4. boyaa 接入ES搜索服务方案
    6. 1、申请服务器权限
    7. http://it.oa.com/needs_apply/index?typeId=2&type=opm&yw=0&rand=834325577
    9. 测试环境: 192.168.202.100
    10. 线上环境: 视实际IP
    12. 2、先部署好后面的服务再来更新文件
    13. cmslib/inc.php  
    14. cmslib/lib/es.class.php  
    15. cmslib/bylib/fun.class.php  
    16. cmslib/app/logses/index.html  
    17. cmslib/app/logses/logses.php  
    18. cmslib/app/logses/logses.js  
    19. cms/crontab/doudp.php
    20. cms/crontab/es.sh.php  
    21. cms/crontab/crontab.sh.php  
    23. 3、安装JDK
    24. 说明:
    25. ElasticSearchLogstash依赖于JDK,所以需要安装JDK
    26. 对于JDK 版本一定要大于等于1.7.0
    28. # yum -y install java-1.7.0-openjdk*  
    29. # java -version  
    32. 4 安装ElasticSearch
    33. 说明:ElasticSearch默认的对外服务的HTTP端口是9200,节点间交互的TCP端口是9300
    35. 4.1下载ElasticSearch
    37. # mkdir -p /opt/software && cd /opt/software  
    38. # sudo wget https://download.elastic.co/elasticsearch/release/org/elasticsearch/distribution/tar/elasticsearch/2.3.4/elasticsearch-2.3.4.tar.gz
    40. 或者上传  #rz 回车 或 #rz -bye 命令选择文件不要鼠标选择文件
    41. # sudo tar -zxvf elasticsearch-2.3.4.tar.gz -C /usr/local/  
    42. # ln -s /usr/local/elasticsearch-2.3.4 /usr/local/elasticsearch  
    43. 软连
    45. 4.2 设置elasticsearch 配置文件
    46. #vim /usr/local/elasticsearch/config/elasticsearch.yml
    48. 需要修改如下:
    49. ...
    50. # cluster.name: my-application
    51. cluster.name: cms-cluster
    52. ...
    53. # node.name: node-1
    54. node.name: cms_node1
    55. ...
    56. # network.host: 192.168.0.1
    57. network.host: 192.168.202.100,127.0.0.1  
    58. #注意 192.168.202.100 是测试环境IP 线上则修改成对应IP
    59. ...
    60. # http.port: 9200
    61. http.port: 9200
    62. ...
    64. #path.data: /path/to/data
    65. path.data: /data/wwwroot/cms/data/es/data
    66. ...
    68. #path.logs: /path/to/logs
    69. path.logs: /data/wwwroot/cms/data/es/logs
    70. ...
    73. #以下配置 等安装elasticfence  插件后才配置
    74. #elasticfence 是 elasticsearch http auth 认证
    75. #行首要空格 ,否则会报错
    76. elasticfence.disabled: false
    77. elasticfence.root.password: boyaaPWD
    78. elasticfence.whitelist: ["127.0.0.1", "192.168.202.100"]
    79. #elasticfence.blacklist: ["127.0.0.2", "10.0.0.99"]
    82. 4.3启动服务用于测试
    83. # cd elasticsearch
    84. # bin/elasticsearch
    86. 如果root 启动,则用
    87. bin/elasticsearch -Des.insecure.allow.root=true
    89. 4.4测试ElasticSearch服务是否正常,预期返回200的状态码:
    90. # curl -X GET http://localhost:9200  
    92. 返回一个例子
    93. {
    94.  "name" : "cms_node1",
    95.  "cluster_name" : "cms-cluster",
    96.  "version" : {
    97.    "number" : "2.3.4",
    98.    "build_hash" : "e455fd0c13dceca8dbbdbb1665d068ae55dabe3f",
    99.    "build_timestamp" : "2016-06-30T11:24:31Z",
    100.    "build_snapshot" : false,
    101.    "lucene_version" : "5.5.0"
    102.  },
    103.  "tagline" : "You Know, for Search"
    104. }
    107. 5.ElasticSearch-HeadElasticSearch-Kopf 插件安装
    109.   a.命令安装
    111.     a.1  cd /usr/local/elasticsearch
    113.     a.2 执行命令 ./bin/plugin install mobz/elasticsearch-head 即可。
    115.     a.3 详细信息请看:https://github.com/mobz/elasticsearch-head下面的README.md文件。
    117.        a.4测试是否成功 open http://localhost:9200/_plugin/head
    119. b.ElasticSearch-Kopf
    120. 说明:Kopf是一个ElasticSearch的管理工具,它也提供了对ES集群操作的API
    122. b.1安装
    123. ./elasticsearch/bin/plugin install lmenezes/elasticsearch-kopf/
    125. b.2 测试是否成功 open http://localhost:9200/_plugin/kopf
    128. 6Elasticfence 插件安装
    129. 说明:Elasticsearch HTTP Basic User Auth plugin
    130. Elasticsearch user authentication plugin with http basic auth and IP ACL
    131. This plugin provides user authentication APIs and a User management web console.
    133. 6.1 安装
    135. #cd /usr/local/elasticsearch
    136. #bin/plugin install https://raw.githubusercontent.com/elasticfence/elasticsearch-http-user-auth/2.3.x/jar/elasticfence-2.3.4-SNAPSHOT.zip
    138. 6.2 修改配置文件 elasticsearch.yml 在后面添加如下内容:
    140. ...
    141. #elasticfence 是 elasticsearch http auth 认证
    142. #行首要空格 ,否则会报错
    143. elasticfence.disabled: false
    144. elasticfence.root.password: boyaaPWD
    145. elasticfence.whitelist: ["127.0.0.1", "192.168.202.100"]
    146. #elasticfence.blacklist: ["127.0.0.2", "10.0.0.99"]
    147. ...
    149. 注意:
    150. 行首要空格 ,否则会报错
    151. http auth
    152. 用户名是 root  密码是 boyaaPWD  (注意,代码中也使用了此密码)
    154. 6.3 重启 elasticsearch
    156. 启动服务用于测试
    157. # cd elasticsearch
    158. # bin/elasticsearch
    160. 如果root 启动,则用
    161. bin/elasticsearch -Des.insecure.allow.root=true
    163. 6.4 测试验证是否生效
    164. http://your.elasticsearch.hostname:9200/_plugin/elasticfence/index.html
    166. eg:测试环境IP
    167. http://192.168.202.100:9200/_plugin/elasticfence/index.html
    170. 7、设置 crontab.sh.php 与添加 es.sh.php
    172. 7.1   cms/crontab/crontab.sh.php 后添加
    173. #es server 日志搜索服务
    174. source ${path}es.sh.php
    176. 7.2、在cms/crontab/ 目录下 添加 es.sh.php 文件
    178. #!/bin/sh
    179. #<?php die()?>
    180. #此处 es server 不设置开机启动,是因crontab.sh.php 会每分钟都在检查,然而下面会启动es 服务
    182. ps -fe|grep elasticsearch |grep -v grep
    183. if [ $? -ne 0 ];then
    184.        /usr/local/elasticsearch/bin/elasticsearch -Des.insecure.allow.root=true &
    185. fi
    187. 7.3 重启 crontab.sh.php
    189. 8、重启 udp
    191. /data/wwwroot/cms/data
    192. # rm -f doudpdemo.run
    193. # /usr/local/php/bin/php -f /data/wwwroot/cms/crontab/doudp.php > /data/wwwroot/cms/doudp.log 2>&1 &
    194. # /usr/local/php/bin/php -f /data/wwwroot/cms/crontab/udp.php 45541 > /dev/null 2>&1 &
    197. ------全文完-----