A Chef Server cluster utilizing Amazon services for high availability, auto-scaling and DBaaS

• A "bootstrap" frontend in an Auto Scaling Group of 1.
• A second frontend in an Auto Scaling Group that will automatically scale up to a configured maximum (default 3)
• A Multi-AZ Elastic Load Balancer
• A Multi-AZ RDS Postgres database
• A Multi-AZ ElasticSearch cluster
• Various security groups, iam profiles, and various pieces to connect the things.
• Cloudwatch alarms and an Operations dashboard in Cloudwatch:

• A working knowledge and comfort level with CloudFormation so that you can read and understand this template for your self
• Permissions to create all of the types of resources specified in this template (IAM roles, Database subnets, etc)
• A valid SSL certificate ARN (from the AWS Certificate Manager service)

You can launch this stack with the push of a button:

However, the most repeatable and least error-prone way to launch this stack is to use the aws command-line. First copy file stack_parameters.json.example to stack_parameters.json, make the necessary changes, then run this command:

aws cloudformation create-stack \
  --stack-name irving-backendless-chef \
  --template-body file://backendless_chef.yaml \
  --capabilities CAPABILITY_IAM \
  --on-failure DO_NOTHING \
  --parameters file://stack_parameters.json

If you've made changes to the template content or parameters and you wish to update a running stack:

aws cloudformation validate-template --template-body file://backendless_chef.yaml &&
aws cloudformation update-stack \
  --stack-name irving-backendless-chef \
  --template-body file://backendless_chef.yaml \
  --capabilities CAPABILITY_IAM \
  --parameters file://stack_parameters.json

Note: For production instances it is recommended to use the CloudFormation console so that you can get a report of all changes before executing them. Particularly pay attention to any resources that are being replaced.

If you're using a bastion host and need to SSH from the outside:

ssh -o ProxyCommand="ssh -W %h:%p -q ec2-user@bastion" -l ec2-user <chef server private ip>

otherwise just login as ec2-user to the private IPs of the chef servers

If a new Chef Server or Manage package comes out, the process for upgrading is simple and requires no downtime:

1. Using Cloudformation's update-stack functionality, update the ChefServerPackage and ChefManagePackage parameters to the new URLs.

• Confirm in the ChangeSet that this will only ServerLaunchConfig resource and no others!

2. Wait for the update-stack to run, it may take a few minutes for the new metadata to be available
3. Terminate the bootstrap frontend instance (aka mystack-chef-bootstrap-frontend). AutoScale will launch a new one within a few seconds that will pick up the new package versions and upgrade.
4. SSH to the new bootstrap frontend and tail the /var/log/cfn-init.log - waiting until you see an [INFO] syncing bootstrap secrets up to S3 message which lets you know that the upgrade was successful. There may be a minute or two with no output, because the output isn't live streamed.

• Caution: if significant database schema changes were made then your remaining frontends may begin throwing 500 errors for certain types of operations. This doesn't happen often, but you should always perform these test upgrades in a non-production cluster first to understand the ramifications of your change.

5. Terminate all of the non-bootstrap frontend instances. the same process will happen.

• alternatively, temporarily increase the desired capacity to launch new instances and then decrease it back to the original level to terminate the old instances

6. You're up to date!

Yes, it is significantly more robust and easier to operate.

• It is based on the architecture of Hosted Chef (albeit simplified)
• AWS RDS and ElasticSearch significantly reduce the maintenance burden compared to chef-backend
• AWS RDS and ElasticSearch provide a much better model for multi-AZ operations than chef-backend, and AWS RDS provides cross-region replication capabilities

• The Chef software installed (Chef Server and add-ons) are fully supported by Chef. The operating mode (using AWS RDS and ES) is also fully supported by Chef.
• For everything else, there are no support SLAs. including:
  • The template itself and any errors you may have provisioning services (talk to your Customer Success team if you need help)
  • Any AWS services provisioned (RDS, ElasticSearch) - please direct questions to AWS Customer Support

• Support for restoring from an RDS Snapshot and existing secrets bucket
• Investigate better secrets handling (AWS secrets service?)
• Investigate alternatives to AWS Postgres RDS, namely AWS Aurora's Postgres mode and/or RedShift

Contributions are welcomed!

This project was inspired by the work of Levi Smith of the Hearst Automation Team and published at HearstAT/cfn_backendless_chef. Thanks Levi!

Contributors:

• Irving Popovetsky
• Joshua Hudson
• Levi Smith