This has been moved into the official Chef docs:
https://docs.chef.io/custom_resources_notes.html
This is by far the most recommended way of writing resources for all users. There are two gotchas which we're working through:
- For helper functions that you used to write in your provider code or used to mixin to your provider code, you have to use an
action_class do ... endblock. - The 12.5 resources allow for a shorthand notation in provider code where you can refer to properties by their bare name
my_propertyand it works most of the time. Since it does not work all the time (because of the way ruby scopes things), its recommended to stick to referring to properties bynew_resource.my_property.
You cannot subclass, and must use mixins for code-sharing (which is really a best practice anyway -- e.g. see languages like rust which do not support subclassing).
in resources/whatever.rb:
resource_name :my_resource
provides :my_resource
property :foo, String, name_property: true
extend MyResourceHelperFunctions # probably only used for common properties which is why you extend with class methods
action_class do
include MyProviderHelperFunctions
def a_helper
end
end
action :run do
# helpers must be defined inside the action_class block
a_helper()
# you will save yourself some pain by referring to properties with `new_resource.foo` and not `foo`
# since the latter works most of the time, but will troll you with odd scoping problems, while the
# former just works.
puts new_resource.foo
endThis method is preferable to writing library providers. It has the same functionality as library providers, only you cannot subclass and must use mixins for code sharing (which is good).
in resources/my_resource.rb:
resource_name :my_resource
provides :my_resource
property :foo, String, name_property: true
extend MyResourceHelperFunctions # probably only used for common properties which is why you extend with class methodsin providers/my_resource.rb:
use_inline_resources # you still have to do this, if you don't notifications off of this resource will be broken
# you have to worry about this
def whyrun_supported?
true
end
include MyProviderHelperFunctions
def a_helper
end
action :run do
a_helper()
# here you have to use new_resource.foo
puts new_resource.foo
endLibrary resources are discouraged since you can more easily shoot yourself in the foot. They used to be encouraged back before Chef 12.0 provides was introduced since it allowed for renaming the resource so that it didn't have to be prefixed by the cookbook name.
There are many ways to go wrong writing library providers. One of the biggest issues is that internal chef-client code superficially looks like a library provider but is not. Our internal resources do not inherit from LWRPBase and we've had to manually create resources directly through Chef::Resource::File.new(), we also have not been able to use_inline_resources and not had access to other nicities that cookbook authors have had access to for years now. We've got some modernization of internal chef cookbook code now and resources like apt_update and apt_repository in core have started to be written more like cookbook code should be written, but core resources are actually behind the curve and are bad code examples.
in libraries/resource_my_resource.rb:
class MyBaseClass
class Resource
class MyResource < Chef::Resource::LWRPBase # it is very important to inherit from LWRPBase
resource_name :my_resource
provides :my_resource
property :foo, String, name_property: true
extend MyResourceHelperFunctions # probably only used for common properties which is why you extend with class methods
end
end
endin libraries/resource_my_resource.rb:
class MyBaseClass
class Resource
class MyProvider < Chef::Provider::LWRPBase # it is very important to inherit from LWRPBase
use_inline_resources # you still have to do this, if you don't notifications off of this resource will be broken
# you have to worry about this
def whyrun_supported?
true
end
include MyProviderHelperFunctions
def a_helper
end
# NEVER use `def action_run` here -- you defeat use_inline_resources and will break notifications if you (and recent foodcritic will tell you that you are wrong)
# If you don't understand how use_inline_resources is built and why you have to use the `action` method, and what the implications are and how resource notifications
# break if use_inline_resources is not used and/or is broken, then you should really not be using library providers+resources. You might feel "closer to the metal",
# but you're now using a chainsaw without any guard...
action :run do
a_helper()
# here you have to use new_resource.foo
puts new_resource.foo
end
end
end
endModern chef-client code (since Chef 11.0.0) should never have provider code_which directly sets updated_by_last_action itself.
THIS CODE IS WRONG:
action :run do
t = file "/tmp/foo" do
content "foo"
end
t.run_action(:install)
# This is Chef 10 code which fell through a timewarp into 2016 -- never use updated_by_last_action in modern Chef 11.x/12.x code
t.new_resource.updated_by_last_action(true) if t.updated_by_last_action?
endThat used to be kinda-correct-code-with-awful-edge-cases back in Chef 10. If you're not using Chef 10 you should stop writing actions this way.
THIS IS CORRECT:
use_inline_resources
def whyrun_supported?
true
end
action :run do
file "/tmp/foo" do
content "foo"
end
endThat is the magic of use_inline_resources (and why use_inline_resources is turned on by default in Chef 12.5 resources). The subresources are defined in a sub-resource collection which is compiled and converged as part of the provider executing. Any resources that update in the sub-resource collection cause the resource itself to be updated automatically. Notifications then fire normally off the resource. It also works to arbitrary levels of nesting of sub-sub-sub-resources being updating causing the wrapping resources to update and fire notifications.
This also gets the why-run case correct. If all the /work/ that you do in your resource is done by calling sub-resources, then why-run should work automatically. All your sub-resources will be NO-OP'd and will report what they /would/ have done instead of doing it.
If you do need to write code which mutates the system through pure-ruby then you should do so like this:
use_inline_resources
def whyrun_supported?
true
end
action :run do
unless File.exist?("/tmp/foo")
converge_by("touch /tmp/foo") do
::FileUtils.touch "/tmp/foo"
end
end
endThe converge_by block gets why-run correct and will just pring "would touch /tmp/foo" instead of actually doing it. The converge_by block is also responsible for setting update_by_last_action.
In order to use converge_by correctly you must ensure that you wrap the converge_by with an idempotency check otherwise your resource will be updated every time it is used and will always fire notifications on every run.
action :run do
# This code is bad, it lacks an idempotency check here.
# It will always be updated
# chef-client runs will always report a resource being updated
# It will run the code in the block on every run
converge_by("touch /tmp/foo") do
::FileUtils.touch "/tmp/foo"
end
endOf course it is vastly simpler to just use chef-resources when you can, compare the equivalent implementations:
# this:
action :run do
file "/tmp/foo"
end
# is basically the same as this:
action :run do
unless File.exist?("/tmp/foo")
converge_by("touch /tmp/foo") do
::FileUtils.touch "/tmp/foo"
end
end
endYou may see a lot of converge_by and updated_by_last_action in the core chef resources. Part of that is that we're writing a declarative language with an imperative language, and someone has to take the first step and write the declarative file resources in imperative ruby. The other part of that is just that our core resources have been lagging behind. They were written long ago, and if they work, nobody rewrites them. They are typically bad code examples. Do not emulate them thinking that is how the "experts" clearly write things.
You are my hero for posting this as I've had to do some more advanced Chef Resource work recently and it is finally making a lot more sense. Could any of this get translated to Chef Docs?