Add a task to bootstrap a new node

dstufft · dstufft · commit b8e349f6bcfd · 2014-09-12T18:21:25.000-04:00
diff --git a/conf/minion.conf b/conf/minion.conf
@@ -0,0 +1,9 @@
+master: {{ master }}
+
+{% if roles %}
+grains:
+  roles:
+    {% for role in roles -%}
+    - {{ role }}
+    {% endfor %}
+{% endif %}
diff --git a/requirements.txt b/requirements.txt
@@ -1,2 +1,3 @@
 invoke
 fabric
+jinja2
diff --git a/tasks/salt.py b/tasks/salt.py
@@ -1,11 +1,73 @@
 from __future__ import absolute_import, division, print_function
 
 import invoke
-import fabric.api as fabric
+import fabric.api
+import fabric.contrib.files
 
 from .utils import cd, ssh_host
 
 
+SALT_MASTER = "192.168.5.1"
+
+
+@invoke.task
+def bootstrap(host, roles=None):
+    # If the host does not have a . in it's address, then we'll assume it's the
+    # short for of host.psf.io and add the .psf.io onto it.
+    if "." not in host:
+        host += ".psf.io"
+
+    # SSH into the root user of this server and bootstrap the server.
+    with ssh_host("root@" + host):
+        # Make sure this host hasn't already been bootstrapped.
+        if fabric.contrib.files.exists("/etc/salt/minion.d/local.conf"):
+            raise RuntimeError("{} is already bootstrapped.".format(host))
+
+        # Ok, we're going to bootstrap, first we need to add the Salt PPA
+        fabric.api.run("apt-add-repository -y ppa:saltstack/salt")
+
+        # Then we need to update our local apt
+        fabric.api.run("apt-get update -y")
+
+        # Then, upgrade all of the packages that are currently on this
+        # machine.
+        fabric.api.run("apt-get upgrade -y")
+        fabric.api.run("apt-get dist-upgrade -y")
+
+        # Reboot the server to make sure any upgrades have been loaded.
+        fabric.api.reboot()
+
+        # Install salt-minion and python-apt so we can manage things with
+        # salt.
+        fabric.api.run("apt-get install -y salt-minion python-apt")
+
+        # Drop the /etc/salt/minion.d/local.conf onto the server so that it
+        # can connect with our salt master.
+        fabric.contrib.files.upload_template(
+            "conf/minion.conf",
+            "/etc/salt/minion.d/local.conf",
+            context={
+                "master": SALT_MASTER,
+                "roles": [r.strip() for r in roles.split(",") if r.strip()],
+            },
+            use_jinja=True,
+            mode=0o0644,
+        )
+
+        # Run salt-call state.highstate, this will fail the first time because
+        # the Master hasn't accepted our key yet.
+        fabric.api.run("salt-call state.highstate", warn_only=True)
+
+    # SSH into our salt master and accept the key for this server.
+    with ssh_host("salt-master.psf.io"):
+        fabric.api.sudo("salt-key -a {}".format(host))
+
+    # Finally SSH into our server one more time to run salt-call
+    # state.highstate for real this time.
+    with ssh_host("root@" + host):
+        fabric.api.run("salt-call state.highstate")
+
+
 @invoke.task(name="sync-changes")
 def sync_changes():
     # Push our changes to GitHub
@@ -14,11 +76,11 @@ def sync_changes():
 
     # SSH into the salt master and pull our changes from GitHub
     with ssh_host("salt-master.psf.io"), fabric.cd("/srv/salt"):
-        fabric.sudo("git pull --ff-only origin master")
+        fabric.api.sudo("git pull --ff-only origin master")
 
     with cd("pillar/secrets"):
         # Push our changes into the secret repository
-        invoke.run("git push origin master", echo=True)
+        invoke.api.run("git push origin master", echo=True)
 
 
 @invoke.task(default=True, pre=[sync_changes])
@@ -38,4 +100,4 @@ def highstate(hosts):
     # Loop over all the hosts and call salt-call state.highstate on them.
     for host in hosts:
         with ssh_host(host):
-            fabric.sudo("salt-call state.highstate")
+            fabric.api.sudo("salt-call state.highstate")
