onephone
腾讯工程师,现主要从事大数据研发和后台开发,喜欢捣鼓技术、动漫、跑马。
01.
这样开始的...
朋友“搞事情”,自己有偿帮忙搭了一套线上服务,包括官网
、小程序后台
、文档集站点
、个人博客站点
等。
初期,流量小,节约资金,一切从简,后期,流量大了,再考虑扩容或迁移服务
(目前完全能 hold 住)。
基于一台腾讯云服务器搭建了全套服务,站点均在同一个二级域名
下。
依赖的服务
1、腾讯云服务
2、一个外网账号
409 Too Many Requests!
的问题~(五月已恢复)02.
这样设计的...
2.1 资源&服务
wordpress:latest
镜像php:7.2-apache
镜像fellah/gitbook
镜像jekyll/jekyll:latest
镜像2.2 部署架构图
03.
这样实践的...
建议登陆腾讯云控制台后,将服务统一+到快捷访问栏中
3.1 域名申请 & SSL 证书
3.2 网站备案
腾讯云网站备案
3.3 服务搭建
Wordpress 官网的搭建比较实用 下面以官网为例,介绍服务从0到1的实践过程
通过 Nginx 配置反向代理,实现单个主机上部署多个 web 服务
/deploy/nginx/
目录下(不是默认的/etc/nginx/下)#!/usr/bin/env bash# 若包含*,则必须加上转义符,防止通配符匹配NGINX_CONF="/deploy/nginx/\*.conf"
add_nginx_conf() { [[ "$1x" = "x" ]] && echo "please input confpath" && return cat /etc/nginx/nginx.conf | grep -q "${1}"
if [[ $? -ne 0 ]]; then# include /deploy/nginx/*.conf; sed -i "/\sinclude \/etc\/nginx\/conf.d\/\*.conf\;/a\ include ${1};" /etc/nginx/nginx.conf [[ $? -eq 0 ]] && echo "add nginx conf path success... [$1]"else echo "nginx conf path already existed! [$1]"fi}
install_nginx() { echo "install nginx ..." yum instal nginx -y && \ echo "enable nginx set-up ..." && \ systemctl enable nginx && \ echo "start nginx set-up ..." && \ systemctl start nginx && \}
#################################install_nginxadd_nginx_conf ${NGINX_CONF}# 加载配置nginx -s reload
/deploy/nginx/XXXXX.conf
/deploy/web_ssl/
目录下server { listen 80; listen [::]:80;#server_name _; server_name mall.XXXXX.com www.XXXXX.com XXXXX.com;#root /usr/share/nginx/html; return 301 https://$host$request_uri;
# Load configuration files for the default server block. include /etc/nginx/default.d/*.conf;}####################### www.XXXXX.com && XXXXX.com####################### 16601server { listen 443 ssl http2 default_server; listen [::]:443 ssl http2 default_server; server_name www.XXXXX.com XXXXX.com;#root /usr/share/nginx/html;
ssl_certificate "/deploy/web_ssl/www.XXXXX.com/Nginx/1_www.XXXXX.com_bundle.crt"; ssl_certificate_key "/deploy/web_ssl/www.XXXXX.com/Nginx/2_www.XXXXX.com.key"; ssl_session_cache shared:SSL:1m; ssl_session_timeout 10m; ssl_ciphers HIGH:!aNULL:!MD5; ssl_prefer_server_ciphers on;
# Load configuration files for the default server block. include /etc/nginx/default.d/*.conf;
location / { proxy_set_header Host $host; proxy_set_header X-Real-IP $remote_addr; proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; proxy_set_header X-Forwarded-Proto $scheme; proxy_pass http://localhost:16601; proxy_read_timeout 90; proxy_redirect http://localhost:16601 https://www.XXXXX.com; }# error_page 404 /404.html;# location = /40x.html {# }
# error_page 500 502 503 504 /50x.html;# location = /50x.html {# }}
nginx -s reload
重新加载ROOT_MYSQL_PASSWORD="123456"
#!/usr/bin/env bash# set password (default root password: onephone)ROOT_MYSQL_PASSWORD=""
#############################echop() { echo "[$(date)@codeshold.me] $@"}
init_mysql() { PASSWORD=${ROOT_MYSQL_PASSWORD:-onephone}
echop "init mysql/mariadb ..." yum install expect -y && \ expect <<EOF set timeout 10 spawn mysql_secure_installation expect "Enter current password for root" { send "\n" } expect { "Enter current password for root" { send "$PASSWORD\n"; exp_continue } "Change the root password" { send "n\n" } "Set root password" { send "Y\n"; exp_continue } "New password" { send "$PASSWORD\n"; exp_continue } "Re-enter new password" { send "$PASSWORD\n" } } expect "Remove anonymous users" { send "Y\n" } expect "Disallow root login remotely" { send "Y\n"} expect "Remove test database and access to it" { send "Y\n" } expect "Reload privilege table" { send "Y\n" }EOF}
install_mysql() {# yum remove mariadb-server mariadb -y ps aux | grep -q mysqld [[ $? -ne 0 ]] && systemctl start mariadb
if [[ $? -ne 0 ]]; then echop "install mysql/mariadb ..." yum install mariadb-server mariadb -y && \ echop "enable startup ..." && \ systemctl enable mariadb && \ echop "start mysql/mariadb ..." systemctl start mariadb && \ init_mysql && \ echop 'mysql/mariadb install success!'else echop 'mysql/mariadb already had been installed!'fi}
############################ run #########################install_mysqlinit_mysql
#!/usr/bin/env bash
# 参考: https://docs.docker.com/engine/install/centos/# 支持系:统: Cento OS 7# 腾讯云源: https://mirrors.cloud.tencent.com/DOCKER_RE_REPO="mirrors.cloud.tencent.com/docker-ce"DOCKER_MIRRORS="https://mirror.ccs.tencentyun.com"
##########################################echop() { echo "[$(date)@codeshold.me] $@"}
remove_old_package() { echop "remove old docker..." yum remove docker \ docker-client \ docker-client-latest \ docker-common \ docker-latest \ docker-latest-logrotate \ docker-logrotate \ docker-selinux \ docker-engine-selinux \ docker-engine \ -y}
install_docker_ce() { #### 1.安装依赖包 echop "install yum-utils ..." yum install -y yum-utils \ device-mapper-persistent-data \ lvm2 \ -y
#### 2.添加国内 yum 源 echop "add docker-ce.repo ..." yum-config-manager \ --add-repo \ https://download.docker.com/linux/centos/docker-ce.repo [[ ! "${DOCKER_RE_REPO}x" = "x" ]] && \ sed -i "s+download.docker.com+${DOCKER_RE_REPO}+" /etc/yum.repos.d/docker-ce.repo
#### 3.安装docker ce echop "install docker ce ..." yum makecache fast && \ yum install docker-ce -y
#### 4.设置开机启动 echop "set start-up..." systemctl enable docker.service}
#### 配置腾讯云提供的国内镜像源, 加速访问 Docker Hubadd_dokcer_mirror() { echop "add docker mirrors..." cat > /etc/docker/daemon.json <<EOF{ "registry-mirrors": ["${DOCKER_MIRRORS}"]}EOF echop "docker ademon-reload..." systemctl daemon-reload
echop "docker restart..." systemctl restart docker}
############################ run #########################remove_old_packageinstall_docker_ce && add_dokcer_mirror
由于国内 IP 访问 Wordpress 官网受限!因此需要一个外网账号,才能正常安装 wordpress 主题和插件! 这里介绍一下自己的操作方法(五月份恢复了,现在不需要这么麻烦……)
DB_PUBLIC_IP="19.8.1.1"
## rootDB_USER='root'DB_PASSWD='XXXXX_host'DB_HOST="localhost"DB_PORT=3306
## wordpressWP_DB_USER="wp_XXXXX"WP_DB_NAME="wp_XXXXX"WP_DB_PASSWORD="wp_XXXXX"WP_DB_HOST="${DB_PUBLIC_IP}"WP_DB_PORT="${DB_PORT}"
WP_PATH="/deploy/web/XXXXX.com/"WP_DOCKER_NAME="wp_XXXXX"WP_MAP_PORT=16601
init_wp_db() { ROOT_MYSQL_CMD="mysql -u${DB_USER} -p${DB_PASSWD} -h${DB_HOST} -P ${DB_PORT} "
sql=" CREATE DATABASE IF NOT EXISTS ${WP_DB_NAME}; CREATE USER \"${WP_DB_USER}\"@\"localhost\" IDENTIFIED BY \"${WP_DB_PASSWORD}\"; GRANT ALL PRIVILEGES ON ${WP_DB_NAME}.* TO \"${WP_DB_USER}\"@\"localhost\"; CREATE USER \"${WP_DB_USER}\"@\"%\" IDENTIFIED BY \"${WP_DB_PASSWORD}\"; GRANT ALL PRIVILEGES ON ${WP_DB_NAME}.* TO \"${WP_DB_USER}\"@\"%\"; FLUSH PRIVILEGES; " echo "[sql] $sql" $ROOT_MYSQL_CMD -e "$sql"}init_wp_db
/var/www/html
路径下,wordpress 网站文件将在 demo 目录下run_wp_docker() { docker images | grep wordpress | grep -q latest if [[ $? -eq 0 ]];then :;else docker pull wordpressfi
uname -a | grep -iq "Darwin" if [[ $? -eq 0 ]]; then local_html="$(pwd)/demo"else local_html="${WP_PATH}"fi docker run -d --name ${WP_DOCKER_NAME} -p${WP_MAP_PORT}:80 \ -e WORDPRESS_DB_HOST=${DB_PUBLIC_IP} \ -e WORDPRESS_DB_USER=${WP_DB_USER} \ -e WORDPRESS_DB_NAME=${WP_DB_NAME} \ -e WORDPRESS_DB_PASSWORD=${WP_DB_PASSWORD} \ -e TZ='Asia/Shanghai' \ -v ${local_html}:/var/www/html \ wordpress}run_wp_docker
- 浏览器输入:http://localhost:16601/ 登陆
将网站的图片统一放在腾讯云 COS 存储上,这样可以提升网站访问速度
- 如何将 WordPress 远程附件存储到腾讯云对象存储 COS 上(https://cloud.tencent.com/developer/article/1576517?from=10680)
docker stop wp_XXXXX
update wp_options set option_value='http://www.XXXXXX.com' where option_name in ('siteurl', 'home')
3.4 数据备份和服务监控
原创声明,本文系作者授权发表,未经许可,不得转载。 如有侵权,请联系小编删除,谢谢。
点击阅读原文,领取 COS 限时1元礼包!