a92676c4caa608850b55c0663e13df92cc848793
+  data.tar.gz: a98cd1ada786665546e6ff3113e82238fb55773d
 SHA512:
-  metadata.gz: 745b97522e5e159d972321004b07886e843bd3770b5ea918308a1e9a5a8fe93f770d53f8bb16a8802ddec05adabced7f4e0d0327968c37a94fabccd71f3daf55
-  data.tar.gz: 40d63f5da6112601a2861a9ccb395c2180d1bd8a79d7c952f1a03620301c4efb54e504653f4476fceff3a7dd1905e6a6b6290fd3a78ce88865b6c7458c2c5891
+  metadata.gz: 97bb1712a25daa936b3833c44ab3b747dd9ea7e1c73b381234bc11d79c523e0dda6024a54ea91d5b0740ecf037de0e67f8d66e48273dee4ee07f50c61e60a785
+  data.tar.gz: fec31d07933b0cf391fff92662b07ef2ab272c0d2d4f83735e2b2e9f87d47ff400f99797621fa67ebb7150aa0edc4c12b8f5164ed90e7b9db5c32f7790f7238a

data/app/models/foreman_chef/concerns/host_action_subject.rb

@@ -17,3 +17,7 @@ module ForemanChef
     end
   end
 end
+
+class ::Host::Managed::Jail < Safemode::Jail
+  allow :chef_proxy
+end

data/app/models/foreman_chef/concerns/renderer.rb

@@ -0,0 +1,13 @@
+module ForemanChef
+  module Concerns
+    module Renderer
+      extend ActiveSupport::Concern
+
+      def chef_bootstrap(host)
+        snippet = host.params['chef_bootstrap_template'].present? ? host.params['chef_bootstrap_template'] : 'chef-client omnibus bootstrap'
+        raise SecurityError, 'snippet contains not white-listed characters' unless snippet =~ /\A[a-zA-Z0-9 _-]+\Z/
+        "snippet '#{snippet}'"
+      end
+    end
+  end
+end

data/app/views/foreman/unattended/snippets/_chef_client_bootstrap.erb

@@ -0,0 +1,41 @@
+echo "Creating validation.pem"
+mkdir /etc/chef
+touch /etc/chef/validation.pem
+chmod 600 /etc/chef/validation.pem
+
+## You need to paste here foreman's private key
+cat << 'EOF' > /etc/chef/validation.pem
+<%= @host.params['chef_validation_private_key'] %>
+EOF
+
+echo "Configuring chef client.rb"
+cat << 'EOF' > /etc/chef/client.rb
+log_level        :info
+log_location     STDOUT
+chef_server_url  "<%= @host.params['chef_server_url'] %>"
+validation_client_name "chef-validator"
+file_backup_path   "/var/lib/chef"
+file_cache_path    "/var/cache/chef"
+pid_file           "/var/run/chef/client.pid"
+
+require 'chef_handler_foreman'
+foreman_server_options  :url => "<%= @host.params['chef_handler_foreman_url'] %>"
+foreman_facts_upload    true
+foreman_reports_upload  true
+EOF
+
+# You may set here the default run list for all your nodes
+cat << 'EOF' > /tmp/base.json
+{
+"run_list": ["role[default]"]
+}
+EOF
+
+#first run of chef-client
+echo "First run of chef-client"
+/usr/local/bin/chef-client -j /tmp/base.json || /usr/bin/chef-client -j /tmp/base.json
+
+echo "Finished, cleaning"
+rm -f /tmp/base.json
+# you can comment this line to keep validaton.pem (e.g. for debugging purposes)
+rm -f /etc/chef/validation.pem

data/app/views/foreman/unattended/snippets/_chef_client_gem_bootstrap.erb

@@ -0,0 +1,4 @@
+echo "Installing chef and chef_handler_foreman"
+gem install chef chef_handler_foreman
+
+<%= snippet 'chef-client bootstrap' %>

data/app/views/foreman/unattended/snippets/_chef_client_omnibus_bootstrap.erb

@@ -0,0 +1,10 @@
+# install.sh will install latest chef client version
+curl -L https://www.chef.io/chef/install.sh | bash
+
+# if you want specific version you can use something like this instead of install.sh
+# yum install https://opscode-omnibus-packages.s3.amazonaws.com/el/6/x86_64/chef-11.10.0-1.el6.x86_64.rpm
+
+# install foreman integration chef handler
+/opt/chef/embedded/bin/gem install chef_handler_foreman
+
+<%= snippet 'chef-client bootstrap' %>

data/db/seeds.rb

@@ -1 +1,31 @@
 Feature.find_or_create_by_name('Chef')
+
+# Configuration template snippets
+defaults = {:vendor => "ForemanChef", :default => true, :locked => true}
+
+templates = [
+  {:name => "chef-client bootstrap", :source => "snippets/_chef_client_bootstrap.erb", :snippet => true},
+  {:name => "chef-client omnibus bootstrap", :source => "snippets/_chef_client_omnibus_bootstrap.erb", :snippet => true},
+  {:name => "chef-client gem bootstrap", :source => "snippets/_chef_client_gem_bootstrap.erb", :snippet => true},
+]
+
+templates.each do |template|
+  template[:template] = File.read(File.join(ForemanChef::Engine.root, "app/views/foreman/unattended", template.delete(:source)))
+  ConfigTemplate.find_or_create_by_name(template).update_attributes(defaults.merge(template))
+end
+
+# Global parameters used in configuration snippets
+parameters = [
+  { :name => 'chef_handler_foreman_url', :value => SmartProxy.chef_proxies.first.try(:url) || Setting.foreman_url },
+  { :name => 'chef_server_url', :value => "https://#{Socket.gethostbyname(Socket.gethostname).first}" },
+  { :name => 'chef_validation_private_key', :value => 'UNSPECIFIED, you must upload your validation key here' },
+  { :name => 'chef_bootstrap_template', :value => 'chef-client omnibus bootstrap' },
+  { :name => 'chef_server_certificate', :value => '' },
+]
+
+parameters.each do |parameter|
+  existing = CommonParameter.find_by_name(parameter[:name])
+  unless existing
+    CommonParameter.create(:name => parameter[:name], :value => parameter[:value])
+  end
+end

data/lib/foreman_chef/engine.rb

@@ -26,11 +26,13 @@ module ForemanChef
     initializer 'foreman_chef.register_plugin', :after => :finisher_hook do |app|
       Foreman::Plugin.register :foreman_chef do
         requires_foreman '>= 1.4'
+        allowed_template_helpers :chef_bootstrap
       end
     end
 
     initializer 'foreman_chef.chef_proxy_form' do |app|
       ActionView::Base.send :include, ChefProxyForm
+      ActionView::Base.send :include, ForemanChef::Concerns::Renderer
     end
 
     initializer 'foreman_chef.dynflow_world', :before => 'foreman_tasks.initialize_dynflow' do |app|
@@ -47,5 +49,9 @@ module ForemanChef
       ::FactImporter.register_fact_importer(:foreman_chef, ForemanChef::FactImporter)
       ::Host::Base.send :include, ForemanChef::Concerns::HostActionSubject
     end
+
+    config.after_initialize do
+      ::Foreman::Renderer.send :include, ForemanChef::Concerns::Renderer
+    end
   end
 end

data/lib/foreman_chef/version.rb

@@ -1,3 +1,3 @@
 module ForemanChef
-  VERSION = "0.1.1"
+  VERSION = "0.1.2"
 end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: foreman_chef
 version: !ruby/object:Gem::Version
-  version: 0.1.1
+  version: 0.1.2
 platform: ruby
 authors:
 - Marek Hulan
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2015-01-27 00:00:00.000000000 Z
+date: 2015-02-24 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: rails
@@ -81,11 +81,15 @@ files:
 - app/models/foreman_chef/hostgroup_extensions.rb
 - app/models/foreman_chef/host_extensions.rb
 - app/models/foreman_chef/fact_importer.rb
+- app/models/foreman_chef/concerns/renderer.rb
 - app/models/foreman_chef/concerns/host_action_subject.rb
 - app/models/setting/foreman_chef.rb
 - app/lib/actions/foreman_chef/client/destroy.rb
 - app/lib/actions/foreman_chef/host/destroy.rb
 - app/lib/proxy_api/foreman_chef/chef_proxy.rb
+- app/views/foreman/unattended/snippets/_chef_client_gem_bootstrap.erb
+- app/views/foreman/unattended/snippets/_chef_client_omnibus_bootstrap.erb
+- app/views/foreman/unattended/snippets/_chef_client_bootstrap.erb
 - config/routes.rb
 - db/migrate/20140513144804_add_chef_proxy_id_to_hostgroup.rb
 - db/migrate/20140220145827_add_chef_proxy_id_to_host.rb