On 19/03/14 16:40, Spencer Krum wrote: > Hello, > > The other day I was on IRC and someone asked how to export strings in > PuppetDB. As far as I am aware this isn't possible with PuppetDB. It > is possible with certain hiera backends. > > I've created a hiera_insert module at > https://github.com/nibalizer/hiera-insert. This module only has one > function right now, redis_insert(). When using the redis backend to > hiera(and some assumptions I've hardcoded for now), its possible to > push key:value pairs into hiera and pull them out. > > On its own this isn't very interesting. But it enables multi node > communication. And since you can configure the hiera lookups on > 'subscriber' nodes to fail catalog compilation until the key they're > looking up on is present, you have some guarantees of in order > execution across your infrastructure. > > I'm wondering if other people think this is a good idea? Are there > other implementations I should be contributing to? Would people use it > if it supported different hiera backends? Really just interested in > feedback. > > It's not on the forge right now because I still consider it > experimental and proof of concept. But if there is interest I will be > happy to publish it. > > Thanks, > Spencer >
This is something we've been attempting to overcome and have been thinking about for some time - so far about 99% of our use cases have been taken care of by exported resources and PuppetDB - e.g. rather than using a fact and creating the resource on box B that refers to something in box A, we simply export the resource itself on box A and collect it on box B, filtering if needs be with tags. I've not looked at the IRC logs but I'm sure that came up. The remaining examples have included things which we've, so far, put statically into hiera (we use yaml). Your hiera_insert function looks to be the sort of thing we'd be able to make good use of, even if we do have to change backend. Would love to see the ability to incorporate encryption as well - then we can hiera_insert an encrypted password/key/etc with some greater confidence. Thanks Xav -- You received this message because you are subscribed to the Google Groups "Puppet Users" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/d/msgid/puppet-users/532916B9.8080307%40gmail.com. For more options, visit https://groups.google.com/d/optout.
