chef - [chef] Re: Re: Re: Re: RE: Re: App cookbooks

First login ?
Lost password ?

Subscribers: 1946
Owners
Bryan McLellan
Joshua Timberman
Nathen Harvey
Seth Chisamore
Serdar Sutay

Subscribe
Unsubscribe
Info
Archive

Post

RSS
Shared documents

General discussion about Chef

[chef] Re: Re: Re: Re: RE: Re: App cookbooks

From: Lamont Granquist < >
To:
Subject: [chef] Re: Re: Re: Re: RE: Re: App cookbooks
Date: Mon, 06 Jan 2014 07:53:34 -0700

On 1/6/14 7:04 AM, Zac Stevens wrote:

" type="cite">

On Sun, Jan 5, 2014 at 8:26 PM, Lamont Granquist < " target="_blank"> > wrote:

I keep hoping that someone in the Chef community would start using data bags more like a real database and writing web front-ends that sit in front of them for application and user management, but so far I haven't seen that pattern pop up yet...

At a previous employer, we did just that - we built a user management system with a data bag as the system of record. Each user's details were in a data bag item, and Chef was responsible for managing user accounts in as many systems and applications as we could reasonably teach it to do so. For the few where this wasn't practical, we had an LDAP service (built on ldapjs) which authenticated against the data bag items. On the front end, a Rails webapp allowed managers to create accounts for new users, and individual users to update their passwords.

It worked well, but didn't readily lend itself to an open source release. I wonder whether other folks have built similar things and found themselves in the same boat.

On the other hand, we discarded a similar approach for application management in favour of a web service backed by a relational database. The nature of data bags (no relationships, no partial updates, last writer wins & no CAS, etc) rendered them unattractive for modelling the complexity we had to manage in that area.

Another factor in that environment was our use of the open-source Chef server - without data-bag level ACLs, any web-app storing data in a data bag needs a full admin client. We could live with this for the user management app, but it was a showstopper for other potential applications.

Zac

You make an interesting point that if you go down that road you kind of wind up eventually with enough complexity that you want a relational database. The large account management system that I used previously that was based around LDAP, CFEngine and a bunch of Perl hit limitations where we really wanted a relational database. Of course Chef servers do have a relational database now, but we don't expose any of that functionality....

[chef] App cookbooks, Mark H. Nichols, 01/02/2014
- [chef] Re: App cookbooks, JJ Asghar, 01/02/2014
  - [chef] Re: Re: App cookbooks, David Morton, 01/02/2014
    - [chef] Re: App cookbooks, Tony Burns, 01/02/2014
      - [chef] Re: Re: App cookbooks, Ranjib Dey, 01/02/2014
  - [chef] RE: Re: App cookbooks, Kadel-Garcia, Nico, 01/02/2014
    - [chef] Re: RE: Re: App cookbooks, Dylan Northrup, 01/03/2014
      - [chef] Re: Re: RE: Re: App cookbooks, Lamont Granquist, 01/05/2014
        
        [chef] Re: Re: Re: RE: Re: App cookbooks, Mark Swinson, 01/06/2014
        
        [chef] Re: Re: Re: RE: Re: App cookbooks, Zac Stevens, 01/06/2014
        
        [chef] Re: Re: Re: Re: RE: Re: App cookbooks, Lamont Granquist, 01/06/2014
        
        [chef] Re: Re: Re: Re: RE: Re: App cookbooks, Sam Pointer, 01/06/2014
        
        [chef] Re: Re: Re: Re: Re: RE: Re: App cookbooks, Torben Knerr, 01/06/2014
        [chef] Re: Re: Re: Re: Re: Re: RE: Re: App cookbooks, Brian Akins, 01/09/2014
        [chef] Re: Re: Re: Re: Re: Re: Re: RE: Re: App cookbooks, Sölvi Páll Ásgeirsson, 01/09/2014