Understanding fabric

I've just stumbled upon Fabric and the documentation doesn't really make it obvious how it works.

My educated guess is that you need to install it on both client-side and server-side. The Python code is stored on the client side and transferred through Fabric's wire-protocol when the command is run. The server accepts connections using the OpenSSH SSH daemon through the ~/.ssh/authorized_keys file for the current user (or a special user, or specified in th开发者_Go百科e host name to the fab command).

Is any of this correct? If not, how does it work?

From the docs:

Fabric is a Python (2.5 or higher) library and command-line tool for streamlining the use of SSH for application deployment or systems administration tasks.

It provides a basic suite of operations for executing local or remote shell commands (normally or via sudo) and uploading/downloading files, as well as auxiliary functionality such as prompting the running user for input, or aborting execution.

So it's just like ssh'ing into a box and running the commands you've put into run()/sudo().

There is no transfer of code, so you only need to have ssh running on the remote machine and have some sort of shell (bash is assumed by default).

If you want remote access to a python interpreter you're more looking at something like execnet.

If you want more information on how execution on the remote machine(s) work look to this section of the docs.

Most what you are saying is correct, except that the "fabfile.py" file only has to be stored on your client. An SSH server like OpenSSH needs to be installed on your server and an SSH client needs to be installed on your client.

Fabric then logs into one or more servers in turn and executes the shell commands defined in "fabfile.py". If you are located in the same dir as "fabfile.py" you can go "fab --list" to see a list of available commands and then "fab [COMMAND_NAME]" to execute a command.

The user on the server does not need to be added to "~/.ssh/authorized_keys" but if it is you don't have to type the password every time you want to execute a command.