blob: 8b7d6efd7a84d5a29ad64075864b68f8a114a3e9 [file] [log] [blame]
Filip Pytlounb4b80592015-10-06 16:28:32 +02001
Ales Komarek54740682017-05-15 07:16:23 +02002============
3Salt Formula
4============
Filip Pytlounb4b80592015-10-06 16:28:32 +02005
Ales Komarek54740682017-05-15 07:16:23 +02006Salt is a new approach to infrastructure management. Easy enough to get
7running in minutes, scalable enough to manage tens of thousands of servers,
8and fast enough to communicate with them in seconds.
Filip Pytlounb4b80592015-10-06 16:28:32 +02009
Ales Komarek54740682017-05-15 07:16:23 +020010Salt delivers a dynamic communication bus for infrastructures that can be used
11for orchestration, remote execution, configuration management and much more.
Filip Pytlounb4b80592015-10-06 16:28:32 +020012
Ales Komarek54740682017-05-15 07:16:23 +020013
14Sample Metadata
15===============
16
Filip Pytlounb4b80592015-10-06 16:28:32 +020017
Ales Komarekd768f1c2018-01-30 22:37:18 +010018Salt Master
Filip Pytlounb4b80592015-10-06 16:28:32 +020019-----------
20
Ales Komarek54740682017-05-15 07:16:23 +020021Salt master with base formulas and pillar metadata backend
Filip Pytlounb4b80592015-10-06 16:28:32 +020022
Ales Komarek8ba9c0b2016-02-21 14:59:59 +010023.. literalinclude:: tests/pillar/master_single_pillar.sls
24 :language: yaml
Filip Pytlounb4b80592015-10-06 16:28:32 +020025
Ales Komarek54740682017-05-15 07:16:23 +020026Salt master with reclass ENC metadata backend
Filip Pytlounb4b80592015-10-06 16:28:32 +020027
Ales Komarek8ba9c0b2016-02-21 14:59:59 +010028.. literalinclude:: tests/pillar/master_single_reclass.sls
29 :language: yaml
Filip Pytlounb4b80592015-10-06 16:28:32 +020030
Ales Komarek459407b2018-01-18 17:16:31 +010031Salt master with Architect ENC metadata backend
32
33.. code-block:: yaml
34
35 salt:
36 master:
37 enabled: true
38 pillar:
39 engine: architect
40 project: project-name
41 host: architect-api
42 port: 8181
43 username: salt
44 password: password
45
Petr Michalec1f541c42017-08-17 13:30:37 +020046Salt master with multiple ext_pillars
47
48.. literalinclude:: tests/pillar/master_single_extpillars.sls
49 :language: yaml
50
Filip Pytlounb4b80592015-10-06 16:28:32 +020051Salt master with API
52
Ales Komarekb2c8ff62016-08-22 00:20:01 +020053.. literalinclude:: tests/pillar/master_api.sls
54 :language: yaml
Ales Komarekcdb280f2016-07-27 15:37:51 +020055
56Salt master with defined user ACLs
57
Ales Komarekb2c8ff62016-08-22 00:20:01 +020058.. literalinclude:: tests/pillar/master_acl.sls
59 :language: yaml
Filip Pytlounb4b80592015-10-06 16:28:32 +020060
61Salt master with preset minions
62
63.. code-block:: yaml
64
65 salt:
66 master:
67 enabled: true
Filip Pytlounb4b80592015-10-06 16:28:32 +020068 minions:
69 - name: 'node1.system.location.domain.com'
70
Ales Komarek54740682017-05-15 07:16:23 +020071Salt master with pip based installation (optional)
Adam Tenglercaedd972016-05-04 16:44:00 +020072
73.. code-block:: yaml
74
75 salt:
76 master:
77 enabled: true
78 ...
79 source:
80 engine: pip
81 version: 2016.3.0rc2
82
Ales Komarek54740682017-05-15 07:16:23 +020083Install formula through system package management
Adam Tengler3eb85ad2016-05-06 02:52:40 +020084
85.. code-block:: yaml
86
87 salt:
88 master:
89 enabled: true
90 ...
91 environment:
92 prd:
Petr Michalec7a2f1d22017-05-17 22:08:32 +020093 keystone:
Adam Tengler3eb85ad2016-05-06 02:52:40 +020094 source: pkg
95 name: salt-formula-keystone
Petr Michalec7a2f1d22017-05-17 22:08:32 +020096 nova:
97 source: pkg
98 name: salt-formula-keystone
99 version: 0.1+0~20160818133412.24~1.gbp6e1ebb
100 postresql:
101 source: pkg
102 name: salt-formula-postgresql
103 version: purged
104
105Formula keystone is installed latest version and the formulas without version are installed in one call to aptpkg module.
106If the version attribute is present sls iterates over formulas and take action to install specific version or remove it.
107The version attribute may have these values ``[latest|purged|removed|<VERSION>]``.
Adam Tengler3eb85ad2016-05-06 02:52:40 +0200108
109Clone master branch of keystone formula as local feature branch
110
111.. code-block:: yaml
112
113 salt:
114 master:
115 enabled: true
116 ...
117 environment:
118 dev:
119 formula:
120 keystone:
121 source: git
122 address: git@github.com:openstack/salt-formula-keystone.git
123 revision: master
124 branch: feature
125
126Salt master with specified formula refs (for example for Gerrit review)
127
128.. code-block:: yaml
129
130 salt:
131 master:
132 enabled: true
133 ...
134 environment:
135 dev:
136 formula:
137 keystone:
138 source: git
139 address: https://git.openstack.org/openstack/salt-formula-keystone
140 revision: refs/changes/56/123456/1
141
Oleksii Chupryn7b7102a2018-05-11 10:32:11 +0300142Salt master logging configuration
143
144.. code-block:: yaml
145
146 salt:
147 master:
148 enabled: true
149 log:
150 level: warning
151 file: '/var/log/salt/master'
152 level_logfile: warning
153
154Salt minion logging configuration
155
156.. code-block:: yaml
157
158 salt:
159 minion:
160 enabled: true
161 log:
162 level: info
163 file: '/var/log/salt/minion'
164 level_logfile: warning
165
Ales Komarek54740682017-05-15 07:16:23 +0200166Salt master with logging handlers
Filip Pytlounb4b80592015-10-06 16:28:32 +0200167
168.. code-block:: yaml
169
170 salt:
171 master:
172 enabled: true
Ales Komarek8ba9c0b2016-02-21 14:59:59 +0100173 handler:
174 handler01:
175 engine: udp
176 bind:
177 host: 127.0.0.1
178 port: 9999
Filip Pytlounb4b80592015-10-06 16:28:32 +0200179 minion:
Ales Komarek8ba9c0b2016-02-21 14:59:59 +0100180 handler:
181 handler01:
182 engine: udp
183 bind:
184 host: 127.0.0.1
185 port: 9999
186 handler02:
187 engine: zmq
188 bind:
189 host: 127.0.0.1
190 port: 9999
191
Ales Komareka9fc6e72017-09-06 15:02:40 +0200192Salt engine definition for saltgraph metadata collector
193
194.. code-block:: yaml
195
196 salt:
197 master:
198 engine:
199 graph_metadata:
200 engine: saltgraph
201 host: 127.0.0.1
202 port: 5432
203 user: salt
204 password: salt
205 database: salt
206
Ales Komarek459407b2018-01-18 17:16:31 +0100207Salt engine definition for Architect service
208
209.. code-block:: yaml
210
211 salt:
212 master:
213 engine:
214 architect:
215 engine: architect
216 project: project-name
217 host: architect-api
218 port: 8181
219 username: salt
220 password: password
221
Ales Komareka9fc6e72017-09-06 15:02:40 +0200222Salt engine definition for sending events from docker events
223
224.. code-block:: yaml
225
226 salt:
227 master:
228 engine:
229 docker_events:
230 docker_url: unix://var/run/docker.sock
231
Ales Komarek54740682017-05-15 07:16:23 +0200232Salt master peer setup for remote certificate signing
Jakub Pavlikd4859842016-05-23 10:48:04 +0200233
234.. code-block:: yaml
235
236 salt:
237 master:
238 peer:
239 ".*":
240 - x509.sign_remote_certificate
Filip Pytlounb4b80592015-10-06 16:28:32 +0200241
Ales Komarekb2ada522017-12-07 11:31:32 +0100242
243Salt master backup configuration
244
245.. code-block:: yaml
246
247 salt:
248 master:
249 backup: true
250 initial_data:
251 engine: backupninja
Jiri Broulik3e281642018-03-02 18:17:21 +0100252 home_dir: remote-backup-home-dir
Ales Komarekb2ada522017-12-07 11:31:32 +0100253 source: backup-node-host
254 host: original-salt-master-id
255
Tomáš Kukrál8922aef2017-05-10 10:27:04 +0200256Configure verbosity of state output (used for `salt` command)
257
258.. code-block:: yaml
259
260 salt:
261 master:
Tomáš Kukrál044667b2017-05-11 10:12:15 +0200262 state_output: changes
Tomáš Kukrál8922aef2017-05-10 10:27:04 +0200263
Ales Komarekd768f1c2018-01-30 22:37:18 +0100264Pass pillar render error to minion log
265
266.. note:: When set to `False` this option is great for debuging.
267 However it is not recomended for any production environment as it may contain
268 templating data as passwords, etc... , that minion should not expose.
269
270.. code-block:: yaml
271
272 salt:
273 master:
274 pillar_safe_render_error: False
275
Ales Komarekf44e64c2018-05-29 10:22:31 +0200276Enable Windows repo support
277
278.. code-block:: yaml
279
280 salt:
281 master:
282 win_repo:
283 source: git
284 address: https://github.com/saltstack/salt-winrepo-ng
285 revision: master
286
Ales Komarekd768f1c2018-01-30 22:37:18 +0100287
288Event/Reactor Systems
289~~~~~~~~~~~~~~~~~~~~~
Petr Michalec1f541c42017-08-17 13:30:37 +0200290
Ales Komareke7844d12017-06-08 12:00:01 +0200291Salt synchronise node pillar and modules after start
Ales Komarek54740682017-05-15 07:16:23 +0200292
293.. code-block:: yaml
294
295 salt:
296 master:
297 reactor:
298 salt/minion/*/start:
Ales Komareke7844d12017-06-08 12:00:01 +0200299 - salt://salt/reactor/node_start.sls
Ales Komarek54740682017-05-15 07:16:23 +0200300
Ales Komareke7844d12017-06-08 12:00:01 +0200301Trigger basic node install
302
303.. code-block:: yaml
304
305 salt:
306 master:
307 reactor:
308 salt/minion/install:
309 - salt://salt/reactor/node_install.sls
310
311Sample event to trigger the node installation
312
313.. code-block:: bash
314
315 salt-call event.send 'salt/minion/install'
316
Ales Komarek213fbe02017-08-21 16:39:05 +0200317Run any defined orchestration pipeline
Ales Komarek5c58de32017-06-06 11:49:32 +0200318
319.. code-block:: yaml
320
321 salt:
322 master:
323 reactor:
324 salt/orchestrate/start:
325 - salt://salt/reactor/orchestrate_start.sls
326
Ales Komareke7844d12017-06-08 12:00:01 +0200327Event to trigger the orchestration pipeline
Ales Komarek5c58de32017-06-06 11:49:32 +0200328
329.. code-block:: bash
330
Ales Komareke7844d12017-06-08 12:00:01 +0200331 salt-call event.send 'salt/orchestrate/start' "{'orchestrate': 'salt/orchestrate/infra_install.sls'}"
Ales Komarek5c58de32017-06-06 11:49:32 +0200332
Ales Komarek3ed7c432017-08-24 16:15:49 +0200333Synchronise modules and pillars on minion start.
334
335.. code-block:: yaml
336
337 salt:
338 master:
339 reactor:
340 'salt/minion/*/start':
341 - salt://salt/reactor/minion_start.sls
342
Ales Komarek213fbe02017-08-21 16:39:05 +0200343Add and/or remove the minion key
Ales Komarek5c58de32017-06-06 11:49:32 +0200344
345.. code-block:: yaml
346
347 salt:
348 master:
349 reactor:
Ales Komarek213fbe02017-08-21 16:39:05 +0200350 salt/key/create:
351 - salt://salt/reactor/key_create.sls
352 salt/key/remove:
353 - salt://salt/reactor/key_remove.sls
Ales Komarek5c58de32017-06-06 11:49:32 +0200354
Ales Komarek213fbe02017-08-21 16:39:05 +0200355Event to trigger the key creation
Ales Komarek5c58de32017-06-06 11:49:32 +0200356
357.. code-block:: bash
358
Adam Tengler62188962017-09-04 13:34:44 +0000359 salt-call event.send 'salt/key/create' \
360 > "{'node_id': 'id-of-minion', 'node_host': '172.16.10.100', 'orch_post_create': 'kubernetes.orchestrate.compute_install', 'post_create_pillar': {'node_name': 'id-of-minion'}}"
Ales Komarek5c58de32017-06-06 11:49:32 +0200361
Ales Komarek213fbe02017-08-21 16:39:05 +0200362.. note::
363
364 You can add pass additional `orch_pre_create`, `orch_post_create`,
365 `orch_pre_remove` or `orch_post_remove` parameters to the event to call
366 extra orchestrate files. This can be useful for example for
367 registering/unregistering nodes from the monitoring alarms or dashboards.
368
369 The key creation event needs to be run from other machine than the one
370 being registered.
371
372Event to trigger the key removal
373
374.. code-block:: bash
375
376 salt-call event.send 'salt/key/remove'
Ales Komarek54740682017-05-15 07:16:23 +0200377
Dzmitry Stremkouski7ee23402018-04-10 00:43:48 +0200378Control VM provisioning
379
380.. code-block:: yaml
381
382 virt:
383 disk:
384 three_disks:
385 - system:
386 size: 4096
387 image: ubuntu.qcow
388 - repository_snapshot:
389 size: 8192
390 image: snapshot.qcow
391 - cinder-volume:
392 size: 2048
Ondrej Smolae6bcb292018-04-13 10:56:39 +0200393 nic:
394 control:
395 - name: nic01
396 bridge: br-pxe
397 model: virtio
398 - name: nic02
399 bridge: br-cp
400 model: virtio
401 - name: nic03
402 bridge: br-store-front
403 model: virtio
404 - name: nic04
405 bridge: br-public
406 model: virtio
Dzmitry Stremkouskib8acf1f2018-06-28 12:56:23 +0200407 - name: nic05
408 bridge: br-prv
409 model: virtio
410 virtualport:
411 type: openvswitch
Ondrej Smolae6bcb292018-04-13 10:56:39 +0200412
Dzmitry Stremkouski7ee23402018-04-10 00:43:48 +0200413
414 salt:
415 control:
416 enabled: true
417 virt_enabled: true
418 size:
419 medium_three_disks:
420 cpu: 2
421 ram: 4
422 disk_profile: three_disks
423 cluster:
424 mycluster:
425 domain: neco.virt.domain.com
426 engine: virt
Ondrej Smolac7f6cfc2018-05-21 15:55:08 +0200427 #Option to set rng globaly
428 rng: false
Dzmitry Stremkouski7ee23402018-04-10 00:43:48 +0200429 node:
430 ubuntu1:
431 provider: node01.domain.com
432 image: ubuntu.qcow
433 size: medium
434 img_dest: /var/lib/libvirt/ssdimages
Ondrej Smolac7f6cfc2018-05-21 15:55:08 +0200435 #Rng defined on node will have higher priority then global one
Dzmitry Stremkouski7ee23402018-04-10 00:43:48 +0200436 rng:
437 backend: /dev/urandom
438 model: random
439 rate:
440 period: '1800'
441 bytes: '1500'
Ondrej Smolae6bcb292018-04-13 10:56:39 +0200442 mac:
443 nic01: AC:DE:48:AA:AA:AA
444 nic02: AC:DE:48:AA:AA:BB
445
Oleh Hryhorovca6b9172018-06-21 14:21:35 +0000446To enable Redis plugin for the Salt caching subsystem. The below pillar structure should be used
447
448.. code-block:: yaml
449
450 salt:
451 master:
452 cache:
453 plugin: redis
454 host: localhost
455 port: 6379
456 db: '0'
457 password: pass_word
458 bank_prefix: 'MCP'
459 bank_keys_prefix: 'MCPKEY'
460 key_prefix: 'KEY'
461 separator: '@'
Ondrej Smolae6bcb292018-04-13 10:56:39 +0200462
Petr Michalec1f541c42017-08-17 13:30:37 +0200463
Petr Michalecdf75d682018-02-07 13:43:53 +0100464Jinja options
465-------------
466
467Use following options to update default jinja renderer options. Salt recognize Jinja options for templates and for sls files.
468
469For full list of options check jinja documentation: http://jinja.pocoo.org/docs/api/#high-level-api.
470
471.. code-block:: yaml
472
473
474 salt:
475 renderer:
476 # for templates
477 jinja: &jina_env
478 # Default Jinja environment options
479 block_start_string: '{%'
480 block_end_string: '%}'
481 variable_start_string: '{{'
482 variable_end_string: '}}'
483 comment_start_string: '{#'
484 comment_end_string: '#}'
485 keep_trailing_newline: False
486 newline_sequence: '\n'
487
488 # Next two are enabled by default in Salt
489 trim_blocks: True
490 lstrip_blocks: True
491
492 # Next two are not enabled by default in Salt
493 # but worth to consider to enable in future for salt-formulas
494 line_statement_prefix: '%'
495 line_comment_prefix: '##'
496
497 # for .sls state files
498 jinja_sls: *jinja_env
499
500
501
502With the line_statement/comment* _prefix options enabled following code statements are valid:
503
504.. code-block:: yaml
505 %- set myvar = 'one'
506
507 ## You can mix even with '{%'
508 {%- set myvar = 'two' %} ## comment
509 %- set mylist = ['one', 'two', 'three'] ## comment
510
511 ## comment
512 %- for item in mylist: ## comment
513 {{- item }}
514 %- endfor
515
516
517Encrypted pillars
Ales Komarekd768f1c2018-01-30 22:37:18 +0100518~~~~~~~~~~~~~~~~~
Petr Michalec1f541c42017-08-17 13:30:37 +0200519
520Note: NACL + below configuration will be available in Salt > 2017.7.
521
522External resources:
523
524- Tutorial to configure salt + reclass ext_pillar and nacl: http://apealive.net/post/2017-09-salt-nacl-ext-pillar/
525- Saltstack documentation: https://docs.saltstack.com/en/latest/ref/modules/all/salt.modules.nacl.html
526
527Configure salt NACL module:
528
529.. code-block:: shell
530
531 pip install --upgrade libnacl===1.5.2
532 salt-call --local nacl.keygen /etc/salt/pki/master/nacl
533
534 local:
535 saved sk_file:/etc/salt/pki/master/nacl pk_file: /etc/salt/pki/master/nacl.pub
536
537
538.. code-block:: yaml
539
540 salt:
541 master:
542 pillar:
543 reclass: *reclass
544 nacl:
545 index: 99
546 nacl:
547 box_type: sealedbox
548 sk_file: /etc/salt/pki/master/nacl
549 pk_file: /etc/salt/pki/master/nacl.pub
550 #sk: None
551 #pk: None
552
553NACL encrypt secrets:
554
555 salt-call --local nacl.enc 'my_secret_value' pk_file=/etc/salt/pki/master/nacl.pub
556 hXTkJpC1hcKMS7yZVGESutWrkvzusXfETXkacSklIxYjfWDlMJmR37MlmthdIgjXpg4f2AlBKb8tc9Woma7q
557 # or
558 salt-run nacl.enc 'myotherpass'
559 ADDFD0Rav6p6+63sojl7Htfrncp5rrDVyeE4BSPO7ipq8fZuLDIVAzQLf4PCbDqi+Fau5KD3/J/E+Pw=
560
561
562NACL encrypted values on pillar:
563
564Use Boxed syntax `NACL[CryptedValue=]` to encode value on pillar:
565
566.. code-block:: yaml
567
568 my_pillar:
569 my_nacl:
570 key0: unencrypted_value
571 key1: NACL[hXTkJpC1hcKMS7yZVGESutWrkvzusXfETXkacSklIxYjfWDlMJmR37MlmthdIgjXpg4f2AlBKb8tc9Woma7q]
572
573NACL large files:
574
575.. code-block:: shell
576 salt-call nacl.enc_file /tmp/cert.crt out=/srv/salt/env/dev/cert.nacl
577 # or more advanced
578 cert=$(cat /tmp/cert.crt)
579 salt-call --out=newline_values_only nacl.enc_pub data="$cert" > /srv/salt/env/dev/cert.nacl
580
581
582NACL within template/native pillars:
583
584 pillarexample:
585 user: root
586 password1: {{salt.nacl.dec('DRB7Q6/X5gGSRCTpZyxS6hlbWj0llUA+uaVyvou3vJ4=')|json}}
587 cert_key: {{salt.nacl.dec_file('/srv/salt/env/dev/certs/example.com/cert.nacl')|json}}
588 cert_key2: {{salt.nacl.dec_file('salt:///certs/example.com/cert2.nacl')|json}}
589
Ales Komarekd768f1c2018-01-30 22:37:18 +0100590
591Salt Syndic
Ales Komarek54740682017-05-15 07:16:23 +0200592-----------
593
594The master of masters
595
596.. code-block:: yaml
597
598 salt:
599 master:
600 enabled: true
601 order_masters: True
602
603Lower syndicated master
604
605.. code-block:: yaml
606
607 salt:
608 syndic:
609 enabled: true
610 master:
611 host: master-of-master-host
612 timeout: 5
613
614Syndicated master with multiple master of masters
615
616.. code-block:: yaml
617
618 salt:
619 syndic:
620 enabled: true
621 masters:
622 - host: master-of-master-host1
623 - host: master-of-master-host2
624 timeout: 5
625
626
Ales Komarekd768f1c2018-01-30 22:37:18 +0100627Salt Minion
628-----------
629
630Simplest Salt minion setup with central configuration node
631
632.. code-block:: yaml
633
634.. literalinclude:: tests/pillar/minion_master.sls
635 :language: yaml
636
637Multi-master Salt minion setup
638
639.. literalinclude:: tests/pillar/minion_multi_master.sls
640 :language: yaml
641
642Salt minion with salt mine options
643
644.. literalinclude:: tests/pillar/minion_mine.sls
645 :language: yaml
646
647Salt minion with graphing dependencies
648
649.. literalinclude:: tests/pillar/minion_graph.sls
650 :language: yaml
651
652Salt minion behind HTTP proxy
653
654.. code-block:: yaml
655
656 salt:
657 minion:
658 proxy:
659 host: 127.0.0.1
660 port: 3128
661
662Salt minion to specify non-default HTTP backend. The default tornado backend
663does not respect HTTP proxy settings set as environment variables. This is
664useful for cases where you need to set no_proxy lists.
665
666.. code-block:: yaml
667
668 salt:
669 minion:
670 backend: urllib2
671
672
673Salt minion with PKI certificate authority (CA)
674
675.. literalinclude:: tests/pillar/minion_pki_ca.sls
676 :language: yaml
677
678Salt minion using PKI certificate
679
680.. literalinclude:: tests/pillar/minion_pki_cert.sls
681 :language: yaml
682
683Salt minion trust CA certificates issued by salt CA on a specific host (ie: salt-master node)
684
685.. code-block:: yaml
686
687 salt:
688 minion:
689 trusted_ca_minions:
690 - cfg01
691
692
693Salt Minion Proxy
694~~~~~~~~~~~~~~~~~
Jiri Broulika0f46682017-04-20 22:45:01 +0200695
696Salt proxy pillar
697
698.. code-block:: yaml
699
700 salt:
701 minion:
Jiri Broulik88275242017-05-24 17:21:17 +0200702 proxy_minion:
Jiri Broulika0f46682017-04-20 22:45:01 +0200703 master: localhost
704 device:
705 vsrx01.mydomain.local:
706 enabled: true
707 engine: napalm
708 csr1000v.mydomain.local:
709 enabled: true
710 engine: napalm
711
712.. note:: This is pillar of the the real salt-minion
713
714
715Proxy pillar for IOS device
716
717.. code-block:: yaml
718
719 proxy:
720 proxytype: napalm
721 driver: ios
722 host: csr1000v.mydomain.local
723 username: root
724 passwd: r00tme
725
726.. note:: This is pillar of the node thats not able to run salt-minion itself
727
728
729Proxy pillar for JunOS device
730
731.. code-block:: yaml
732
733 proxy:
734 proxytype: napalm
735 driver: junos
736 host: vsrx01.mydomain.local
737 username: root
738 passwd: r00tme
739 optional_args:
740 config_format: set
741
742.. note:: This is pillar of the node thats not able to run salt-minion itself
743
Ales Komarek8fb1da82016-08-21 23:52:03 +0200744
745Salt SSH
Ales Komarekd768f1c2018-01-30 22:37:18 +0100746~~~~~~~~
Ales Komarek8fb1da82016-08-21 23:52:03 +0200747
748Salt SSH with sudoer using key
749
750.. literalinclude:: tests/pillar/master_ssh_minion_key.sls
751 :language: yaml
752
753Salt SSH with sudoer using password
754
755.. literalinclude:: tests/pillar/master_ssh_minion_password.sls
756 :language: yaml
757
758Salt SSH with root using password
759
760.. literalinclude:: tests/pillar/master_ssh_minion_root.sls
761 :language: yaml
762
Ales Komarek8ba9c0b2016-02-21 14:59:59 +0100763Salt control (cloud/kvm/docker)
764-------------------------------
Filip Pytlounb4b80592015-10-06 16:28:32 +0200765
Ales Komarek8ba9c0b2016-02-21 14:59:59 +0100766Salt cloud with local OpenStack provider
Filip Pytlounb4b80592015-10-06 16:28:32 +0200767
Ales Komarek8ba9c0b2016-02-21 14:59:59 +0100768.. literalinclude:: tests/pillar/control_cloud_openstack.sls
769 :language: yaml
Filip Pytlounb4b80592015-10-06 16:28:32 +0200770
771Salt cloud with Digital Ocean provider
772
Ales Komarek8ba9c0b2016-02-21 14:59:59 +0100773.. literalinclude:: tests/pillar/control_cloud_digitalocean.sls
774 :language: yaml
Filip Pytlounb4b80592015-10-06 16:28:32 +0200775
Ales Komarek8fb1da82016-08-21 23:52:03 +0200776Salt virt with KVM cluster
Filip Pytlounb4b80592015-10-06 16:28:32 +0200777
Ales Komarek8ba9c0b2016-02-21 14:59:59 +0100778.. literalinclude:: tests/pillar/control_virt.sls
779 :language: yaml
Filip Pytlounb4b80592015-10-06 16:28:32 +0200780
Mateusz Los4c7cd2d2018-01-09 11:46:07 +0100781salt virt with custom destination for image file
782
783.. literalinclude:: tests/pillar/control_virt_custom.sls
784 :language: yaml
785
Filip Pytlounb4b80592015-10-06 16:28:32 +0200786
787Usage
788=====
789
790Working with salt-cloud
791
792.. code-block:: bash
793
794 salt-cloud -m /path/to/map --assume-yes
795
796Debug LIBCLOUD for salt-cloud connection
797
798.. code-block:: bash
799
800 export LIBCLOUD_DEBUG=/dev/stderr; salt-cloud --list-sizes provider_name --log-level all
801
Ales Komarek8ba9c0b2016-02-21 14:59:59 +0100802
Ales Komarekd768f1c2018-01-30 22:37:18 +0100803References
804==========
Filip Pytlounb4b80592015-10-06 16:28:32 +0200805
806* http://salt.readthedocs.org/en/latest/
807* https://github.com/DanielBryan/salt-state-graph
808* http://karlgrz.com/testing-salt-states-rapidly-with-docker/
809* https://mywushublog.com/2013/03/configuration-management-with-salt-stack/
810* http://russell.ballestrini.net/replace-the-nagios-scheduler-and-nrpe-with-salt-stack/
811* https://github.com/saltstack-formulas/salt-formula
812* http://docs.saltstack.com/en/latest/topics/tutorials/multimaster.html
813
Ales Komarek8ba9c0b2016-02-21 14:59:59 +0100814
Filip Pytlounb4b80592015-10-06 16:28:32 +0200815salt-cloud
816----------
817
818* http://www.blog.sandro-mathys.ch/2013/07/setting-user-password-when-launching.html
819* http://cloudinit.readthedocs.org/en/latest/topics/examples.html
820* http://salt-cloud.readthedocs.org/en/latest/topics/install/index.html
821* http://docs.saltstack.com/topics/cloud/digitalocean.html
822* http://salt-cloud.readthedocs.org/en/latest/topics/rackspace.html
823* http://salt-cloud.readthedocs.org/en/latest/topics/map.html
824* http://docs.saltstack.com/en/latest/topics/tutorials/multimaster.html
Ales Komarek8ba9c0b2016-02-21 14:59:59 +0100825
Filip Pytloun954dbd62017-02-02 13:02:03 +0100826
827Documentation and Bugs
828======================
829
830To learn how to install and update salt-formulas, consult the documentation
831available online at:
832
833 http://salt-formulas.readthedocs.io/
834
835In the unfortunate event that bugs are discovered, they should be reported to
836the appropriate issue tracker. Use Github issue tracker for specific salt
837formula:
838
839 https://github.com/salt-formulas/salt-formula-salt/issues
840
841For feature requests, bug reports or blueprints affecting entire ecosystem,
842use Launchpad salt-formulas project:
843
844 https://launchpad.net/salt-formulas
845
846You can also join salt-formulas-users team and subscribe to mailing list:
847
848 https://launchpad.net/~salt-formulas-users
849
850Developers wishing to work on the salt-formulas projects should always base
851their work on master branch and submit pull request against specific formula.
852
853 https://github.com/salt-formulas/salt-formula-salt
854
855Any questions or feedback is always welcome so feel free to join our IRC
856channel:
857
858 #salt-formulas @ irc.freenode.net