配置nginx反向代理及证书
cd /root/workspace/project/codemao_ops_deploy_tool/jspt
ansible-playbook -i ./inventories/development ./playbooks/lb-ha-hz.yml -u codemao --ask-vault-pass
解析加密文件
ansible-vault view workspace/project/codemao_ops_deploy_tool/jspt/inventories/development/group_vars/all/secrets
ansible密码:/=FT.Z3^E9n3zK4HQCa3n9PU2LaF4$
Vault password:
vault_docker_registry_user: "XXXXXXXXXXXXXX"
vault_docker_registry_password: "XXXXXXXXXXXXX"
vault_aliyun_access_key: 'XXXXXXXXXXX'
vault_aliyun_access_key_secret: 'XXXXXXXXXXXXXXX'
vault_dev_database_url: 'rm-bp1uXXXXXXXXX.mysql.rds.aliyuncs.com'
vault_online_education_oss_ak: 'XXXXXXXXXXXXXXXX'
vault_online_education_oss_sk: 'XXXXXXXXXXXXXX'
# discovery setting
vault_discovery_config_security_user_password: 'XXXXXXXXXXX'
# # haproxy /lbstats credentials
# FIXME: Should be removed once the privileged socket is up.
# The credentials are specific to lb-tiger-cs group vars and are not otherwise
# used in any particular role.
vault_haproxy_stats_username: 'XXXXXXXXXX'
vault_haproxy_stats_password: 'XXXXXXXXX'
#apollo
vault_apollo_user_password: 'XXXXXXXXXXXXXXX'
# hk discovery setting
vault_discovery_int_config_security_user_password: 'XXXXXXXXXXXXX'
# intl
vault_intl_discovery_config_security_user_password: 'XXXXXXXXXXX'
# nacos
vault_jasypt_encryptor_password: "xxxxxxxxxxxxx"
alicloud_access_key: 'XXXXXXXX'
alicloud_secret_key: 'XXXXXXXXXXXXXXXXXX'
安装阿里云log接收容器
先进入到对应的环境hosts,保留只要安装的服务器,其余先注释
ansible-playbook -i ./inventories/pressure_test ./playbooks/container_log.yml -u codemao --ask-vault-pass
安装成功后去掉刚注释的操作,因为是在git仓库中修改的,直接去掉操作就行了
git reset --hard