Small Go utility to:
- Put data into Consul's KV store.
- Pull data out of Consul's KV store and write it to a file.
Why a dedicated utility though? Can't I just do it with curl?
Yes you can - but we kept wanting to:
- Make sure the file was long enough. 0-length configuration files are bad.
- Load the file from some other custom templating process - not just from straight KV files.
- Put the file into any location in the filesystem.
- Restart/reload/stop/start daemon after writing the file.
- Run some other custom command after writing the file.
- Verify that the file we put into the KV was the same file that was written on the other end.
- Stop the process on all nodes - in or out - if we want everything to stay as it is for the moment.
We did this at first with some custom Ruby scripts - but the pattern was apparent and could be applied to many other files as well.
This replaces all the custom Ruby/shell scripts with a single Go binary we can use to get data in and out.
kvexpress in --key hosts --file /etc/consul-template/output/hosts.consul --length 100 --sorted=true
- Check that at least
--fileand--keyare passed along with the command. Quit if they're not present - there are no safe defaults for those flags. - Check for the existence of a
stopkey - if it's there - stop and exit. - Read the file into a string, and sort the string if requested.
- Check if the file is long enough - if not - stop and exit.
- Save the file to a
.comparefile - we will use this data from now on. - Check for the existence of a
.lastfile - if it's not there - create it. - Are the
.compareand.lastfiles blank? If not - let's continue. - Compare the checksums of the
.compareand.lastfiles - if they're different - continue. - Grab the checksum from Consul and compare with the
.comparefile - if it's different - then let's update. This is to guard against it running on multiple server nodes that might have different.lastfiles. - Save
data, andchecksumkeys. - Copy
.compareto.last - If
--execis passed - run that command.
kvexpress out -k hosts -f /etc/hosts.consul -l 100 -e 'sudo pkill -HUP dnsmasq'
- Check that at least
--fileand--keyare passed along with the command. Quit if they're not present - there are no safe defaults for those flags. - Check for the existence of a
stopkey - if it's there - stop and exit. - Pull the
dataandchecksumkeys out of Consul. - If
datais long enough and thechecksumas computed on this side matches thechecksumkey - then continue. - Write the contents of
datato the passed--filelocation. - If
--execis passed - run that command.
Usage:
kvexpress in [flags]
Flags:
-f, --file="": filename to read data from
-k, --key="": key to push data to
-S, --sorted[=false]: sort the input file
-u, --url="": url to read data from
Global Flags:
-c, --chmod=416: permissions for the file
-C, --config="": Config file location
-a, --datadog_api_key="": Datadog API Key
-A, --datadog_app_key="": Datadog App Key
-d, --dogstatsd[=false]: send metrics to dogstatsd
-D, --dogstatsd_address="localhost:8125": address for dogstatsd server
-e, --exec="": Execute this command after
-l, --length=10: minimum amount of lines in the file
-p, --prefix="kvexpress": prefix for the key
-s, --server="localhost:8500": Consul server location
-t, --token="": Token for Consul access
-o, --owner="": who to write the file as
Example: kvexpress in -d true -k hosts -f /etc/consul-template/output/hosts.consul -l 100 --sorted=true
Usage:
kvexpress out [flags]
Flags:
-f, --file="": where to write the data
--ignore_stop[=false]: ignore stop key
-k, --key="": key to pull data from
Global Flags:
-c, --chmod=416: permissions for the file
-C, --config="": Config file location
-a, --datadog_api_key="": Datadog API Key
-A, --datadog_app_key="": Datadog App Key
-d, --dogstatsd[=false]: send metrics to dogstatsd
-D, --dogstatsd_address="localhost:8125": address for dogstatsd server
-e, --exec="": Execute this command after
-l, --length=10: minimum amount of lines in the file
-p, --prefix="kvexpress": prefix for the key
-s, --server="localhost:8500": Consul server location
-t, --token="": Token for Consul access
-o, --owner="": who to write the file as
Example out as a Consul watch:
{
"watches": [
{
"type":"key",
"key":"/kvexpress/hosts/checksum",
"handler":"kvexpress out -d true -k hosts -f /etc/hosts.consul -l 100 -e 'sudo pkill -HUP dnsmasq'"
}
]
}
Usage:
kvexpress clean [flags]
Flags:
-f, --file="": file to clean
Global Flags:
-c, --chmod=416: permissions for the file
-C, --config="": Config file location
-a, --datadog_api_key="": Datadog API Key
-A, --datadog_app_key="": Datadog App Key
-d, --dogstatsd[=false]: send metrics to dogstatsd
-D, --dogstatsd_address="localhost:8125": address for dogstatsd server
-e, --exec="": Execute this command after
-l, --length=10: minimum amount of lines in the file
-p, --prefix="kvexpress": prefix for the key
-s, --server="localhost:8500": Consul server location
-t, --token="": Token for Consul access
-o, --owner="": who to write the file as
Usage:
kvexpress stop [flags]
Flags:
-k, --key="": key to stop
-r, --reason="": reason to stop
Global Flags:
-c, --chmod=416: permissions for the file
-C, --config="": Config file location
-a, --datadog_api_key="": Datadog API Key
-A, --datadog_app_key="": Datadog App Key
-d, --dogstatsd[=false]: send metrics to dogstatsd
-D, --dogstatsd_address="localhost:8125": address for dogstatsd server
-e, --exec="": Execute this command after
-l, --length=10: minimum amount of lines in the file
-p, --prefix="kvexpress": prefix for the key
-s, --server="localhost:8500": Consul server location
-t, --token="": Token for Consul access
-o, --owner="": who to write the file as
How are keys organized in Consul's KV store to work with kvexpress?
Underneath a global prefix /kvexpress/ - each directory represents a specific file we are distributing through the KV store.
Each directory is named for the unique key and has the following keys underneath it:
data- where the configuration file is stored.checksum- where the SHA256 of the data is stored.
For example - the hosts file is arranged like this:
/kvexpress/hosts/data
/kvexpress/hosts/checksum
There is an optional stop key - that if present - will cause all in and out processes to stop before writing anything. Allows us to freeze the automatic process if we need to.
To build: make deps && make
To run integration tests: make deps && make && make test
To build for Linux: make deps && make linux
To launch an empty Consul instance: make consul
./kvexpress out -h shows you the flags you need to use.