Perl 6 - the future is here, just unevenly distributed

IRC log for #salt, 2013-08-05

| Channels | #salt index | Today | | Search | Google Search | Plain-Text | summary

All times shown according to UTC.

Time Nick Message
00:03 codysoyland joined #salt
00:04 dstanek joined #salt
00:09 felixhummel joined #salt
00:09 jaequery joined #salt
00:12 jaequery joined #salt
00:12 jessep joined #salt
00:34 druonysus joined #salt
00:34 druonysus joined #salt
00:40 lyddonb_ joined #salt
00:44 jaequery joined #salt
00:47 cedwards joined #salt
00:56 dstanek joined #salt
00:59 whit joined #salt
01:04 cewood joined #salt
01:06 cewood joined #salt
01:28 cxz joined #salt
01:28 cxz joined #salt
01:36 Nexpro joined #salt
01:38 rspectre joined #salt
01:38 rspectre Trying to find what happens to a user that is created and password is not specified.
01:39 rspectre Found a function called default_hash() to see what I think is the default password given to users Salt creates, but doesn't appear to work with the version I have.
01:45 liuyq joined #salt
01:46 liuyq joined #salt
01:50 syngin rspectre: if the password isn't specified, the account is "disabled" until a password is assigned. the usual /etc/passwd vs. /etc/shadow routine.
01:55 rspectre joined #salt
02:02 Furao joined #salt
02:13 aat joined #salt
02:13 druonysus joined #salt
02:18 FreeSpencer joined #salt
02:26 whit joined #salt
02:37 jessep joined #salt
02:38 kchr joined #salt
02:39 druonysus joined #salt
02:39 druonysus joined #salt
02:43 kchr joined #salt
02:51 techdragon joined #salt
02:59 druonysus joined #salt
02:59 dstanek joined #salt
03:14 andrew joined #salt
03:15 cewood joined #salt
03:26 jaequery joined #salt
03:29 malinoff joined #salt
03:35 dthom91 joined #salt
03:38 auser joined #salt
03:39 jessep joined #salt
03:58 kstaken joined #salt
04:14 jimallman joined #salt
04:16 berto- joined #salt
04:16 dthom91 joined #salt
04:23 dstanek joined #salt
04:28 jaequery joined #salt
04:28 jessep joined #salt
04:30 salvatore joined #salt
04:36 druonysus joined #salt
04:37 darkapp joined #salt
04:37 Guest21012 joined #salt
04:38 djinni` joined #salt
04:39 Guest21012 joined #salt
04:39 darkapp left #salt
04:40 drags joined #salt
04:47 druonysus joined #salt
05:44 auser joined #salt
05:57 linjan joined #salt
05:57 druonysus joined #salt
05:57 druonysus joined #salt
06:05 Slipo joined #salt
06:10 aculich joined #salt
06:23 druonysus joined #salt
06:30 ml_1 joined #salt
06:49 balboah joined #salt
06:54 costi joined #salt
07:17 Vivek joined #salt
07:18 karlp joined #salt
07:19 Mouzz joined #salt
07:25 abele joined #salt
07:28 matanya joined #salt
07:28 gaoyang nil?
07:32 jphall joined #salt
07:36 carlos joined #salt
07:56 vaxholm joined #salt
07:59 Xeago joined #salt
08:04 it_dude joined #salt
08:09 LucasCozy joined #salt
08:11 costi joined #salt
08:11 felixhummel joined #salt
08:18 zooz joined #salt
08:21 toastedpenguin joined #salt
08:31 krak3n` joined #salt
08:54 mike25ro joined #salt
09:12 auser joined #salt
09:18 echos joined #salt
09:19 yota joined #salt
09:21 liuyq joined #salt
09:21 bhosmer joined #salt
09:23 whiskybar joined #salt
09:38 jeddi joined #salt
09:44 fredvd joined #salt
09:46 krak3n` joined #salt
09:48 ggoZ joined #salt
09:51 fredvd joined #salt
10:02 barrybonds joined #salt
10:12 lemao joined #salt
10:41 TheSojourner joined #salt
10:41 TheSojourner joined #salt
10:43 giantlock joined #salt
10:44 linjan_ joined #salt
10:45 jphall joined #salt
10:45 jwon joined #salt
10:46 jeddi joined #salt
10:50 carlos_ joined #salt
11:01 helderco joined #salt
11:06 whiskybar joined #salt
11:07 liuyq joined #salt
11:15 liuyq joined #salt
11:17 jimallman joined #salt
11:22 liuyq joined #salt
11:25 Psi-Jack joined #salt
11:28 carlos joined #salt
11:35 diegows joined #salt
11:40 krak3n` joined #salt
11:52 bhosmer_ joined #salt
11:56 jimallman joined #salt
12:04 aranhoide joined #salt
12:06 aranhoide is there any way I can set a rule in the pillar top.sls such that for every minion matching a glob pattern a pillar .sls with the same name as the specific minion should be applied?
12:06 mike25ro aranhoide: i was thinking last night at the same issue
12:07 mike25ro not sure how to do it.... i am still reading through doc.
12:07 aranhoide that is, something akin to {base: {'web-*': '<theinstancename>.sls'}}
12:07 mike25ro yeah could be.
12:07 mike25ro or you can match via grains
12:08 aranhoide I'm not concerned about matching
12:08 mike25ro you can set up on each machine... an unique grain... when you set up that machine... or ROLES
12:08 mike25ro ah ok.
12:08 aranhoide I'm concerned about expanding the instance name in the .sls
12:08 aranhoide well, so that salt knows to read the pillar .sls with the same name as the instance
12:09 mike25ro i don't know... only the top.sls is ... run on a regular basis?
12:09 mike25ro i see.
12:09 aranhoide the top.sls refers to other `.sls`s to be applied to the minions matching the patterns defined therein
12:11 aranhoide in the example above, I want something like '<theinstancename>.sls' to be expanded to the instance name for every instance that has been selected by the corresponding pattern (i.e. 'web-*')
12:12 mike25ro i have read for 3 days... a lot of doc.. now i am confused.. i read too much.. i have to start all over again and test as well
12:12 aranhoide so if I have web-one web-two web-three, web-one will apply web-one.sls, etc
12:12 mike25ro aha... i am not sure is possible...
12:12 mike25ro i understood what you need
12:14 sashka_ua joined #salt
12:20 aranhoide I've just thought of a hack that might work...
12:22 aranhoide have top.sls:  {'base': {'web-*': 'web.sls'}}, then web.sls: include: ['{{ grains['id'] }}.sls']
12:22 aranhoide assuming jinja templates are expanded for each minion, before the includes are executed
12:23 * aranhoide gives it a try...
12:25 mike25ro nice one
12:27 mike25ro aranhoide: let me know if it works...
12:27 aranhoide mike25ro: OK :)
12:27 aranhoide I will
12:27 g3cko joined #salt
12:36 chutzpah joined #salt
12:37 mfournier joined #salt
12:39 mgw joined #salt
12:40 krak3n` joined #salt
12:41 napperjabber joined #salt
12:41 krak3n` joined #salt
12:52 honza joined #salt
12:52 honza how can i use the salt.modules.archive in my sls files?  i'd like to download a tar, extract it and place it somewhere...
12:53 mike25ro honza:  there is a salt.modules state ... that you can use to run modules from within your state.sls files
12:54 honza mike25ro: oh, cool - thanks!
12:54 mgw1 joined #salt
12:57 mike25ro honza: i am a newbie... haven't tried that one yet :)
13:00 aleszoulek joined #salt
13:04 blee joined #salt
13:04 mikedawson joined #salt
13:04 JasonSwindle joined #salt
13:07 Gifflen joined #salt
13:07 oz_akan_ joined #salt
13:12 drawsmcgraw joined #salt
13:12 oz_akan_ joined #salt
13:12 mgw joined #salt
13:12 kermit joined #salt
13:14 jslatts joined #salt
13:16 jeffasinger joined #salt
13:16 juicer2 joined #salt
13:20 MaxK joined #salt
13:27 costi joined #salt
13:27 * drawsmcgraw yawns & rubs his eyes
13:27 pdayton joined #salt
13:30 DerekRBN joined #salt
13:31 * mike25ro :)
13:32 racooper joined #salt
13:34 TheRealBill joined #salt
13:37 aranhoide mike25ro: it does indeed work, yay!
13:38 diegows joined #salt
13:41 KennethWilke joined #salt
13:42 JesseC Good morning.
13:42 JasonSwindle Morning
13:42 KennethWilke hello! good morning!
13:43 JesseC Does anyone happen know how I can run overstate on a masterless minion?
13:43 KennethWilke +coffee
13:43 mike25ro aranhoide: GOOD JOB!
13:43 mike25ro can you post somewhere an example code? pastebin.com ?
13:44 honza I'm trying to use the states.file.copy but it's complaining that it's not available --- ideas?
13:44 mike25ro so we can take a look /
13:45 mike25ro honza: the best way is to put your code on pastebin.com so we can see exactly what you are doing.
13:45 mike25ro honza:  are you running that from CLI?
13:45 mike25ro or from a state?
13:46 honza mike25ro: salt-call
13:47 honza here is the input/output http://gist.honza.ca/51ffacce35f2d50007000000
13:48 honza salt-call version 0.16.0
13:48 mike25ro why didn't you use the same ... file.managed
13:48 mike25ro ?
13:48 mike25ro the same as in the first state: wkhtmltopdf
13:49 honza mike25ro: managed doesn't allow files that are in the filesystem - must be from master or http/ftp
13:49 honza mike25ro: or salt://
13:49 honza http://docs.saltstack.com/ref/states/all/salt.states.file.html#salt.states.file.managed
13:50 mike25ro ah right
13:50 mike25ro true
13:51 jslatts joined #salt
13:51 honza i guess i'll do another cmd to move it
13:52 honza and be done with it
13:52 mike25ro yeah you can do that... but .. weird..
13:52 mike25ro is redundant... to copy/move it...
13:52 JesseC honza: Try to upgrade to latest stable and see if that works.
13:52 mike25ro now you have made me really curious.
13:52 JesseC I believe that's 0.16.2
13:52 mike25ro he has the latest one
13:52 mike25ro stable?
13:52 mike25ro i have 0.16.0
13:52 JesseC not if he's on 0.16.0
13:52 honza JesseC: is that on the ppa?
13:53 JesseC It's latest stable on github and fedora repo
13:53 JesseC I don't use debian/ubuntu so not sure about those
13:54 JesseC The bootstrap script can pull from the github repo by tag
13:54 JesseC if not just for testing to make sure it's not a bug he is encountering
13:55 toastedpenguin joined #salt
13:55 aat joined #salt
13:57 mike25ro on debian .. the latest is 0,16,0
13:57 Gifflen joined #salt
13:57 JesseC The ppa isn't always right
13:57 JesseC https://github.com/saltstack/salt/releases
13:58 mike25ro honza: same for me... state.copy didn't work
14:00 honza JesseC: cloning from github
14:00 JesseC honza: you can use boostrap: curl -L http://bootstrap.saltstack.org | sh -s -- git v0.16.2
14:00 honza JesseC: same issue with 0.16.2
14:00 honza JesseC: yes, i did
14:01 JesseC ah cool. so that knocks out one possibility
14:01 honza https://github.com/saltstack/salt/issues/6440
14:02 mike25ro http://pastebin.com/NQyFmgRJ
14:02 mannyt joined #salt
14:02 honza 0.16.2 came out 4 days ago, that bug was cloned 6 days ago
14:03 JesseC The milestone on that bug is set to 0.17.0
14:03 mike25ro honza: .. then you can use cmd.run to copy the file to salt:// and then use file.manage...
14:04 JesseC mike25ro has the best workaround for that
14:04 honza JesseC: right, it was merged to the develop branch https://github.com/saltstack/salt/commit/4d28c1c24d5a3f5e18ea79100fdf862cf87f1b4b
14:04 honza let me try the develop branch just for fun
14:04 FreeSpencer joined #salt
14:04 mike25ro :)
14:06 honza dev branch won't even install
14:06 honza oh well
14:06 JesseC Now.. someone tell me how to run overstate on a masterless minion before my brain explodes. ;D
14:08 whit joined #salt
14:09 krak3n` joined #salt
14:14 opapo joined #salt
14:15 JesseC I really don't understand how not being able to reliably order certain states is an issue that only I have.
14:16 Khollowa_ joined #salt
14:21 mgw joined #salt
14:22 juicer2 joined #salt
14:24 [diecast] joined #salt
14:24 [diecast] joined #salt
14:24 chadhs joined #salt
14:30 krissaxton joined #salt
14:32 m_george|away joined #salt
14:32 ipmb joined #salt
14:33 mike25ro weird shit:
14:33 mike25ro cmd.run:
14:33 mike25ro - name: 'cp /tmp/source.txt /srv/salt/tmp/source.txt'
14:33 m_george left #salt
14:33 teskew joined #salt
14:33 mike25ro it throws an error
14:34 mike25ro http://pastebin.com/sThFKePc
14:34 mike25ro any ideas? it should be a simple copy on the master..
14:34 JesseC is /tmp/source.txt there?
14:34 mike25ro on the master yes
14:34 JesseC that's not going to check the master
14:34 mike25ro ah shit.. it tries to do it on the minion
14:34 JesseC thats a command for the minion to run locally
14:35 mike25ro yeah... true.. and ... hmm then how should i copy a file on the master .. from /tmp/source.txt to salt then from salt to the minion
14:35 mike25ro ?
14:36 JesseC no clue. I wonder if you could use this salt://../../tmp/soruce.txt
14:36 mike25ro hmm... let me try
14:36 JesseC depending on where your master salt directory is set
14:36 cnelsonsic joined #salt
14:36 mike25ro /srv/salt
14:37 JesseC then yeah just two
14:37 mike25ro nope .. not working
14:37 mike25ro damn
14:37 lvicks joined #salt
14:37 mike25ro it shoulbe so easy...
14:38 mike25ro damn... i have to make a bash .. to copy the file.. then run the salt 'salt2' state.sls files.file-copy
14:38 mike25ro not the best approach...
14:39 mike25ro it would be good... if you could also DO some things on the master... before... running the state on the minion...
14:39 JesseC Yeah, need a place to put in feature requests
14:39 mike25ro indeed
14:40 JesseC being able to order includes or require certain ones be executed before others is all I need, but it's impossible
14:40 mike25ro not even with if?
14:40 JesseC or a conspiracy, because when I mention it, this place goes dead
14:40 mike25ro haha i think so...
14:40 aat_ joined #salt
14:40 mike25ro i watched you mention that at least 5-6 times here today and yesterday
14:41 JesseC yeah lol, i've tried so many different methods
14:41 JesseC thought I had it with overstate until I realized that you can't run overstate without a master
14:41 mike25ro i am sure you did...
14:41 mike25ro does the ... highstate .. run on a periodical time?
14:41 mike25ro is it run by default?
14:41 DerekRBN nope
14:42 mike25ro i don't remember reading this
14:42 mike25ro so you have to do it via cron ... not a big deal
14:42 EugeneKay No; you need to use cron or Salt's built-in scheduler
14:42 dstanek joined #salt
14:42 mike25ro didn't read about that built-in scheduler.... i have to read the docs again :)
14:43 DerekRBN I use startup_states: highstate in my minion config so that when it boots it checks in
14:43 * mike25ro has to leave now...
14:43 mike25ro have a great / afternoon/evening etc
14:43 terminalmage joined #salt
14:44 al5d joined #salt
14:44 al5d hi there
14:44 mike25ro left #salt
14:46 JaredR joined #salt
14:47 kenbolton joined #salt
14:49 JesseC later
14:52 JaredR joined #salt
14:52 al5d i'm having trouble right now trying to set up a vagrant box, via salty-vagrant, with both master and minion. the goal is to be able to deploy a salt-master, provisioned via the minion. my problem is that i can't manage to have the minion key accepted by the master
14:56 bostonian joined #salt
14:57 al5d using the seed_master option in Vagrant file allows for the key to be registered, but I end up with 2 keys : one is named seed-${minion_id}.pub, is accepted, and the other one is unaccepted (althrough it's the same public key) and is named $minion_id
14:57 al5d anyone has a clue ?
14:58 StDiluted joined #salt
14:59 jaequery joined #salt
15:01 bostonian Hi all. I have a public and private IP for each machine on my salt network. How can I ensure salt prioritizes private IP networking to save bandwidth, with public IP as a fallback (like upon initial provision)?
15:02 JaredR Is it possible to use DNS to help solve that problem? I.e. when connected to the private network, DNS resolves addresses using the private network, and otherwise, via the public?
15:06 bostonian JaredR: hmm, that's a good idea. I'd have to set up my own DNS server, though.
15:06 alunduil joined #salt
15:08 jslatts joined #salt
15:08 forrest joined #salt
15:09 JesseC How do you add kwargs to something that supports it?
15:10 JesseC It doesn't compile when I just pop them in as kw = arg
15:10 forrest ?
15:10 JesseC for something like pkgrepo
15:10 JesseC Hey forrest, morning. :)
15:10 forrest I wrote an example for that using kwargs, let me see if I can find the gist
15:10 forrest morning
15:10 JesseC I'm testing the kwargs for adding the additional lines to the repo
15:12 forrest Did you try it like this?
15:12 forrest https://gist.github.com/gravyboat/a989c089ab2f84cbd6c5
15:12 JesseC I was using =, it just compiled with :
15:12 avienu joined #salt
15:13 JesseC one more error to figure out and then it should go through, it's saying my file isn't formed as a list, probably a typo somewhere
15:16 forrest so you were doing things like includepkgs = asdf ?
15:16 forrest as opposed to includepkgs: asdf
15:16 JesseC yes
15:16 forrest gotcha
15:16 JesseC check this out, https://gist.github.com/JesseC-/00b540c33d6f765d366b
15:16 JesseC The state "epel-key" in sls lnpp.repos.epel is not formed as a list
15:17 JesseC That's all correct as far as I can tell, I've used that exact item before
15:18 forrest can you chop the epel-key: line?
15:18 forrest see if maybe that's why it is griping?
15:20 JesseC yeah that was it
15:20 JesseC but that doesn't make much sense
15:20 JesseC you should be able to tag it
15:20 JesseC with an id right?
15:20 forrest I don't know for managed files
15:20 JesseC I used that exact line before
15:20 JesseC and it worked fine
15:20 forrest is it already included somewhere?
15:20 JesseC nope
15:21 JesseC Ok.. so the pkgrepo with kwargs worked, although the lines aren't in order
15:21 JesseC but I don't think that matters
15:21 forrest it shouldn't
15:23 aat joined #salt
15:24 dstanek joined #salt
15:27 lazyguru joined #salt
15:28 devinus joined #salt
15:30 carmony joined #salt
15:31 joeTSUNAMI joined #salt
15:34 JesseC forrest: as far as the other thing I was working on with ordering includes, or finding a way to order anything on a masterless minion, it's near impossible
15:34 JesseC forrest: overstate allows for the ordering of sls's, but can't be ran on a masterless minion
15:34 forrest JesseC, ahh ok, I was just gonna bring up overstate
15:34 JesseC forrest: I've pretty much given up on it and moved on to moving dependencies into individual states
15:35 forrest JesseC, That sounds pretty painful, but a solution is better than no solution when running that setup. Are you planning on implenting a master at some point?
15:35 JesseC forrest: not for my dev setup. I want it to be able to all be ran offline
15:35 forrest ahh ok
15:35 JesseC forrest: sitting with laptop in an airport without internet access and able to spin up dev environments and work
15:35 JasonSwindle JesseC:  What does your requires look like?
15:36 forrest JesseC, Yea I'm running two VMs locally so one is the master, the other the minion
15:36 JasonSwindle I was masterless up until just a week ago.  I have to get a master because I moved to peer configured items that *need* to talk to a master
15:36 JesseC JasonSwindle: I have a ton of requires, which ones do you speak of?
15:37 JasonSwindle Any of them. :)   The only require issues I ever ran into was when I update salt and I have a logic error
15:37 TheRealBill JasonSwindle: you've always had a master, you were just unaware of it before. ;)
15:37 JesseC Ah, well, if you use "include:" nothing can be required within it
15:38 JesseC in fact, nothign other than the sls you want to include can go under include
15:38 JasonSwindle JesseC:  I never use include…… never saw the reason for it.
15:38 JasonSwindle TheRealBill:  :)
15:38 JesseC It had to do more with organizing
15:38 JesseC I had dependencies by themselves that I needed ran before certain software was installed and compiled
15:39 JasonSwindle Yep, I have that as well.
15:39 carmony joined #salt
15:39 JesseC the includes were the the webserver/init.sls
15:39 JesseC in the^
15:42 JasonSwindle joined #salt
15:42 forrest Hah
15:42 JasonSwindle darn IRC
15:42 costi joined #salt
15:43 nliadm is 0.16.2 a "blessed" version?
15:43 nliadm it's not in the Ubuntu ppa
15:43 JasonSwindle Yep
15:43 JasonSwindle It is in the GIT Tag
15:45 Slipo joined #salt
15:46 FreeSpencer joined #salt
15:47 nliadm it's not packaged yet though?
15:47 JasonSwindle Packages are a sore spot at times
15:47 JasonSwindle Salt moves fast, packages do not
15:47 LucasCozy hellome, I try to find a way to debug my problem. I have a file 'managed' and the state failed because 'Comment:   Failed to change group to root'
15:47 LucasCozy Is there a log for finding more information, debug info?
15:48 JasonSwindle /var/log/salt/*
15:49 LucasCozy JasonSwindle, didn't find info on the 2 host (minion and master)
15:49 nliadm there's not a git hook that triggers the debian build scripts when a tag is pushed?
15:49 JasonSwindle Odd
15:49 LucasCozy Thinking about a kind of -v or -vvv mode
15:50 JasonSwindle nliadm:  Not sure; I always deploy with git tags and never packages.
15:53 LucasCozy The only information refleting the problem in the log is :"37:10,737 [salt.state       ][ERROR   ] No changes made for /etc/pve/storage.cfg"
15:53 LucasCozy This is my managed file.
15:53 forrest ON the note of the bootstrap, for those of us on centos/RHEL: https://github.com/saltstack/salt-bootstrap/issues/190
15:53 forrest s0undt3ch updated it
15:53 forrest on his branch
15:53 forrest he forgot to put fedora in there though
15:54 s0undt3ch_ forrest: fedora also needs the epel switch?
15:54 forrest I'd imagine so
15:54 forrest unless fedora has the test repo enabled by default?
15:54 dstanek joined #salt
15:54 forrest I don't know, I'd never run fedora on a server I was intending to use for anything other than a desktop
15:55 s0undt3ch_ forrest: dam, that info would be pretty cool to have before I merge that
15:55 jschadlick1 joined #salt
15:55 JesseC I'd just recommend against using the repo at all and stick to using git and tags with the bootstrap
15:55 JesseC then you know exactly what you're getting
15:55 s0undt3ch_ JesseC: I don't disagree :)
15:55 forrest yea I don't disagree either
15:56 abe_music joined #salt
15:56 forrest That reminds me that I forgot to look at the RHEL functions this weekend :\
15:56 JesseC and if there's an issue like I had in 0.16.2 then you can easily just use another version until its fixed by just changing the tag you use
15:56 Corey If I have 5 files, how do I sanely group them in a state file so I can just have one requires statement?
15:56 Corey Er, five file directives.
15:56 forrest can you post a gist Corey?
15:56 Corey Been a while since I played with this, I'm trying to build something cleaner. :-)
15:56 Corey Sure, one sec.
15:57 Corey Only I'll use a pastebin, because I'm old like that.
15:57 forrest whatever
15:58 Corey http://pastebin.com/LWiMyPmk
15:58 forrest So Corey, those files require each other?
15:58 Corey Basically I want to require all three of those files for another state, without three distinct requires statements.
15:59 forrest so you could do something like making file2 require file1, and then file3 require file2, and then in the other state, just require file3
15:59 forrest because you're using an include in your other state right?
16:00 JasonSwindle Corey:  This? http://docs.saltstack.com/ref/states/all/salt.states.file.html?highlight=file#salt.states.file.recurse  Recurse?
16:00 forrest no
16:00 Corey In theory, but I thought there was a cleaner way to do it involving a broader state name that grabs in the three files under one "name" I can depend.
16:01 forrest I honestly don't know enough to tell you, I'd think an include would do that
16:04 forrest Hey s0undt3ch_, do you have plans to build out the RHEL section of the bootstrap at some point?
16:04 forrest it'll fail if you try to set it up on a clean system currently
16:05 s0undt3ch_ forrest: well, should not fail. Can you please submit a ticket with all data you can provide please?
16:05 forrest yea sure, it just fails because someone was 'kind' enough to put jinja2-26 in the epel repo, and jinja2 lives in the optional repo for RHEL.
16:06 forrest so it freaks and can't install jinja2, and then if you install jinja2-26 yourself, then salt fails to install because it specifically requires the package named jinja2
16:06 forrest it's dumb
16:06 dthom91 joined #salt
16:06 s0undt3ch_ forrest: ah, that's using the salt epel package?
16:07 forrest yea
16:07 s0undt3ch_ forrest: well, the script should install the proper deps
16:07 s0undt3ch_ forrest: but that's a packaging issue
16:07 forrest yea it works for every system but rhel
16:07 forrest oh yea I don't disagree
16:07 forrest but they refused to fix it
16:07 forrest https://bugzilla.redhat.com/show_bug.cgi?id=844710
16:07 forrest was already brought up there.
16:07 s0undt3ch_ forrest: anyway, file that ticket, and I'll point it out to the packager to see if we can get around that
16:08 forrest yea sure. If not I'l try to work on the rhel component to just enable the optional repo, I just didn't have time this weekend.
16:13 it_dude joined #salt
16:14 JesseC Hmm. How would you run mysql_secure_installation through salt
16:15 Lue_4911 joined #salt
16:16 juanlittledevil joined #salt
16:17 racooper can it be run non-interactively?
16:17 JesseC I don't think so
16:17 forrest s0undt3ch_, https://github.com/saltstack/salt-bootstrap/issues/198
16:17 JesseC I see examples using expect
16:17 JesseC and a shell script
16:21 FreeSpencer joined #salt
16:21 racooper you could always disassemble the secure script and just run the SQL directly....
16:22 costi joined #salt
16:23 sinh whois jessec
16:23 sinh hrm
16:23 sinh stupid me
16:23 JesseC I'm me. :D
16:23 sinh hehe sorry
16:24 sinh thought your nick looked familiar
16:24 JesseC I'm in almost every channel on freenode, ha
16:24 sinh heh that might be why then :)
16:24 JaredR joined #salt
16:28 whit joined #salt
16:30 matanya joined #salt
16:31 jschadlick1 Hey all, I am having an issue with using the Overstate system. When I try to run salt-run state.over, I get Function 'state.over' is unavailable. It looks like the state.over runner isn't loading. Any ideas on how to fix this?
16:39 afx_hero joined #salt
16:42 forrest which version of salt are you running jschadlick1?
16:43 jalbretsen joined #salt
16:44 jschadlick1 16.0
16:45 forrest are you running it out of a virtualenv? Or straight on the system
16:45 jschadlick1 on the system
16:45 forrest as dumb as it sounds, you're running this as root on the master right?
16:46 jschadlick1 Well I'm running as a  privileged user on the master
16:46 JesseC Ok. The salt pkg installer somehow skips certain things that happen when you install a package such as mysql.
16:46 it_dude joined #salt
16:46 JesseC It doesn't create the mysql user when ran via pkg.installed on salt
16:47 forrest I'm not really sure then jschadlick1
16:47 JesseC but it creates the user when I manually install using yum install
16:47 jschadlick1 Yeah, It sure is strange, It seems like the only runner that isn't installing
16:47 forrest very odd
16:48 troyready joined #salt
16:54 whit joined #salt
16:54 dave_den joined #salt
16:58 dthom91 joined #salt
17:01 JesseC Has anyone else had issues installing mysql-server with pkg.installed where it doesn't create the mysql system user?
17:05 aleszoulek joined #salt
17:05 JesseC being a bug magnet is truly annoying
17:05 druonysuse joined #salt
17:05 druonysuse joined #salt
17:10 dthom91 joined #salt
17:12 JasonSwindle joined #salt
17:15 KyleG joined #salt
17:15 KyleG joined #salt
17:16 napperjabber joined #salt
17:16 jacksontj joined #salt
17:20 dthom91 joined #salt
17:21 auser joined #salt
17:22 kstaken joined #salt
17:23 alunduil joined #salt
17:25 frosty996 joined #salt
17:26 dthom91 joined #salt
17:27 jslatts joined #salt
17:27 bhosmer joined #salt
17:29 frosty996 so, I'm having trouble installing a custom kernel package when I'm running a masterless minion with 0.16.0-8234~precise1.  It used to work, but seems to have stopped after recent upgrade: https://gist.github.com/jfrost/6144255
17:29 dstanek joined #salt
17:30 FreeSpencer joined #salt
17:31 krissaxton joined #salt
17:33 forrest I really hate that cent/rhel5 are python 2.4
17:33 racooper sounds like time to upgrade to CentOS 6...
17:33 forrest Does salt work without issue if you install the python26 RPM on rhel 5?
17:34 forrest I'm having that argument with my coworkers already :P
17:34 pdayton left #salt
17:34 devinus joined #salt
17:35 Psi-Jack_ joined #salt
17:35 JesseC I think you can have multiple versions of python installed
17:35 racooper forrest,  have you checked EPEL for python26 packages?
17:35 forrest yea I know you can have multiple versions
17:35 aat joined #salt
17:35 forrest There is one available racooper, it's in the optional/extras though, and enabling those is another... discussion I'm having with my coworkers
17:36 ml_1 joined #salt
17:37 ml_2 joined #salt
17:37 forrest It's the referencing that I'm curious about JesseC. I don't know if you have to direct it to use python26. I'll boot a rhel 5 VM and check, but didn't want to do so if someone knew.
17:37 dthom91 joined #salt
17:37 s0undt3ch_ joined #salt
17:38 JesseC I'd be interested to know what you find in case I run into that one day.
17:39 s0undt3ch joined #salt
17:40 JesseC You will most likely have to direct it to use it though
17:40 forrest yea that's what I figured
17:40 forrest but I'm curious to know if the bootstrap has the logic to handle it
17:40 JesseC ls
17:40 JesseC oops
17:40 forrest haven't looked through yet though
17:40 forrest ls, no ll? pssssssh
17:40 costi joined #salt
17:41 JesseC not when I'm just looking for a name. :)
17:41 JesseC ls -lAh
17:41 JesseC > ll
17:44 dthom91 joined #salt
17:49 VivekVC joined #salt
17:50 diegows joined #salt
17:52 aleszoulek joined #salt
17:52 Thiggy joined #salt
17:54 Thiggy The behavior of runas on states.cmd.run is tripping me up. Can someone unmuddy my waters?
17:56 dthom91 joined #salt
17:56 costi joined #salt
17:58 Ryan_Lane joined #salt
17:59 felixhummel joined #salt
18:01 helderco joined #salt
18:02 efixit joined #salt
18:02 Gifflen_ joined #salt
18:03 DerekRBN I think runas is a cmd.call param. are you using it in a sls file?
18:03 DerekRBN might be wrong about that
18:04 Thiggy Yeah. in an sls
18:05 Thiggy The only mention on http://docs.saltstack.com/ref/states/all/salt.states.cmd.html is "all other arguments(cwd, runas, ...) allowed by cmd.run are allowed here, except that their effects apply only to the commands specified in onlyif and unless rather than to the function to be invoked." but the docs below for cmd.run don't actually list runas as an argument.
18:05 Thiggy So I have a confused.
18:05 DerekRBN if you want to run a command as a user other then root you can use the - user: (username)
18:05 DerekRBN I remember being tripped up by that as well and changing it to user rather then runas did the trick
18:06 Thiggy Ok, yeah I think I've been down that road twice now. Everytime I come back to the docs I get lost.
18:06 Thiggy Thanks
18:08 mannyt joined #salt
18:11 timl0101 joined #salt
18:11 aat joined #salt
18:12 frosty996 ah hah, salt wanted me to add ":amd64" to the end of the package name.
18:14 Ryan_Lane joined #salt
18:18 aculich joined #salt
18:18 kermit joined #salt
18:19 berto- joined #salt
18:23 JaredR joined #salt
18:24 nineteeneightd joined #salt
18:25 jacksontj joined #salt
18:26 aat joined #salt
18:26 whit joined #salt
18:28 dave_den joined #salt
18:29 carmony joined #salt
18:31 Gifflen joined #salt
18:32 krissaxton joined #salt
18:32 timl0101_ joined #salt
18:33 ipmb joined #salt
18:33 timl0101_ joined #salt
18:36 defunctzombie_zz joined #salt
18:37 defunctzombie joined #salt
18:37 helderco joined #salt
18:38 rmt joined #salt
18:40 helderco joined #salt
18:41 helderco joined #salt
18:41 kaptk2 joined #salt
18:42 aleszoulek joined #salt
18:43 frosty996 any idea when 0.16.2 might make it into the PPA?
18:43 JesseC You would probably have to ask whoever controls the PPA
18:44 JesseC I think they just submit it and then have to wait
18:44 timl0101 joined #salt
18:46 juanlittledevil joined #salt
18:49 mmilano joined #salt
18:52 FreeSpencer joined #salt
18:54 it_dude joined #salt
18:57 giantlock joined #salt
18:57 devinus joined #salt
18:58 timl0101 joined #salt
19:00 aat joined #salt
19:01 linjan joined #salt
19:02 helderco joined #salt
19:02 Gifflen_ joined #salt
19:02 juicer2 joined #salt
19:03 qba73 joined #salt
19:03 Ahlee I have a cmd.wait watchin multiple files, is there any way to get that state to run one per time?  Right now if multiple files are modified, it only runs the state once, rather than once per modified file
19:05 scottvdp joined #salt
19:06 Gifflen joined #salt
19:06 ipmb anybody have a good state for setting the hostname on a minion? (updating /etc/hosts and /etc/hostname)
19:08 Lue_4911 joined #salt
19:09 timl0101 joined #salt
19:09 Xeago joined #salt
19:09 aranhoide joined #salt
19:10 doublerr joined #salt
19:12 dstanek joined #salt
19:15 timl0101_ joined #salt
19:17 timl0101 joined #salt
19:18 Ahlee wait, according to https://github.com/dtucny/salt/commit/6ad642a748e6a39f490e214c6310755cca57ebe8, tcp keepalive is enabled in salt by default? so I don't need to turn it on?
19:18 * frosty996 just realized he wasn't using the stable PPA on this vagrant
19:18 frosty996 *head desk*
19:18 Ahlee er, sorry,
19:19 Ahlee https://github.com/saltstack/salt/pull/3012
19:19 aranhoide joined #salt
19:22 Ryan_Lane joined #salt
19:25 l0x3py joined #salt
19:26 matanya joined #salt
19:28 Corey This is driving me mad. Four salt minions. All but one can talk to the master, this "special" node cannot. I've removed and reinstalled, blown away /var/cache/salt, it can telnet to the master on 4505, selinux is disabled.
19:29 Ryan_Lane joined #salt
19:29 Corey The same 10 gig fabric, same subnet.
19:30 devinus joined #salt
19:30 Corey Not seeing the minion binding to a port in netstat.
19:32 krissaxton joined #salt
19:32 Corey SOn of a ... host /etc/hosts. Durh.
19:37 oz_akan_ joined #salt
19:41 krissaxton joined #salt
19:42 juanlittledevil joined #salt
19:43 hwang251 joined #salt
19:43 hwang251 Hi, I have a question concerning getting a service to watch a file
19:44 hwang251 I have a service set to watch two files, but I keep getting "The following requisites were not found"
19:45 hwang251 so my service never starts
19:45 JesseC I want some of that 10G
19:46 akoumjian hwang251: require/watch statements do not watch actual files, they watch other states such as a "file.managed" state. Then when you execute state.highstate, the watch command will see if file.managed changed anything, and your service.running state will restart if it's watching it
19:46 akoumjian hwang251: There is no live file watcher built into salt
19:46 hwang251 thanks
19:47 akoumjian This needs to be somewhere in the require / watch docs ^^ whiteinge
19:47 akoumjian it's the third time I've explained that in a week
19:48 akoumjian Using a nice big .. warning::
19:48 toastedpenguin can you use bitbucket for a git backend with salt?
19:48 toastedpenguin I suppose it shouldnt matter
19:48 toastedpenguin but figured I would ask just incase
19:49 ipmb yep, it's all just git under the hood
19:49 dave_den What's the dorrect usage of 'use'? http://docs.saltstack.com/ref/states/requisites.html#use
19:49 dave_den s/do/co/
19:51 dave_den i guess i should just try it… assuming it just sets the defaults of any arguments of the referenced ID, and then any args i specify in the same function then further overrride the 'use' defaults
19:51 drawsmcgraw TIL about the 'use' requisite
19:53 avienu joined #salt
19:53 jschadlick joined #salt
19:53 drawsmcgraw dave_den: I'm thinking it looks something like this -> http://pastebin.com/fSFDyTLS
19:53 drawsmcgraw Anybody good with file.sed ?
19:54 drawsmcgraw Specifically multiline matches?
19:54 drawsmcgraw I'm trying to block-comment a section in a file. Also trying to modify several contiguous lines later in the file.
19:56 Slipo joined #salt
19:56 StDiluted sed is really for Simple EDits
19:57 StDiluted generally not a multi line edit
19:57 drawsmcgraw StDiluted: Bummer. Any advice on attacking it from a different angle, then?
19:58 StDiluted drawsmcgraw: you don't want to pull the whole file under management?
19:58 StDiluted or you want to maintain something else's edits
19:58 aranhoide left #salt
20:00 drawsmcgraw StDiluted: Maintain something else's edits. As part of this system deployment, one of the steps is "comment this section, uncomment that section, replace these values for those values"
20:01 krissaxton left #salt
20:01 david_a joined #salt
20:02 dave_den drawsmcgraw: can augeas handle it?
20:03 drawsmcgraw dave_den: That's the second time I've heard about augeas... I imagine it could (it's not terribly complicated, the edits)
20:04 drawsmcgraw Though augeas is distinct from Salt and there's no integration there, right?
20:04 dave_den http://docs.saltstack.com/ref/modules/all/salt.modules.augeas_cfg.html
20:04 drawsmcgraw oh!
20:05 drawsmcgraw dave_den: Thanks! I've got some reading to do
20:07 aat joined #salt
20:08 jschadlick joined #salt
20:08 jessep joined #salt
20:18 alunduil joined #salt
20:20 auser joined #salt
20:23 zooz joined #salt
20:23 jheise can you use data from grains inside a module ?
20:24 kenbolton joined #salt
20:24 it_dude joined #salt
20:25 jacksontj joined #salt
20:25 kermit joined #salt
20:26 matanya joined #salt
20:27 ipmb jheise: https://github.com/saltstack/salt/blob/develop/salt/modules/apt.py#L45
20:28 ipmb docs http://docs.saltstack.com/ref/modules/#grains-data
20:29 jheise ipmb: thx
20:30 jheise now to figure out why my code is crashing
20:33 mannyt_ joined #salt
20:38 rspectre joined #salt
20:39 aat joined #salt
20:48 oz_akan_ joined #salt
20:49 kstaken joined #salt
20:50 matanya joined #salt
20:59 it_dude joined #salt
21:01 krissaxton joined #salt
21:03 juanlittledevil joined #salt
21:09 rspectre joined #salt
21:09 devinus joined #salt
21:13 aculich joined #salt
21:17 juanlittledevil joined #salt
21:29 dthom91 joined #salt
21:33 dthom911 joined #salt
21:33 bhosmer joined #salt
21:33 carmony joined #salt
21:36 kenbolton joined #salt
21:39 g3cko joined #salt
21:39 errr If I have a url in my doc string that is 99 chars long, should I break it up somehow so its 72-80 or is leaving it 99 fine?
21:40 errr I guess not everything can be pep 8 compliant when it comes to that kind of thing..
21:41 UtahDave joined #salt
21:41 errr also I have the same issue in the doc string for a function comment, once the command example is given its like 110 chars
21:44 oz_akan_ joined #salt
21:48 kenbolton joined #salt
21:48 JasonSwindle left #salt
21:51 forrest errr, why not just use triple quotes?
21:51 nineteeneightd joined #salt
21:52 errr forrest: Im not sure I understand how that answers my question
21:52 forrest if you're using triple quotes it can be any number of lines
21:53 forrest ''' characters 1-76 on first line, then 77-99 on second line'''
21:53 errr hmm, maybe I didnt exaplin my self good
21:53 forrest oh your url is too long
21:53 forrest I gotcha
21:53 forrest sorry
21:53 errr yeah
21:53 forrest that's a long url
21:54 auser joined #salt
21:54 forrest I don't know what the official pep-8 statement is for that sort of thing, I'd probably just leave it.
21:54 errr indeed. I was tempted to use a url shortner, but I figured it would be better to use the actual url
21:54 errr ok
21:54 g3cko joined #salt
21:54 kenbolton joined #salt
21:54 forrest http://stackoverflow.com/questions/10739843/how-should-i-format-a-long-url-in-a-python-comment-and-still-be-pep8-compliant
21:54 dave_den if i write a salt runner that can be called from peer_runner, is there a way to tell what minion called the runner?
21:55 chrisgilmerproj joined #salt
21:55 errr cool thanks!
21:56 forrest errr, I can copy and paste with the best of 'em!
21:56 errr ;)
21:56 EnTeQuAk joined #salt
21:57 helderco joined #salt
21:57 JaredR joined #salt
21:58 whiteinge auser: pint
21:58 whiteinge or ping, rather
21:58 auser pong
21:58 whiteinge though i wouldn't turn down a pint...
21:58 StDiluted mmm, pint
21:59 whiteinge auser: i installed saltcli and have a couple Qs
21:59 cewood joined #salt
21:59 auser sure
21:59 dstanek joined #salt
21:59 auser we're working on that today, actually
21:59 auser constantly
22:00 whiteinge (i dig the code, btw.) what's your overall vision for the project?
22:00 auser thanks whiteinge.
22:00 chrisgilmerproj left #salt
22:01 auser It's a few points
22:01 auser first: I like to manage my cluster from my local machine, not ssh'd into the master
22:02 krissaxton joined #salt
22:03 auser second, it's nice to edit states and sync them in a single command
22:03 doublerr joined #salt
22:05 iquaba joined #salt
22:05 SEJeff_work auser, what is the git for that command?
22:05 auser git?
22:06 auser saltcli aws highstate
22:06 SEJeff_work saltcli. I'd like to look at it
22:06 jacksontj joined #salt
22:06 cewood joined #salt
22:07 auser ah
22:07 auser https://github.com/auser/saltcli
22:07 auser it's still a bit of a mess, trying to clean it up, but it works
22:07 whiteinge auser: is it safe to say saltcli will always be working with a remote salt installation?
22:08 auser as opposed to a local one, whiteinge?
22:08 SEJeff_work auser, I've been wanting to use cmd and create an interactive salt shell
22:08 SEJeff_work Mind if I play with doing that ontop of this?
22:08 whiteinge auser: yeah
22:08 auser not at all SEJeff_work
22:08 auser yeah, likely it will always communicate to remote clusters
22:09 * whiteinge nods
22:10 whiteinge thanks for the run-down
22:12 kenbolton joined #salt
22:13 auser sure man, let me know if you need/want some help getting up on it
22:14 whit joined #salt
22:16 kermit joined #salt
22:19 blee_ joined #salt
22:20 kenbolton joined #salt
22:31 dstanek joined #salt
22:37 kenbolton joined #salt
22:37 robertkeizer joined #salt
22:40 KyleG Does anybody here know if I will run into conflicts giving permissions to multiple RabbitMQ vhosts? https://salt.readthedocs.org/en/latest/ref/states/all/salt.states.rabbitmq_vhost.html
22:40 KyleG I have two RMQ users who both need access to a vhost, and I'm wondering what the best way to do that is
22:40 KyleG multiple RMQ users* (1st sentence)
22:40 jessep joined #salt
22:45 KyleG I'm guessing it'll be this way: https://github.com/saltstack/salt/issues/962#issuecomment-9992222
22:46 doublerr joined #salt
22:46 UtahDave seems reasonable, KyleG.
22:52 juanlittledevil joined #salt
22:53 cwright joined #salt
22:56 jacksontj joined #salt
22:58 forrest Is there any equivalent to http://docs.saltstack.com/topics/tutorials/gitfs.html for svn?
23:00 UtahDave forrest: no, not yet.  We haven't had anyone ask for it yet.  Is that something you'd use?
23:01 forrest UtahDave, down the road I probably would, we're using SVN at this shop and it's pretty tough to get people to switch.
23:01 forrest I'm still proof of concepting right now, but eventually I'd like to have it so I can sync dev/qa/prod straight from the repo, so it gets applied in dev, if that looks good, I can check it into the qa branch, then apply to those machines, and then the same thing for production.
23:02 forrest that way I can enable the developers a bit more.
23:02 krissaxton joined #salt
23:02 _mzito___ joined #salt
23:03 Kamal_ joined #salt
23:03 avienu joined #salt
23:04 kiorky joined #salt
23:04 forrest UtahDave, honestly the biggest hurdle for me right now is the fact that we are using satellite, which MIGHT get puppet support at some point. So trying to sell something that isn't integrated in is tough.
23:04 UtahDave forrest: right.  If you open an issue on the Salt github repo requesting that feature that will help with prioritization.
23:04 rnts joined #salt
23:05 forrest UtahDave, alright I'll add it.
23:05 Politoed joined #salt
23:05 pygmael joined #salt
23:05 UtahDave thanks!
23:06 doublerr joined #salt
23:06 dave_den what type of hash is this on this line? https://github.com/saltstack/salt/blob/develop/salt/grains/core.py#L1245
23:06 dave_den md5?
23:07 intchanter joined #salt
23:07 terminalmage dave_den: http://docs.python.org/2/library/functions.html?highlight=hash#hash
23:07 forrest Is there a way when creating an issue to mark it as a feature as opposed to a bug UtahDave?
23:08 dave_den terminalmage: ah, i was looking at the hashlib docs. derp
23:08 terminalmage forrest: yeah there is, at least for us... when creating issues I have the option to tag it as a feature request or a bug
23:08 jslatts joined #salt
23:08 UtahDave forrest: On the right side do you see a list of labels?  I'm not sure if that's just an option for admins
23:09 terminalmage might not be there though if you're not a member of the organization on github
23:09 forrest yea only for admins
23:09 aat joined #salt
23:09 UtahDave If you don't, just mention it in your email and we'll add the label for you
23:09 jschadlick Heya, what is the syntax for using runners in an overstate?
23:09 forrest will do
23:09 terminalmage dave_den: yeah I had to search myself
23:09 ninkotech joined #salt
23:11 dave_den just wondering how reliable the server_id grain is for uniquenesss/likeliness of collisions
23:11 forrest UtahDave, could you please mark this as a feature? https://github.com/saltstack/salt/issues/6528
23:12 kenbolton joined #salt
23:16 jschadlick Is there a way to call runners within an overstate? I can't seem to get the syntax correct.
23:18 UtahDave forrest: marked.  Thanks!
23:18 dave_den jschadlick: i believe you have to use the peer_run interface, then use module.publish function, but i am not sure. i just started playing with custom runners today
23:18 forrest are you talking about something like this jschadlick? http://docs.saltstack.com/topics/reactor/index.html
23:18 forrest UtahDave, great thanks!
23:18 forrest there's an example that uses an overstate and a runner about 50% down the page
23:19 UtahDave jschadlick: yeah, I'm not sure you can call runners directly from an overstate.  Let me ask.
23:20 jschadlick forrest: I tried "manage_up:
23:20 jschadlick runner.manage.up" and it tries to parse it like a function, not a runner, as it wants a targeting match
23:20 forrest ahh ok
23:21 oz_akan_ joined #salt
23:23 lyddonb_ joined #salt
23:23 rava joined #salt
23:24 UtahDave jschadlick: Yeah, the overstate only supports states and functions.  We need to add in runners, though.  I'm going to open an issue on that right now
23:24 rava are there any projects that handle data bag like functionality? ie, saving pillar data encrypted on disk, and decrypted only on the minion?
23:25 rava (apologies if this is the millionth time that's been asked, not pulling anything up via google fu)
23:25 forrest rava, https://github.com/saltstack/salt/issues/4546
23:25 jschadlick UtahDave: Thanks for checking. That functionality would be great :)
23:25 jslatts joined #salt
23:26 forrest I don't know if that answers your question at all rava, but at least it compares it to the data bags
23:26 rava forrest: thanks, i read that issue and it's closed with no real answer.
23:27 UtahDave jschadlick: Ok, I've opened an issue here:https://github.com/saltstack/salt/issues/6531   and added it to the 0.17.0 milestone.
23:27 rava forrest: i figure it wouldn't be too difficult to write something up in the renderer to look for a key file or what not and then decrypt what's been rendered after having grabbed the pillar data
23:28 rava i just didn't want to spend cycles someone else likely did better :)
23:28 UtahDave rava: Have you thought this through? The master can tell the minion to just send back whatever data was decrypted by the minion.
23:28 ninkotech joined #salt
23:28 jschadlick UtahDave: you guys rock, looking forward to it!
23:28 forrest rava, Yea I understand what you mean. I guess I understood techhat's comment, as it seemed to elude to what you wanted to do since all the data is passed through encrypted.
23:28 forrest err misunderstood
23:28 UtahDave thanks, jschadlick! we appreciate your help!
23:30 rava forrest: yeah, but the point of never having anything unencrypted on the server seems to have been missed in the discussion.
23:35 rmurley joined #salt
23:36 g3cko joined #salt
23:38 rmurley left #salt
23:42 UtahDave rava: well, right now you could send down the contents of an encrypted file using file.managed, and then decrypt it however you want on the minion.
23:43 dthom91 joined #salt
23:45 avienu joined #salt
23:47 EnTeQuAk Hey there, I am playing around with salt-cloud, specifically spawning a complete new salt-tree (one master, multiple minions), I use https://salt-cloud.readthedocs.org/en/latest/topics/misc.html#setting-up-new-salt-masters to spawn a master but how would I reference "the created master dns" in all minion-configs? Does this only work by first spawning the master and then creating the minions and adapting the config everytme?
23:48 diegows joined #salt
23:49 UtahDave EnTeQuAk: If you have your dns point the dns name "salt" to your new salt master, then the other minions will look for it
23:49 rava UtahDave: aye, but not what i'm trying to accomplish. i want to reference the encrypted data like any other pillar data. the reason being is we've grown accostumed to keeping the entire infrastructure configuration in source control, including credentials as encrypted strings.
23:50 UtahDave Otherwise, yes, you'll probably have to create your new master first, then get it's IP and set the minions to connect to it
23:51 UtahDave rava: We don't have a direct implementation of that yet.  You might consider putting your credentials in a separate private git repo and use a git external pillar for those items.
23:51 EnTeQuAk UtahDave, thanks a lot! Sounds good, the dns solution won't work though (I spawn multiple new salt-setup fleets as I am creating new fleets for stress tests)
23:51 [diecast] joined #salt
23:52 EnTeQuAk UtahDave, so creating the master first and then the minions is the way to go, thanks!
23:53 UtahDave Yeah, I think that's your best bet right now.
23:53 jschadlick left #salt
23:55 rava UtahDave: i thought about that aswell. i'll see how much time it would take to get something going in the render pipeline
23:55 UtahDave rava: cool.  We're not against having a feature like that. we just want to make sure it's implemented thoughtfully.
23:56 rava UtahDave: i can dig it. the sanity behind what gets merged and what doesn't is part of the attraction :D

| Channels | #salt index | Today | | Search | Google Search | Plain-Text | summary