Planet Puppet

Your source of Puppet technical information

Emerging from a year long apnoea

Anonymous, January 19, 2024 12:00 AM | Source: Example 42

The last post on example42’s blog was from December 2022, more than a year ago. I was introducing tp desktop which is a quick and easy way to manage your desktops with Puppet and I was actively working on the new version of Tiny Puppet which was expecting to deliver the huge promise of being able to install EVERY application on EVERY Operating System (this is already happening for years) in EVERY way (OS packages, upstream repo packages, source code, release tarballs, containers…) with a single Puppet module. Works on this release peaked at last Configuration Management Camp and then ...

[ Read More ]

Use Tetragon to Limit Network Usage for a set of Binary

Julien Acroute, August 03, 2023 07:39 AM | Source: Camptocamp Blog

A matter of trust

Many interesting software are coming from the community, many are distributed through the package manager of the operating system. But for the others, you can download them from Github release pages, use snap or homebrew to cite a few. But this last installation method bypasses the security team that tries to improve the security of your operating system. By doing so, you are implicitly trusting the author he is not distributing malware or implementing backdoors. How many tools did you install by hand? Do you really trust all of them? Confidence is very important, yet it ...

[ Read More ]

Puppet rspec testing and hiera

Martin Alfke (noreply@blogger.com), May 12, 2023 07:08 AM | Source: Unix Freak

Rspec testing your puppet modules supports you in having stable and functional modules.
For a couple of weeks there is hiera integration in rspec-puppet.



Basic Spec setup


You will need a couple of files for puppet module rspec testing:

Gemfile
# Install via
# bundle install --path vendor/gems
#
source "https://rubygems.org"

gem "mocha", :require => false
gem 'puppet',       '>= 3.1.1'
gem 'puppet-lint'
gem 'facter',       '>= 1.6.10'
gem 'rspec-puppet', :git => "https://github.com/rodjek/rspec-puppet.git"
gem 'rake',         '>= 0.9.2'
gem 'puppetlabs_spec_helper', '0.3.0'
gem 'test-unit'
Rakefile
require 'rake'
require 'rake/tasklib'
require 'rspec/core/rake_task'
require 'rubygems'
require 'puppetlabs_spec_helper/rake_tasks'
require 'puppet-lint'

desc "Run the tests"
RSpec::Core::RakeTask.new(:test) do |t| ...

[ Read More ]

Puppet rspec testing with automatic hiera lookups (implicit hiera lookup like puppet 3.x)

Martin Alfke (noreply@blogger.com), May 12, 2023 07:08 AM | Source: Unix Freak

This article is an add-on to my other article regarding puppet & rspec.
This article only covers automatic hiera lookups used during rspec puppet runs.
Many thanks to Jan (janwaech<at>gmail<dot>com) who spend the time digging into rspec-puppet code finding this nice solution.



Basic Setup:


Gemfile


# Install via
# bundle install --path vendor/gems
#
source "https://rubygems.org"

gem "mocha", :require => false
gem 'puppet',       '>= 3.1.1'
gem 'puppet-lint'
gem 'facter',       '>= 1.6.10'
gem 'rspec-puppet', :git => "https://github.com/rodjek/rspec-puppet.git"
gem 'rake',         '>= 0.9.2'
gem 'puppetlabs_spec_helper', '0.3.0'
gem 'test-unit'

Rakefile


require 'rake'
require 'rake/tasklib'
require 'rspec/core/rake_task'
require 'rubygems'
require 'puppetlabs_spec_helper/rake_tasks'

require 'hiera'
require ...

[ Read More ]

Using ArgoCD Pull Request Generator to review application modifications

Julien Acroute, April 11, 2023 02:29 PM | Source: Camptocamp Blog

As a developer, when modifications are pushed to a feature branch, you and your team want to test this new feature. If you have the chance to work with a stateless application, you can deploy another instance of the application with modifications from the feature branch.

An interesting feature of ArgoCD is the Pull Request Generator. It's a generator for ApplicationSet. An ApplicationSet is a template of ArgoCD Application associated with a generator. Generator can be a directory: an application will be created for every sub-folder. There is also the Cluster generator that deploy the same Application ...

[ Read More ]

Puppet Containment Demystified

Anonymous, January 20, 2023 12:00 AM | Source: binford2k.com

Containment has always been kind of a sticky subject in the Puppet world. Part of the confusion is that that Puppet tries really hard to handle on its own so that you don’t have to care about the weird little implementation details of how ordering relationships are resolved.

But that just means you’re not expecting it when it does raise its nasty little hobbit head.

Let’s talk a bit about how containment works so that you’re not surprised by an unexpected production outage caused by an unforeseen dependency issue.

We’ll start with ordering and the DAG. Directed Acyclic Graph is ...

[ Read More ]

Puppet Containment Demystified

Anonymous, January 20, 2023 12:00 AM | Source: binford2k.com

Containment has always been kind of a sticky subject in the Puppet world. Part of the confusion is that that Puppet tries really hard to handle on its own so that you don’t have to care about the weird little implementation details of how ordering relationships are resolved.

But that just means you’re not expecting it when it does raise its nasty little hobbit head.

Let’s talk a bit about how containment works so that you’re not surprised by an unexpected production outage caused by an unforeseen dependency issue.

We’ll start with ordering and the DAG. Directed Acyclic Graph is ...

[ Read More ]

Deploy your Pulumi project using Docker and Dagger.io

Hugo Bollon, December 14, 2022 10:30 AM | Source: Camptocamp Blog

🕰� In the previous episode

In the first part of this Dagger's series, I showed you what's Dagger.io, what's the features of it and it's benefits against others ci/cd solutions and finally the very basis of Dagger.

With this chapter, I will show you how we can overpower the CI/CD of any Pulumi project using Dagger.

🧰 Pulumi - An amazing IaC tool

First of all, I think that some of you may doesn't know what is Pulumi or even IaC (Infrastructure as Code) concept, so I will quickly present to you these two points.

Infrastructure as Code

Nowadays, IT ...

[ Read More ]

Desktop as Code with TP Desktop

Anonymous, December 13, 2022 12:00 AM | Source: Example 42

We manage via code the configurations of servers, cloud resources and infrastructures. Are we doing the same with our desktop setups, on our laptop, desktop, remote VDI? Do we manage as code the usual files we have, or would like to have, in our home configurations on remote servers? You may wonder what’s the benefit of adding the complexity of developing configurations that are applied one time and are usually managed manually. Well, let’s see if any of these use cases may be of interest for us: We do not setup our desktop only once. We do it whenever we ...

[ Read More ]

Use Docker to build better CI/CD pipelines with Dagger

Hugo Bollon, December 11, 2022 05:00 AM | Source: Camptocamp Blog

With the raises of DevOps practices, CI/CD (continuous integration & continuous deployment) takes a major place in every delivery workload.
CI/CD allow organizations to build, test and finally ship their applications more quickly and efficiently. It's a modern set of practices which allows to automatically trigger build, test or others types of jobs when the changes to the codebase are done.

In this quest of automation, we can use some CI/CD ecosystem like Github Actions, Gitlab-CI or many more.
However, a very promising new solution open-source is born called Dagger.

Dagger's logo

🤔 Dagger? What is it?

Dagger.io is a brand-new programmable ...

[ Read More ]

Puppet consulting, the example42 way

Anonymous, November 06, 2022 12:00 AM | Source: Example 42

If you think that this is a mere low budget marketing self-promoting post, you are right. Still, if you are interested in Puppet consulting, or, for some really arcane reason, in example42, keep on reading, as I guarantee that everything written here is true and happened for real. example42, an idea, an approach to work Example42 started in 2008 as an Open Source project, then, in 2015, it became a company based in Berlin, and finally, at the beginning of this year it turned into a brand of Lab42 Srl, my company, based in Italy. The idea behind example42 is ...

[ Read More ]

Puppet supports DoD continuous compliance and configuration management

Anonymous, October 24, 2022 12:00 PM | Source: Puppet

Learn how federal IT teams use Compliance Enforcement Modules to automate continuous compliance without the delay, risk and cost of manual approaches.

[ Read More ]

How to rein in cloud chaos with Puppet

Anonymous, October 18, 2022 03:00 PM | Source: Puppet

Join us for a webinar on how Puppet Enterprise, Bolt, and Puppet code work together to deploy and maintain your cloud infrastructure.

[ Read More ]

Get your time back by getting rid of unused modules with Dropsonde

Anonymous, October 11, 2022 03:53 PM | Source: Puppet

Clean up dead weight in your Puppet codebase (and save time) by getting rid of modules you no longer use. We’ll show you how.

[ Read More ]

How Puppet is making platform engineering more secure

Anonymous, October 03, 2022 04:00 PM | Source: Puppet

Puppet is releasing two CVEs as part of our secure-by-default ecosystem. Learn how the rise of platform engineering can lead to untrusted input.

[ Read More ]

Cleaning up unused modules with Dropsonde

Anonymous, September 01, 2022 12:00 AM | Source: binford2k.com

You’ve probably been using Puppet Forge modules to manage bits in your infrastructure for years. And if you’re like most of us, you’ve gradually added more modules and maybe sort of lost track of exactly what some of them do and on what nodes they’re declared on. You may even suspect that you have modules installed that you haven’t actually used in years…. only you’re not quite certain which modules those might be. I’m certainly guilty of that!

You won’t be surprised to know that one of our most common customer requests is a way to audit their modules to ...

[ Read More ]

Puppet Evaluation Error. Error while evaluating a Resource Statement - Unknown resource type

Anonymous, August 07, 2022 12:00 AM | Source: Example 42

So you got the Error while evaluating a Resource Statement, Unknown resource type with Puppet and are searching for solutions? You are lucky, because right now we are going to see what it means, why it happens and how to solve it. TL;DR The module that provides the referred Unknown resource type is not available where your Puppet code is compiled. Find the module you need in the metadata.json file of the module where the code fails (refer to the provided file path). Solve by adding the dependency module to your Puppetfile, or running the puppet module install command. Decomposing ...

[ Read More ]

Winter Solstice run 2021

Anonymous, December 21, 2021 12:00 AM | Source: binford2k.com

Today at 7:58 am was the Winter Solstice. That’s when the days stop getting shorter and start getting longer again. Metaphorically, it’s when darkness starts leaving our lives again and we welcome in more light.

Ruben and I celebrated with a 7:58 am morning run, of course. The first half of the run was on a well-worn regular route, but then on the way back we wandered on an unplanned, unmapped, unfamiliar route. We just let ourselves go where our feet and Ruben’s nose led us. It was wonderful. I thought about things I’d like to let go of and ...

[ Read More ]

2021-11-08: IAC & DevX Team Status Update

daianamezdrea, November 08, 2021 12:00 AM | Source: Puppet IAC Team

Community Contributions

We’d like to thank the following people in the Puppet Community for their contributions over this past week:

[ Read More ]

2021-10-21: A Fond Farewell For Now to Community Day & Norman

michaeltlombardi, October 20, 2021 12:00 AM | Source: Puppet IAC Team

IAC Community Day

Background

The Infrastructure Automation Content (IAC) team formed from the merger of 4 core content-focused teams (Modules, Windows, Cloud & Containers, and Networking), maintaining forty-five open-source supported Puppet modules and over a dozen tools that help reduce the content maintenance and support costs.

A crucial part of Puppet’s success has always been the support of the community. The IAC team, like with all module teams before, would have had a dedicated engineer or engineers assigned to community triage, usually on a rotational basis.

The triage rota consumed 20% of the team’s engineering resources. It was challenging due ...

[ Read More ]