Chef 简明教程

Chef - Knife Setup

Knife 是 Chef 的命令行工具,用于与 Chef 服务器进行交互。人们使用它来上传 cookbook 并管理 Chef 的其他方面。它在本地计算机上的 chefDK(Repo)与 Chef 服务器之间提供一个界面。它有助于管理:

Knife is Chef’s command-line tool to interact with the Chef server. One uses it for uploading cookbooks and managing other aspects of Chef. It provides an interface between the chefDK (Repo) on the local machine and the Chef server. It helps in managing −

  1. Chef nodes

  2. Cookbook

  3. Recipe

  4. Environments

  5. Cloud Resources

  6. Cloud Provisioning

  7. Installation on Chef client on Chef nodes

Knife 提供了一组用于管理 Chef 基础设施的命令。

Knife provides a set of commands to manage Chef infrastructure.

Bootstrap Commands

  1. knife bootstrap [SSH_USER@]FQDN (options)

Client Commands

  1. knife client bulk delete REGEX (options)

  2. knife client create CLIENTNAME (options)

  3. knife client delete CLIENT (options)

  4. knife client edit CLIENT (options)

  5. Usage: C:/opscode/chef/bin/knife (options)

  6. knife client key delete CLIENT KEYNAME (options)

  7. knife client key edit CLIENT KEYNAME (options)

  8. knife client key list CLIENT (options)

  9. knife client key show CLIENT KEYNAME (options)

  10. knife client list (options)

  11. knife client reregister CLIENT (options)

  12. knife client show CLIENT (options)

Configure Commands

  1. knife configure (options)

  2. knife configure client DIRECTORY

Cookbook Commands

  1. knife cookbook bulk delete REGEX (options)

  2. knife cookbook create COOKBOOK (options)

  3. knife cookbook delete COOKBOOK VERSION (options)

  4. knife cookbook download COOKBOOK [VERSION] (options)

  5. knife cookbook list (options)

  6. knife cookbook metadata COOKBOOK (options)

  7. knife cookbook metadata from FILE (options)

  8. knife cookbook show COOKBOOK [VERSION] [PART] [FILENAME] (options)

  9. knife cookbook test [COOKBOOKS…​] (options)

  10. knife cookbook upload [COOKBOOKS…​] (options)

Cookbook Site Commands

  1. knife cookbook site download COOKBOOK [VERSION] (options)

  2. knife cookbook site install COOKBOOK [VERSION] (options)

  3. knife cookbook site list (options)

  4. knife cookbook site search QUERY (options)

  5. knife cookbook site share COOKBOOK [CATEGORY] (options)

  6. knife cookbook site show COOKBOOK [VERSION] (options)

  7. knife cookbook site unshare COOKBOOK

Data Bag Commands

  1. knife data bag create BAG [ITEM] (options)

  2. knife data bag delete BAG [ITEM] (options)

  3. knife data bag edit BAG ITEM (options)

  4. knife data bag from file BAG FILE|FOLDER [FILE|FOLDER..] (options)

  5. knife data bag list (options)

  6. knife data bag show BAG [ITEM] (options)

Environment Commands

  1. knife environment compare [ENVIRONMENT..] (options)

  2. knife environment create ENVIRONMENT (options)

  3. knife environment delete ENVIRONMENT (options)

  4. knife environment edit ENVIRONMENT (options)

  5. knife environment from file FILE [FILE..] (options)

  6. knife environment list (options)

  7. knife environment show ENVIRONMENT (options)

Exec Commands

  1. knife exec [SCRIPT] (options)

Help Commands

  1. knife help [list|TOPIC]

Index Commands

  1. knife index rebuild (options)

Node Commands

  1. knife node bulk delete REGEX (options)

  2. knife node create NODE (options)

  3. knife node delete NODE (options)

  4. knife node edit NODE (options)

  5. knife node environment set NODE ENVIRONMENT

  6. knife node from file FILE (options)

  7. knife node list (options)

  8. knife node run_list add [NODE] [ENTRY[,ENTRY]] (options)

  9. knife node run_list remove [NODE] [ENTRY[,ENTRY]] (options)

  10. knife node run_list set NODE ENTRIES (options)

  11. knife node show NODE (options)

OSC Commands

  1. knife osc_user create USER (options)

  2. knife osc_user delete USER (options)

  3. knife osc_user edit USER (options)

  4. knife osc_user list (options)

  5. knife osc_user reregister USER (options)

  6. knife osc_user show USER (options)

Path-Based Commands

  1. knife delete [PATTERN1 …​ PATTERNn]

  2. knife deps PATTERN1 [PATTERNn]

  3. knife diff PATTERNS

  4. knife download PATTERNS

  5. knife edit [PATTERN1 …​ PATTERNn]

  6. knife list [-dfR1p] [PATTERN1 …​ PATTERNn]

  7. knife show [PATTERN1 …​ PATTERNn]

  8. knife upload PATTERNS

  9. knife xargs [COMMAND]

Raw Commands

  1. knife raw REQUEST_PATH

Recipe Commands

  1. knife recipe list [PATTERN]

Role Commands

  1. knife role bulk delete REGEX (options)

  2. knife role create ROLE (options)

  3. knife role delete ROLE (options)

  4. knife role edit ROLE (options)

  5. knife role env_run_list add [ROLE] [ENVIRONMENT] [ENTRY[,ENTRY]] (options)

  6. knife role env_run_list clear [ROLE] [ENVIRONMENT]

  7. knife role env_run_list remove [ROLE] [ENVIRONMENT] [ENTRIES]

  8. knife role env_run_list replace [ROLE] [ENVIRONMENT] [OLD_ENTRY] [NEW_ENTRY]

  9. knife role env_run_list set [ROLE] [ENVIRONMENT] [ENTRIES]

  10. knife role from file FILE [FILE..] (options)

  11. knife role list (options)

  12. knife role run_list add [ROLE] [ENTRY[,ENTRY]] (options)

  13. knife role run_list clear [ROLE]

  14. knife role run_list remove [ROLE] [ENTRY]

  15. knife role run_list replace [ROLE] [OLD_ENTRY] [NEW_ENTRY]

  16. knife role run_list set [ROLE] [ENTRIES]

  17. knife role show ROLE (options)

Serve Commands

  1. knife serve (options)

SSH Commands

  1. knife ssh QUERY COMMAND (options)

SSL Commands

  1. knife ssl check [URL] (options)

  2. knife ssl fetch [URL] (options)

Status Commands

  1. knife status QUERY (options)

Tag Commands

  1. knife tag create NODE TAG …​

  2. knife tag delete NODE TAG …​

  3. knife tag list NODE

User Commands

  1. knife user create USERNAME DISPLAY_NAME FIRST_NAME LAST_NAME EMAIL PASSWORD (options)

  2. knife user delete USER (options)

  3. knife user edit USER (options)

  4. knife user key create USER (options)

  5. knife user key delete USER KEYNAME (options)

  6. knife user key edit USER KEYNAME (options)

  7. knife user key list USER (options)

  8. knife user key show USER KEYNAME (options)

  9. knife user list (options)

  10. knife user reregister USER (options)

  11. knife user show USER (options)

Knife Setup

为了设置 Knife,需要移动到 .chef 目录并在 Chef 仓库中创建 knife.rb ,它会告知 Knife 有关配置详情。这里会有几个详细信息。

In order to set up knife, one needs to move to .chef directory and create a knife.rb inside the chef repo, which tells knife about the configuration details. This will have a couple up details.

current_dir = File.dirname(__FILE__)
log_level                :info
log_location             STDOUT
node_name                'node_name'
client_key               "#{current_dir}/USER.pem"
validation_client_name   'ORG_NAME-validator'
validation_key           "#{current_dir}/ORGANIZATION-validator.pem"
chef_server_url          'https://api.chef.io/organizations/ORG_NAME'
cache_type               'BasicFile'
cache_options( :path =>  "#{ENV['HOME']}/.chef/checksums" )
cookbook_path            ["#{current_dir}/../cookbooks"]

在上面的代码中,我们使用的是托管 Chef 服务器,它采用以下两个密钥。

In the above code, we are using the hosted Chef server which uses the following two keys.

validation_client_name   'ORG_NAME-validator'
validation_key           "#{current_dir}/ORGANIZATION-validator.pem"

此处,knife.rb 告知 Knife 要使用哪个组织以及在哪儿查找私钥。它告知 Knife 在哪儿查找用户的私钥。

Here, knife.rb tells knife which organization to use and where to find the private key. It tells knife where to find the users’ private key.

client_key               "#{current_dir}/USER.pem"

以下代码行告知 Knife 我们使用的是托管服务器。

The following line of code tells knife we are using the hosted server.

chef_server_url        'https://api.chef.io/organizations/ORG_NAME'

使用 knife.rb 文件,validator knife 现在可以连接到您组织的托管 Opscode。

Using the knife.rb file, the validator knife can now connect to your organization’s hosted Opscode.