Configs
Go to file
Joey Hess 3d013c4892 propellor spin 2014-03-30 19:25:01 -04:00
Property propellor spin 2014-03-30 19:22:10 -04:00
Utility propellor spin 2014-03-30 19:10:32 -04:00
privdata propellor spin 2014-03-30 19:10:32 -04:00
.gitignore remove VPS cruft 2014-03-30 15:14:36 -04:00
CmdLine.hs reduce amount of time privdata is in ram 2014-03-30 19:19:48 -04:00
Common.hs propellor spin 2014-03-30 19:10:32 -04:00
GPL cabalized and added a wrapper program 2014-03-30 00:08:02 -04:00
Makefile propellor spin 2014-03-30 19:16:04 -04:00
PrivData.hs propellor spin 2014-03-30 19:19:29 -04:00
Propellor.hs propellor spin 2014-03-30 19:25:01 -04:00
Property.hs propellor spin 2014-03-30 19:10:32 -04:00
README propellor spin 2014-03-30 19:10:32 -04:00
Setup.hs cabalized and added a wrapper program 2014-03-30 00:08:02 -04:00
TODO password locking 2014-03-30 00:17:44 -04:00
Types.hs propellor spin 2014-03-30 19:10:32 -04:00
propellor.cabal propellor spin 2014-03-30 19:10:32 -04:00

README

This is a work in progress configuration management system using Haskell
and Git.

Propellor enures that the system it's run in satisfies a list of
properties, taking action as necessary when a property is not yet met.

The design is intentionally very minimal.

Propellor lives in a git repository, and so to set it up it's cloned
to a system, and "make" can be used to pull down any new changes,
and compile and run propellor. This can be done by a cron job. Or something
can ssh in and run it.

Properties are defined using Haskell. Edit Propellor.hs

There is no special language as used in puppet, chef, ansible, etc, just
the full power of Haskell. Hopefully that power can be put to good use in
making declarative properties that are powerful, nicely idempotent, and
easy to adapt to a system's special needs.

Also avoided is any form of node classification. Ie, which hosts are part
of which classes and share which configuration. It might be nice to use
reclass[1], but then again a host is configured using simply haskell code,
and so it's easy to factor out things like classes of hosts as desired.

To bootstrap propellor on a new host, use: propellor --spin $host
This looks up the git repository's remote.origin.url (or remote.deploy.url
if available) and logs into the host, clones the url (if not already
done), and sets up and runs propellor in /usr/local/propellor

Private data such as passwords, ssh private keys, etc should not be checked
into a propellor git repository in the clear, unless you want to restrict
access to the repository. Which would probably involve a separate fork 
for each host and be annoying. 

Instead, propellor --spin $host looks for a privdata/$host.gpg file and
if found decrypts it and sends it to the host using ssh. To set a field
in such a file, use: propellor --set $host $field $value
The field name is will be something like 'Password "root"'; see PrivData.hs
for available fields.

[1] http://reclass.pantsfullofunix.net/