-
Notifications
You must be signed in to change notification settings - Fork 3
Salt configuration
Written in YAML files, located in /etc/salt/master and /etc/salt/master.d/
Master configuration: /etc/salt/master
Master configuration overrides: /etc/salt/master.d/myoverrides.conf
Minion configuration: /etc/salt/minion
Minion configuration overrides: /etc/salt/minion.d/myoverrides.conf
Overrides require .conf suffix, otherwise they are not included and nothing is logged.
Defined using *.sls files, located in state directories listed in file_roots configuration option (/srv/salt/ by default).
The state directories are also called State Tree
Example of state file contents:
funny_user_setup: # state ID
user.present: # <state module>.<function>
- name: cool_guy # <function's> arguments
- fullname: Cool Guy Jr
- shell: /bin/bash
- home: /home/cool_guy
Given the above file_roots configuration this state file must be located in /srv/salt/the_state.sls or /srv/salt/the_state/init.sls,
(the init.sls is treated as parent directory).
The sls filename cannot contain dots (other than suffix .sls). Filename with dots is expanded by salt as directories, e.g.,
the_state.something.sls will be understood as /srv/salt/the_state/something.sls.
When both /srv/salt/the_state.sls or /srv/salt/the_state/init.sls exist, the the_state/init.sls is ignored.
By default the sls file represents python dictionaries, lists, strings and numbers only.
Salt also requires special file to exist in top level of State Tree. This special file is responsible for matching states to actual machines.
It is called top.sls, example:
base:
'machine':
- the_state
For more information about Top File structure and state definition refer to Targeting and Top file
file_roots configuration contains environment specification, in order to specify multiple environments list them with their directories containing states:
file_roots:
base:
- /srv/salt/base
dev:
- /srv/salt/dev
It is possible to specify directories multiple times in order to 'reuse' some states from other environments:
file_roots:
base:
- /srv/salt/base
dev:
- /srv/salt/dev
- /srv/salt/base
In order to create your own states, put them in _states under State Tree root. This directory is configured to be synchronized
to minions upon state.highstate or saltutil.sync_all calls.
Defined in similar way as state files, located in directories listed in pillar_roots configuration option.
There is no enforced pillar data syntax, given default renderer the pillar must be just provided as YAML file.
The top.sls file is also expected to exist in pillar_roots top directory.
Example pillar data file:
some_user_data:
mail: cool_guy@o2.io
home_dir: /home/cool_guy
Documentation refers to custom pillars as external pillars.
It is possible to extend Pillar subsystem to fetch data from arbitrary sources all that is required is to implement:
def ext_pillar( minion_id, pillar, *args, **kwargs ):
...
return pillar_dict
The external pillar must be configured in master configuration first. Some already existing custom pillars deserve special mentions.
ext pillar: file_tree
File becomes the value of key
Under the root_dir you must have either hosts/minion_id folder or nodegroups/nodegroup folder
Data is available to matching hosts.
Example configuration:
ext_pillar:
- file_tree:
root_dir: /path/to/root/directory
keep_newline:
- files/testdir/*
Salt modules are 'wrapped' within special dunder dictionaries. These special dictionaries provide access to Salt different modules.
| Dictionary name | Available in | Information |
|---|---|---|
| __OPTS__ | Loader modules | configuration file contents |
| __SALT__ | Execution, State, Returner, Runner, SDB modules | execution modules |
| __GRAINS__ | Execution, State, Returner, External Pillar modules | minion grains data |
| __PILLAR__ | Execution, State, Returner modules | pillar data |
| __CONTEXT__ | Execution, State modules | all-purpose dict, that exists during all state runs |
Jinja2+YAML:
apache:
pkg.installed:
- name: {{ __salt__['pillar.get']('pkgs:apache', 'httpd') }}
{% for mnt in __salt__['cmd.run']('ls /dev/data/moose*').split() %}
/mnt/moose{{ mnt[-1] }}:
mount.mounted:
- device: {{ mnt }}
- fstype: xfs
- mkmnt: True
{% endfor %}
All of the above configuration samples assumed filesystem to be used as primary sls storage.
Actually fileserver is also a Salt module.
Thus it is possible to create your own (place it in _fileserver directory under State Tree root).
In order to enable different fileserver, switch them on in master configuration:
fileserver_backend:
- roots
Enabled with:
fileserver_backend:
- gitfs
Allows to pull state and pillar definitions from git repositories.
It is very easy to create your own Salt modules or even alter existing ones. All of the module changes must be synchronized
to minions prior to use (this happens automatically only for state.highstate call). By default, extensions must be placed in directories in State Tree
root, following naming convention: _<module_type>.
It is also possible to define custom extensions in different places, given proper extension_modules configuration.
Anything from salt module can be customized.
- General
- OS
- Networks
- Configuration
- Protocols
- Link layer
- Sockets
- Routing
- Tunneling
- Debugging
- LoRa
- Virtualization
- Infrastructure as a code
- Desktop environments
- Monitoring
- Benchmarking