Skip to content
This repository has been archived by the owner on Aug 8, 2018. It is now read-only.

Latest commit

 

History

History
223 lines (175 loc) · 11.1 KB

README.md

File metadata and controls

223 lines (175 loc) · 11.1 KB

Hostbase

A highly scalable host and network database with full-text search and a RESTful API

Hostbase is currently under development, however it is quite usable. I created this project to help teach myself the Laravel framework, study REST API development, and apply enterprise architecture patterns. ~@bgetsug

Overview

Hostbase is a systems and network administration tool for cataloging hosts, subnets, and IP addresses. It is designed to support private or public cloud operations of any size. Whether you have a few dozen or a few thousand hosts across multiple environments and data centers, Hostbase can provide the foundation of a service-oriented architecture for tracking the lifecycle of hosts and networks. Instead of storing duplicate host information across your continuous integration server, deployment tools, provisioning system, or other CMDB, Hostbase can provide a single, centralized interface for storing and retrieving this information dynamically.

Technology

Hostbase uses Couchbase Server to store data with whatever schema you choose, so you're not locked in to any particular data models other than the primary concepts of hosts, subnets, and IPs. These objects are stored as JSON documents in a single Couchbase bucket. Using the Couchbase plug-in for Elasticsearch, data is streamed in real-time from Couchbase to Elasticsearch. This allows for full-text search using Elasticsearch/Lucene query string syntax. For example, let's assume you "tag" your hosts by role, environment, and data center. To retrieve a list of all hosts of the 'web_server' role, in the 'QA' environment, in the 'dallas01' data center, the search query might be as simple as: env:qa AND role:web_server AND datacenter:dallas01.

In addition to Couchbase and Elasticsearch, Hostbase requires a web server with PHP 5.5 or greater. All search and CRUD operations are available through a RESTful web service.

Installation

A rough overview (everything on a single machine)...

  1. Download and install Couchbase Server
  2. On your Couchbase server:
    • Create (or keep) the 'default' bucket. This will be used for sessions / cache.
    • Create a bucket called 'hostbase' (you can call it whatever you want, but the default config supports this naming convention)
  3. Download and install Elasticsearch 1.3.0.
  4. On your Elasticsearch server, create an index called 'hostbase' with at least 1 shard...replicas are optional but recommended. The data can always be re-indexed by replicating from Couchbase again.
  5. Install the Couchbase Plug-in for Elasticsearch
  6. Configure Couchbase XDCR to replicate the 'hostbase' bucket to the Elasticsearch cluster
  7. Install PHP 5.5 and the web server of your choice (tested with Apache)
  8. Install the Couchbase PHP Client Library
  9. Download/clone this whole repository to the directory of your choice, and configure your web server to serve it as you would any other Laravel-based project. See http://laravel.com/docs/installation for more info. You can also download it with Composer by running composer create-project shift31/hostbase -s dev.
  10. From the project root, run: composer install

Optional, but recommended, download the CLI (PHAR)

Development Server (Vagrant)

For development or trial purposes, save yourself some installation time and use Vagrant. You'll need 1.5 GB free RAM.

git clone https://github.com/shift31/hostbase.git
cd hostbase
vagrant up
vagrant ssh
cd /vagrant
composer install

Configuration

See http://laravel.com/docs/configuration for background information on configuring a Laravel-based project.

  1. Edit app/config/app.php accordingly.
  2. Edit app/config/database.php with your Couchbase server info (if you're running Couchbase on a separate host).
  3. Edit app/config/elasticsearch.php as needed. See https://github.com/shift31/laravel-elasticsearch for details.
  4. If you don't want to use Couchbase's memcached functionality for sessions/cache, edit app/config/session.php and app/config/cache.php accordingly.

Usage

There's no web UI or bulk raw data (JSON, CSV) import tool yet. So if you have a lot of hosts, your best bet is to use the PHP Client Library and write your own importer. Feel free to explore the importers below for examples.

REST API endpoints

URI Action Comments
GET hosts HostController@index Lists all hosts
POST hosts HostController@store
GET hosts/{host} HostController@show
PUT hosts/{host} HostController@update
PATCH hosts/{host} HostController@update
DELETE hosts/{host} HostController@destroy
GET subnets SubnetController@index Lists all subnets
POST subnets SubnetController@store
GET subnets/{subnet} SubnetController@show
PUT subnets/{subnet} SubnetController@update
PATCH subnets/{subnet} SubnetController@update
DELETE subnets/{subnet} SubnetController@destroy
GET ipaddresses IpAddressController@index Lists all IP addresses
POST ipaddresses IpAddressController@store
GET ipaddresses/{ipaddress} IpAddressController@show
PUT ipaddresses/{ipaddress} IpAddressController@update
PATCH ipaddresses/{ipaddress} IpAddressController@update
DELETE ipaddresses/{ipaddress} IpAddressController@destroy
  • Must receive JSON (Content-Type: application/json)
    • /hosts
      • Example:

        {
            "fqdn": "hostname.domain.tld",
            "hostname": "hostname",
            "domain": "domain.tld",
            "adminCredentials": {
                "username": "admin_username",
                "password": "admin_password"
            }
        }
      • Required fields:

        • fqdn
        • hostname (automatically generated from FQDN if not specified)
        • domain (automatically generated from FQDN if not specified)
      • Special (optional) fields:

        • adminCredentials - Passwords will be encrypted prior to storage in the database, and decrypted on retrieval via the API
    • /subnets
      • Example:

        {
            "network": "10.0.0.0",
            "netmask": "255.255.255.0",
            "gateway": "10.0.0.254",
            "cidr": "24"
        }
      • Required fields:

        • network
        • netmask
        • gateway
        • cidr
    • /ipaddresses
      • Example:

        {
            "subnet": "10.0.0.0/24",
            "ipAddress": "10.0.0.1",
            "host": "hostname.domain.tld"
        }
      • Required fields:

        • subnet
        • ipAddress
  • Search, where the 'q' parameter is an elasticsearch/lucene query string:
    • /hosts?q=
    • /subnets?q=
    • /ipaddresses?q=
    • Other parameters:
      • limit (defaults to 10,000; sets the 'size' of Elasticsearch results)
      • showData ('1' = true [default], '0' = false)

cURL examples

Store a host
curl -H 'Content-Type: application/json' http://hostbase.192.168.33.10.xip.io/hosts -d '
{
    "fqdn": "hostname.domain.tld",
    "hostname": "hostname",
    "domain": "domain.tld",
    "adminCredentials": {
        "username": "admin_username",
        "password": "admin_password"
    }
}' | python -m json.tool
Show a host

curl http://hostbase.192.168.33.10.xip.io/hosts/hostname.domain.tld | python -m json.tool

Update a host (add a field)

curl -X PUT -H 'Content-Type: application/json' http://hostbase.192.168.33.10.xip.io/hosts/hostname.domain.tld -d '{ "foo": "bar" }' | python -m json.tool

Update a host (delete a field)

curl -X PUT -H 'Content-Type: application/json' http://hostbase.192.168.33.10.xip.io/hosts/hostname.domain.tld -d '{ "foo": null }' | python -m json.tool

Delete a host

curl -X DELETE http://hostbase.192.168.33.10.xip.io/hosts/hostname.domain.tld | python -m json.tool

Command Line Interface

The CLI leverages the API client library, so you can administer your Hostbase server from anywhere PHP is installed.

https://github.com/shift31/hostbase-cli

Importers

API Client Library for PHP

https://github.com/shift31/hostbase-api-client-php

Security

If your host and network data is sensitive, it is up to you to provide the firewalls, VPNs, and associated authentication methods to protect your data.

Basic authentication will be implemented soon, but until then it is recommended (at the very least) to only operate Hostbase server/client on a private network.

To-do / ?

  • Tests
  • Implement HTTP Basic Authentication with users stored in Hostbase and/or LDAP
  • Ansible Playbook to help automate installation
  • Integrations
    • Script to periodically update Hostbase from Puppet Facts...likely using Facter output, run via Cron
    • Puppet function to allow querying of Hostbase from Puppet manifests
    • Hiera backend to allow querying of Hostbase from Hiera
  • Command line tool to aid initial configuration (driven by Laravel's artisan command)
  • API
    • Pagination
    • Sorting
    • Bulk operations
  • ...