Animal is a work-in-progress toward developing a flexible, modular, and powerful rule-based Puppet ENC written in Ruby.
Add this line to your application's Gemfile:
gem 'animal'
And then execute:
$ bundle
Or install it yourself as:
$ gem install animal
Animal uses a rules-based approach to classifying nodes, and its rules engine supports a simple yet powerful syntax for building conditions based on installed plugins. It utilizes a delayed merging approach for building a list of Puppet classes to apply to a node, meaning that subtracting a class from a list of classes happens after all the add operations are complete, allowing a subtract to be performed at any point in the rules system. The benefit is that rules need not be evaluated in any particular order.
The actual syntax should be familiar enough for people used to writing either SQL or Puppet code. Here is an example of a simple rule statement:
Fact["certname"] = "machine.domain.tld"
This rule will use the Fact plugin (which is built-in to the core Animal library) to lookup the certname key and determines if it is equivalent to "machine.domain.tld".
A slightly more complicated rule might look like:
(Fact["machine_class"] = "server" AND Fact["os"] = "ubuntu") OR Fact["awesome"] = true
This rule will again use the Fact plugin (several times, in fact) to first check if both the machine_class fact is set to "server" and the os fact is set to "ubuntu", and only if either of those are false, the rule determines if the awesome fact is set to the literal true value.
There are currently several limitations to the rules syntax, such as:
AND and OR), but is not used to determing which is actually applied first. Parenthesis are, in fact, collapsed before any preceeding conjunction is used, but in A OR (B AND C), if A is true then (B AND C) is never evaluated.A then B where B is one or more subrules. This means that A AND B OR C is equivalent to A AND (B OR C).foo in Fact["foo"], must be double-quoted and can not contain [, ], or ".=, !=, >, >=, <, <=, and LIKE. The LIKE comparison operator treats the provided value as a regular expression. Do not include the / before or after the regular expression.true or false), a double-quoted string ("foo"), or an Integer (1, 2, etc.). Decimals must currently be treated as strings.Besides the rule statement described above, rules also support two additional components, each with two subcomponents. When a rule evaluates to true, it is said to be applied successfully, so rules have a success component. Otherwise, rules provide a failure component for determining what to do when the rule evaluates to false. Both of these components are considered optional by the rules engine, though a rule that does nothing should be suspect.
Each of these components support adding and subtracting Puppet classes from the final compiled list of classes returned by the ENC. These addition and subtraction operations are gathered then applied after all such operations are determined -- providing the delayed-merging capability of the tool. To add classes based on the outcome of a rule, define an Array of class names (usually roles or profiles) to return in an add section, either under success or failure. Likewise, define a subtract Array as needed.
When using the YAML storage provider (currently the only supported storage provider for Animal), this could be an example rule:
- :statement: (Fact["machine_class"] = "server" AND Fact["os"] = "ubuntu") OR Fact["awesome"] = true
:success:
:add:
- roles::linux::server
- roles::awesome
:subtract:
- roles::linux::desktop
This rule will add roles::linux::server and roles::awesome, and will guarantee that roles::linux::desktop will not be present in the returned list of Puppet classes if the rule evaluates to true for a given Puppet node.
After checking out the repo, run bin/setup to install dependencies. Then, run rake spec to run the tests. You can also run bin/console for an interactive prompt that will allow you to experiment.
To install this gem onto your local machine, run bundle exec rake install. To release a new version, update the version number in version.rb, and then run bundle exec rake release, which will create a git tag for the version, push git commits and tags, and push the .gem file to rubygems.org.
Bug reports and pull requests are welcome on GitHub at https://github.com/knuedge/animal.
The gem is available as open source under the terms of the MIT License.
FAQs
Unknown package
We found that animal demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 2 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
Security News
MITRE's 2024 CWE Top 25 highlights critical software vulnerabilities like XSS, SQL Injection, and CSRF, reflecting shifts due to a refined ranking methodology.
Security News
In this segment of the Risky Business podcast, Feross Aboukhadijeh and Patrick Gray discuss the challenges of tracking malware discovered in open source softare.