Packer
Template Engine
Note: This page is about older-style JSON Packer templates. JSON templates are still supported by the Packer core, but new features added to the Packer core may not be implemented for JSON templates. We recommend you transition to HCL templates as soon as is convenient for you, in order to have the best possible experience with Packer. To help you upgrade your templates, we have written an hcl2_upgrade command command.
All strings within templates are processed by a common Packer templating engine, where variables and functions can be used to modify the value of a configuration parameter at runtime.
The syntax of templates uses the following conventions:
- Anything template related happens within double-braces:
{{ }}
. - Functions are specified directly within the braces, such as
{{timestamp}}
. - Template variables are prefixed with a period and capitalized, such as
{{.Variable}}
.
Functions
Functions perform operations on and within strings, for example the
{{timestamp}}
function can be used in any string to generate the current
timestamp. This is useful for configurations that require unique keys, such as
AMI names. By setting the AMI name to something like My Packer AMI {{timestamp}}
, the AMI name will be unique down to the second. If you need
greater than one second granularity, you should use {{uuid}}
, for example
when you have multiple builders in the same template.
Here is a full list of the available functions for reference.
build_name
- The name of the build being run.build_type
- The type of the builder being used currently.clean_resource_name
- Image names can only contain certain characters and have a maximum length, eg 63 on GCE & 80 on Azure.clean_resource_name
will convert upper cases to lower cases and replace illegal characters with a "-" character. Example:"mybuild-{{isotime | clean_resource_name}}"
will becomemybuild-2017-10-18t02-06-30z
.Note: Valid Azure image names must match the regex
^[^_\\W][\\w-._)]{0,79}$
Note: Valid GCE image names must match the regex
(?:[a-z](?:[-a-z0-9]{0,61}[a-z0-9])?)
This engine does not guarantee that the final image name will match the regex; it will not truncate your name if it exceeds the maximum number of allowed characters, and it will not validate that the beginning and end of the engine's output are valid. For example,
"image_name": {{isotime | clean_resource_name}}"
will cause your build to fail because the image name will start with a number, which is why in the above example we prepend the isotime with "mybuild". Exact behavior ofclean_resource_name
will depend on which builder it is being applied to; refer to build-specific docs below for more detail on how each function will behave.env
- Returns environment variables. See example in using home variablebuild
- This engine will allow you to access, from provisioners and post-processors, special variables that provide connection information and basic instance state information. Usage example:{ "type": "shell-local", "environment_vars": ["TESTVAR={{ build `PackerRunUUID`}}"], "inline": ["echo $TESTVAR"] }
Valid variables to request are:
ID: Represents the vm being provisioned. For example, in Amazon it is the instance id; in digitalocean, it is the droplet id; in Vmware, it is the vm name.
Host, Port, User and Password: The host, port, user, and password that Packer uses to access the machine. Useful for using the shell local provisioner to run Ansible or Inspec against the provisioned instance.
ConnType: Type of communicator being used. For example, for SSH communicator this will be "ssh".
PackerRunUUID: Current build's unique id. Can be used to specify build artifacts. An example of that, is when multiple builds runs at the same time producing the same artifact. It's possible to differentiate these artifacts by naming them with the builds' unique ids.
PackerHTTPIP, PackerHTTPPort, and PackerHTTPAddr: HTTP IP, port, and address of the file server Packer creates to serve items in the "http" dir to the vm. The HTTP address is displayed in the format
IP:PORT
.SSHPublicKey and SSHPrivateKey: The public and private key that Packer uses to connect to the instance. These are unique to the SSH communicator and are unset when using other communicators. SSHPublicKey and SSHPrivateKey can have escape sequences and special characters so their output should be single quoted to avoid surprises. For example:
{ ... "provisioners": [{ "type": "shell", "inline": [ "echo '{{ build `SSHPrivateKey`}}' > /tmp/packer-session.pem" ] }] }
For backwards compatibility,
WinRMPassword
is also available through this engine, though it is no different than using the more generalPassword
.This function is only for use within specific options inside of provisioners -- these options will be listed as being template engines in the provisioner documentation.
For builder-specific builder variables, please also refer to the builder docs:
- Amazon EC2: chroot, EBS Volume, EBS, EBS Surrogate, Instance.
This engine is in beta; please report any issues or requests on the Packer issue tracker on GitHub.
isotime [FORMAT]
- UTC time, which can be formatted. See more examples below in theisotime
format reference.strftime FORMAT
- UTC time, formated using the ISO C standard formatFORMAT
. See jehiah/go-strftime for a list of available format specifiers.Please note that if you are using a large number of builders, provisioners or post-processors, using the isotime engine directly in the plugin configuration may cause the timestamp to be slightly diffferent for each plugin. This is because the timestamp is generated when each plugin is launched rather than in the initial Packer process. In order to avoid this and make sure the timestamp is consistent across all plugins, set it as a user variable and then access the user variable within your plugins.
lower
- Lowercases the string.packer_version
- Returns Packer version.pwd
- The working directory while executing Packer.replace
- ( old, new string, n int, s ) Replace returns a copy of the string s with the first n non-overlapping instances of old replaced by new.replace_all
- ( old, new string, s ) ReplaceAll returns a copy of the string s with all non-overlapping instances of old replaced by new.split
- Split an input string using separator and return the requested substring.template_dir
- The directory to the template for the build.timestamp
- The Unix timestamp in UTC when the Packer process was launched. Please note that if you are using a large number of builders, provisioners or post-processors, the timestamp may be slightly different for each one because it is from when the plugin is launched not the initial Packer process. In order to avoid this and make the timestamp consistent across all plugins, set it as a user variable and then access the user variable within your plugins.uuid
- Returns a random UUID.upper
- Uppercases the string.user
- Specifies a user variable.
Specific to Amazon builders:
clean_resource_name
- AMI names can only contain certain characters. This function will replace illegal characters with a '-" character. Example usage since ":" is not a legal AMI name is:{{isotime | clean_resource_name}}
.
Specific to Google Compute builders:
clean_resource_name
- GCE image names can only contain certain characters and the maximum length is- This function will convert upper cases to lower cases and replace illegal characters with a "-" character. Example:
"mybuild-{{isotime | clean_resource_name}}"
will becomemybuild-2017-10-18t02-06-30z
.Note: Valid GCE image names must match the regex
(?:[a-z](?:[-a-z0-9]{0,61}[a-z0-9])?)
This engine does not guarantee that the final image name will match the regex; it will not truncate your name if it exceeds 63 characters, and it will not validate that the beginning and end of the engine's output are valid. For example,
"image_name": {{isotime | clean_resource_name}}"
will cause your build to fail because the image name will start with a number, which is why in the above example we prepend the isotime with "mybuild".
Specific to Azure builders:
clean_resource_name
- Azure managed image names can only contain certain characters and the maximum length is 80. This function will replace illegal characters with a "-" character. Example:"mybuild-{{isotime | clean_resource_name}}"
will becomemybuild-2017-10-18t02-06-30z
.Note: Valid Azure image names must match the regex
^[^_\\W][\\w-._)]{0,79}$
This engine does not guarantee that the final image name will match the regex; it will not truncate your name if it exceeds 80 characters, and it will not validate that the beginning and end of the engine's output are valid. It will truncate invalid characters from the end of the name when converting illegal characters. For example,
"managed_image_name: "My-Name::"
will be converted to"managed_image_name: "My-Name"
Template variables
Template variables are special variables automatically set by Packer at build
time. Some builders, provisioners and other components have template variables
that are available only for that component. Template variables are recognizable
because they're prefixed by a period, such as {{ .Name }}
. For example, when
using the shell
builder template variables
are available to customize the
execute_command
parameter
used to determine how Packer will run the shell command.
{
"provisioners": [
{
"type": "shell",
"execute_command": "{{.Vars}} sudo -E -S bash '{{.Path}}'",
"scripts": ["scripts/bootstrap.sh"]
}
]
}
The {{ .Vars }}
and {{ .Path }}
template variables will be replaced with
the list of the environment variables and the path to the script to be executed
respectively.
Note: In addition to template variables, you can specify your own user variables. See the user variable documentation for more information on user variables.
isotime Function Format Reference
The isotime template engine uses golang to generate timestamps. If you're unfamiliar with golang, then the way you format the timestamp is going to feel a bit unusual compared to how you may be used to formatting datetime strings.
Full docs and examples for the golang time formatting function can be found here
However, the formatting basics are worth describing here. From the golang docs:
These are predefined layouts for use in Time.Format and time.Parse. The reference time used in the layouts is the specific time:
Mon Jan 2 15:04:05 MST 2006
which is Unix time 1136239445. Since MST is GMT-0700, the reference time can be thought of as
01/02 03:04:05PM '06 -0700
To define your own format, write down what the reference time would look like formatted your way; see the values of constants like ANSIC, StampMicro or Kitchen for examples. The model is to demonstrate what the reference time looks like so that the Format and Parse methods can apply the same transformation to a general time value.
So what does that look like in a Packer template function? Here's an example of how you'd declare a variable using the isotime function.
"variables": {
"myvar": "packer-{{isotime `2006-01-02 03:04:05`}}"
}
You can try and modify the following examples in a packer template or in
packer console
to get an idea of how to set different timestamps:
Input | Output |
---|---|
"packer-{{isotime `2006-01-02`}}" | "packer-2021-05-17" |
"packer-{{isotime `Jan-_2-15:04:05.000`}}" | "packer-May-17-23:40:16.786" |
"packer-{{isotime `3:04PM`}}" | "packer-11:40PM" |
"{{ isotime }}" | "June 7, 7:22:43pm 2014" |
"{{isotime `2006-01-02`}}" | "2014-06-07" |
"{{isotime `Mon 1504`}}" | "Sat 1922" |
"{{isotime `02-Jan-06 03\_04\_05`}}" | "07-Jun-2014 07_22_43" |
"{{isotime `Hour15Year200603`}}" | "Hour19Year201407" |
Formatting for the function isotime
uses the magic reference date Mon Jan 2
15:04:05 -0700 MST 2006, which breaks down to the following:
Day of Week | Month | Date | Hour | Minute | Second | Year | Timezone | |
---|---|---|---|---|---|---|---|---|
Numeric | - | 01 | 02 | 03 (15) | 04 | 05 | 06 | -0700 |
Textual | Monday (Mon) | January (Jan) | - | - | - | - | - | MST |
The values in parentheses are the abbreviated, or 24-hour clock values
Note that "-0700" is always formatted into "+0000" because isotime
is always
UTC time.
split Function Format Reference
The function split
takes an input string, a seperator string, and a numeric
component value and returns the requested substring.
Please note that you cannot use the split
function on user variables, because
we can't nest the functions currently. This function is indended to be used on
builder variables like build_name. If you need a split user variable, the best
way to do it is to create a separate variable.
Here are some examples using the above options:
build_name = foo-bar-provider
{{split build_name "-" 0}} = foo
{{split "fixed-string" "-" 1}} = string
Please note that double quote characters need escaping inside of templates (in
this case, on the fixed-string
value):
{
"post-processors": [
[
{
"type": "vagrant",
"compression_level": 9,
"keep_input_artifact": false,
"vagrantfile_template": "tpl/{{split build_name \"-\" 1}}.rb",
"output": "output/{{build_name}}.box",
"only": ["org-name-provider"]
}
]
]
}
replace Function Format Reference
Here are some examples using the replace options:
build_name = foo-bar-provider
{{ replace_all "-" "/" build_name }} = foo/bar/provider
{{ build_name | replace "-" "/" 1 }} = foo/bar-provider