diff --git "a/Docker\345\256\211\350\243\205\350\204\232\346\234\254/MinIo/run.sh" "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/MinIo/run.sh" new file mode 100644 index 0000000..5da9bb9 --- /dev/null +++ "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/MinIo/run.sh" @@ -0,0 +1,11 @@ +#!/bin/bash +cur_dir=`pwd` + +docker stop lamp_minio +docker rm lamp_minio +docker run -p 9000:9000 -p 9999:9999 --name lamp_minio --restart=always \ + -e "MINIO_ROOT_USER=lamp" \ + -e "MINIO_ROOT_PASSWORD=ZHadmin123." \ + -v /Users/tangyh/data/minio_data:/data \ + -v /Users/tangyh/data/minio_config:/root/.minio \ + -d minio/minio server --address '0.0.0.0:9000' --console-address '0.0.0.0:9999' /data diff --git "a/Docker\345\256\211\350\243\205\350\204\232\346\234\254/mssql/start.sh" "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/mssql/start.sh" new file mode 100644 index 0000000..e7a7f51 --- /dev/null +++ "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/mssql/start.sh" @@ -0,0 +1,13 @@ +#!/bin/bash +cur_dir=`pwd` + + +docker stop mssql +docker rm mssql +sudo docker run --name mssql -e 'ACCEPT_EULA=Y' \ + -e 'MSSQL_SA_PASSWORD=1234@abcd' \ + -p 1433:1433 \ + -v /opt/mssql/data:/var/opt/mssql/data \ + -v /opt/mssql/log:/var/opt/mssql/log \ + -v /opt/mssql/secrets:/var/opt/mssql/secrets \ + mcr.microsoft.com/mssql/server:2019-latest diff --git "a/Docker\345\256\211\350\243\205\350\204\232\346\234\254/mysql8/conf/my.cnf" "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/mysql8/conf/my.cnf" new file mode 100644 index 0000000..2f2e55b --- /dev/null +++ "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/mysql8/conf/my.cnf" @@ -0,0 +1,33 @@ +[mysql] +default-character-set=utf8mb4 + +[mysqld] +federated +default-storage-engine=INNODB +character_set_server=utf8mb4 +collation-server = utf8mb4_general_ci + +datadir = /var/lib/mysql +port = 3306 +socket = /var/run/mysqld/mysqld.sock +lower_case_table_names=1 +ft_min_word_len=1 +# SQL数据包发送的大小,如果有BLOB对象建议修改成1G +max_allowed_packet=128M + +innodb_buffer_pool_size=4G + +innodb_data_file_path=ibdata1:1024M:autoextend:max:1G +innodb_temp_data_file_path=ibtmp1:12M:autoextend:max:1G +default_password_lifetime = 0 + +max_connections = 32000 +max_user_connections=20000 + +# MySQL连接闲置超过一定时间后(单位:秒)将会被强行关闭 +# MySQL默认的wait_timeout 值为8个小时, interactive_timeout参数需要同时配置才能生效 +interactive_timeout = 1800 +wait_timeout=1800 +default_authentication_plugin=mysql_native_password + +sql_mode=NO_ENGINE_SUBSTITUTION,STRICT_TRANS_TABLES diff --git "a/Docker\345\256\211\350\243\205\350\204\232\346\234\254/mysql8/start.sh" "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/mysql8/start.sh" new file mode 100644 index 0000000..e4655e0 --- /dev/null +++ "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/mysql8/start.sh" @@ -0,0 +1,12 @@ +#!/bin/bash +cur_dir=`pwd` + +docker stop lamp_mysql +docker rm lamp_mysql +docker run --name lamp_mysql --restart=always \ + -v `pwd`/conf:/etc/mysql/conf.d \ + -v /data/docker-data/mysql8-data/:/var/lib/mysql \ + -p 3306:3306 \ + -e MYSQL_ROOT_PASSWORD="root" \ + -e TZ=Asia/Shanghai \ + -d mysql:8.0.19 diff --git "a/Docker\345\256\211\350\243\205\350\204\232\346\234\254/nacos/init.d/custom.properties" "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/nacos/init.d/custom.properties" new file mode 100644 index 0000000..d33f103 --- /dev/null +++ "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/nacos/init.d/custom.properties" @@ -0,0 +1,17 @@ +#spring.security.enabled=false +#management.security=false +#security.basic.enabled=false +#nacos.security.ignore.urls=/** +#management.metrics.export.elastic.host=http://localhost:9200 +# metrics for prometheus +#management.endpoints.web.exposure.include=* +# metrics for elastic search +#management.metrics.export.elastic.enabled=false +#management.metrics.export.elastic.host=http://localhost:9200 +# metrics for influx +#management.metrics.export.influx.enabled=false +#management.metrics.export.influx.db=springboot +#management.metrics.export.influx.uri=http://localhost:8086 +#management.metrics.export.influx.auto-create-db=true +#management.metrics.export.influx.consistency=one +#management.metrics.export.influx.compressed=true diff --git "a/Docker\345\256\211\350\243\205\350\204\232\346\234\254/nacos/start.sh" "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/nacos/start.sh" new file mode 100644 index 0000000..85d8db2 --- /dev/null +++ "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/nacos/start.sh" @@ -0,0 +1,15 @@ +#!/bin/bash + +docker stop lamp_nacos +docker rm lamp_nacos +docker run -idt --name lamp_nacos --restart=always \ + -e JVM_XMS=512m -e JVM_XMX=512m -e JVM_XMN=384m \ + -e PREFER_HOST_MODE=hostname -e MODE=standalone -e SPRING_DATASOURCE_PLATFORM=mysql \ + -e MYSQL_DATABASE_NUM=1 \ + -e MYSQL_SERVICE_HOST=192.168.80.130 -e MYSQL_SERVICE_DB_NAME=lamp_nacos -e MYSQL_SERVICE_PORT=3306 \ + -e MYSQL_SERVICE_USER=root \ + -e MYSQL_SERVICE_PASSWORD=root \ + -p 8848:8848 \ + -v `pwd`/logs/:/home/nacos/logs \ + -v `pwd`/init.d/custom.properties:/home/nacos/init.d/custom.properties \ + nacos/nacos-server:v2.1.1 diff --git "a/Docker\345\256\211\350\243\205\350\204\232\346\234\254/nginx/conf/conf.d/prod_80.conf" "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/nginx/conf/conf.d/prod_80.conf" new file mode 100644 index 0000000..36c9dbd --- /dev/null +++ "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/nginx/conf/conf.d/prod_80.conf" @@ -0,0 +1,8 @@ +server { + listen 80; + server_name tangyh.top; + underscores_in_headers on; + + rewrite ^(.*)$ https://$host$1 permanent; +} + diff --git "a/Docker\345\256\211\350\243\205\350\204\232\346\234\254/nginx/conf/conf.d/prod_ssl_443.conf" "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/nginx/conf/conf.d/prod_ssl_443.conf" new file mode 100644 index 0000000..015171d --- /dev/null +++ "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/nginx/conf/conf.d/prod_ssl_443.conf" @@ -0,0 +1,58 @@ +server { + listen 443 ssl; + + server_name tangyh.top; + root html; + index index.html index.htm; + ssl_certificate ../ssl/tangyh.top.crt; + ssl_certificate_key ../ssl/tangyh.top.key; + ssl_session_timeout 5m; + ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:ECDHE:ECDH:AES:HIGH:!NULL:!aNULL:!MD5:!ADH:!RC4; + ssl_protocols TLSv1 TLSv1.1 TLSv1.2; + ssl_prefer_server_ciphers on; + + underscores_in_headers on; + + # 网关 + location /api { + proxy_pass http://172.30.30.195:8760/api; + + # https + web socket 配置 + proxy_http_version 1.1; + proxy_set_header Upgrade $http_upgrade; + proxy_set_header Connection "upgrade"; + proxy_set_header Host $host:$server_port; + proxy_redirect off; + proxy_set_header X-Real-IP $remote_addr; + proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; + proxy_connect_timeout 60; + proxy_read_timeout 600; + proxy_send_timeout 600; + } + + # 文件访问配置 + location ^~ /file { + if ($request_uri ~* ^.*\/(.*)\.(apk|java|txt|doc|pdf|rar|gz|zip|docx|exe|xlsx|ppt|pptx|jpg|png)(\?fileName=([^&]+))$) { + add_header Content-Disposition "attachment;filename=$arg_attname"; + } + root /data_prod/uploadfile; + index index.html; + } + + # 前端 + location /lamp-web { + root /data_prod/webapp/; + index index.html; + } + + # 前端 + location ^~ / { + # 不缓存html,防止程序更新后缓存继续生效 + if ($request_filename ~* .*\.(?:htm|html)$) { + add_header Cache-Control "private, no-store, no-cache, must-revalidate, proxy-revalidate"; + access_log on; + } + root /data_prod/webapp/lamp-web-plus; + index index.html index.htm; + } +} diff --git "a/Docker\345\256\211\350\243\205\350\204\232\346\234\254/nginx/conf/conf.d/static_ssl_443.conf" "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/nginx/conf/conf.d/static_ssl_443.conf" new file mode 100644 index 0000000..f842d37 --- /dev/null +++ "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/nginx/conf/conf.d/static_ssl_443.conf" @@ -0,0 +1,27 @@ + +upstream minio_server { + least_conn; + server 172.30.30.194:9000; +} + +server { + listen 443 ssl; + server_name static.tangyh.top; + root html; + index index.html index.htm; + ssl_certificate ../ssl/static.tangyh.top.crt; + ssl_certificate_key ../ssl/static.tangyh.top.key; + ssl_session_timeout 5m; + ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:ECDHE:ECDH:AES:HIGH:!NULL:!aNULL:!MD5:!ADH:!RC4; + ssl_protocols TLSv1 TLSv1.1 TLSv1.2; + ssl_prefer_server_ciphers on; + + underscores_in_headers on; + + location / { + proxy_set_header Host $http_host; + proxy_set_header X-Real-IP $remote_addr; + proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; + proxy_pass http://minio_server; + } +} diff --git "a/Docker\345\256\211\350\243\205\350\204\232\346\234\254/nginx/conf/fastcgi_params" "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/nginx/conf/fastcgi_params" new file mode 100644 index 0000000..28decb9 --- /dev/null +++ "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/nginx/conf/fastcgi_params" @@ -0,0 +1,25 @@ + +fastcgi_param QUERY_STRING $query_string; +fastcgi_param REQUEST_METHOD $request_method; +fastcgi_param CONTENT_TYPE $content_type; +fastcgi_param CONTENT_LENGTH $content_length; + +fastcgi_param SCRIPT_NAME $fastcgi_script_name; +fastcgi_param REQUEST_URI $request_uri; +fastcgi_param DOCUMENT_URI $document_uri; +fastcgi_param DOCUMENT_ROOT $document_root; +fastcgi_param SERVER_PROTOCOL $server_protocol; +fastcgi_param REQUEST_SCHEME $scheme; +fastcgi_param HTTPS $https if_not_empty; + +fastcgi_param GATEWAY_INTERFACE CGI/1.1; +fastcgi_param SERVER_SOFTWARE nginx/$nginx_version; + +fastcgi_param REMOTE_ADDR $remote_addr; +fastcgi_param REMOTE_PORT $remote_port; +fastcgi_param SERVER_ADDR $server_addr; +fastcgi_param SERVER_PORT $server_port; +fastcgi_param SERVER_NAME $server_name; + +# PHP only, required if PHP was built with --enable-force-cgi-redirect +fastcgi_param REDIRECT_STATUS 200; diff --git "a/Docker\345\256\211\350\243\205\350\204\232\346\234\254/nginx/conf/koi-utf" "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/nginx/conf/koi-utf" new file mode 100644 index 0000000..e7974ff --- /dev/null +++ "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/nginx/conf/koi-utf" @@ -0,0 +1,109 @@ + +# This map is not a full koi8-r <> utf8 map: it does not contain +# box-drawing and some other characters. Besides this map contains +# several koi8-u and Byelorussian letters which are not in koi8-r. +# If you need a full and standard map, use contrib/unicode2nginx/koi-utf +# map instead. + +charset_map koi8-r utf-8 { + + 80 E282AC ; # euro + + 95 E280A2 ; # bullet + + 9A C2A0 ; #   + + 9E C2B7 ; # · + + A3 D191 ; # small yo + A4 D194 ; # small Ukrainian ye + + A6 D196 ; # small Ukrainian i + A7 D197 ; # small Ukrainian yi + + AD D291 ; # small Ukrainian soft g + AE D19E ; # small Byelorussian short u + + B0 C2B0 ; # ° + + B3 D081 ; # capital YO + B4 D084 ; # capital Ukrainian YE + + B6 D086 ; # capital Ukrainian I + B7 D087 ; # capital Ukrainian YI + + B9 E28496 ; # numero sign + + BD D290 ; # capital Ukrainian soft G + BE D18E ; # capital Byelorussian short U + + BF C2A9 ; # (C) + + C0 D18E ; # small yu + C1 D0B0 ; # small a + C2 D0B1 ; # small b + C3 D186 ; # small ts + C4 D0B4 ; # small d + C5 D0B5 ; # small ye + C6 D184 ; # small f + C7 D0B3 ; # small g + C8 D185 ; # small kh + C9 D0B8 ; # small i + CA D0B9 ; # small j + CB D0BA ; # small k + CC D0BB ; # small l + CD D0BC ; # small m + CE D0BD ; # small n + CF D0BE ; # small o + + D0 D0BF ; # small p + D1 D18F ; # small ya + D2 D180 ; # small r + D3 D181 ; # small s + D4 D182 ; # small t + D5 D183 ; # small u + D6 D0B6 ; # small zh + D7 D0B2 ; # small v + D8 D18C ; # small soft sign + D9 D18B ; # small y + DA D0B7 ; # small z + DB D188 ; # small sh + DC D18D ; # small e + DD D189 ; # small shch + DE D187 ; # small ch + DF D18A ; # small hard sign + + E0 D0AE ; # capital YU + E1 D090 ; # capital A + E2 D091 ; # capital B + E3 D0A6 ; # capital TS + E4 D094 ; # capital D + E5 D095 ; # capital YE + E6 D0A4 ; # capital F + E7 D093 ; # capital G + E8 D0A5 ; # capital KH + E9 D098 ; # capital I + EA D099 ; # capital J + EB D09A ; # capital K + EC D09B ; # capital L + ED D09C ; # capital M + EE D09D ; # capital N + EF D09E ; # capital O + + F0 D09F ; # capital P + F1 D0AF ; # capital YA + F2 D0A0 ; # capital R + F3 D0A1 ; # capital S + F4 D0A2 ; # capital T + F5 D0A3 ; # capital U + F6 D096 ; # capital ZH + F7 D092 ; # capital V + F8 D0AC ; # capital soft sign + F9 D0AB ; # capital Y + FA D097 ; # capital Z + FB D0A8 ; # capital SH + FC D0AD ; # capital E + FD D0A9 ; # capital SHCH + FE D0A7 ; # capital CH + FF D0AA ; # capital hard sign +} diff --git "a/Docker\345\256\211\350\243\205\350\204\232\346\234\254/nginx/conf/koi-win" "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/nginx/conf/koi-win" new file mode 100644 index 0000000..72afabe --- /dev/null +++ "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/nginx/conf/koi-win" @@ -0,0 +1,103 @@ + +charset_map koi8-r windows-1251 { + + 80 88 ; # euro + + 95 95 ; # bullet + + 9A A0 ; #   + + 9E B7 ; # · + + A3 B8 ; # small yo + A4 BA ; # small Ukrainian ye + + A6 B3 ; # small Ukrainian i + A7 BF ; # small Ukrainian yi + + AD B4 ; # small Ukrainian soft g + AE A2 ; # small Byelorussian short u + + B0 B0 ; # ° + + B3 A8 ; # capital YO + B4 AA ; # capital Ukrainian YE + + B6 B2 ; # capital Ukrainian I + B7 AF ; # capital Ukrainian YI + + B9 B9 ; # numero sign + + BD A5 ; # capital Ukrainian soft G + BE A1 ; # capital Byelorussian short U + + BF A9 ; # (C) + + C0 FE ; # small yu + C1 E0 ; # small a + C2 E1 ; # small b + C3 F6 ; # small ts + C4 E4 ; # small d + C5 E5 ; # small ye + C6 F4 ; # small f + C7 E3 ; # small g + C8 F5 ; # small kh + C9 E8 ; # small i + CA E9 ; # small j + CB EA ; # small k + CC EB ; # small l + CD EC ; # small m + CE ED ; # small n + CF EE ; # small o + + D0 EF ; # small p + D1 FF ; # small ya + D2 F0 ; # small r + D3 F1 ; # small s + D4 F2 ; # small t + D5 F3 ; # small u + D6 E6 ; # small zh + D7 E2 ; # small v + D8 FC ; # small soft sign + D9 FB ; # small y + DA E7 ; # small z + DB F8 ; # small sh + DC FD ; # small e + DD F9 ; # small shch + DE F7 ; # small ch + DF FA ; # small hard sign + + E0 DE ; # capital YU + E1 C0 ; # capital A + E2 C1 ; # capital B + E3 D6 ; # capital TS + E4 C4 ; # capital D + E5 C5 ; # capital YE + E6 D4 ; # capital F + E7 C3 ; # capital G + E8 D5 ; # capital KH + E9 C8 ; # capital I + EA C9 ; # capital J + EB CA ; # capital K + EC CB ; # capital L + ED CC ; # capital M + EE CD ; # capital N + EF CE ; # capital O + + F0 CF ; # capital P + F1 DF ; # capital YA + F2 D0 ; # capital R + F3 D1 ; # capital S + F4 D2 ; # capital T + F5 D3 ; # capital U + F6 C6 ; # capital ZH + F7 C2 ; # capital V + F8 DC ; # capital soft sign + F9 DB ; # capital Y + FA C7 ; # capital Z + FB D8 ; # capital SH + FC DD ; # capital E + FD D9 ; # capital SHCH + FE D7 ; # capital CH + FF DA ; # capital hard sign +} diff --git "a/Docker\345\256\211\350\243\205\350\204\232\346\234\254/nginx/conf/mime.types" "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/nginx/conf/mime.types" new file mode 100644 index 0000000..89be9a4 --- /dev/null +++ "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/nginx/conf/mime.types" @@ -0,0 +1,89 @@ + +types { + text/html html htm shtml; + text/css css; + text/xml xml; + image/gif gif; + image/jpeg jpeg jpg; + application/javascript js; + application/atom+xml atom; + application/rss+xml rss; + + text/mathml mml; + text/plain txt; + text/vnd.sun.j2me.app-descriptor jad; + text/vnd.wap.wml wml; + text/x-component htc; + + image/png png; + image/tiff tif tiff; + image/vnd.wap.wbmp wbmp; + image/x-icon ico; + image/x-jng jng; + image/x-ms-bmp bmp; + image/svg+xml svg svgz; + image/webp webp; + + application/font-woff woff; + application/java-archive jar war ear; + application/json json; + application/mac-binhex40 hqx; + application/msword doc; + application/pdf pdf; + application/postscript ps eps ai; + application/rtf rtf; + application/vnd.apple.mpegurl m3u8; + application/vnd.ms-excel xls; + application/vnd.ms-fontobject eot; + application/vnd.ms-powerpoint ppt; + application/vnd.wap.wmlc wmlc; + application/vnd.google-earth.kml+xml kml; + application/vnd.google-earth.kmz kmz; + application/x-7z-compressed 7z; + application/x-cocoa cco; + application/x-java-archive-diff jardiff; + application/x-java-jnlp-file jnlp; + application/x-makeself run; + application/x-perl pl pm; + application/x-pilot prc pdb; + application/x-rar-compressed rar; + application/x-redhat-package-manager rpm; + application/x-sea sea; + application/x-shockwave-flash swf; + application/x-stuffit sit; + application/x-tcl tcl tk; + application/x-x509-ca-cert der pem crt; + application/x-xpinstall xpi; + application/xhtml+xml xhtml; + application/xspf+xml xspf; + application/zip zip; + + application/octet-stream bin exe dll; + application/octet-stream deb; + application/octet-stream dmg; + application/octet-stream iso img; + application/octet-stream msi msp msm; + + application/vnd.openxmlformats-officedocument.wordprocessingml.document docx; + application/vnd.openxmlformats-officedocument.spreadsheetml.sheet xlsx; + application/vnd.openxmlformats-officedocument.presentationml.presentation pptx; + + audio/midi mid midi kar; + audio/mpeg mp3; + audio/ogg ogg; + audio/x-m4a m4a; + audio/x-realaudio ra; + + video/3gpp 3gpp 3gp; + video/mp2t ts; + video/mp4 mp4; + video/mpeg mpeg mpg; + video/quicktime mov; + video/webm webm; + video/x-flv flv; + video/x-m4v m4v; + video/x-mng mng; + video/x-ms-asf asx asf; + video/x-ms-wmv wmv; + video/x-msvideo avi; +} diff --git "a/Docker\345\256\211\350\243\205\350\204\232\346\234\254/nginx/conf/modules/ngx_http_geoip_module-debug.so" "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/nginx/conf/modules/ngx_http_geoip_module-debug.so" new file mode 100644 index 0000000..165215c Binary files /dev/null and "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/nginx/conf/modules/ngx_http_geoip_module-debug.so" differ diff --git "a/Docker\345\256\211\350\243\205\350\204\232\346\234\254/nginx/conf/modules/ngx_http_geoip_module.so" "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/nginx/conf/modules/ngx_http_geoip_module.so" new file mode 100644 index 0000000..b488e3e Binary files /dev/null and "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/nginx/conf/modules/ngx_http_geoip_module.so" differ diff --git "a/Docker\345\256\211\350\243\205\350\204\232\346\234\254/nginx/conf/modules/ngx_http_image_filter_module-debug.so" "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/nginx/conf/modules/ngx_http_image_filter_module-debug.so" new file mode 100644 index 0000000..fc24690 Binary files /dev/null and "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/nginx/conf/modules/ngx_http_image_filter_module-debug.so" differ diff --git "a/Docker\345\256\211\350\243\205\350\204\232\346\234\254/nginx/conf/modules/ngx_http_image_filter_module.so" "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/nginx/conf/modules/ngx_http_image_filter_module.so" new file mode 100644 index 0000000..ea0b7eb Binary files /dev/null and "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/nginx/conf/modules/ngx_http_image_filter_module.so" differ diff --git "a/Docker\345\256\211\350\243\205\350\204\232\346\234\254/nginx/conf/modules/ngx_http_js_module-debug.so" "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/nginx/conf/modules/ngx_http_js_module-debug.so" new file mode 100644 index 0000000..128ba24 Binary files /dev/null and "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/nginx/conf/modules/ngx_http_js_module-debug.so" differ diff --git "a/Docker\345\256\211\350\243\205\350\204\232\346\234\254/nginx/conf/modules/ngx_http_js_module.so" "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/nginx/conf/modules/ngx_http_js_module.so" new file mode 100644 index 0000000..52a3b2a Binary files /dev/null and "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/nginx/conf/modules/ngx_http_js_module.so" differ diff --git "a/Docker\345\256\211\350\243\205\350\204\232\346\234\254/nginx/conf/modules/ngx_http_xslt_filter_module-debug.so" "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/nginx/conf/modules/ngx_http_xslt_filter_module-debug.so" new file mode 100644 index 0000000..251095d Binary files /dev/null and "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/nginx/conf/modules/ngx_http_xslt_filter_module-debug.so" differ diff --git "a/Docker\345\256\211\350\243\205\350\204\232\346\234\254/nginx/conf/modules/ngx_http_xslt_filter_module.so" "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/nginx/conf/modules/ngx_http_xslt_filter_module.so" new file mode 100644 index 0000000..540400d Binary files /dev/null and "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/nginx/conf/modules/ngx_http_xslt_filter_module.so" differ diff --git "a/Docker\345\256\211\350\243\205\350\204\232\346\234\254/nginx/conf/modules/ngx_stream_geoip_module-debug.so" "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/nginx/conf/modules/ngx_stream_geoip_module-debug.so" new file mode 100644 index 0000000..d1e762b Binary files /dev/null and "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/nginx/conf/modules/ngx_stream_geoip_module-debug.so" differ diff --git "a/Docker\345\256\211\350\243\205\350\204\232\346\234\254/nginx/conf/modules/ngx_stream_geoip_module.so" "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/nginx/conf/modules/ngx_stream_geoip_module.so" new file mode 100644 index 0000000..4e4eb34 Binary files /dev/null and "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/nginx/conf/modules/ngx_stream_geoip_module.so" differ diff --git "a/Docker\345\256\211\350\243\205\350\204\232\346\234\254/nginx/conf/modules/ngx_stream_js_module-debug.so" "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/nginx/conf/modules/ngx_stream_js_module-debug.so" new file mode 100644 index 0000000..64ef7b8 Binary files /dev/null and "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/nginx/conf/modules/ngx_stream_js_module-debug.so" differ diff --git "a/Docker\345\256\211\350\243\205\350\204\232\346\234\254/nginx/conf/modules/ngx_stream_js_module.so" "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/nginx/conf/modules/ngx_stream_js_module.so" new file mode 100644 index 0000000..0a7a944 Binary files /dev/null and "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/nginx/conf/modules/ngx_stream_js_module.so" differ diff --git "a/Docker\345\256\211\350\243\205\350\204\232\346\234\254/nginx/conf/nginx.conf" "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/nginx/conf/nginx.conf" new file mode 100644 index 0000000..454c8d4 --- /dev/null +++ "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/nginx/conf/nginx.conf" @@ -0,0 +1,53 @@ + +user root; +worker_processes 1; + +error_log logs/error.log warn; +#error_log logs/error.log notice; +#error_log logs/error.log info; + +pid logs/nginx.pid; + + +events { + worker_connections 1024; +} + + +http { + include mime.types; + default_type application/octet-stream; + + log_format main '$remote_addr - $remote_user [$time_local] "$request" ' + '$status $body_bytes_sent "$http_referer" ' + '"$http_user_agent" "$http_x_forwarded_for"'; + + access_log logs/access.log main; + + sendfile on; + #tcp_nopush on; + + #keepalive_timeout 0; + keepalive_timeout 65; + + # 文件上传大小限制 + client_max_body_size 512M; + client_body_buffer_size 256k; + + # 压缩设置 + gzip on; + # 开启gzip_static + # gzip_static 开启后可能会报错,需要安装相应的模块, 具体安装方式可以自行查询 + # 只有这个开启,vue文件打包的.gz文件才会有效果,否则不需要开启gzip进行打包 + gzip_static on; + gzip_proxied any; + gzip_min_length 5k; + gzip_buffers 4 16k; + gzip_comp_level 3; + gzip_types text/plain application/javascript application/x-javascript text/css application/xml text/javascript application/x-httpd-php image/jpeg image/gif image/png; + gzip_vary on; + gzip_disable "MSIE [1-6]\."; + + + include /usr/local/nginx/conf/conf.d/*.conf; +} diff --git "a/Docker\345\256\211\350\243\205\350\204\232\346\234\254/nginx/conf/scgi_params" "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/nginx/conf/scgi_params" new file mode 100644 index 0000000..6d4ce4f --- /dev/null +++ "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/nginx/conf/scgi_params" @@ -0,0 +1,17 @@ + +scgi_param REQUEST_METHOD $request_method; +scgi_param REQUEST_URI $request_uri; +scgi_param QUERY_STRING $query_string; +scgi_param CONTENT_TYPE $content_type; + +scgi_param DOCUMENT_URI $document_uri; +scgi_param DOCUMENT_ROOT $document_root; +scgi_param SCGI 1; +scgi_param SERVER_PROTOCOL $server_protocol; +scgi_param REQUEST_SCHEME $scheme; +scgi_param HTTPS $https if_not_empty; + +scgi_param REMOTE_ADDR $remote_addr; +scgi_param REMOTE_PORT $remote_port; +scgi_param SERVER_PORT $server_port; +scgi_param SERVER_NAME $server_name; diff --git "a/Docker\345\256\211\350\243\205\350\204\232\346\234\254/nginx/conf/uwsgi_params" "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/nginx/conf/uwsgi_params" new file mode 100644 index 0000000..09c732c --- /dev/null +++ "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/nginx/conf/uwsgi_params" @@ -0,0 +1,17 @@ + +uwsgi_param QUERY_STRING $query_string; +uwsgi_param REQUEST_METHOD $request_method; +uwsgi_param CONTENT_TYPE $content_type; +uwsgi_param CONTENT_LENGTH $content_length; + +uwsgi_param REQUEST_URI $request_uri; +uwsgi_param PATH_INFO $document_uri; +uwsgi_param DOCUMENT_ROOT $document_root; +uwsgi_param SERVER_PROTOCOL $server_protocol; +uwsgi_param REQUEST_SCHEME $scheme; +uwsgi_param HTTPS $https if_not_empty; + +uwsgi_param REMOTE_ADDR $remote_addr; +uwsgi_param REMOTE_PORT $remote_port; +uwsgi_param SERVER_PORT $server_port; +uwsgi_param SERVER_NAME $server_name; diff --git "a/Docker\345\256\211\350\243\205\350\204\232\346\234\254/nginx/conf/win-utf" "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/nginx/conf/win-utf" new file mode 100644 index 0000000..ed8bc00 --- /dev/null +++ "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/nginx/conf/win-utf" @@ -0,0 +1,126 @@ + +# This map is not a full windows-1251 <> utf8 map: it does not +# contain Serbian and Macedonian letters. If you need a full map, +# use contrib/unicode2nginx/win-utf map instead. + +charset_map windows-1251 utf-8 { + + 82 E2809A ; # single low-9 quotation mark + + 84 E2809E ; # double low-9 quotation mark + 85 E280A6 ; # ellipsis + 86 E280A0 ; # dagger + 87 E280A1 ; # double dagger + 88 E282AC ; # euro + 89 E280B0 ; # per mille + + 91 E28098 ; # left single quotation mark + 92 E28099 ; # right single quotation mark + 93 E2809C ; # left double quotation mark + 94 E2809D ; # right double quotation mark + 95 E280A2 ; # bullet + 96 E28093 ; # en dash + 97 E28094 ; # em dash + + 99 E284A2 ; # trade mark sign + + A0 C2A0 ; #   + A1 D18E ; # capital Byelorussian short U + A2 D19E ; # small Byelorussian short u + + A4 C2A4 ; # currency sign + A5 D290 ; # capital Ukrainian soft G + A6 C2A6 ; # borken bar + A7 C2A7 ; # section sign + A8 D081 ; # capital YO + A9 C2A9 ; # (C) + AA D084 ; # capital Ukrainian YE + AB C2AB ; # left-pointing double angle quotation mark + AC C2AC ; # not sign + AD C2AD ; # soft hypen + AE C2AE ; # (R) + AF D087 ; # capital Ukrainian YI + + B0 C2B0 ; # ° + B1 C2B1 ; # plus-minus sign + B2 D086 ; # capital Ukrainian I + B3 D196 ; # small Ukrainian i + B4 D291 ; # small Ukrainian soft g + B5 C2B5 ; # micro sign + B6 C2B6 ; # pilcrow sign + B7 C2B7 ; # · + B8 D191 ; # small yo + B9 E28496 ; # numero sign + BA D194 ; # small Ukrainian ye + BB C2BB ; # right-pointing double angle quotation mark + + BF D197 ; # small Ukrainian yi + + C0 D090 ; # capital A + C1 D091 ; # capital B + C2 D092 ; # capital V + C3 D093 ; # capital G + C4 D094 ; # capital D + C5 D095 ; # capital YE + C6 D096 ; # capital ZH + C7 D097 ; # capital Z + C8 D098 ; # capital I + C9 D099 ; # capital J + CA D09A ; # capital K + CB D09B ; # capital L + CC D09C ; # capital M + CD D09D ; # capital N + CE D09E ; # capital O + CF D09F ; # capital P + + D0 D0A0 ; # capital R + D1 D0A1 ; # capital S + D2 D0A2 ; # capital T + D3 D0A3 ; # capital U + D4 D0A4 ; # capital F + D5 D0A5 ; # capital KH + D6 D0A6 ; # capital TS + D7 D0A7 ; # capital CH + D8 D0A8 ; # capital SH + D9 D0A9 ; # capital SHCH + DA D0AA ; # capital hard sign + DB D0AB ; # capital Y + DC D0AC ; # capital soft sign + DD D0AD ; # capital E + DE D0AE ; # capital YU + DF D0AF ; # capital YA + + E0 D0B0 ; # small a + E1 D0B1 ; # small b + E2 D0B2 ; # small v + E3 D0B3 ; # small g + E4 D0B4 ; # small d + E5 D0B5 ; # small ye + E6 D0B6 ; # small zh + E7 D0B7 ; # small z + E8 D0B8 ; # small i + E9 D0B9 ; # small j + EA D0BA ; # small k + EB D0BB ; # small l + EC D0BC ; # small m + ED D0BD ; # small n + EE D0BE ; # small o + EF D0BF ; # small p + + F0 D180 ; # small r + F1 D181 ; # small s + F2 D182 ; # small t + F3 D183 ; # small u + F4 D184 ; # small f + F5 D185 ; # small kh + F6 D186 ; # small ts + F7 D187 ; # small ch + F8 D188 ; # small sh + F9 D189 ; # small shch + FA D18A ; # small hard sign + FB D18B ; # small y + FC D18C ; # small soft sign + FD D18D ; # small e + FE D18E ; # small yu + FF D18F ; # small ya +} diff --git "a/Docker\345\256\211\350\243\205\350\204\232\346\234\254/nginx/html/crossdomain.xml" "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/nginx/html/crossdomain.xml" new file mode 100644 index 0000000..3d56a2c --- /dev/null +++ "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/nginx/html/crossdomain.xml" @@ -0,0 +1,6 @@ + + + + + + diff --git "a/Docker\345\256\211\350\243\205\350\204\232\346\234\254/nginx/logs/error.log" "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/nginx/logs/error.log" new file mode 100644 index 0000000..f3a2137 --- /dev/null +++ "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/nginx/logs/error.log" @@ -0,0 +1,12 @@ +2022/03/02 17:04:22 [emerg] 1#1: open() "/etc/nginx/logs/error.log" failed (2: No such file or directory) +2022/03/02 17:04:26 [emerg] 1#1: open() "/etc/nginx/logs/error.log" failed (2: No such file or directory) +2022/03/02 17:04:31 [emerg] 1#1: open() "/etc/nginx/logs/error.log" failed (2: No such file or directory) +2022/03/02 17:04:35 [emerg] 1#1: open() "/etc/nginx/logs/error.log" failed (2: No such file or directory) +2022/03/02 17:04:40 [emerg] 1#1: open() "/etc/nginx/logs/error.log" failed (2: No such file or directory) +2022/03/02 17:04:44 [emerg] 1#1: open() "/etc/nginx/logs/error.log" failed (2: No such file or directory) +2022/03/02 17:04:50 [emerg] 1#1: open() "/etc/nginx/logs/error.log" failed (2: No such file or directory) +2022/03/02 17:04:58 [emerg] 1#1: open() "/etc/nginx/logs/error.log" failed (2: No such file or directory) +2022/03/02 17:05:14 [emerg] 1#1: open() "/etc/nginx/logs/error.log" failed (2: No such file or directory) +2022/03/02 17:05:42 [emerg] 1#1: open() "/etc/nginx/logs/error.log" failed (2: No such file or directory) +2022/03/02 17:06:35 [emerg] 1#1: open() "/etc/nginx/logs/error.log" failed (2: No such file or directory) +2022/03/02 17:07:37 [emerg] 1#1: open() "/etc/nginx/logs/error.log" failed (2: No such file or directory) diff --git "a/Docker\345\256\211\350\243\205\350\204\232\346\234\254/nginx/start.sh" "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/nginx/start.sh" new file mode 100644 index 0000000..85ea676 --- /dev/null +++ "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/nginx/start.sh" @@ -0,0 +1,12 @@ +#!/bin/bash + +docker stop lamp_nginx +docker rm lamp_nginx +docker run -idt -p 10000:10000 -p 180:180 --name lamp_nginx --restart=always \ + -v /data/projects/:/data/projects \ + -v `pwd`/conf/:/etc/nginx \ + -v `pwd`/logs/:/var/log/nginx \ + -v `pwd`/html/crossdomain.xml:/usr/share/nginx/html/crossdomain.xml \ + -e TZ="Asia/Shanghai" \ + nginx:1.17.0 + diff --git "a/Docker\345\256\211\350\243\205\350\204\232\346\234\254/rabbitmq/start.sh" "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/rabbitmq/start.sh" new file mode 100644 index 0000000..ab52f0f --- /dev/null +++ "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/rabbitmq/start.sh" @@ -0,0 +1,13 @@ +#!/bin/bash + +mkdir -p /data/docker-data/rabbitmq-data/ + +docker stop lamp_rabbitmq +docker rm lamp_rabbitmq + +docker run -d --hostname lamp_rabbitmq --name lamp_rabbitmq --restart=always \ + -e RABBITMQ_DEFAULT_USER=lamp -e RABBITMQ_DEFAULT_PASS=lamp \ + -v /data/docker-data/rabbitmq-data/:/var/rabbitmq/lib \ + -p 15672:15672 -p 5672:5672 -p 25672:25672 -p 61613:61613 -p 1883:1883 \ + -e TZ="Asia/Shanghai" \ + rabbitmq:management diff --git "a/Docker\345\256\211\350\243\205\350\204\232\346\234\254/redis/redis.conf" "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/redis/redis.conf" new file mode 100644 index 0000000..da891ab --- /dev/null +++ "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/redis/redis.conf" @@ -0,0 +1,1056 @@ +# Redis configuration file example. +# +# Note that in order to read the configuration file, Redis must be +# started with the file path as first argument: +# +# ./redis-server /path/to/redis.conf + +# Note on units: when memory size is needed, it is possible to specify +# it in the usual form of 1k 5GB 4M and so forth: +# +# 1k => 1000 bytes +# 1kb => 1024 bytes +# 1m => 1000000 bytes +# 1mb => 1024*1024 bytes +# 1g => 1000000000 bytes +# 1gb => 1024*1024*1024 bytes +# +# units are case insensitive so 1GB 1Gb 1gB are all the same. + +################################## INCLUDES ################################### + +# Include one or more other config files here. This is useful if you +# have a standard template that goes to all Redis servers but also need +# to customize a few per-server settings. Include files can include +# other files, so use this wisely. +# +# Notice option "include" won't be rewritten by command "CONFIG REWRITE" +# from admin or Redis Sentinel. Since Redis always uses the last processed +# line as value of a configuration directive, you'd better put includes +# at the beginning of this file to avoid overwriting config change at runtime. +# +# If instead you are interested in using includes to override configuration +# options, it is better to use include as the last line. +# +# include /path/to/local.conf +# include /path/to/other.conf + +################################## NETWORK ##################################### + +# By default, if no "bind" configuration directive is specified, Redis listens +# for connections from all the network interfaces available on the server. +# It is possible to listen to just one or multiple selected interfaces using +# the "bind" configuration directive, followed by one or more IP addresses. +# +# Examples: +# +# bind 192.168.1.100 10.0.0.1 +# bind 127.0.0.1 ::1 +# +# ~~~ WARNING ~~~ If the computer running Redis is directly exposed to the +# internet, binding to all the interfaces is dangerous and will expose the +# instance to everybody on the internet. So by default we uncomment the +# following bind directive, that will force Redis to listen only into +# the IPv4 lookback interface address (this means Redis will be able to +# accept connections only from clients running into the same computer it +# is running). +# +# IF YOU ARE SURE YOU WANT YOUR INSTANCE TO LISTEN TO ALL THE INTERFACES +# JUST COMMENT THE FOLLOWING LINE. +# ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ +# bind 127.0.0.1 +bind 0.0.0.0 + +# Protected mode is a layer of security protection, in order to avoid that +# Redis instances left open on the internet are accessed and exploited. +# +# When protected mode is on and if: +# +# 1) The server is not binding explicitly to a set of addresses using the +# "bind" directive. +# 2) No password is configured. +# +# The server only accepts connections from clients connecting from the +# IPv4 and IPv6 loopback addresses 127.0.0.1 and ::1, and from Unix domain +# sockets. +# +# By default protected mode is enabled. You should disable it only if +# you are sure you want clients from other hosts to connect to Redis +# even if no authentication is configured, nor a specific set of interfaces +# are explicitly listed using the "bind" directive. +protected-mode no + +# Accept connections on the specified port, default is 6379 (IANA #815344). +# If port 0 is specified Redis will not listen on a TCP socket. +port 16379 + +# TCP listen() backlog. +# +# In high requests-per-second environments you need an high backlog in order +# to avoid slow clients connections issues. Note that the Linux kernel +# will silently truncate it to the value of /proc/sys/net/core/somaxconn so +# make sure to raise both the value of somaxconn and tcp_max_syn_backlog +# in order to get the desired effect. +tcp-backlog 511 + +# Unix socket. +# +# Specify the path for the Unix socket that will be used to listen for +# incoming connections. There is no default, so Redis will not listen +# on a unix socket when not specified. +# +# unixsocket /tmp/redis.sock +# unixsocketperm 700 + +# Close the connection after a client is idle for N seconds (0 to disable) +timeout 0 + +# TCP keepalive. +# +# If non-zero, use SO_KEEPALIVE to send TCP ACKs to clients in absence +# of communication. This is useful for two reasons: +# +# 1) Detect dead peers. +# 2) Take the connection alive from the point of view of network +# equipment in the middle. +# +# On Linux, the specified value (in seconds) is the period used to send ACKs. +# Note that to close the connection the double of the time is needed. +# On other kernels the period depends on the kernel configuration. +# +# A reasonable value for this option is 300 seconds, which is the new +# Redis default starting with Redis 3.2.1. +tcp-keepalive 300 + +################################# GENERAL ##################################### + +# By default Redis does not run as a daemon. Use 'yes' if you need it. +# Note that Redis will write a pid file in /var/run/redis.pid when daemonized. +daemonize no + +# If you run Redis from upstart or systemd, Redis can interact with your +# supervision tree. Options: +# supervised no - no supervision interaction +# supervised upstart - signal upstart by putting Redis into SIGSTOP mode +# supervised systemd - signal systemd by writing READY=1 to $NOTIFY_SOCKET +# supervised auto - detect upstart or systemd method based on +# UPSTART_JOB or NOTIFY_SOCKET environment variables +# Note: these supervision methods only signal "process is ready." +# They do not enable continuous liveness pings back to your supervisor. +supervised no + +# If a pid file is specified, Redis writes it where specified at startup +# and removes it at exit. +# +# When the server runs non daemonized, no pid file is created if none is +# specified in the configuration. When the server is daemonized, the pid file +# is used even if not specified, defaulting to "/var/run/redis.pid". +# +# Creating a pid file is best effort: if Redis is not able to create it +# nothing bad happens, the server will start and run normally. +pidfile /var/run/redis_6379.pid + +# Specify the server verbosity level. +# This can be one of: +# debug (a lot of information, useful for development/testing) +# verbose (many rarely useful info, but not a mess like the debug level) +# notice (moderately verbose, what you want in production probably) +# warning (only very important / critical messages are logged) +loglevel notice + +# Specify the log file name. Also the empty string can be used to force +# Redis to log on the standard output. Note that if you use standard +# output for logging but daemonize, logs will be sent to /dev/null +# logfile "" + +# To enable logging to the system logger, just set 'syslog-enabled' to yes, +# and optionally update the other syslog parameters to suit your needs. +# syslog-enabled no + +# Specify the syslog identity. +# syslog-ident redis + +# Specify the syslog facility. Must be USER or between LOCAL0-LOCAL7. +# syslog-facility local0 + +# Set the number of databases. The default database is DB 0, you can select +# a different one on a per-connection basis using SELECT where +# dbid is a number between 0 and 'databases'-1 +databases 16 + +################################ SNAPSHOTTING ################################ +# +# Save the DB on disk: +# +# save +# +# Will save the DB if both the given number of seconds and the given +# number of write operations against the DB occurred. +# +# In the example below the behaviour will be to save: +# after 900 sec (15 min) if at least 1 key changed +# after 300 sec (5 min) if at least 10 keys changed +# after 60 sec if at least 10000 keys changed +# +# Note: you can disable saving completely by commenting out all "save" lines. +# +# It is also possible to remove all the previously configured save +# points by adding a save directive with a single empty string argument +# like in the following example: +# +# save "" + +save 900 1 +save 300 10 +save 60 10000 + +# By default Redis will stop accepting writes if RDB snapshots are enabled +# (at least one save point) and the latest background save failed. +# This will make the user aware (in a hard way) that data is not persisting +# on disk properly, otherwise chances are that no one will notice and some +# disaster will happen. +# +# If the background saving process will start working again Redis will +# automatically allow writes again. +# +# However if you have setup your proper monitoring of the Redis server +# and persistence, you may want to disable this feature so that Redis will +# continue to work as usual even if there are problems with disk, +# permissions, and so forth. +stop-writes-on-bgsave-error yes + +# Compress string objects using LZF when dump .rdb databases? +# For default that's set to 'yes' as it's almost always a win. +# If you want to save some CPU in the saving child set it to 'no' but +# the dataset will likely be bigger if you have compressible values or keys. +rdbcompression yes + +# Since version 5 of RDB a CRC64 checksum is placed at the end of the file. +# This makes the format more resistant to corruption but there is a performance +# hit to pay (around 10%) when saving and loading RDB files, so you can disable it +# for maximum performances. +# +# RDB files created with checksum disabled have a checksum of zero that will +# tell the loading code to skip the check. +rdbchecksum yes + +# The filename where to dump the DB +dbfilename dump.rdb + +# The working directory. +# +# The DB will be written inside this directory, with the filename specified +# above using the 'dbfilename' configuration directive. +# +# The Append Only File will also be created inside this directory. +# +# Note that you must specify a directory here, not a file name. +dir /data + +################################# REPLICATION ################################# + +# Master-Slave replication. Use slaveof to make a Redis instance a copy of +# another Redis server. A few things to understand ASAP about Redis replication. +# +# 1) Redis replication is asynchronous, but you can configure a master to +# stop accepting writes if it appears to be not connected with at least +# a given number of slaves. +# 2) Redis slaves are able to perform a partial resynchronization with the +# master if the replication link is lost for a relatively small amount of +# time. You may want to configure the replication backlog size (see the next +# sections of this file) with a sensible value depending on your needs. +# 3) Replication is automatic and does not need user intervention. After a +# network partition slaves automatically try to reconnect to masters +# and resynchronize with them. +# +# slaveof + +# If the master is password protected (using the "requirepass" configuration +# directive below) it is possible to tell the slave to authenticate before +# starting the replication synchronization process, otherwise the master will +# refuse the slave request. +# +# masterauth + +# When a slave loses its connection with the master, or when the replication +# is still in progress, the slave can act in two different ways: +# +# 1) if slave-serve-stale-data is set to 'yes' (the default) the slave will +# still reply to client requests, possibly with out of date data, or the +# data set may just be empty if this is the first synchronization. +# +# 2) if slave-serve-stale-data is set to 'no' the slave will reply with +# an error "SYNC with master in progress" to all the kind of commands +# but to INFO and SLAVEOF. +# +slave-serve-stale-data yes + +# You can configure a slave instance to accept writes or not. Writing against +# a slave instance may be useful to store some ephemeral data (because data +# written on a slave will be easily deleted after resync with the master) but +# may also cause problems if clients are writing to it because of a +# misconfiguration. +# +# Since Redis 2.6 by default slaves are read-only. +# +# Note: read only slaves are not designed to be exposed to untrusted clients +# on the internet. It's just a protection layer against misuse of the instance. +# Still a read only slave exports by default all the administrative commands +# such as CONFIG, DEBUG, and so forth. To a limited extent you can improve +# security of read only slaves using 'rename-command' to shadow all the +# administrative / dangerous commands. +slave-read-only yes + +# Replication SYNC strategy: disk or socket. +# +# ------------------------------------------------------- +# WARNING: DISKLESS REPLICATION IS EXPERIMENTAL CURRENTLY +# ------------------------------------------------------- +# +# New slaves and reconnecting slaves that are not able to continue the replication +# process just receiving differences, need to do what is called a "full +# synchronization". An RDB file is transmitted from the master to the slaves. +# The transmission can happen in two different ways: +# +# 1) Disk-backed: The Redis master creates a new process that writes the RDB +# file on disk. Later the file is transferred by the parent +# process to the slaves incrementally. +# 2) Diskless: The Redis master creates a new process that directly writes the +# RDB file to slave sockets, without touching the disk at all. +# +# With disk-backed replication, while the RDB file is generated, more slaves +# can be queued and served with the RDB file as soon as the current child producing +# the RDB file finishes its work. With diskless replication instead once +# the transfer starts, new slaves arriving will be queued and a new transfer +# will start when the current one terminates. +# +# When diskless replication is used, the master waits a configurable amount of +# time (in seconds) before starting the transfer in the hope that multiple slaves +# will arrive and the transfer can be parallelized. +# +# With slow disks and fast (large bandwidth) networks, diskless replication +# works better. +repl-diskless-sync no + +# When diskless replication is enabled, it is possible to configure the delay +# the server waits in order to spawn the child that transfers the RDB via socket +# to the slaves. +# +# This is important since once the transfer starts, it is not possible to serve +# new slaves arriving, that will be queued for the next RDB transfer, so the server +# waits a delay in order to let more slaves arrive. +# +# The delay is specified in seconds, and by default is 5 seconds. To disable +# it entirely just set it to 0 seconds and the transfer will start ASAP. +repl-diskless-sync-delay 5 + +# Slaves send PINGs to server in a predefined interval. It's possible to change +# this interval with the repl_ping_slave_period option. The default value is 10 +# seconds. +# +# repl-ping-slave-period 10 + +# The following option sets the replication timeout for: +# +# 1) Bulk transfer I/O during SYNC, from the point of view of slave. +# 2) Master timeout from the point of view of slaves (data, pings). +# 3) Slave timeout from the point of view of masters (REPLCONF ACK pings). +# +# It is important to make sure that this value is greater than the value +# specified for repl-ping-slave-period otherwise a timeout will be detected +# every time there is low traffic between the master and the slave. +# +# repl-timeout 60 + +# Disable TCP_NODELAY on the slave socket after SYNC? +# +# If you select "yes" Redis will use a smaller number of TCP packets and +# less bandwidth to send data to slaves. But this can add a delay for +# the data to appear on the slave side, up to 40 milliseconds with +# Linux kernels using a default configuration. +# +# If you select "no" the delay for data to appear on the slave side will +# be reduced but more bandwidth will be used for replication. +# +# By default we optimize for low latency, but in very high traffic conditions +# or when the master and slaves are many hops away, turning this to "yes" may +# be a good idea. +repl-disable-tcp-nodelay no + +# Set the replication backlog size. The backlog is a buffer that accumulates +# slave data when slaves are disconnected for some time, so that when a slave +# wants to reconnect again, often a full resync is not needed, but a partial +# resync is enough, just passing the portion of data the slave missed while +# disconnected. +# +# The bigger the replication backlog, the longer the time the slave can be +# disconnected and later be able to perform a partial resynchronization. +# +# The backlog is only allocated once there is at least a slave connected. +# +# repl-backlog-size 1mb + +# After a master has no longer connected slaves for some time, the backlog +# will be freed. The following option configures the amount of seconds that +# need to elapse, starting from the time the last slave disconnected, for +# the backlog buffer to be freed. +# +# A value of 0 means to never release the backlog. +# +# repl-backlog-ttl 3600 + +# The slave priority is an integer number published by Redis in the INFO output. +# It is used by Redis Sentinel in order to select a slave to promote into a +# master if the master is no longer working correctly. +# +# A slave with a low priority number is considered better for promotion, so +# for instance if there are three slaves with priority 10, 100, 25 Sentinel will +# pick the one with priority 10, that is the lowest. +# +# However a special priority of 0 marks the slave as not able to perform the +# role of master, so a slave with priority of 0 will never be selected by +# Redis Sentinel for promotion. +# +# By default the priority is 100. +slave-priority 100 + +# It is possible for a master to stop accepting writes if there are less than +# N slaves connected, having a lag less or equal than M seconds. +# +# The N slaves need to be in "online" state. +# +# The lag in seconds, that must be <= the specified value, is calculated from +# the last ping received from the slave, that is usually sent every second. +# +# This option does not GUARANTEE that N replicas will accept the write, but +# will limit the window of exposure for lost writes in case not enough slaves +# are available, to the specified number of seconds. +# +# For example to require at least 3 slaves with a lag <= 10 seconds use: +# +# min-slaves-to-write 3 +# min-slaves-max-lag 10 +# +# Setting one or the other to 0 disables the feature. +# +# By default min-slaves-to-write is set to 0 (feature disabled) and +# min-slaves-max-lag is set to 10. + +# A Redis master is able to list the address and port of the attached +# slaves in different ways. For example the "INFO replication" section +# offers this information, which is used, among other tools, by +# Redis Sentinel in order to discover slave instances. +# Another place where this info is available is in the output of the +# "ROLE" command of a masteer. +# +# The listed IP and address normally reported by a slave is obtained +# in the following way: +# +# IP: The address is auto detected by checking the peer address +# of the socket used by the slave to connect with the master. +# +# Port: The port is communicated by the slave during the replication +# handshake, and is normally the port that the slave is using to +# list for connections. +# +# However when port forwarding or Network Address Translation (NAT) is +# used, the slave may be actually reachable via different IP and port +# pairs. The following two options can be used by a slave in order to +# report to its master a specific set of IP and port, so that both INFO +# and ROLE will report those values. +# +# There is no need to use both the options if you need to override just +# the port or the IP address. +# +# slave-announce-ip 5.5.5.5 +# slave-announce-port 1234 + +################################## SECURITY ################################### + +# Require clients to issue AUTH before processing any other +# commands. This might be useful in environments in which you do not trust +# others with access to the host running redis-server. +# +# This should stay commented out for backward compatibility and because most +# people do not need auth (e.g. they run their own servers). +# +# Warning: since Redis is pretty fast an outside user can try up to +# 150k passwords per second against a good box. This means that you should +# use a very strong password otherwise it will be very easy to break. +# +# requirepass foobared +requirepass SbtyMveYNfLzTks7H0apCmyStPzWJqjy + +# Command renaming. +# +# It is possible to change the name of dangerous commands in a shared +# environment. For instance the CONFIG command may be renamed into something +# hard to guess so that it will still be available for internal-use tools +# but not available for general clients. +# +# Example: +# +# rename-command CONFIG b840fc02d524045429941cc15f59e41cb7be6c52 +# +# It is also possible to completely kill a command by renaming it into +# an empty string: +# +# rename-command CONFIG "" +# +# Please note that changing the name of commands that are logged into the +# AOF file or transmitted to slaves may cause problems. + +################################### LIMITS #################################### + +# Set the max number of connected clients at the same time. By default +# this limit is set to 10000 clients, however if the Redis server is not +# able to configure the process file limit to allow for the specified limit +# the max number of allowed clients is set to the current file limit +# minus 32 (as Redis reserves a few file descriptors for internal uses). +# +# Once the limit is reached Redis will close all the new connections sending +# an error 'max number of clients reached'. +# +# maxclients 10000 + +# Don't use more memory than the specified amount of bytes. +# When the memory limit is reached Redis will try to remove keys +# according to the eviction policy selected (see maxmemory-policy). +# +# If Redis can't remove keys according to the policy, or if the policy is +# set to 'noeviction', Redis will start to reply with errors to commands +# that would use more memory, like SET, LPUSH, and so on, and will continue +# to reply to read-only commands like GET. +# +# This option is usually useful when using Redis as an LRU cache, or to set +# a hard memory limit for an instance (using the 'noeviction' policy). +# +# WARNING: If you have slaves attached to an instance with maxmemory on, +# the size of the output buffers needed to feed the slaves are subtracted +# from the used memory count, so that network problems / resyncs will +# not trigger a loop where keys are evicted, and in turn the output +# buffer of slaves is full with DELs of keys evicted triggering the deletion +# of more keys, and so forth until the database is completely emptied. +# +# In short... if you have slaves attached it is suggested that you set a lower +# limit for maxmemory so that there is some free RAM on the system for slave +# output buffers (but this is not needed if the policy is 'noeviction'). +# +# maxmemory +maxmemory 1073741824 + +# MAXMEMORY POLICY: how Redis will select what to remove when maxmemory +# is reached. You can select among five behaviors: +# +# volatile-lru -> remove the key with an expire set using an LRU algorithm +# allkeys-lru -> remove any key according to the LRU algorithm +# volatile-random -> remove a random key with an expire set +# allkeys-random -> remove a random key, any key +# volatile-ttl -> remove the key with the nearest expire time (minor TTL) +# noeviction -> don't expire at all, just return an error on write operations +# +# Note: with any of the above policies, Redis will return an error on write +# operations, when there are no suitable keys for eviction. +# +# At the date of writing these commands are: set setnx setex append +# incr decr rpush lpush rpushx lpushx linsert lset rpoplpush sadd +# sinter sinterstore sunion sunionstore sdiff sdiffstore zadd zincrby +# zunionstore zinterstore hset hsetnx hmset hincrby incrby decrby +# getset mset msetnx exec sort +# +# The default is: +# +# maxmemory-policy noeviction +maxmemory-policy allkeys-lru + +# LRU and minimal TTL algorithms are not precise algorithms but approximated +# algorithms (in order to save memory), so you can tune it for speed or +# accuracy. For default Redis will check five keys and pick the one that was +# used less recently, you can change the sample size using the following +# configuration directive. +# +# The default of 5 produces good enough results. 10 Approximates very closely +# true LRU but costs a bit more CPU. 3 is very fast but not very accurate. +# +# maxmemory-samples 5 + +############################## APPEND ONLY MODE ############################### + +# By default Redis asynchronously dumps the dataset on disk. This mode is +# good enough in many applications, but an issue with the Redis process or +# a power outage may result into a few minutes of writes lost (depending on +# the configured save points). +# +# The Append Only File is an alternative persistence mode that provides +# much better durability. For instance using the default data fsync policy +# (see later in the config file) Redis can lose just one second of writes in a +# dramatic event like a server power outage, or a single write if something +# wrong with the Redis process itself happens, but the operating system is +# still running correctly. +# +# AOF and RDB persistence can be enabled at the same time without problems. +# If the AOF is enabled on startup Redis will load the AOF, that is the file +# with the better durability guarantees. +# +# Please check http://redis.io/topics/persistence for more information. + +appendonly no + +# The name of the append only file (default: "appendonly.aof") + +appendfilename "appendonly.aof" + +# The fsync() call tells the Operating System to actually write data on disk +# instead of waiting for more data in the output buffer. Some OS will really flush +# data on disk, some other OS will just try to do it ASAP. +# +# Redis supports three different modes: +# +# no: don't fsync, just let the OS flush the data when it wants. Faster. +# always: fsync after every write to the append only log. Slow, Safest. +# everysec: fsync only one time every second. Compromise. +# +# The default is "everysec", as that's usually the right compromise between +# speed and data safety. It's up to you to understand if you can relax this to +# "no" that will let the operating system flush the output buffer when +# it wants, for better performances (but if you can live with the idea of +# some data loss consider the default persistence mode that's snapshotting), +# or on the contrary, use "always" that's very slow but a bit safer than +# everysec. +# +# More details please check the following article: +# http://antirez.com/post/redis-persistence-demystified.html +# +# If unsure, use "everysec". + +# appendfsync always +appendfsync everysec +# appendfsync no + +# When the AOF fsync policy is set to always or everysec, and a background +# saving process (a background save or AOF log background rewriting) is +# performing a lot of I/O against the disk, in some Linux configurations +# Redis may block too long on the fsync() call. Note that there is no fix for +# this currently, as even performing fsync in a different thread will block +# our synchronous write(2) call. +# +# In order to mitigate this problem it's possible to use the following option +# that will prevent fsync() from being called in the main process while a +# BGSAVE or BGREWRITEAOF is in progress. +# +# This means that while another child is saving, the durability of Redis is +# the same as "appendfsync none". In practical terms, this means that it is +# possible to lose up to 30 seconds of log in the worst scenario (with the +# default Linux settings). +# +# If you have latency problems turn this to "yes". Otherwise leave it as +# "no" that is the safest pick from the point of view of durability. + +no-appendfsync-on-rewrite no + +# Automatic rewrite of the append only file. +# Redis is able to automatically rewrite the log file implicitly calling +# BGREWRITEAOF when the AOF log size grows by the specified percentage. +# +# This is how it works: Redis remembers the size of the AOF file after the +# latest rewrite (if no rewrite has happened since the restart, the size of +# the AOF at startup is used). +# +# This base size is compared to the current size. If the current size is +# bigger than the specified percentage, the rewrite is triggered. Also +# you need to specify a minimal size for the AOF file to be rewritten, this +# is useful to avoid rewriting the AOF file even if the percentage increase +# is reached but it is still pretty small. +# +# Specify a percentage of zero in order to disable the automatic AOF +# rewrite feature. + +auto-aof-rewrite-percentage 100 +auto-aof-rewrite-min-size 64mb + +# An AOF file may be found to be truncated at the end during the Redis +# startup process, when the AOF data gets loaded back into memory. +# This may happen when the system where Redis is running +# crashes, especially when an ext4 filesystem is mounted without the +# data=ordered option (however this can't happen when Redis itself +# crashes or aborts but the operating system still works correctly). +# +# Redis can either exit with an error when this happens, or load as much +# data as possible (the default now) and start if the AOF file is found +# to be truncated at the end. The following option controls this behavior. +# +# If aof-load-truncated is set to yes, a truncated AOF file is loaded and +# the Redis server starts emitting a log to inform the user of the event. +# Otherwise if the option is set to no, the server aborts with an error +# and refuses to start. When the option is set to no, the user requires +# to fix the AOF file using the "redis-check-aof" utility before to restart +# the server. +# +# Note that if the AOF file will be found to be corrupted in the middle +# the server will still exit with an error. This option only applies when +# Redis will try to read more data from the AOF file but not enough bytes +# will be found. +aof-load-truncated yes + +################################ LUA SCRIPTING ############################### + +# Max execution time of a Lua script in milliseconds. +# +# If the maximum execution time is reached Redis will log that a script is +# still in execution after the maximum allowed time and will start to +# reply to queries with an error. +# +# When a long running script exceeds the maximum execution time only the +# SCRIPT KILL and SHUTDOWN NOSAVE commands are available. The first can be +# used to stop a script that did not yet called write commands. The second +# is the only way to shut down the server in the case a write command was +# already issued by the script but the user doesn't want to wait for the natural +# termination of the script. +# +# Set it to 0 or a negative value for unlimited execution without warnings. +lua-time-limit 5000 + +################################ REDIS CLUSTER ############################### +# +# ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ +# WARNING EXPERIMENTAL: Redis Cluster is considered to be stable code, however +# in order to mark it as "mature" we need to wait for a non trivial percentage +# of users to deploy it in production. +# ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ +# +# Normal Redis instances can't be part of a Redis Cluster; only nodes that are +# started as cluster nodes can. In order to start a Redis instance as a +# cluster node enable the cluster support uncommenting the following: +# +# cluster-enabled yes + +# Every cluster node has a cluster configuration file. This file is not +# intended to be edited by hand. It is created and updated by Redis nodes. +# Every Redis Cluster node requires a different cluster configuration file. +# Make sure that instances running in the same system do not have +# overlapping cluster configuration file names. +# +# cluster-config-file nodes-6379.conf + +# Cluster node timeout is the amount of milliseconds a node must be unreachable +# for it to be considered in failure state. +# Most other internal time limits are multiple of the node timeout. +# +# cluster-node-timeout 15000 + +# A slave of a failing master will avoid to start a failover if its data +# looks too old. +# +# There is no simple way for a slave to actually have a exact measure of +# its "data age", so the following two checks are performed: +# +# 1) If there are multiple slaves able to failover, they exchange messages +# in order to try to give an advantage to the slave with the best +# replication offset (more data from the master processed). +# Slaves will try to get their rank by offset, and apply to the start +# of the failover a delay proportional to their rank. +# +# 2) Every single slave computes the time of the last interaction with +# its master. This can be the last ping or command received (if the master +# is still in the "connected" state), or the time that elapsed since the +# disconnection with the master (if the replication link is currently down). +# If the last interaction is too old, the slave will not try to failover +# at all. +# +# The point "2" can be tuned by user. Specifically a slave will not perform +# the failover if, since the last interaction with the master, the time +# elapsed is greater than: +# +# (node-timeout * slave-validity-factor) + repl-ping-slave-period +# +# So for example if node-timeout is 30 seconds, and the slave-validity-factor +# is 10, and assuming a default repl-ping-slave-period of 10 seconds, the +# slave will not try to failover if it was not able to talk with the master +# for longer than 310 seconds. +# +# A large slave-validity-factor may allow slaves with too old data to failover +# a master, while a too small value may prevent the cluster from being able to +# elect a slave at all. +# +# For maximum availability, it is possible to set the slave-validity-factor +# to a value of 0, which means, that slaves will always try to failover the +# master regardless of the last time they interacted with the master. +# (However they'll always try to apply a delay proportional to their +# offset rank). +# +# Zero is the only value able to guarantee that when all the partitions heal +# the cluster will always be able to continue. +# +# cluster-slave-validity-factor 10 + +# Cluster slaves are able to migrate to orphaned masters, that are masters +# that are left without working slaves. This improves the cluster ability +# to resist to failures as otherwise an orphaned master can't be failed over +# in case of failure if it has no working slaves. +# +# Slaves migrate to orphaned masters only if there are still at least a +# given number of other working slaves for their old master. This number +# is the "migration barrier". A migration barrier of 1 means that a slave +# will migrate only if there is at least 1 other working slave for its master +# and so forth. It usually reflects the number of slaves you want for every +# master in your cluster. +# +# Default is 1 (slaves migrate only if their masters remain with at least +# one slave). To disable migration just set it to a very large value. +# A value of 0 can be set but is useful only for debugging and dangerous +# in production. +# +# cluster-migration-barrier 1 + +# By default Redis Cluster nodes stop accepting queries if they detect there +# is at least an hash slot uncovered (no available node is serving it). +# This way if the cluster is partially down (for example a range of hash slots +# are no longer covered) all the cluster becomes, eventually, unavailable. +# It automatically returns available as soon as all the slots are covered again. +# +# However sometimes you want the subset of the cluster which is working, +# to continue to accept queries for the part of the key space that is still +# covered. In order to do so, just set the cluster-require-full-coverage +# option to no. +# +# cluster-require-full-coverage yes + +# In order to setup your cluster make sure to read the documentation +# available at http://redis.io web site. + +################################## SLOW LOG ################################### + +# The Redis Slow Log is a system to log queries that exceeded a specified +# execution time. The execution time does not include the I/O operations +# like talking with the client, sending the reply and so forth, +# but just the time needed to actually execute the command (this is the only +# stage of command execution where the thread is blocked and can not serve +# other requests in the meantime). +# +# You can configure the slow log with two parameters: one tells Redis +# what is the execution time, in microseconds, to exceed in order for the +# command to get logged, and the other parameter is the length of the +# slow log. When a new command is logged the oldest one is removed from the +# queue of logged commands. + +# The following time is expressed in microseconds, so 1000000 is equivalent +# to one second. Note that a negative number disables the slow log, while +# a value of zero forces the logging of every command. +slowlog-log-slower-than 10000 + +# There is no limit to this length. Just be aware that it will consume memory. +# You can reclaim memory used by the slow log with SLOWLOG RESET. +slowlog-max-len 128 + +################################ LATENCY MONITOR ############################## + +# The Redis latency monitoring subsystem samples different operations +# at runtime in order to collect data related to possible sources of +# latency of a Redis instance. +# +# Via the LATENCY command this information is available to the user that can +# print graphs and obtain reports. +# +# The system only logs operations that were performed in a time equal or +# greater than the amount of milliseconds specified via the +# latency-monitor-threshold configuration directive. When its value is set +# to zero, the latency monitor is turned off. +# +# By default latency monitoring is disabled since it is mostly not needed +# if you don't have latency issues, and collecting data has a performance +# impact, that while very small, can be measured under big load. Latency +# monitoring can easily be enabled at runtime using the command +# "CONFIG SET latency-monitor-threshold " if needed. +latency-monitor-threshold 0 + +############################# EVENT NOTIFICATION ############################## + +# Redis can notify Pub/Sub clients about events happening in the key space. +# This feature is documented at http://redis.io/topics/notifications +# +# For instance if keyspace events notification is enabled, and a client +# performs a DEL operation on key "foo" stored in the Database 0, two +# messages will be published via Pub/Sub: +# +# PUBLISH __keyspace@0__:foo del +# PUBLISH __keyevent@0__:del foo +# +# It is possible to select the events that Redis will notify among a set +# of classes. Every class is identified by a single character: +# +# K Keyspace events, published with __keyspace@__ prefix. +# E Keyevent events, published with __keyevent@__ prefix. +# g Generic commands (non-type specific) like DEL, EXPIRE, RENAME, ... +# $ String commands +# l List commands +# s Set commands +# h Hash commands +# z Sorted set commands +# x Expired events (events generated every time a key expires) +# e Evicted events (events generated when a key is evicted for maxmemory) +# A Alias for g$lshzxe, so that the "AKE" string means all the events. +# +# The "notify-keyspace-events" takes as argument a string that is composed +# of zero or multiple characters. The empty string means that notifications +# are disabled. +# +# Example: to enable list and generic events, from the point of view of the +# event name, use: +# +# notify-keyspace-events Elg +# +# Example 2: to get the stream of the expired keys subscribing to channel +# name __keyevent@0__:expired use: +# +# notify-keyspace-events Ex +# +# By default all notifications are disabled because most users don't need +# this feature and the feature has some overhead. Note that if you don't +# specify at least one of K or E, no events will be delivered. +notify-keyspace-events "" + +############################### ADVANCED CONFIG ############################### + +# Hashes are encoded using a memory efficient data structure when they have a +# small number of entries, and the biggest entry does not exceed a given +# threshold. These thresholds can be configured using the following directives. +hash-max-ziplist-entries 512 +hash-max-ziplist-value 64 + +# Lists are also encoded in a special way to save a lot of space. +# The number of entries allowed per internal list node can be specified +# as a fixed maximum size or a maximum number of elements. +# For a fixed maximum size, use -5 through -1, meaning: +# -5: max size: 64 Kb <-- not recommended for normal workloads +# -4: max size: 32 Kb <-- not recommended +# -3: max size: 16 Kb <-- probably not recommended +# -2: max size: 8 Kb <-- good +# -1: max size: 4 Kb <-- good +# Positive numbers mean store up to _exactly_ that number of elements +# per list node. +# The highest performing option is usually -2 (8 Kb size) or -1 (4 Kb size), +# but if your use case is unique, adjust the settings as necessary. +list-max-ziplist-size -2 + +# Lists may also be compressed. +# Compress depth is the number of quicklist ziplist nodes from *each* side of +# the list to *exclude* from compression. The head and tail of the list +# are always uncompressed for fast push/pop operations. Settings are: +# 0: disable all list compression +# 1: depth 1 means "don't start compressing until after 1 node into the list, +# going from either the head or tail" +# So: [head]->node->node->...->node->[tail] +# [head], [tail] will always be uncompressed; inner nodes will compress. +# 2: [head]->[next]->node->node->...->node->[prev]->[tail] +# 2 here means: don't compress head or head->next or tail->prev or tail, +# but compress all nodes between them. +# 3: [head]->[next]->[next]->node->node->...->node->[prev]->[prev]->[tail] +# etc. +list-compress-depth 0 + +# Sets have a special encoding in just one case: when a set is composed +# of just strings that happen to be integers in radix 10 in the range +# of 64 bit signed integers. +# The following configuration setting sets the limit in the size of the +# set in order to use this special memory saving encoding. +set-max-intset-entries 512 + +# Similarly to hashes and lists, sorted sets are also specially encoded in +# order to save a lot of space. This encoding is only used when the length and +# elements of a sorted set are below the following limits: +zset-max-ziplist-entries 128 +zset-max-ziplist-value 64 + +# HyperLogLog sparse representation bytes limit. The limit includes the +# 16 bytes header. When an HyperLogLog using the sparse representation crosses +# this limit, it is converted into the dense representation. +# +# A value greater than 16000 is totally useless, since at that point the +# dense representation is more memory efficient. +# +# The suggested value is ~ 3000 in order to have the benefits of +# the space efficient encoding without slowing down too much PFADD, +# which is O(N) with the sparse encoding. The value can be raised to +# ~ 10000 when CPU is not a concern, but space is, and the data set is +# composed of many HyperLogLogs with cardinality in the 0 - 15000 range. +hll-sparse-max-bytes 3000 + +# Active rehashing uses 1 millisecond every 100 milliseconds of CPU time in +# order to help rehashing the main Redis hash table (the one mapping top-level +# keys to values). The hash table implementation Redis uses (see dict.c) +# performs a lazy rehashing: the more operation you run into a hash table +# that is rehashing, the more rehashing "steps" are performed, so if the +# server is idle the rehashing is never complete and some more memory is used +# by the hash table. +# +# The default is to use this millisecond 10 times every second in order to +# actively rehash the main dictionaries, freeing memory when possible. +# +# If unsure: +# use "activerehashing no" if you have hard latency requirements and it is +# not a good thing in your environment that Redis can reply from time to time +# to queries with 2 milliseconds delay. +# +# use "activerehashing yes" if you don't have such hard requirements but +# want to free memory asap when possible. +activerehashing yes + +# The client output buffer limits can be used to force disconnection of clients +# that are not reading data from the server fast enough for some reason (a +# common reason is that a Pub/Sub client can't consume messages as fast as the +# publisher can produce them). +# +# The limit can be set differently for the three different classes of clients: +# +# normal -> normal clients including MONITOR clients +# slave -> slave clients +# pubsub -> clients subscribed to at least one pubsub channel or pattern +# +# The syntax of every client-output-buffer-limit directive is the following: +# +# client-output-buffer-limit +# +# A client is immediately disconnected once the hard limit is reached, or if +# the soft limit is reached and remains reached for the specified number of +# seconds (continuously). +# So for instance if the hard limit is 32 megabytes and the soft limit is +# 16 megabytes / 10 seconds, the client will get disconnected immediately +# if the size of the output buffers reach 32 megabytes, but will also get +# disconnected if the client reaches 16 megabytes and continuously overcomes +# the limit for 10 seconds. +# +# By default normal clients are not limited because they don't receive data +# without asking (in a push way), but just after a request, so only +# asynchronous clients may create a scenario where data is requested faster +# than it can read. +# +# Instead there is a default limit for pubsub and slave clients, since +# subscribers and slaves receive data in a push fashion. +# +# Both the hard or the soft limit can be disabled by setting them to zero. +client-output-buffer-limit normal 0 0 0 +client-output-buffer-limit slave 256mb 64mb 60 +client-output-buffer-limit pubsub 32mb 8mb 60 + +# Redis calls an internal function to perform many background tasks, like +# closing connections of clients in timeout, purging expired keys that are +# never requested, and so forth. +# +# Not all tasks are performed with the same frequency, but Redis checks for +# tasks to perform according to the specified "hz" value. +# +# By default "hz" is set to 10. Raising the value will use more CPU when +# Redis is idle, but at the same time will make Redis more responsive when +# there are many keys expiring at the same time, and timeouts may be +# handled with more precision. +# +# The range is between 1 and 500, however a value over 100 is usually not +# a good idea. Most users should use the default of 10 and raise this up to +# 100 only in environments where very low latency is required. +hz 10 + +# When a child rewrites the AOF file, if the following option is enabled +# the file will be fsync-ed every 32 MB of data generated. This is useful +# in order to commit the file to the disk more incrementally and avoid +# big latency spikes. +aof-rewrite-incremental-fsync yes diff --git "a/Docker\345\256\211\350\243\205\350\204\232\346\234\254/redis/start.sh" "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/redis/start.sh" new file mode 100644 index 0000000..9c7b54a --- /dev/null +++ "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/redis/start.sh" @@ -0,0 +1,10 @@ +#!/bin/bash + +docker stop lamp_redis +docker rm lamp_redis +docker run -idt -p 16379:16379 --name lamp_redis --restart=always \ + -v `pwd`/redis.conf:/etc/redis/redis_default.conf \ + -v /data/docker-data/redis-data/:/data \ + -e TZ="Asia/Shanghai" \ + redis:4.0.12 redis-server /etc/redis/redis_default.conf --appendonly yes + diff --git "a/Docker\345\256\211\350\243\205\350\204\232\346\234\254/seata/config/resources/META-INF/native-image/io.seata/server/reflect-config.json" "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/seata/config/resources/META-INF/native-image/io.seata/server/reflect-config.json" new file mode 100644 index 0000000..9d762df --- /dev/null +++ "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/seata/config/resources/META-INF/native-image/io.seata/server/reflect-config.json" @@ -0,0 +1,362 @@ +[ + { + "condition": { + "typeReachable": "io.seata.core.rpc.RegisterCheckAuthHandler" + }, + "name": "io.seata.server.auth.DefaultCheckAuthHandler", + "methods": [ + { + "name": "", + "parameterTypes": [] + } + ] + }, + { + "condition": { + "typeReachable": "io.seata.core.store.db.DataSourceProvider" + }, + "name": "io.seata.server.store.DbcpDataSourceProvider", + "methods": [ + { + "name": "", + "parameterTypes": [] + } + ] + }, + { + "condition": { + "typeReachable": "io.seata.core.store.db.DataSourceProvider" + }, + "name": "io.seata.server.store.DruidDataSourceProvider", + "methods": [ + { + "name": "", + "parameterTypes": [] + } + ] + }, + { + "condition": { + "typeReachable": "io.seata.core.store.db.DataSourceProvider" + }, + "name": "io.seata.server.store.HikariDataSourceProvider", + "methods": [ + { + "name": "", + "parameterTypes": [] + } + ] + }, + { + "condition": { + "typeReachable": "io.seata.core.store.DistributedLocker" + }, + "name": "io.seata.server.storage.redis.lock.RedisDistributedLocker", + "methods": [ + { + "name": "", + "parameterTypes": [] + } + ] + }, + { + "condition": { + "typeReachable": "io.seata.core.store.DistributedLocker" + }, + "name": "io.seata.server.storage.db.lock.DataBaseDistributedLocker", + "methods": [ + { + "name": "", + "parameterTypes": [] + } + ] + }, + { + "condition": { + "typeReachable": "io.seata.server.coordinator.AbstractCore" + }, + "name": "io.seata.server.transaction.at.ATCore", + "methods": [ + { + "name": "", + "parameterTypes": [ + "io.seata.core.rpc.RemotingServer" + ] + } + ] + }, + { + "condition": { + "typeReachable": "io.seata.server.coordinator.AbstractCore" + }, + "name": "io.seata.server.transaction.tcc.TccCore", + "methods": [ + { + "name": "", + "parameterTypes": [ + "io.seata.core.rpc.RemotingServer" + ] + } + ] + }, + { + "condition": { + "typeReachable": "io.seata.server.coordinator.AbstractCore" + }, + "name": "io.seata.server.transaction.saga.SagaCore", + "methods": [ + { + "name": "", + "parameterTypes": [ + "io.seata.core.rpc.RemotingServer" + ] + } + ] + }, + { + "condition": { + "typeReachable": "io.seata.server.coordinator.AbstractCore" + }, + "name": "io.seata.server.transaction.xa.XACore", + "methods": [ + { + "name": "", + "parameterTypes": [ + "io.seata.core.rpc.RemotingServer" + ] + } + ] + }, + { + "condition": { + "typeReachable": "io.seata.server.lock.LockManager" + }, + "name": "io.seata.server.storage.db.lock.DataBaseLockManager", + "methods": [ + { + "name": "", + "parameterTypes": [] + } + ] + }, + { + "condition": { + "typeReachable": "io.seata.server.lock.LockManager" + }, + "name": "io.seata.server.storage.file.lock.FileLockManager", + "methods": [ + { + "name": "", + "parameterTypes": [] + } + ] + }, + { + "condition": { + "typeReachable": "io.seata.server.lock.LockManager" + }, + "name": "io.seata.server.storage.redis.lock.RedisLockManager", + "methods": [ + { + "name": "", + "parameterTypes": [] + } + ] + }, + { + "condition": { + "typeReachable": "io.seata.server.session.SessionManager" + }, + "name": "io.seata.server.storage.file.session.FileSessionManager", + "methods": [ + { + "name": "", + "parameterTypes": [ + "java.lang.String", + "java.lang.String" + ] + } + ] + }, + { + "condition": { + "typeReachable": "io.seata.server.session.SessionManager" + }, + "name": "io.seata.server.storage.db.session.DataBaseSessionManager", + "methods": [ + { + "name": "", + "parameterTypes": [] + }, + { + "name": "", + "parameterTypes": [ + "java.lang.String" + ] + } + ] + }, + { + "condition": { + "typeReachable": "io.seata.server.session.SessionManager" + }, + "name": "io.seata.server.storage.redis.session.RedisSessionManager", + "methods": [ + { + "name": "", + "parameterTypes": [] + }, + { + "name": "", + "parameterTypes": [ + "java.lang.String" + ] + } + ] + }, + { + "condition": { + "typeReachable": "com.google.inject.internal.TypeConverterBindingProcessor" + }, + "name": "java.lang.Integer", + "methods": [ + { + "name": "parseInteger", + "parameterTypes": [ + "java.lang.String" + ] + } + ] + }, + { + "condition": { + "typeReachable": "com.google.inject.internal.TypeConverterBindingProcessor" + }, + "name": "java.lang.Long", + "methods": [ + { + "name": "parseLong", + "parameterTypes": [ + "java.lang.String" + ] + } + ] + }, + { + "condition": { + "typeReachable": "com.google.inject.internal.TypeConverterBindingProcessor" + }, + "name": "java.lang.Boolean", + "methods": [ + { + "name": "parseBoolean", + "parameterTypes": [ + "java.lang.String" + ] + } + ] + }, + { + "condition": { + "typeReachable": "com.google.inject.internal.TypeConverterBindingProcessor" + }, + "name": "java.lang.Byte", + "methods": [ + { + "name": "parseByte", + "parameterTypes": [ + "java.lang.String" + ] + } + ] + }, + { + "condition": { + "typeReachable": "com.google.inject.internal.TypeConverterBindingProcessor" + }, + "name": "java.lang.Short", + "methods": [ + { + "name": "parseShort", + "parameterTypes": [ + "java.lang.String" + ] + } + ] + }, + { + "condition": { + "typeReachable": "com.google.inject.internal.TypeConverterBindingProcessor" + }, + "name": "java.lang.Float", + "methods": [ + { + "name": "parseFloat", + "parameterTypes": [ + "java.lang.String" + ] + } + ] + }, + { + "condition": { + "typeReachable": "com.google.inject.internal.TypeConverterBindingProcessor" + }, + "name": "java.lang.Double", + "methods": [ + { + "name": "parseDouble", + "parameterTypes": [ + "java.lang.String" + ] + } + ] + }, + { + "condition": { + "typeReachable": "io.netty.channel.socket.nio.SelectorProviderUtil" + }, + "name": "java.nio.channels.spi.SelectorProvider", + "methods": [ + { + "name": "openServerSocketChannel", + "parameterTypes": [ + "java.net.ProtocolFamily" + ] + } + ] + }, + { + "condition": { + "typeReachable": "io.netty.channel.DefaultChannelConfig" + }, + "name": "io.netty.buffer.ByteBufAllocator" + }, + { + "condition": { + "typeReachable": "io.netty.channel.DefaultChannelConfig" + }, + "name": "io.netty.buffer.ByteBufUtil" + }, + { + "condition": { + "typeReachable": "io.netty.util.ResourceLeakDetector" + }, + "name": "io.netty.buffer.AbstractByteBufAllocator", + "allDeclaredMethods": true + }, + { + "condition": { + "typeReachable": "io.netty.util.ResourceLeakDetector" + }, + "name": "io.netty.buffer.AdvancedLeakAwareByteBuf", + "allDeclaredMethods": true + }, + { + "condition": { + "typeReachable": "io.netty.util.ResourceLeakDetector" + }, + "name": "io.netty.util.ReferenceCountUtil", + "allDeclaredMethods": true + } +] \ No newline at end of file diff --git "a/Docker\345\256\211\350\243\205\350\204\232\346\234\254/seata/config/resources/META-INF/native-image/io.seata/server/resource-config.json" "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/seata/config/resources/META-INF/native-image/io.seata/server/resource-config.json" new file mode 100644 index 0000000..73b72ff --- /dev/null +++ "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/seata/config/resources/META-INF/native-image/io.seata/server/resource-config.json" @@ -0,0 +1,21 @@ +{ + "resources": { + "includes": [ + { + "pattern": "\\Qlogback\/\\E.*" + }, + { + "pattern": "\\Qlua\/redislocker\/redislock.lua\\E" + }, + { + "pattern": "\\Qapplication.yml\\E" + }, + { + "pattern": "\\Qbanner.txt\\E" + }, + { + "pattern": "\\Qlogback-spring.xml\\E" + } + ] + } +} \ No newline at end of file diff --git "a/Docker\345\256\211\350\243\205\350\204\232\346\234\254/seata/config/resources/META-INF/services/io.seata.core.rpc.RegisterCheckAuthHandler" "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/seata/config/resources/META-INF/services/io.seata.core.rpc.RegisterCheckAuthHandler" new file mode 100644 index 0000000..1a54728 --- /dev/null +++ "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/seata/config/resources/META-INF/services/io.seata.core.rpc.RegisterCheckAuthHandler" @@ -0,0 +1 @@ +io.seata.server.auth.DefaultCheckAuthHandler \ No newline at end of file diff --git "a/Docker\345\256\211\350\243\205\350\204\232\346\234\254/seata/config/resources/META-INF/services/io.seata.core.store.DistributedLocker" "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/seata/config/resources/META-INF/services/io.seata.core.store.DistributedLocker" new file mode 100644 index 0000000..874e8b9 --- /dev/null +++ "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/seata/config/resources/META-INF/services/io.seata.core.store.DistributedLocker" @@ -0,0 +1,2 @@ +io.seata.server.storage.redis.lock.RedisDistributedLocker +io.seata.server.storage.db.lock.DataBaseDistributedLocker \ No newline at end of file diff --git "a/Docker\345\256\211\350\243\205\350\204\232\346\234\254/seata/config/resources/META-INF/services/io.seata.core.store.db.DataSourceProvider" "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/seata/config/resources/META-INF/services/io.seata.core.store.db.DataSourceProvider" new file mode 100644 index 0000000..ac04a85 --- /dev/null +++ "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/seata/config/resources/META-INF/services/io.seata.core.store.db.DataSourceProvider" @@ -0,0 +1,3 @@ +io.seata.server.store.DbcpDataSourceProvider +io.seata.server.store.DruidDataSourceProvider +io.seata.server.store.HikariDataSourceProvider \ No newline at end of file diff --git "a/Docker\345\256\211\350\243\205\350\204\232\346\234\254/seata/config/resources/META-INF/services/io.seata.server.coordinator.AbstractCore" "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/seata/config/resources/META-INF/services/io.seata.server.coordinator.AbstractCore" new file mode 100644 index 0000000..a80662b --- /dev/null +++ "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/seata/config/resources/META-INF/services/io.seata.server.coordinator.AbstractCore" @@ -0,0 +1,4 @@ +io.seata.server.transaction.at.ATCore +io.seata.server.transaction.tcc.TccCore +io.seata.server.transaction.saga.SagaCore +io.seata.server.transaction.xa.XACore \ No newline at end of file diff --git "a/Docker\345\256\211\350\243\205\350\204\232\346\234\254/seata/config/resources/META-INF/services/io.seata.server.lock.LockManager" "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/seata/config/resources/META-INF/services/io.seata.server.lock.LockManager" new file mode 100644 index 0000000..bca40c8 --- /dev/null +++ "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/seata/config/resources/META-INF/services/io.seata.server.lock.LockManager" @@ -0,0 +1,3 @@ +io.seata.server.storage.db.lock.DataBaseLockManager +io.seata.server.storage.file.lock.FileLockManager +io.seata.server.storage.redis.lock.RedisLockManager \ No newline at end of file diff --git "a/Docker\345\256\211\350\243\205\350\204\232\346\234\254/seata/config/resources/META-INF/services/io.seata.server.session.SessionManager" "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/seata/config/resources/META-INF/services/io.seata.server.session.SessionManager" new file mode 100644 index 0000000..f2e8231 --- /dev/null +++ "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/seata/config/resources/META-INF/services/io.seata.server.session.SessionManager" @@ -0,0 +1,3 @@ +io.seata.server.storage.file.session.FileSessionManager +io.seata.server.storage.db.session.DataBaseSessionManager +io.seata.server.storage.redis.session.RedisSessionManager \ No newline at end of file diff --git "a/Docker\345\256\211\350\243\205\350\204\232\346\234\254/seata/config/resources/META-INF/spring-configuration-metadata.json" "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/seata/config/resources/META-INF/spring-configuration-metadata.json" new file mode 100644 index 0000000..0544917 --- /dev/null +++ "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/seata/config/resources/META-INF/spring-configuration-metadata.json" @@ -0,0 +1,22 @@ +{ + "groups": [], + "properties": [ + { + "name": "logging.extend.kafka-appender.bootstrap-servers", + "type": "java.lang.String", + "defaultValue": "localhost:9092" + }, + { + "name": "logging.extend.kafka-appender.topic", + "type": "java.lang.String", + "defaultValue": "logback_to_logstash" + }, + { + "name": "logging.extend.logstash-appender.destination", + "type": "java.lang.String", + "defaultValue": "localhost:4560" + } + ], + "hints": [ + ] +} \ No newline at end of file diff --git "a/Docker\345\256\211\350\243\205\350\204\232\346\234\254/seata/config/resources/META-INF/spring.factories" "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/seata/config/resources/META-INF/spring.factories" new file mode 100644 index 0000000..3384008 --- /dev/null +++ "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/seata/config/resources/META-INF/spring.factories" @@ -0,0 +1,4 @@ +org.springframework.context.ApplicationListener=\ +io.seata.server.spring.listener.ServerApplicationListener +org.springframework.context.ApplicationContextInitializer=\ +io.seata.server.spring.listener.SeataPropertiesLoader \ No newline at end of file diff --git "a/Docker\345\256\211\350\243\205\350\204\232\346\234\254/seata/config/resources/README-zh.md" "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/seata/config/resources/README-zh.md" new file mode 100644 index 0000000..05d1620 --- /dev/null +++ "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/seata/config/resources/README-zh.md" @@ -0,0 +1,32 @@ +# 脚本说明 + +## [client](https://github.com/seata/seata/tree/develop/script/client) + +> 存放用于客户端的配置和SQL + +- at: AT模式下的 `undo_log` 建表语句 +- conf: 客户端的配置文件 +- saga: SAGA 模式下所需表的建表语句 +- spring: SpringBoot 应用支持的配置文件 + +## [server](https://github.com/seata/seata/tree/develop/script/server) + +> 存放server侧所需SQL和部署脚本 + +- db: server 侧的保存模式为 `db` 时所需表的建表语句 +- docker-compose: server 侧通过 docker-compose 部署的脚本 +- helm: server 侧通过 Helm 部署的脚本 +- kubernetes: server 侧通过 Kubernetes 部署的脚本 + +## [config-center](https://github.com/seata/seata/tree/develop/script/config-center) + +> 用于存放各种配置中心的初始化脚本,执行时都会读取 `config.txt`配置文件,并写入配置中心 + +- nacos: 用于向 Nacos 中添加配置 +- zk: 用于向 Zookeeper 中添加配置,脚本依赖 Zookeeper 的相关脚本,需要手动下载;ZooKeeper相关的配置可以写在 `zk-params.txt` 中,也可以在执行的时候输入 +- apollo: 向 Apollo 中添加配置,Apollo 的地址端口等可以写在 `apollo-params.txt`,也可以在执行的时候输入 +- etcd3: 用于向 Etcd3 中添加配置 +- consul: 用于向 consul 中添加配置 + +## 打包 +./mvnw -Prelease-seata -Dmaven.test.skip=true clean install -U diff --git "a/Docker\345\256\211\350\243\205\350\204\232\346\234\254/seata/config/resources/README.md" "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/seata/config/resources/README.md" new file mode 100644 index 0000000..ddabd55 --- /dev/null +++ "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/seata/config/resources/README.md" @@ -0,0 +1,33 @@ +# Script Description + +## [client](https://github.com/seata/seata/tree/develop/script/client) + +> Store configuration and SQL for client side + +- at: Script of create table `undo_log` for AT mode. +- conf: Configuration which client need. +- saga: Script of create table in SAGA mode +- spring: Configuration for Spring Boot + +## [server](https://github.com/seata/seata/tree/develop/script/server) + +> Store SQL and deploy script for server side + +- db: Create table script for server when store mode is `db` +- docker-compose: Script for deploy server by docker-compose +- helm: Script for deploy server by Helm +- kubernetes: Script for deploy server by Kubernetes + +## [config-center](https://github.com/seata/seata/tree/develop/script/config-center) + +> Store initialize script for configuration center, will use `config.txt` as configuration when initial + +- nacos: Initialize script for Nacos +- zk: Initialize script for ZooKeeper, the script need related script in Zookeeper, you need download yourself. You can modify `zk-params.txt` to change the ZooKeeper server configuration, or input when execute also +- apollo: Initialize script for Apollo. You can modify `apollo-params.txt` to change the Apollo server configuration, or input when execute also +- etcd3: Initialize script for Etcd3 +- consul: Initialize script for consul + +## build packege +./mvnw -Prelease-seata -Dmaven.test.skip=true clean install -U + diff --git "a/Docker\345\256\211\350\243\205\350\204\232\346\234\254/seata/config/resources/application.example.yml" "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/seata/config/resources/application.example.yml" new file mode 100644 index 0000000..4e46e67 --- /dev/null +++ "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/seata/config/resources/application.example.yml" @@ -0,0 +1,195 @@ +# Copyright 1999-2019 Seata.io Group. +# +# Licensed under the Apache License, Version 2.0 (the "License"); +# you may not use this file except in compliance with the License. +# You may obtain a copy of the License at +# +# http://www.apache.org/licenses/LICENSE-2.0 +# +# Unless required by applicable law or agreed to in writing, software +# distributed under the License is distributed on an "AS IS" BASIS, +# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +# See the License for the specific language governing permissions and +# limitations under the License. + +server: + port: 7091 + +spring: + application: + name: seata-server + +logging: + config: classpath:logback-spring.xml + file: + path: ${user.home}/logs/seata + extend: + logstash-appender: + destination: 127.0.0.1:4560 + kafka-appender: + bootstrap-servers: 127.0.0.1:9092 + topic: logback_to_logstash + +seata: + config: + # support: nacos 、 consul 、 apollo 、 zk 、 etcd3 + type: file + nacos: + server-addr: 127.0.0.1:8848 + namespace: + group: SEATA_GROUP + username: + password: + context-path: + ##if use MSE Nacos with auth, mutex with username/password attribute + #access-key: + #secret-key: + data-id: seataServer.properties + consul: + server-addr: 127.0.0.1:8500 + acl-token: + key: seata.properties + apollo: + appId: seata-server + apollo-meta: http://192.168.1.204:8801 + apollo-config-service: http://192.168.1.204:8080 + namespace: application + apollo-access-key-secret: + cluster: seata + zk: + server-addr: 127.0.0.1:2181 + session-timeout: 6000 + connect-timeout: 2000 + username: + password: + node-path: /seata/seata.properties + etcd3: + server-addr: http://localhost:2379 + key: seata.properties + registry: + # support: nacos 、 eureka 、 redis 、 zk 、 consul 、 etcd3 、 sofa + type: file + preferred-networks: 30.240.* + nacos: + application: seata-server + server-addr: 127.0.0.1:8848 + group: SEATA_GROUP + namespace: + cluster: default + username: + password: + context-path: + ##if use MSE Nacos with auth, mutex with username/password attribute + #access-key: + #secret-key: + eureka: + service-url: http://localhost:8761/eureka + application: default + weight: 1 + redis: + server-addr: localhost:6379 + db: 0 + password: + cluster: default + timeout: 0 + zk: + cluster: default + server-addr: 127.0.0.1:2181 + session-timeout: 6000 + connect-timeout: 2000 + username: + password: + consul: + cluster: default + server-addr: 127.0.0.1:8500 + acl-token: + etcd3: + cluster: default + server-addr: http://localhost:2379 + sofa: + server-addr: 127.0.0.1:9603 + application: default + region: DEFAULT_ZONE + datacenter: DefaultDataCenter + cluster: default + group: SEATA_GROUP + address-wait-time: 3000 + + server: + service-port: 8091 #If not configured, the default is '${server.port} + 1000' + max-commit-retry-timeout: -1 + max-rollback-retry-timeout: -1 + rollback-retry-timeout-unlock-enable: false + enable-check-auth: true + enable-parallel-request-handle: true + retry-dead-threshold: 130000 + xaer-nota-retry-timeout: 60000 + enableParallelRequestHandle: true + recovery: + committing-retry-period: 1000 + async-committing-retry-period: 1000 + rollbacking-retry-period: 1000 + timeout-retry-period: 1000 + undo: + log-save-days: 7 + log-delete-period: 86400000 + session: + branch-async-queue-size: 5000 #branch async remove queue size + enable-branch-async-remove: false #enable to asynchronous remove branchSession + store: + # support: file 、 db 、 redis + mode: file + session: + mode: file + lock: + mode: file + file: + dir: sessionStore + max-branch-session-size: 16384 + max-global-session-size: 512 + file-write-buffer-cache-size: 16384 + session-reload-read-size: 100 + flush-disk-mode: async + db: + datasource: druid + db-type: mysql + driver-class-name: com.mysql.jdbc.Driver + url: jdbc:mysql://127.0.0.1:3306/seata?rewriteBatchedStatements=true + user: mysql + password: mysql + min-conn: 10 + max-conn: 100 + global-table: global_table + branch-table: branch_table + lock-table: lock_table + distributed-lock-table: distributed_lock + query-limit: 1000 + max-wait: 5000 + redis: + mode: single + database: 0 + min-conn: 10 + max-conn: 100 + password: + max-total: 100 + query-limit: 1000 + single: + host: 127.0.0.1 + port: 6379 + sentinel: + master-name: + sentinel-hosts: + metrics: + enabled: false + registry-type: compact + exporter-list: prometheus + exporter-prometheus-port: 9898 + transport: + rpc-tc-request-timeout: 15000 + enable-tc-server-batch-send-response: false + shutdown: + wait: 3 + thread-factory: + boss-thread-prefix: NettyBoss + worker-thread-prefix: NettyServerNIOWorker + boss-thread-size: 1 diff --git "a/Docker\345\256\211\350\243\205\350\204\232\346\234\254/seata/config/resources/application.yml" "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/seata/config/resources/application.yml" new file mode 100644 index 0000000..e942bb2 --- /dev/null +++ "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/seata/config/resources/application.yml" @@ -0,0 +1,86 @@ +# Copyright 1999-2019 Seata.io Group. +# +# Licensed under the Apache License, Version 2.0 (the "License"); +# you may not use this file except in compliance with the License. +# You may obtain a copy of the License at +# +# http://www.apache.org/licenses/LICENSE-2.0 +# +# Unless required by applicable law or agreed to in writing, software +# distributed under the License is distributed on an "AS IS" BASIS, +# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +# See the License for the specific language governing permissions and +# limitations under the License. + +server: + port: 7091 + +spring: + application: + name: seata-server + +logging: + config: classpath:logback-spring.xml + file: + path: ${user.home}/logs/seata + extend: + logstash-appender: + destination: 127.0.0.1:4560 + kafka-appender: + bootstrap-servers: 127.0.0.1:9092 + topic: logback_to_logstash + +console: + user: + username: seata + password: seata +seata: + config: + # support: nacos, consul, apollo, zk, etcd3 + type: nacos + nacos: + application: seata-server + server-addr: 127.0.0.1:8848 + group: SEATA_GROUP + namespace: 5b51e46a-4aeb-4d40-8398-8a9d33e2f0ad + cluster: default + username: nacos + password: nacos + context-path: + registry: + # support: nacos, eureka, redis, zk, consul, etcd3, sofa + type: nacos + nacos: + application: seata-server + server-addr: 127.0.0.1:8848 + group: SEATA_GROUP + namespace: 5b51e46a-4aeb-4d40-8398-8a9d33e2f0ad + cluster: default + username: nacos + password: nacos + context-path: + store: + # support: file 、 db 、 redis + mode: db + db: + datasource: druid + db-type: mysql + driver-class-name: com.mysql.jdbc.Driver + url: jdbc:mysql://127.0.0.1:3306/lamp_seata?useUnicode=true&rewriteBatchedStatements=true&serverTimezone=GMT + user: root + password: root + min-conn: 10 + max-conn: 100 + global-table: global_table + branch-table: branch_table + lock-table: lock_table + distributed-lock-table: distributed_lock + query-limit: 1000 + max-wait: 5000 +# server: +# service-port: 8091 #If not configured, the default is '${server.port} + 1000' + security: + secretKey: SeataSecretKey0c382ef121d778043159209298fd40bf3850a017 + tokenValidityInMilliseconds: 1800000 + ignore: + urls: /,/**/*.css,/**/*.js,/**/*.html,/**/*.map,/**/*.svg,/**/*.png,/**/*.jpeg,/**/*.ico,/api/v1/auth/login diff --git "a/Docker\345\256\211\350\243\205\350\204\232\346\234\254/seata/config/resources/banner.txt" "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/seata/config/resources/banner.txt" new file mode 100644 index 0000000..e561e76 --- /dev/null +++ "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/seata/config/resources/banner.txt" @@ -0,0 +1,7 @@ +███████╗███████╗ █████╗ ████████╗ █████╗ +██╔════╝██╔════╝██╔══██╗╚══██╔══╝██╔══██╗ +███████╗█████╗ ███████║ ██║ ███████║ +╚════██║██╔══╝ ██╔══██║ ██║ ██╔══██║ +███████║███████╗██║ ██║ ██║ ██║ ██║ +╚══════╝╚══════╝╚═╝ ╚═╝ ╚═╝ ╚═╝ ╚═╝ + diff --git "a/Docker\345\256\211\350\243\205\350\204\232\346\234\254/seata/config/resources/logback-spring.xml" "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/seata/config/resources/logback-spring.xml" new file mode 100644 index 0000000..d847ac3 --- /dev/null +++ "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/seata/config/resources/logback-spring.xml" @@ -0,0 +1,80 @@ + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + diff --git "a/Docker\345\256\211\350\243\205\350\204\232\346\234\254/seata/config/resources/logback/console-appender.xml" "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/seata/config/resources/logback/console-appender.xml" new file mode 100644 index 0000000..542b1b4 --- /dev/null +++ "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/seata/config/resources/logback/console-appender.xml" @@ -0,0 +1,29 @@ + + + + + + + + + + ${CONSOLE_LOG_PATTERN} + UTF-8 + + + diff --git "a/Docker\345\256\211\350\243\205\350\204\232\346\234\254/seata/config/resources/logback/file-appender.xml" "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/seata/config/resources/logback/file-appender.xml" new file mode 100644 index 0000000..9225d75 --- /dev/null +++ "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/seata/config/resources/logback/file-appender.xml" @@ -0,0 +1,85 @@ + + + + + + + + + + + ${LOG_FILE_PATH}/${APPLICATION_NAME:-seata-server}.${RPC_PORT}.all.log + true + + ${LOG_FILE_PATH}/history/${APPLICATION_NAME:-seata-server}.${RPC_PORT}.all.%d{yyyy-MM-dd}.%i.log.gz + 2GB + 7 + 7GB + true + + + ${FILE_LOG_PATTERN} + UTF-8 + + + + + + + WARN + ACCEPT + DENY + + ${LOG_FILE_PATH}/${APPLICATION_NAME:-seata-server}.${RPC_PORT}.warn.log + true + + ${LOG_FILE_PATH}/history/${APPLICATION_NAME:-seata-server}.${RPC_PORT}.warn.%d{yyyy-MM-dd}.%i.log.gz + 2GB + 7 + 7GB + true + + + ${FILE_LOG_PATTERN} + UTF-8 + + + + + + + ERROR + ACCEPT + DENY + + ${LOG_FILE_PATH}/${APPLICATION_NAME:-seata-server}.${RPC_PORT}.error.log + true + + ${LOG_FILE_PATH}/history/${APPLICATION_NAME:-seata-server}.${RPC_PORT}.error.%d{yyyy-MM-dd}.%i.log.gz + 2GB + 7 + 7GB + true + + + ${FILE_LOG_PATTERN} + UTF-8 + + + diff --git "a/Docker\345\256\211\350\243\205\350\204\232\346\234\254/seata/config/resources/logback/kafka-appender.xml" "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/seata/config/resources/logback/kafka-appender.xml" new file mode 100644 index 0000000..a13000a --- /dev/null +++ "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/seata/config/resources/logback/kafka-appender.xml" @@ -0,0 +1,50 @@ + + + + + + + + + + + + { + "@timestamp": "%d{yyyy-MM-dd HH:mm:ss.SSS}", + "level":"%p", + "app_name":"${APPLICATION_NAME:-seata-server}", + "PORT": ${RPC_PORT:-0}, + "thread_name": "%t", + "logger_name": "%logger", + "X-TX-XID": "%X{X-TX-XID:-}", + "X-TX-BRANCH-ID": "%X{X-TX-BRANCH-ID:-}", + "message": "%m", + "stack_trace": "%wex" +} + + + ${KAFKA_TOPIC} + + + bootstrap.servers=${KAFKA_BOOTSTRAP_SERVERS} + acks=0 + linger.ms=1000 + max.block.ms=0 + + diff --git "a/Docker\345\256\211\350\243\205\350\204\232\346\234\254/seata/config/resources/logback/logstash-appender.xml" "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/seata/config/resources/logback/logstash-appender.xml" new file mode 100644 index 0000000..2c2f972 --- /dev/null +++ "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/seata/config/resources/logback/logstash-appender.xml" @@ -0,0 +1,45 @@ + + + + + + + + + + ${LOGSTASH_DESTINATION} + + + + + + { + "app_name": "${APPLICATION_NAME:-seata-server}" + } + + + + net.logstash.logback.composite.LogstashVersionJsonProvider + + net.logstash.logback.composite.loggingevent.JsonMessageJsonProvider + net.logstash.logback.composite.loggingevent.TagsJsonProvider + net.logstash.logback.composite.loggingevent.LogstashMarkersJsonProvider + net.logstash.logback.composite.loggingevent.ArgumentsJsonProvider + + + diff --git "a/Docker\345\256\211\350\243\205\350\204\232\346\234\254/seata/config/resources/lua/redislocker/redislock.lua" "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/seata/config/resources/lua/redislocker/redislock.lua" new file mode 100644 index 0000000..b004408 --- /dev/null +++ "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/seata/config/resources/lua/redislocker/redislock.lua" @@ -0,0 +1,52 @@ +-- +-- User: tianyu.li +-- Date: 2021/1/19 +-- +-- init data +local array = {}; local result; local keySize = ARGV[1]; local argSize = ARGV[2]; +-- Loop through all keys to see if they can be used , when a key is not available, exit +for i= 1, keySize do + -- search lock xid + result = redis.call('HGET',KEYS[i],'xid'); + -- if lock xid is nil + if (not result) + -- set 'no' mean There is need to store lock information + then array[i]='no' + else + if (result ~= ARGV[3]) + then + -- return fail + return result + else + -- set 'yes' mean There is not need to store lock information + array[i]= 'yes' + end + end +end +-- Loop through array +for i =1, keySize do + -- if is no ,The lock information is stored + if(array[i] == 'no') + then + -- set xid + redis.call('HSET',KEYS[i],'xid',ARGV[3]); + -- set transactionId + redis.call('HSET',KEYS[i],'transactionId',ARGV[(i-1)*6+4]); + -- set branchId + redis.call('HSET',KEYS[i],'branchId',ARGV[(i-1)*6+5]); + -- set resourceId + redis.call('HSET',KEYS[i],'resourceId',ARGV[(i-1)*6+6]); + -- set tableName + redis.call('HSET',KEYS[i],'tableName',ARGV[(i-1)*6+7]); + -- set rowKey + redis.call('HSET',KEYS[i],'rowKey',ARGV[(i-1)*6+8]); + -- set pk + redis.call('HSET',KEYS[i],'pk',ARGV[(i-1)*6+9]); + -- exit if + end +-- exit for +end +-- set SEATA_GLOBAL_LOCK +redis.call('HSET',KEYS[(keySize+1)],KEYS[(keySize+2)],ARGV[(argSize+0)]); +-- return success +return ARGV[3] diff --git "a/Docker\345\256\211\350\243\205\350\204\232\346\234\254/seata/start.sh" "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/seata/start.sh" new file mode 100644 index 0000000..5b68529 --- /dev/null +++ "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/seata/start.sh" @@ -0,0 +1,8 @@ +#!/bin/bash + +docker stop lamp_seata +docker rm lamp_seata + +docker run -d --restart always --name lamp_seata \ + -p 8091:8091 -p 7091:7091 -v /mydata/seata/config/resources:/seata-server/resources \ + -e SEATA_PORT=8091 -e SEATA_IP=192.168.80.130 seataio/seata-server:1.7.1 diff --git "a/Docker\345\256\211\350\243\205\350\204\232\346\234\254/xxFileView/application.properties" "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/xxFileView/application.properties" new file mode 100644 index 0000000..44a17b7 --- /dev/null +++ "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/xxFileView/application.properties" @@ -0,0 +1,80 @@ +#######################################不可动态配置,需要重启生效####################################### +server.port=${KK_SERVER_PORT:8012} +server.context-path=${KK_CONTEXT_PATH:/} +spring.http.encoding.charset=utf8 +## Freemarker 配置 +spring.freemarker.template-loader-path=classpath:/web/ +spring.freemarker.cache=false +spring.freemarker.charset=UTF-8 +spring.freemarker.check-template-location=true +spring.freemarker.content-type=text/html +spring.freemarker.expose-request-attributes=true +spring.freemarker.expose-session-attributes=true +spring.freemarker.request-context-attribute=request +spring.freemarker.suffix=.ftl +server.tomcat.uri-encoding=UTF-8 +#文件上传限制 +spring.http.multipart.max-request-size=500MB +spring.http.multipart.max-file-size=500MB +#文件资源路径(默认为打包根路径下的file目录下) +#file.dir = D:\\kkFileview\\ +file.dir=${KK_FILE_DIR:default} +#openoffice home路径 +#office.home = C:\\Program Files (x86)\\OpenOffice 4 +office.home=${KK_OFFICE_HOME:default} +#缓存实现类型,不配默认为内嵌RocksDB(type = default)实现,可配置为redis(type = redis)实现(需要配置spring.redisson.address等参数)和 JDK 内置对象实现(type = jdk), +cache.type=${KK_CACHE_TYPE:jdk} +#redis连接,只有当cache.type = redis时才有用 +spring.redisson.address=${KK_SPRING_REDISSON_ADDRESS:127.0.0.1:6379} +spring.redisson.password=${KK_SPRING_REDISSON_PASSWORD:123456} +#缓存是否自动清理 true 为开启,注释掉或其他值都为关闭 +cache.clean.enabled=${KK_CACHE_CLEAN_ENABLED:true} +#缓存自动清理时间,cache.clean.enabled = true时才有用,cron表达式,基于Quartz cron +cache.clean.cron=${KK_CACHE_CLEAN_CRON:0 0 3 * * ?} +#######################################可在运行时动态配置####################################### +#提供预览服务的地址,默认从请求url读,如果使用nginx等反向代理,需要手动设置 +#base.url = https://file.keking.cn +base.url=${KK_BASE_URL:default} +#信任站点,多个用','隔开,设置了之后,会限制只能预览来自信任站点列表的文件,默认不限制 +#trust.host = file.keking.cn,kkfileview.keking.cn +trust.host=${KK_TRUST_HOST:default} +#是否启用缓存 +cache.enabled=${KK_CACHE_ENABLED:true} +#文本类型,默认如下,可自定义添加 +simText=${KK_SIMTEXT:txt,html,htm,asp,jsp,xml,json,properties,md,gitignore,log,java,py,c,cpp,sql,sh,bat,m,bas,prg,cmd} +#多媒体类型,默认如下,可自定义添加 +media=${KK_MEDIA:mp3,wav,mp4,flv} +#office类型文档(word ppt)样式,默认为图片(image),可配置为pdf(预览时也有按钮切换) +office.preview.type=${KK_OFFICE_PREVIEW_TYPE:image} +#是否关闭office预览切换开关,默认为false,可配置为true关闭 +office.preview.switch.disabled=${KK_OFFICE_PREVIEW_SWITCH_DISABLED:false} +#是否禁止下载转换生成的pdf文件 +pdf.download.disable=${KK_PDF_DOWNLOAD_DISABLE:true} +#预览源为FTP时 FTP用户名,可在ftp url后面加参数ftp.username=ftpuser指定,不指定默认用配置的 +ftp.username=${KK_FTP_USERNAME:ftpuser} +#预览源为FTP时 FTP密码,可在ftp url后面加参数ftp.password=123456指定,不指定默认用配置的 +ftp.password=${KK_FTP_PASSWORD:123456} +#预览源为FTP时, FTP连接默认ControlEncoding(根据FTP服务器操作系统选择,Linux一般为UTF-8,Windows一般为GBK),可在ftp url后面加参数ftp.control.encoding=UTF-8指定,不指定默认用配置的 +ftp.control.encoding=${KK_FTP_CONTROL_ENCODING:UTF-8} +#水印内容 +#例:watermark.txt = ${WATERMARK_TXT:凯京科技内部文件,严禁外泄} +#如需取消水印,内容设置为空即可,例:watermark.txt = ${WATERMARK_TXT:} +watermark.txt=${WATERMARK_TXT:} +#水印x轴间隔 +watermark.x.space=${WATERMARK_X_SPACE:10} +#水印y轴间隔 +watermark.y.space=${WATERMARK_Y_SPACE:10} +#水印字体 +watermark.font=${WATERMARK_FONT:微软雅黑} +#水印字体大小 +watermark.fontsize=${WATERMARK_FONTSIZE:18px} +#水印字体颜色 +watermark.color=${WATERMARK_COLOR:black} +#水印透明度,要求设置在大于等于0.005,小于1 +watermark.alpha=${WATERMARK_ALPHA:0.2} +#水印宽度 +watermark.width=${WATERMARK_WIDTH:180} +#水印高度 +watermark.height=${WATERMARK_HEIGHT:80} +#水印倾斜度数,要求设置在大于等于0,小于90 +watermark.angle=${WATERMARK_ANGLE:10} diff --git "a/Docker\345\256\211\350\243\205\350\204\232\346\234\254/xxFileView/restart.sh" "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/xxFileView/restart.sh" new file mode 100644 index 0000000..072d7a5 --- /dev/null +++ "b/Docker\345\256\211\350\243\205\350\204\232\346\234\254/xxFileView/restart.sh" @@ -0,0 +1,5 @@ +docker stop kkfileview +docker rm kkfileview +docker run --name kkfileview --restart=always -p 8012:8012 \ + -v `pwd`/application.properties:/opt/kkFileView-2.2.0-SNAPSHOT/config/application.properties \ + -d keking/kkfileview diff --git "a/\347\275\221\347\273\234\351\231\220\346\265\201/\346\270\205\351\231\244\351\231\220\346\265\201\346\225\210\346\236\234.sh" "b/\347\275\221\347\273\234\351\231\220\346\265\201/\346\270\205\351\231\244\351\231\220\346\265\201\346\225\210\346\236\234.sh" new file mode 100644 index 0000000..c0c791b --- /dev/null +++ "b/\347\275\221\347\273\234\351\231\220\346\265\201/\346\270\205\351\231\244\351\231\220\346\265\201\346\225\210\346\236\234.sh" @@ -0,0 +1,25 @@ +#!/bin/bash + +# 日志文件路径 +#LOG_FILE="/path/to/log_file.log" + +# 要限速的端口 +TARGET_PORT="9090" + +# 函数:清除流量限速设置 +clear_traffic_limit() { + echo "执行清除限流的操作" + # 在日志文件中记录限速已清除 + #echo "$(date): Traffic limit is cleared for port $TARGET_PORT." >> "$LOG_FILE" + # 在这里执行清除流量限速设置的操作 + iptables -D OUTPUT -p tcp --sport $TARGET_PORT -j MARK --set-mark 1 + ip rule del fwmark 1 table 1 + tc qdisc del dev eth0 root + echo "Traffic limit for src port $TARGET_PORT is enabled for this connection." +} + + +clear_traffic_limit + +#停止限流的进程 +pkill -f traffic.sh \ No newline at end of file diff --git "a/\347\275\221\347\273\234\351\231\220\346\265\201/\351\232\217\346\234\272\351\231\220\346\265\201.sh" "b/\347\275\221\347\273\234\351\231\220\346\265\201/\351\232\217\346\234\272\351\231\220\346\265\201.sh" new file mode 100644 index 0000000..0eb0777 --- /dev/null +++ "b/\347\275\221\347\273\234\351\231\220\346\265\201/\351\232\217\346\234\272\351\231\220\346\265\201.sh" @@ -0,0 +1,71 @@ +#!/bin/bash + +# 日志文件路径 +#LOG_FILE="/path/to/log_file.log" + +# 要限速的端口 +TARGET_PORT="9090" +# 计数器变量 +counter=10 +CONDIATION_NUMBER=11 +EXECUTE_NUMBER=3 +# 函数:设置流量限速 +setup_traffic_limit() { + # 监听特定端口的TCP连接,并动态应用流量限制 + echo "开始执行限流函数" + tcpdump -i ens33 "tcp[tcpflags] & (tcp-syn) != 0 and port $TARGET_PORT" -n -l | + while read -r line; do + # 生成随机数(0到100之间的随机数) + RANDOM_NUMBER=$((RANDOM % 100)) + EXECUTE_NUMBER=$((RANDOM % 1000)) + # 如果计数器小于阈值,则递增计数器,不执行限流的逻辑 + if [ "$counter" -lt $CONDIATION_NUMBER ]; then + echo "延迟等待,当前计数器为: $counter 阈值为: $CONDIATION_NUMBER" + ((counter++)) + else + # 如果随机数小于85(假设85%的概率),则执行限速 + if [ "$RANDOM_NUMBER" -lt 85 ]; then + # 在日志文件中记录限速已启用 + #echo "$(date): Traffic limit is enabled for port $TARGET_PORT." >> "$LOG_FILE" + # 在这里执行设置流量限速的操作,可以调用之前示例中的流量限速设置部分 + # Your traffic shaping commands here... + SRC_IP=$(echo "$line" | awk '{print $3}' | cut -d. -f1-4) # 提取源IP + SRC_PORT=$(echo "$line" | awk '{print $3}' | cut -d. -f5) # 提取源端口 + # 动态应用流量限制 + tc qdisc add dev ens33 root handle 1: htb default 12 + #主类别最大限制mbit/kbit + tc class add dev ens33 parent 1: classid 1:1 htb rate 200kbit burst 15k + #子类别最小和最大限制 + tc class add dev ens33 parent 1:1 classid 1:12 htb rate 20kbit ceil 100kbit burst 15k + iptables -A OUTPUT -p tcp --sport $SRC_PORT -j MARK --set-mark 1 + + echo "生成的随机数为:$RANDOM_NUMBER 限流成功,计数器为: $counter 阈值为:$CONDIATION_NUMBER 加权值为:$EXECUTE_NUMBER" + #小于15的时候解除限流 + if [ "$RANDOM_NUMBER" -lt 15 ] && [ "$((EXECUTE_NUMBER % 6))" -eq 0 ]; then + CONDIATION_NUMBER=$(((RANDOM % 50)+1)) + echo "重新生成延迟等待计数器阈值: $CONDIATION_NUMBER" + clear_traffic_limit + fi + #else + # 在日志文件中记录未应用限速 + #echo "$(date): No traffic limit is applied for port $TARGET_PORT." >> "$LOG_FILE" + fi + fi + done +} + +# 函数:清除流量限速设置 +clear_traffic_limit() { + # 在成功清除限速后,将计数器重置为0 + counter=0 + echo "执行清除限流的操作,客户端目标IP:$SRC_IP $SRC_PORT" + iptables -D OUTPUT -p tcp --sport $TARGET_PORT -j MARK --set-mark 1 + ip rule del fwmark 1 table 1 + tc qdisc del dev ens33 root + echo "Traffic limit for src port $TARGET_PORT is enabled for this connection." +} + + +clear_traffic_limit # 确保 clear_traffic_limit 在 setup_traffic_limit 之前调用 + +setup_traffic_limit # 调用设置流量限速的函数