Puppet Module for HPE OneView

Table of Contents

1. Overview
2. Module description
3. Setup
   • Requirements
   • Beginning with the Puppet Module for HPE OneView
4. Usage
   • OneView appliance authentication
   • Synergy Image Streamer authentication
   • Types and providers
5. Reference
6. Contributing and feature requests
7. License
8. Version and changes
9. Authors

Overview

The Puppet Module for HPE OneView provides resource style declaration capabilities to Puppet manifests for managing HPE OneView Appliances.

Module description

The Puppet Module for HPE OneView allows for management of HPE OneView Appliances through the use of puppet manifests and resource style declarations, which makes internal use of the HPE OneView Ruby SDK and HPE OneView API.

It adds several resource types to puppet, and uses ensurable methods such as present, absent and other custom ensurable methods to manage the appliance to allow users to easily create, update, query and delete resources.

For more information on the Puppet Module for HPE OneView resource types and their specifications, see the Usage and examples.

Setup

Requirements

• Puppet V4.1 or greater
• Ruby V2.2.3 or greater
• oneview-sdk-ruby V3.1.0 or greater (available as a gem)

Beginning with the Puppet Module for HPE OneView

To install this module from the Puppet Forge, with enough permissions to install puppet modules, use the command:

puppet module install hewlettpackard-oneview

Alternatively, you can clone the source code from https://github.com/HewlettPackard/oneview-puppet into your Puppet module path using the following command:

git clone https://github.com/HewlettPackard/oneview-puppet <your_module_path>/oneview

:exclamation: NOTE: HPE recommends that the cloned directory be named oneview. It should also be noted that if the directory name contains any dashes it will not be found by puppet.

Usage

OneView appliance authentication

The attributes required for authenticating with your HPE OneView Appliance are:

• ONEVIEW_URL - The web address for the HPE OneView appliance. For example, https://oneview.example.com
• ONEVIEW_TOKEN - Set either this or the ONEVIEW_USER and ONEVIEW_PASSWORD.
• ONEVIEW_USER - The HPE OneView appliance username. This defaults to Administrator.
• ONEVIEW_PASSWORD - The HPE OneView appliance password.
• ONEVIEW_API_VERSION - This defaults to the 200 API version (Minimum supported by oneview-sdk-ruby).
• ONEVIEW_LOG_LEVEL - The log level of the HPE OneView appliance. This defaults to info
• ONEVIEW_SSL_ENABLED - HPE recommends setting this value to true
• ONEVIEW_HARDWARE_VARIANT - Set this to C7000 or Synergy, according to the appliance's enclosure's model. This defaults to C7000 :warning: The Synergy hardware variant is only available for API version >= 300 (OneView 3.0) :warning:

You can assign attributes for your appliances using three methods:

1. Create a json file named login.json on your working directory, and enter the authentication information for your appliance. See login.json for an example.

2. If you do not want to use the login file on the working directory, any json file containing the authentication information for the appliance can be used by setting the following environment variable:

   • ONEVIEW_AUTH_FILE - This environment variable should contain the full path to the json file containing the authentication information.

3. Directly declare the authentication attributes mentioned previously as environment variables. The module will automatically use those values.

:exclamation: NOTE: All information stored on the login file or json files should be in clear text. To avoid security issues HPE recommends verifying the access permissions for those files.

:lock: Tip: If you have Docker installed you can use the Dockerfile provided to build an image. Example scripts are also provided in the docker folder for building and running using environment variables for OneView parameters (and proxies if required).

Once the authentication is prepared and the manifests containing the resources are written, you can use puppet apply <manifest> to run your manifests and execute the desired changes to the system.

Synergy Image Streamer authentication

The attributes required for authenticating with your HPE Synergy Image Streamer appliance are:

• IMAGE_STREAMER_URL - The web address for the HPE Image Streamer appliance. For example, https://imagestreamer.example.com
• IMAGE_STREAMER_API_VERSION - The API version for the HPE Image Streamer. This defaults to 300
• IMAGE_STREAMER_LOG_LEVEL - The log level of the HPE Image Streamer appliance. This defaults to info
• IMAGE_STREAMER_SSL_ENABLED - HPE recommends setting this value to true

The following attribute must be set only if you haven't configured the credentials to authenticate with your HPE OneView Appliance:

• IMAGE_STREAMER_TOKEN - The authentication token for the HPE Image Streamer. This is the same token used to access the HPE OneView REST API.

:exclamation: NOTE: All information stored on the login file or json files should be in clear text. To avoid security issues HPE recommends verifying the access permissions for those files.

You can assign attributes for your appliances using three methods:

1. Create a json file named login_image_streamer.json on your working directory, and enter the authentication information for your appliance. See login_image_streamer.json for an example. :exclamation: NOTE: You must provide a token only if you haven't configured the credentials to authenticate with your HPE OneView Appliance.

2. If you do not want to use the login file on the working directory, any json file containing the authentication information for the appliance can be used by setting the following environment variable:

   • IMAGE_STREAMER_AUTH_FILE - This environment variable should contain the full path to the json file containing the authentication information.

3. Directly declare the authentication attributes mentioned previously as environment variables. The module will automatically use those values.

:exclamation: NOTE: All information stored on the login file or json files should be in clear text. To avoid security issues HPE recommends verifying the access permissions for those files.

Types and Providers

General

Most resources of the Puppet module for HPE OneView accept the following ensurable methods:

• present - Creates/adds/updates resources on which those operations are permitted.
• absent - Deletes/removes resources.
• found - Searches for resources of a specific type on the appliance (with or without specific filters), and prints the information to the standard output.

The majority of the ensurable methods on the resources require a data parameter. Inside data a hash should be informed with all the information required for the operation to be performed.

All get_ ensurable methods send information that is retrieved to the standard output.

To provide easier deployment and management of infrastructure, all resources tags that either contain or require an Uri can receive either the "name" or a "name, resource type" combination of parameters instead of the uri as the field value, unless otherwise specified.

For a uri clearly related to a resource, such as in enclosureUri, the name can be given instead of the uri, For example:

enclosureUri => 'Puppet Example Enclosure'

instead of

enclosureUri => '/rest/enclosures/09SGH100X6J1'

and in the case of a general tag which does not specify its resource, such as mountUri, a "name, resource type" can be provided, For example:

mountUri => 'Puppet Example Enclosure, enclosure',

instead of

mountUri => '/rest/enclosures/09SGH100X6J1',

A sample snippet of a manifest:

oneview_ethernet_network{'Ethernet Network Create':
  ensure => 'present',
  data   => {
    name                  => 'Puppet network',
    vlanId                => '1045',
    purpose               => 'General',
    smartLink             => true,
    privateNetwork        => false,
    connectionTemplateUri => nil,
    type                  => 'ethernet-networkV3'
  }
}

oneview_fc_network{'fc1':
    ensure => 'present',
    data   => {
      name                    => 'OneViewSDK Test FC Network',
      connectionTemplateUri   => nil,
      autoLoginRedistribution => true,
      fabricType              => 'FabricAttach',
    }
}

oneview_volume{'volume_1':
    ensure => 'present',
    data   => {
      name                   => 'Oneview_Puppet_TEST_VOLUME_1',
      description            => 'Test volume with common creation: Storage System + Storage Pool',
      provisioningParameters => {
            provisionType     => 'Full',
            shareable         => true,
            requestedCapacity => 1024 * 1024 * 1024,
            storagePoolUri    => 'FST_CPG1',
      },
      snapshotPoolUri        => 'FST_CPG1'
    }
}

General examples of the usage for each resource and ensurable can be found in the examples directory.

For more details for each resource type that the Puppet module for HPE OneView adds and their unique ensurable methods, refer to Resources.

Reference

The Puppet Module for HPE OneView uses the HPE OneView-Ruby-SDK to make all API calls and the HPE OneView API to execute all actions.

More information on the OneView-Ruby-SDK can be found on the official git repository: https://github.com/HewlettPackard/oneview-sdk-ruby

For additional information about the HPE OneView API and about the attributes and options it manages, go to: http://h17007.www1.hpe.com/docs/enterprise/servers/oneview2.0/cic-api/en/api-docs/current/index.html

Contributing and feature requests

Contributing: You know the drill. Fork it, branch it, change it, commit it, and pull-request it. We are passionate about improving this project, and glad to accept help to make it better.

NOTE: We reserve the right to reject changes that we feel do not fit the scope of this project. For feature additions, please open an issue to discuss your ideas before doing the work.

Feature Requests: If you have needs not being met by the current implementation, please let us know (via a new issue). This feedback is crucial for us to deliver a useful product. Do not assume we have already thought of everything, because we assure you that is not the case.

License

This project is licensed under the Apache 2.0 license. Please see LICENSE for more information.

Version and changes

To view history and notes for this version, view the Changelog.

Authors

• Ana Campesan - @anazard
• Chris Hurley - @chrishpe
• Felipe Bulsoni - @fgbulsoni
• Ricardo Piantola - @piantola

v2.2.1 (2017-05-22)

Version highlights:

1. Major refactor on internal methods. Improved idempotency, logging project-wide and reduced lines of code count.
2. Raised 'oneview-sdk' version used to ~> 4.4.
3. Several bugfixes and improvements.

Bug fixes & Enhancements:

• #95 Improve server profile idempotency
• #101 Improve server profile template idempotency
• #145 Refactor oneview_resource class and common for v2.2.0
• #148 Cannot create uplinkset for LIG on a Synergy frame
• #149 Server Profile - Network uris set inside the connections return error
• #151 SAS Logical Interconnect Group - Name to URI conversion fails on logicalInterconnectGroupUri fields
• #153 Idempotence error: Running a ensure => 'present' on a oneview_firmware_bundle resource

2.2.0 (2017-03-28)

Version highlights:

1. Added support to the Image Streamer REST API version 300 for OS provisioning through OneView.

Puppet Types Added

• Image_streamer_artifact_bundle
• Image_streamer_build_plan
• Image_streamer_deployment_group
• Image_streamer_deployment_plan
• Image_streamer_golden_image
• Image_streamer_os_volume
• Image_streamer_plan_script

Bug fixes & Enhancements:

• #103 Unit tests should not require auth files/environment variables from the user
• #105 Create or update uplink sets through logical interconnect groups
• #116 Simplify login to i3s
• #119 Update unit tests to match updated remove_extra_unmanaged_volume from oneview-ruby-sdk
• #121 Deployment Plan and Golden Image should use the default uri parser
• #122 Uri_parsing should support upper case for uri
• #132 Allow option force for Image_streamer_golden_image download operations
• #133 Allow set a timeout for Image_streamer_golden_image upload
• #139 Error running oneview_logical_interconnect's ensure method get_default_settings after upgrading OneView SDK to >= v4.1

2.1.0 (2017-02-03)

Version highlights:

1. Added full support to OneView Rest API version 300 for the hardware variants C7000 and Synergy to the already existing features.
2. Implemented the Oneview_resource class to act as parent for the other resources, reducing code duplication and complexity.
3. Enabled the 'puppet resource <oneview_type>' for most of the providers, allowing the resources to be queried.
4. Overall refactor and code cleanup.

Notes

This release extends the full support for the Synergy and C7000 APIs to all the resources previously supported, and adds a few new resources specific to Synergy.

Puppet Types Added

• Oneview_drive_enclosure
• Oneview_sas_interconnect
• Oneview_sas_logical_interconnect
• Oneview_sas_logical_interconnect_group

Oneview Features supported

• Connection template
• Datacenter
• Drive enclosure
• Enclosure
• Enclosure group
• Ethernet network
• Fabric
• FC network
• FCoE network
• Firmware bundle
• Firmware driver
• Interconnect
• Interconnect link topology
• Internal link set
• Logical downlink
• Logical enclosure
• Logical interconnect
• Logical interconnect group
• Logical switch
• Logical switch group
• Managed SAN
• Network set
• Power device
• Rack
• SAN manager
• SAS interconnect
• SAS interconnect type
• SAS logical interconnect
• SAS logical interconnect group
• SAS logical JBOD
• SAS logical JBOD attachment
• Server hardware
• Server hardware type
• Server profile
• Server profile template
• Storage pool
• Storage system
• Switch
• Unmanaged device
• Uplink set
• Volume
• Volume attachment
• Volume template

2.0.0 (2017-01-05)

Notes

This is the Second major version of the Puppet module for the HPE OneView. It extends the support for the OneView API version 300, and adds support for Synergy hardware.

Major changes

1. Added full support to OneView Rest API version 300 for the hardware variants C7000 and Synergy to the already existing features:

• Ethernet network
• FC network
• FCoE network
• Network set

2. Support to Synergy hardware has been added. The 'hardware_variant' option is specified in the client and the providers in this module handle the correct execution.
3. Updated the requirements for the module for using the oneview-sdk gem with versions greated than 3.0.0.

1.0.1 (2016-11-28)

• Added the .travis.yml file to the root of the project
• Configured continuous integration with Travis CI for the repository
• Disabled BlockLength for rubocop
• Added OS Support to metadata file
• Added shields to the README.md file
• Fixed issue on one of the firmware bundle unit tests

1.0.0 (2016-10-06)

Notes

This is the official release of the Puppet module for the HPE OneView. It features the creation of providers and types needed for managing OneView resources, example files for each type created, as well as a full set of unit and integration tests for each type and provider, with total code coverage averaging over 90%. For now it only supports C7000 enclosure types.

Summary

• Created all resources types and providers for the OneView API 200
• Created smoke, unit, and integration tests for all resources

Puppet Types Added

• Oneview_connection_template
• Oneview_datacenter
• Oneview_enclosure
• Oneview_enclosure_group
• Oneview_ethernet_network
• Oneview_fabric
• Oneview_fc_network
• Oneview_fcoe_network
• Oneview_firmware_bundle
• Oneview_firmware_driver
• Oneview_interconnect
• Oneview_logical_downlink
• Oneview_logical_enclosure
• Oneview_logical_interconnect
• Oneview_logical_interconnect_group
• Oneview_logical_switch
• Oneview_logical_switch_group
• Oneview_managed_san
• Oneview_network_set
• Oneview_power_device
• Oneview_racks
• Oneview_san_manager
• Oneview_server_hardware
• Oneview_server_hardware_type
• Oneview_server_profile
• Oneview_server_profile_template
• Oneview_storage_pool
• Oneview_storage_system
• Oneview_switch
• Oneview_unmanaged_device
• Oneview_uplink_set
• Oneview_volume
• Oneview_volume_attachment
• Oneview_volume_template

Oneview Features supported

• Connection template
• Datacenter
• Enclosure
• Enclosure group
• Ethernet network
• Fabric
• FC network
• FCOE network
• Firmware bundle
• Firmware driver
• Interconnect
• Logical downlink
• Logical enclosure
• Logical interconnect
• Logical interconnect group
• Logical switch
• Logical switch group
• Managed SAN
• Network set
• Power device
• Racks
• SAN manager
• Server hardware
• Server hardware type
• Server profile
• Server profile template
• Storage pool
• Storage system
• Switch
• Unmanaged device
• Uplink set
• Volume
• Volume attachment
• Volume template