Published on 3 November 2015 by

Puppet Enterprise 2015.3 will be available later this year, and we’ve shared a great deal over the past month about Puppet Application Orchestration, our new solution that helps organizations deliver, install, configure and maintain distributed applications. But that’s not all — the release also includes several new capabilities that make managing infrastructure as code with Puppet even easier, and enable speed and reliability across growing IT organizations.

Code Manager Service

The new Code Manager Service enables you to get new code from your laptop to servers more rapidly, in a complete workflow that automates syncing of new Puppet code from your version control system (VCS) to your Puppet master.

Application developers in your organization probably have been using version control for collaboration and traceability for years. In fact, your sysadmins may also be using version control, which is great. If not, they should be! But whether you're in dev or ops, using a VCS requires some manual steps, so the benefits of version control can sometimes come at the cost of a faster production pace.

Now you can eliminate all of those manual steps and save yourself some time. You no longer have to nurse code along through a tedious workflow, enabling you to continuously deliver changes to your infrastructure.

The Code Manager Service integrates with GitHub.com, GitHub Enterprise, Stash, GitLab and your existing version control workflow — for example, code reviews before merging. The service runs on any supported Puppet master platform and offers permission-gating ability to start a sync. The service also communicates with servers over SSL and provides an API endpoint for custom integrations.

Token Authentication

Since it first launched, Puppet Enterprise has provided a web GUI for managing and understanding your infrastructure. We’ve also provided command-line tools for fast workflows and APIs for integrations that you could easily utilize from your Puppet master servers. What remained was providing a way to use CLI tools and APIs directly from your workstation.

In addition, as Puppet Enterprise has been broadly adopted by enterprises, we've become aware of an increased need to safely delegate capabilities beyond infrastructure sysadmins to other people — app developers, for example.

That's why we’ve added a new token authentication capability to Puppet Enterprise 2015.3, integrated with the role-based access control (RBAC) that's already in Puppet Enterprise. With Puppet Enterprise RBAC, admins are able to delegate access to key capabilities and services. What’s new is that users can now authenticate with their credentials and get a token that permits them to use capabilities and services remotely, or to create integrations with Puppet Enterprise.

In the 2015.3 release, tokens are integrated with key Puppet Enterprise command-line tools such as Application Orchestration and services such as Node Classifier and Code Manager. These will accept a token (based on your credentials) to authenticate and adhere to authorization policies set for each user in RBAC. Now you can use command-line tools and services from your workstation so you don’t have to SSH into master servers first, and each action is logged in your name.

You can also generate tokens for use with other systems, such as GitHub or Jenkins. This enables you to develop integrations with Puppet Enterprise services so you can automate safely and more reliably, and maintain an activity log for auditing purposes.

Screenshot of creating a separate account for integrations in Puppet Enterprise
Have a separate account for integrations.
Screenshot of User Roles editing in Puppet Enterprise
Allocate minimal permissions for safety.
Screenshot of how to generate a token with a six-month lifetime in the command line
Easily generate a token with a six-month lifetime, appropriate for an unattended service.
Screenshot of where you can use the token to secure integration with GitHub
Use the token to secure integration with GitHub.

Code Manager Service and token authentication will be available to customers later this year in Puppet Enterprise 2015.3. Interested in learning more?

Lindsey Smith is a senior engineering product manager at Puppet Labs.

Share via:
Posted in:

Add new comment

The content of this field is kept private and will not be shown publicly.

Restricted HTML

  • Allowed HTML tags: <a href hreflang> <em> <strong> <cite> <blockquote cite> <code> <ul type> <ol start type> <li> <dl> <dt> <dd> <h2 id> <h3 id> <h4 id> <h5 id> <h6 id>
  • Lines and paragraphs break automatically.
  • Web page addresses and email addresses turn into links automatically.