Cafe makes operating chef easy and delightful.
Chef is a world-class configuration management platform that, for many of us, is a gateway into automation that was previously unimaginable. However, like many of its siblings, it started out within a linux environment. As a result, running and maintaining it is not straightforward when you come from a Windows background.
Cafe is a standalone program that is fully operational by unzipping files into a folder and running cafe.exe
. No ruby or .NET dependencies. It just works.
To install:
- Unzip the installation package into a folder
- Run
cafe init
if you want it added to the path (you'll need to reboot) - Run
cafe service register
to have the cafe server run in the background so it can do things for you
Cafe is lightweight. To run the service it takes 17.8MB of memory and no CPU. This means that you can put cafe on all your nodes, then install and run chef as you want to.
After installation, let's work on getting chef bootstrapped on the machine.
The first step is to download and install inspec:
cafe inspec download 1.7.1
Once the inspec installer is downloaded, let's install it:
cafe inspec install 1.7.1
Next we will do the same with the Chef Client:
cafe chef download 12.16.42
And then install it:
cafe chef install 12.16.42
Now that we've installed Chef, let's bootstrap it. You can do this two ways:
- The Policyfile way:
cafe chef bootstrap policy: webserver group: qa config: C:\Users\mhedg\client.rb validator: C:\Users\mhedg\my-validator.pem
- The Run List Way:
cafe chef bootstrap run-list: "[chocolatey::default]" config: C:\Users\mhedg\client.rb validator: C:\Users\mhedg\my-validator.pem
Both ways ask for a config file that will be your client.rb
on the machine and a validator used to ask the chef server for validation.
Now that we've bootstrapped Chef, we can run it again on demand if we want to:
cafe chef run
We can even look at the logs
directory and see that we have a rolling log that only has our chef-client runs in it. We can also see specific logging for our client and server.
We probably want to schedule Chef to run every 30 minutes or so. To do this we edit our server.json
:
{
"ChefInterval": 1800,
"Port": 59320
}
And restart the cafe service:
cafe service restart
At some point you may even want to pause chef on the node so you can manually check a node's state without fear of Chef changing anything. To do this, run:
cafe chef pause
And then when you're ready to rejoin the land of sanity, you can simply run:
cafe chef resume
You can either run cafe remotely through Powershell Remoting (where you invoke cafe as a locally run process) or by using the on: servername
syntax at the end of commands above. You'll need to make sure you have networking set up for it if you go the latter route.
Here are some other ideas about what can be done with cafe from demos and discussions:
- working with proxy servers during download
- overridable download location for internal networks
- include ETW on chef events
- Trigger chef to run remotely (lightweight push job), and with orchestration events
- All agents listen to a central server that provides direction on what to do
- When chef crashes, let's retry running it to avoid downtime
- Register an event with the process to say shut down if Azure needs to reconfigure the box - needs more discussion
To upgrade cafe, simply stop the service with cafe service stop
, copy all binaries into your cafe installation, then start the service with cafe service start
.
The problem with this is that it's difficult to automate. If you try to automate this process from within cafe itself, it can't because it can't stop itself.
Enter the cafe.Updater
. This application is completely separate from cafe
and so can update it without endangering the cafe application itself.
Here's how it works:
cafe.Updater
is installed withcafe
itself in a folder calledupdater
.- Run
cafe.Updater
as a service by running the commandscafe.Updater service register
andcafe.Updater service start
- Download a particular update of
cafe
by runningcafe download 0.8.0
. This will stage your cafe zip file in your localstaging
folder - Now run
cafe install 0.8.0
. This will:
- Copy the cafe zip install file to the
updater/staging
folder cafe.Updater
will notice this file arrived and will start its updatecafe.Updater
will wait 30 seconds so the install can finish replying back to its clientcafe.Updater
stops thecafe
servicecafe.Updater
unzips the file to the parent directory (thecafe
installation directory)cafe.Updater
starts thecafe
service
[Note: this is not implemented yet.]
To update the cafe.Updater
itself, you'll need to follow these steps:
- Run
cafe updater download 0.8.0
. This will be thecafe
version and will stage the same exact file. In factcafe download 0.8.0
andcafe updater 0.8.0
should do the same thing - Run
cafe updater install 0.8.0
. This will:
- Unzip the cafe installation to a temporary location
- Stop the
cafe.Updater
service by runningcafe.Updater service stop
- Copy all files from
updater
inside of the install package into theupdater
folder - Start the
cafe.Updater
service by runningcafe.Updater service start
[Note that this is currently in progress]
The cafe
cookbook will handle all of this for you. In fact, this complexity exists so that you can manage cafe during a chef run while also avoiding updating yourself while you're running.
Cafe is built with .NET Core SDK 1.0.3 using cake.