…about maps, open data, Git, and other tech.
Reflecting on Salt. (Credit: Psyberartist, CC-BY 2.0)
Salt, or SaltStack, is an automatic deployment tool for clusters of machines, in the same category as Chef, Puppet and Ansible. I’ve previously used Chef, found the experience frustrating, and thought I’d give Salt a go. The task: converting my tilemill-server bash scripts, which set up a complete TileMill server stack, with OpenStreetMap data, Nginx and a couple of other goodies.
The goals in this kind of automation for me are threefold:
The product of my labours: https://github.com/stevage/saltymill
A week is too soon to feel the real benefits of automatic deployment and configuration management, but plenty long enough for frustrations and annoyances. There are lots of good things about Salt, but those will go in another post.
I’ve intentionally written this post as I go, to document things that are surprising, counter-intuitive or bothersome to the newcomer. Once you become familiar with a system, it’s much harder to remember what it was like as a newbie, and easier to make allowances for it. So experienced Salt users will probably rankle at the wilful ignorance displayed herein.
A few things I quickly appreciated, compared to Chef:
Automatic deployment systems are complicated, and you’d love some clear mental concepts to hang on to. Unfortunately, Salt’s chosen metaphor is pretty clumsy (salt grains, pillars, mines…meh), and they’re not well explained. Apparently the concept of a “state” is pretty important to Salt, but even after reading much documentation and quite a reasonable amount of hacking away, I still have only the vaguest notion of what a Salt state is. What’s a “high state”? A “low state”? How can I query the “state” of a minion? No idea. It’s hard to tell if “states” are an implementation magic that makes the whole thing work, or if I, the user am supposed to know about them.
(After more digging around, I think “state” has several meanings, of which one is just one of the actions defined in a SLS file.)
And then, strangely, how do you refer to the most important objects that you work with, the actual code that specifies what you want done? “SLS files”. Or “state files”. Or “SLS[es]”. Or “Salt States”. Or “Salt state files”. Those terms are all used in the docs. (I thought they were also called “formulas“, but those are apparently only pre-canned state files.)
It turns out YAML has some weird indenting and formatting rules that occasionally ruin your day. Initially it’s especially tedious having to learn this extra language and its subtleties (> vs |, multi-line hyphenated lists versus single line square-bracketed lists) when you just want to get started – it steepens the learning curve.
The behaviour of statement IDs is cute at first, but not well explained, and becomes pretty tiresome. The idea is you can write this:
httpd: pkg.installed
Succinct, huh? That’s actually shorthand for this:
install_apache_please:
pkg:
- name: httpd
- installed
That is, the “id” (httpd) is also the default value for “name”. Secondly, you can compress one item of the following list (“installed”) onto the function name (“pkg”) with a dot.
So far, so good. But it quickly leads to this kind of silliness:
"{{ pillar.installdir}}/myfile.txt":
file.managed:
- unless: ...
another_command:
cmd.wait:
- watch: [ "{{ pillar.installdir}}/myfile.txt" ]
Free-text strings don’t make great IDs. On the whole, I’d prefer a syntax which is robustly readable and predictable, rather than one which is very succinct in special cases, but mostly less so.
The next problem is that all those IDs have to be unique across all your .sls files. That’s tedious when you have repetitious little actions that you can’t be bothered naming properly.
Another annoyance is that Salt’s data structure sometimes requires lists, and sometimes requires dicts, and it’s hard to remember which is which. For example:
finishlog:
cmd.run:
- name: |
echo "All done! Enjoy your new server.<br/>" >> /var/log/salt/buildlog.html
file.managed:
- name: /var/log/salt/index.html
- source: salt://initindex.html
- template: jinja
- context:
buildtitle: "Your server is ready!"
buildsubtitle: "Get in there and make something."
buildtitlecolor: "hsl(130,70%,70%)"
Notice how the first level of indentation doesn’t have hyphens, the second level does, then the third level doesn’t? I’m not sure what the philosophy is here – it looks to me like each level is just a list of key/value pairs.
Jinja is a fantastic templating language. But Salt uses this template language as its core programming logic. That’s like writing a C program using macros all over the place. It’s sort of ok as a way to access data values:
update_data:
cmd.run:
- cwd: {{ pillar['tm_dir'] }}
Here, the {{ … }} bit is a Jinja substitution, so the actual YAML code that gets parsed and executed looks like this:
update_data: cmd.run: - cwd: /mnt/saltymill
As most people who have dealt with macro preprocessors know, they rapidly get complex and very hard to debug. The error you see is a YAML parse error, but is the problem in your YAML code, or in what got substituted by Jinja?
It’s certainly possible to use the full range of Jinja functions (that is, {% … %} territory) inside Salt formulas, but for sanity I’m trying to avoid it. On the flip side, certain things that I expected to be easy, like defining a variable in a state {% set foo = blah %} and then being able to access it from inside any other template, turn out to not work. You need to explicitly pass context variables around, or import state files, and it becomes quite cumbersome.
Help may be at hand. Evan Borgstrom also noticed that “simple readability of YAML starts to get lost in the noise of the Jinja syntax” and is working on a new, pure Python syntax called NaCl.
There are about 4 competing systems simultaneously operating to determine which order actions get executed in, ranked here from most important to least important.
The requisite ordering system sounds good, but in practice it has two shortcomings:
I’m yet to see any advantages to a declarative style. I like the certainty of knowing that a given sequence of steps works. The declarative model implies that one day the steps might be rearranged based only on my statement of what the dependencies are.
There’s a rule that says you can’t have the same kind of state multiple times in a statement. This is invalid:
/var/log/salt/buildlog.html: file.managed: - source: salt://initlog.html file.append: - text: Commencing build...
Why? I don’t know. The rules dictate that you have to do this:
/var/log/salt/buildlog.html: file.managed: - source: salt://initlog.html append_to_that_file: file.append: - name: /var/log/salt/buildlog.html - text: Commencing build...
Notice the cascade of consequences as this fragile “readability” tower crashes down:
I miss Chef’s elegant “knife bootstrap” though. In one command line command, Chef:
With Salt, these all seem to be manual steps:
When I rebuild a server, the above are preceded by these steps:
There are probably ways of streamlining this process. I hope so, anyway, because it’s pretty clumsy. I don’t know yet whether the SaltMaster can automatically launch deployments when new nodes register.
Trove is the National Library of Australia’s “discovery interface” – an amazing catalogue of books, newspapers, maps, music, journal articles etc. The Trove API is a special website that programs can talk to run queries, retrieve individual records etc. With some creative ideas and a bit of coding skill, you could make a pretty nifty tool and win a digital humanities award.
The documentation is pretty thorough, but doesn’t tell you how to get started. These days, web development is mostly about assembling the right tools and putting them together, but it can be hard for a novice to know what they need.
This guide is for you if:
In short, if you think the digital humanities might be for you.
What we’ll need
As an Australian academic, you can create your own server on the NeCTAR Research Cloud. That would be the best option, but can be a bit fiddly for a novice so we won’t explain that here.
The next best option is to create a server on a virtual machine inside your laptop, using VirtualBox and Vagrant. That keeps everything related to this one project self contained, which is a big bonus when you start working on other projects. It also creates a pristine, controlled Linux environment which means you’re less likely to run into issues cause by the peculiarities of your own system. Try the Vagrant Getting Started guide.
As a last resort, the simplest approach is to just install stuff directly on your computer. This may work ok to begin with.
We’re going to build a web application that will talk to Trove. This isn’t the only approach. You could:
But a web application is probably what you’re going to want eventually and is the easiest to share with other people.
We’ll use Python, the programming language, and Flask, a web application framework for Python.
Why Flask? It’s easy to install, lightweight, and is well suited to experimental programming like this. (An alternative would be Django, which would be much better if you wanted to store stuff in a database and write something big and scalable.)
You can install these on the command line like this:
sudo apt-get install -y python-pip sudo pip install flask
That is, first you install Python’s “pip” installer. Pip then knows how to install Python packages like Flask.
Whatever server you’re using, create a directory somewhere (perhaps under your home directory), called ‘trovetest’.
cd ~ mkdir trovetest cd trovetest
The Trove documentation says that to perform a query, we need to access a URL like this:
http://api.trove.nla.gov.au/result?key=<INSERT KEY>&zone=book&q=%22piers%20anthony%22
You might think you need to construct that string yourself, complete with question marks, equals signs and %22’s. You could do that using Python’s built-in urllib2 library:
import urllib2 apikey='1b2c3d4f' troveURL = 'http://api.trove.nla.gov.au/' zone = 'book' search = '%22' + 'piers' + '%20' + 'anthony' + '%22' r = urllib2.urlopen(troveURL + 'result' + '?' + 'key=' + apikey + '&' + 'zone=' + zone + '&' + 'q=' + search).read()
But it’s easier than that, if we use the Requests library.
import requests
apikey='1b2c3d4f'
troveURL = 'http://api.trove.nla.gov.au/'
searchquery = 'piers'
r = requests.get(troveURL + 'result/', params = {
'key': apikey,
'zone': 'book',
'q': search
} )
So, install the Requests library as well:
sudo pip install requests
These days, virtually all web applications use a JavaScript framework, to make manipulating the web page more practical. We’ll use jQuery, which is also required by Twitter BootStrap.
Create a directory under ‘trovetest’ called ‘static’, and download and unzip the latest jQuery.
Making a web page look good using straight CSS (cascading style sheets) is really hard. Making it look good in every browser and device is a nightmare. Save yourself the pain, and start from somewhere sensible like Bootstrap, made by Twitter. (By default, it looks a bit like Twitter’s website, but you can change that.)
Without Twitter Bootstrap
Adding Bootstrap and minimal changes.
Although it’s best to download both jQuery and Boostrap to your server and link to them there, you can get started quickly by linking to them on the web. Just include this text at the top of your HTML files.
<head> http://code.jquery.com/jquery-1.10.1.min.js <link rel="stylesheet" href="http://netdna.bootstrapcdn.com/bootstrap/3.1.0/css/bootstrap.min.css"> http://netdna.bootstrapcdn.com/bootstrap/3.1.0/js/bootstrap.min.js </head>
The most common way to build a web page dynamically is by writing a “template” of the HTML page. It can be as simple as this:
<body>
<h1>Request complete</h1>
You requested this article: {{ article.name }}
</body>
When you tell the web application framework to render the page, you pass in the list of variables – in this case, an object called ‘article’ with an attribute ‘name’.
We’ll use the Jinja2 templating engine, because that’s what Flask uses.
Now that everything is in place, let’s write a simple application that will simply make one request. We’ll ask the Trove API for a list of newspaper articles mentioning Piers Anthony (to follow their documentation’s example).
Create this file as ~/trovetest/simple.py
from flask import Flask, render_template, request # load Flask itself
import requests, json # load Requests library, and JSON library for interpreting responses
app = Flask(__name__) # create our web application object, named after this file
apikey = '1b2c3d...' # insert your API key, following instructions here: http://trove.nla.gov.au/general/api
troveURL = 'http://api.trove.nla.gov.au/' # all Trove API URLs start with this
@app.route("/list") # this is what we do when someone goes to "http://localhost:5000/list"
def list(): # the function that defines the behaviour
query = { # this dict structure contains the parameters that make up a URL
'key': apikey, # following the Trove API documentation.
'zone': 'newspaper',
'q': 'piers anthony',
'encoding': 'json', # we specify 'json' as the format because json is easy to parse.
'include': 'tags' }
r = requests.get(troveURL + 'result/', params=query)
# Requests will transform the params property into a string like
# ?key=...&zone=newspaper&q=%22piers%20anthony%22&include=tags&encoding=json
# After calling requests.get(), r is now an object containing lots of information about the response - errors codes, content etc.
r.encoding = 'ISO-8859-1' # We avoid some unicode conversion errors by adding this step.
results=r.json() # Convert the text we receive (in JSON format) into a Python dict
return render_template('list.html', results=results)# Render the template, passing through that dict
app.run(host='0.0.0.0', debug=True) # Run the defined web server, allowing anyone to connect, in debug mode. (This is not safe for a public web server.)
And save this as ~/trovetest/templates/list.html:
<!doctype html> <head> <script src="http://code.jquery.com/jquery-1.10.1.min.js"></script> <linkrel="stylesheet"href="http://netdna.bootstrapcdn.com/bootstrap/3.1.0/css/bootstrap.min.css"> <script src="http://netdna.bootstrapcdn.com/bootstrap/3.1.0/js/bootstrap.min.js"></script> </head> <body> <title>Trove test</title> <h1>Results</h1> <ul> {% for article in results.response.zone.0.records.article %} <li> <ahref="{{ article.troveUrl }}">{{ article.title.value }}</a> - <ahref="item/{{ article.id}}">More info</a> <br/> <i><small>{{ article.snippet | safe}}</small></i> </li> {% endfor %} </ul> </body>
On the command line, tell Python (and hence Flask) to run your application:
/home/ubuntu/trove$ python simple.py * Running on http://0.0.0.0:5000/ * Restarting with reloader
Flask will sit there waiting for someone to connect to your webserver in a browser.
In your browser, go to http://localhost/5000/list
The results of our little Trove query.
That was a very quick, high level view of all the pieces you need. If you made it through the example, you’re be in an excellent position to start making interesting web applications building on the Trove API. There’s no shortage of information on the web about all these technologies – the hard bit is knowing what you need to know.
All sorts of fun things can be done:
Tim Sherratt (aka @wragge) has made many fun creations with the Trove API, documented on his discontents.com.au blog. Tim works for the Trove team, who are generally pretty happy to help .
A researcher at the Australian Research Centre in Sex, Health and Society (ARCSHS, pronounced “archers”) carries out surveys that are both:
It’s a tricky combination, not well supported by most survey software. Here’s a solution, using LimeSurvey, that doesn’t require modifying any code. These instructions are aimed at people with no familiarity with LimeSurvey.
Quick summary:
LimeService is a very cheap way to host LimeSurvey, and removes the burden of server administration.
Participants must not sign up for the survey using their actual email address. Instead, they should go to a third-party email forwarding site like http://notsharingmy.info. For the participant:
(Note: as of January 2013, notsharingmy.info is unreliable. I’m working on another solution.)
This solution relies heavily on LimeSurvey’s “tokens” which are explained badly in the interface. Enabling tokens just means you want to track information about individual participants: individual adding them to the list, inviting them, keeping track of who completed the survey or who needs another reminder. We also add “additional attributes”: the participants’ previous answers.
By default, LimeSurvey collects from each self-registering participant their first name, last name and email address. For a truly anonymous survey, you may wish to avoid collecting their name.
...
<script>
$(function(){
$("[name=register_firstname]").parent().parent().hide()
$("[name=register_lastname]").parent().parent().hide()
});
</script>
</head>
The first survey was a success, and there are now lots of entries in the tokens table and the responses table. More in the former than the latter, because some people will sign up and not answer any questions.
The other fields don’t matter. Leave them blank.
In the question text, click ‘LimeSurvey replacement field properties’ then select the extended attribute:
The text then looks like this:
Make sure you retain the additional attribute fields (attribute_1 etc.) They should be blank.
Whew. You’re now ready to launch.
You can then repeat this process for each subsequent iteration.
Steve Bennett blogs 
Recent Comments