SaltStack之lamt架构状态文件(上)
程序员文章站
2022-06-19 08:42:18
SaltStack之lamt架构状态文件srv文件部署安装环境创建网络源目录创建网络源安装目录编写网络源安装sls文件编写安装LAMT软件sls文件Apache创建Apache目录编写Apache安装sls文件编写Apache安装脚本编写Apache service文件MySQL创建MySQL目录编写MySQL安装sls文件编写Mysql安装脚本编写MySQL service 文件编写MySQL修改密码脚本Tomcat创建Tomcat目录编写Tomcat安装sls文件编写Tomcat service文件LA...
SaltStack之lamt架构状态文件
部署lamt的/srv目录结构
[root@master files]# tree -d /srv/.
/srv/.
├── pillar
│ └── base
└── salt
└── base
├── minion
│ └── files
├── modules
│ ├── app
│ │ └── tomcat
│ │ └── files
│ ├── common
│ ├── database
│ │ └── mariadb
│ │ └── files
│ ├── web
│ │ └── apache
│ │ └── files
│ └── yum
├── project
│ └── files
└── start
└── start_files
22 directories
[root@master ~]# tree /srv/
/srv/
├── pillar
│ └── base
│ ├── lamt_150.sls
│ ├── lamt_245.sls
│ └── top.sls
└── salt
└── base
├── minion
│ ├── files
│ │ ├── CentOS-Base.repo
│ │ ├── epel.repo
│ │ ├── minion
│ │ └── salt-repo-latest-2.el7.noarch.rpm
│ ├── install.sls
│ └── minion_ssh.sh
├── modules
│ ├── app
│ │ └── tomcat
│ │ ├── files
│ │ │ ├── apache-tomcat-9.0.37.tar.gz
│ │ │ ├── setenv.sh
│ │ │ └── tomcat.service
│ │ └── install.sls
│ ├── common
│ │ ├── init-install.sls
│ │ └── yum.sls
│ ├── database
│ │ └── mariadb
│ │ ├── files
│ │ │ ├── mariadb.service
│ │ │ ├── mariadb.sh
│ │ │ ├── mysql-5.7.30-linux-glibc2.12-x86_64.tar.gz
│ │ │ └── mysql_passwd.sh
│ │ ├── install.sls
│ │ └── mysql_passwd.sls
│ ├── web
│ │ └── apache
│ │ ├── files
│ │ │ ├── apache_install.sh
│ │ │ ├── apr-1.7.0.tar.bz2
│ │ │ ├── apr-util-1.6.1.tar.bz2
│ │ │ ├── httpd-2.4.43.tar.bz2
│ │ │ ├── httpd.conf
│ │ │ └── httpd.service
│ │ └── install.sls
│ └── yum
│ ├── CentOS-Base.repo
│ └── epel.repo
├── project
│ ├── files
│ │ ├── httpd-vhosts.conf
│ │ ├── index.html
│ │ └── lamt.conf
│ └── lamt.sls
├── start
│ ├── lamt_start.sls
│ └── start_files
│ ├── httpd_start.sls
│ ├── mysql_start.sls
│ └── tomcat_start.sls
└── top.sls
22 directories, 39 files
1. 部署安装环境
1.1 创建网络源目录
[root@master ~]# mkdir -p /srv/salt/base/modules/yum/
[root@master yum]# ls
CentOS-Base.repo epel.repo
1.2 创建网络源安装目录
[root@master ~]# mkdir -p /srv/salt/base/modules/common/
[root@master common]# ls
init-install.sls yum.sls
1.3 编写网络源安装sls文件
[root@master common]# vim yum.sls
/etc/yum.repos.d/CentOS-Base.repo:
file.managed:
- source: salt://modules/yum/CentOS-Base.repo
- user: root
- group: root
- mode: 0644
/etc/yum.repos.d/epel.repo:
file.managed:
- source: salt://modules/yum/epel.repo
- user: root
- group: root
- mode: 0644
cmd.run:
- name: yum clean all && yum makecache fast
1.4 编写安装LAMT软件sls文件
[root@master common]# vim init-install.sls
init-install:
pkg.installed:
- pkgs:
- ncurses-devel
- openssl-devel
- openssl
- cmake
- mariadb-devel
- vim-minimal
- pcre-devel
- expat-devel
- libtool
- gcc
- gcc-c++
- wget
- bzip2
- java-1.8.0-openjdk
- java-1.8.0-openjdk-devel
cmd.run:
- name: yum groups mark install "Development Tools"
2. Apache
2.1 创建Apache目录
[root@master ~]# mkdir -p /srv/salt/base/modules/web/apache/files/
[root@master ~]# cd /srv/salt/base/modules/web/apache/
2.2 编写Apache安装sls文件
[root@master apache]# vim install.sls
apache-user:
user.present:
- name: apache
- system: True
- shell: /sbin/nologin
- createhome: False
/usr/src/apr-1.7.0.tar.bz2:
file.managed:
- source: salt://modules/web/apache/files/apr-1.7.0.tar.bz2
- user: root
- group: root
- mode: 0644
/usr/src/apr-util-1.6.1.tar.bz2:
file.managed:
- source: salt://modules/web/apache/files/apr-util-1.6.1.tar.bz2
- user: root
- group: root
- mode: 0644
/usr/src/httpd-2.4.43.tar.bz2:
file.managed:
- source: salt://modules/web/apache/files/httpd-2.4.43.tar.bz2
- user: root
- group: root
- mode: 0644
unpack_httpd_packages:
cmd.run:
- name: cd /usr/src/ && tar xf apr-1.7.0.tar.bz2 -C /usr/local && tar xf apr-util-1.6.1.tar.bz2 -C /usr/local && tar xf httpd-2.4.43.tar.bz2 -C /usr/local && sed -i '/$RM "$cfgfile"/d' /usr/local/apr-1.7.0/configure
- require:
- file: /usr/src/httpd-2.4.43.tar.bz2
- unless: test -d /usr/local/apr-1.7.0
/tmp/apache_install.sh:
file.managed:
- source: salt://modules/web/apache/files/apache_install.sh
- user: root
- group: root
- mode: 755
cmd.run:
- name: /bin/bash /tmp/apache_install.sh
- require:
- cmd: unpack_httpd_packages
- unless: test -d /usr/local/apache
/usr/lib/systemd/system/httpd.service:
file.managed:
- source: salt://modules/web/apache/files/httpd.service
- user: root
- group: root
- mode: 644
cmd.run:
- name: systemctl daemon-reload
- require:
- cmd: /tmp/apache_install.sh
Apache所需软件以及安装脚本
[root@master apache]# cd files/
[root@master files]# ls
apache_install.sh apr-util-1.6.1.tar.bz2 httpd.conf
apr-1.7.0.tar.bz2 httpd-2.4.43.tar.bz2 httpd.service
2.3 编写Apache安装脚本
[root@master files]# vim apache_install.sh
cd /usr/local/apr-1.7.0 && \
./configure --prefix=/usr/local/apr &> /dev/null && \
make -j $(nproc) &> /dev/null && make install &> /dev/null && \
cd /usr/local/apr-util-1.6.1 && \
./configure --prefix=/usr/local/apr-util --with-apr=/usr/local/apr &> /dev/null && \
make -j $(nproc) &> /dev/null && make install &> /dev/null && \
cd /usr/local/httpd-2.4.43 && \
./configure --prefix=/usr/local/apache \
--sysconfdir=/etc/httpd24 \
--enable-so \
--enable-ssl \
--enable-cgi \
--enable-rewrite \
--with-zlib \
--with-pcre \
--with-apr=/usr/local/apr \
--with-apr-util=/usr/local/apr-util/ \
--enable-modules=most \
--enable-mpms-shared=all \
--with-mpm=prefork &> /dev/null && \
make -j $(nproc) &> /dev/null && make install &> /dev/null
2.4 编写Apache service文件
[root@master files]# vim httpd.service
[Unit]
Description=Start httpd
[Service]
Type=simple
EnvironmentFile=/etc/httpd24/httpd.conf
ExecStart=/usr/local/apache/bin/httpd -k start -DFOREGROUND
ExecReload=/usr/local/apache/bin/httpd -k graceful
ExecStop=/bin/kill -WINCH ${MAINPID}
[Install]
WantedBy=multi-user.target
3. MySQL
3.1 创建MySQL目录
[root@master ~]# mkdir -p /srv/salt/base/modules/database/mariadb/files/
[root@master ~]# cd /srv/salt/base/modules/database/mariadb/
3.2 编写MySQL安装sls文件
[root@master mariadb]# vim install.sls
mysql-user:
user.present:
- name: mysql
- system: True
- shell: /sbin/nologin
- createhome: False
/usr/src/mysql-5.7.30-linux-glibc2.12-x86_64.tar.gz:
file.managed:
- source: salt://modules/database/mariadb/files/mysql-5.7.30-linux-glibc2.12-x86_64.tar.gz
- user: root
- group: root
- mode: 0644
unpack_packages:
cmd.run:
- name: cd /usr/src/ && tar xf mysql-5.7.30-linux-glibc2.12-x86_64.tar.gz -C /usr/local
- require:
- file: /usr/src/mysql-5.7.30-linux-glibc2.12-x86_64.tar.gz
- unless: test -d /usr/local/mysql-5.7.30-linux-glibc2.12-x86_64
/usr/local/mysql:
file.symlink:
- target: /usr/local/mysql-5.7.30-linux-glibc2.12-x86_64
- require:
- cmd: unpack_packages
/opt/mysql-database:
file.directory:
- user: mysql
- group: mysql
- mode: 0755
- makedirs: True
- unless: test -d /opt/mysql-database
mysql-environment:
cmd.run:
- name: echo "export PATH=/usr/local/mysql/bin:$PATH" > /etc/profile.d/mysql.sh
/tmp/mariadb.sh:
file.managed:
- source: salt://modules/database/mariadb/files/mariadb.sh
- user: root
- group: root
- mode: 0755
cmd.run:
- name: /bin/bash /tmp/mariadb.sh
/usr/lib/systemd/system/mariadb.service:
file.managed:
- source: salt://modules/database/mariadb/files/mariadb.service
- user: root
- group: root
- mode: 0644
cmd.run:
- name: systemctl daemon-reload
安装Mysql所需软件以及安装脚本
[root@master mariadb]# cd files/
[root@master files]# ls
mariadb.service mariadb.sh mysql-5.7.30-linux-glibc2.12-x86_64.tar.gz mysql_passwd.sh
3.3 编写MySQL安装脚本
[root@master files]# vim mariadb.sh
#!/bin/bash
data=/opt/mysql-database
if [ `ls $data | wc -l` -eq 0 ];then
/usr/local/mysql/bin/mysqld --initialize-insecure --user=mysql --datadir=$data &> /dev/null
fi
cat > /etc/my.cnf <<EOF
[mysqld]
basedir = /usr/local/mysql
datadir = $data
socket = /tmp/mysql.sock
port = 3306
pid-file = $data/mysql.pid
user = mysql
skip-name-resolve
EOF
3.4 编写MySQL service 文件
[root@master files]# vim mariadb.service
[Unit]
Description=MySQL Server
After=network.target
[Install]
WantedBy=multi-user.target
[Service]
Type=forking
TimeoutSec=0
PermissionsStartOnly=true
ExecStart=/usr/local/mysql/bin/mysqld --defaults-file=/etc/my.cnf --daemonize
LimitNOFILE = 65535
Restart=on-failure
RestartSec=3
RestartPreventExitStatus=1
PrivateTmp=false
3.5 编写MySQL修改密码脚本
[root@master files]# cat mysql_passwd.sh
basedir=/usr/local
password=1
echo "mysql密码为1"
$basedir/mysql/bin/mysql -e "set password=password('$password');" &> /dev/null
4. Tomcat
4.1 创建Tomcat目录
[root@master ~]# mkdir -p /srv/salt/base/modules/app/tomcat/files/
[root@master ~]# cd /srv/salt/base/modules/app/tomcat
4.2 编写Tomcat安装sls文件
[root@master tomcat]# vim install.sls
/usr/src/apache-tomcat-9.0.37.tar.gz:
file.managed:
- source: salt://modules/app/tomcat/files/apache-tomcat-9.0.37.tar.gz
- user: root
- group: root
- mode: 0644
unpack_tomcat_packages:
cmd.run:
- name : cd /usr/src && tar xf apache-tomcat-9.0.37.tar.gz -C /usr/local
- require:
- file: /usr/src/apache-tomcat-9.0.37.tar.gz
- unless: test -d /usr/local/apache-tomcat-9.0.37
/usr/local/tomcat:
file.symlink:
- target: /usr/local/apache-tomcat-9.0.37
/usr/local/tomcat/bin/setenv.sh:
file.managed:
- source: salt://modules/app/tomcat/files/setenv.sh
- user: root
- group: root
- mode: 0644
- require:
- file: /usr/local/tomcat
/usr/lib/systemd/system/tomcat.service:
file.managed:
- source: salt://modules/app/tomcat/files/tomcat.service
- user: root
- group: root
- mode: 0644
cmd.run:
- name: systemctl daemon-reload
- require:
- file: /usr/local/tomcat/bin/setenv.sh
安装Tomcat所需软件以及安装脚本
[root@master tomcat]# cd files/
[root@master files]# ls
apache-tomcat-9.0.37.tar.gz setenv.sh tomcat.service
4.3 编写Tomcat service文件
[root@master files]# vim setenv.sh
#add tomcat pid
CATALINA_PID="$CATALINA_BASE/tomcat.pid"
#add java opts
JAVA_OPTS="-server -XX:PermSize=256M -XX:MaxPermSize=1024m -Xms512M -Xmx1024M -XX:MaxNewSize=256m"
[root@master files]# vim tomcat.service
[Unit]
Description=Tomcat
After=syslog.target network.target remote-fs.target nss-lookup.target
[Service]
Type=forking
PIDFile=/usr/local/tomcat/tomcat.pid
ExecStart=/usr/local/tomcat/bin/startup.sh
ExecReload=/bin/kill -s HUP $MAINPID
ExecStop=/bin/kill -s QUIT $MAINPID
PrivateTmp=true
[Install]
WantedBy=multi-user.target
5. 部署LAMT架构
5.1 编写Apache主配置文件
- 注释监听端口
- 取消注释- -LoadModule proxy_module modules/mod_proxy.so
- 取消注释- -LoadModule proxy_http_module modules/mod_proxy_http.so
- 取消注释- -指定虚拟主机目录
[root@master ~]# cd /srv/salt/base/modules/web/apache/files/
[root@master files]# vim httpd.conf
.....
#Listen 80
.....
LoadModule proxy_module modules/mod_proxy.so
LoadModule proxy_http_module modules/mod_proxy_http.so
......
Include /etc/httpd24/project/*.conf
5.2 创建LAMT项目目录
[root@master ~]# mkdir -p /srv/salt/base/project/files/
[root@master ~]# cd /srv/salt/base/project/
[root@master project]# ls
files lamt.sls
5.3 编写LAMT部署sls文件
[root@master project]# vim lamt.sls
include:
- modules.web.apache.install
- modules.database.mariadb.install
- modules.app.tomcat.install
/etc/httpd24/httpd.conf:
file.managed:
- source: salt://modules/web/apache/files/httpd.conf
- user: root
- group: root
- mode: 0644
- template: jinja
/etc/httpd24/project:
file.directory:
- user: root
- group: root
- mode: 755
- makedirs: True
/etc/httpd24/project/lamt.conf:
file.managed:
- source: salt://project/files/lamt.conf
- user: root
- group: root
- mode: 0644
- template: jinja
部署lamt所需文件
[root@master project]# cd files/
[root@master files]# ls
httpd-vhosts.conf index.html lamt.conf
5.4 编写LAMT虚拟主机文件
[root@master files]# vim lamt.conf
# Virtual Hosts
#
# Required modules: mod_log_config
# If you want to maintain multiple domains/hostnames on your
# machine you can setup VirtualHost containers for them. Most configurations
# use only name-based virtual hosts so the server doesn't need to worry about
# IP addresses. This is indicated by the asterisks in the directives below.
#
# Please see the documentation at
# <URL:http://httpd.apache.org/docs/2.4/vhosts/>
# for further details before you try to setup virtual hosts.
#
# You may use the command line option '-S' to verify your virtual host
# configuration.
#
# VirtualHost example:
# Almost any Apache directive may go into a VirtualHost container.
# The first VirtualHost section is used for all requests that do not
# match a ServerName or ServerAlias in any <VirtualHost> block.
#
listen {{ pillar['APACHE_PORT'] }}
<VirtualHost *:{{ pillar['APACHE_PORT'] }}>
DocumentRoot "/usr/local/apache/htdocs/"
ServerName lamt.com
ProxyPass / http://{{ pillar['Tomcat_IP'] }}:8080/
ProxyPassReverse / http://{{ pillar['Tomcat_IP'] }}:8080/
<Directory "/usr/local/apache/project/">
Options none
AllowOverride none
Require all granted
</Directory>
</VirtualHost>
5.5 创建pillar目录
[root@master ~]# mkdir -p /srv/pillar/base/
[root@master ~]# cd /srv/pillar/base/
[root@master base]# ls
lamt_150.sls lamt_245.sls top.sls
5.6 设置变量
//如果想在部署一台lamt,需要在创建一个sls文件
[root@master base]# vim lamt_150.sls
APACHE_PORT: 80
Tomcat_IP: 192.168.30.150
5.7 编写pillar top.sls
//添加进top.sls
[root@master base]# vim top.sls
base:
'192.168.30.245':
- lamt_245
'zyy180':
- lamt_150
5.8 编写启动lamt-sls文件
[root@master common]# mkdir -p /srv/salt/base/start/start_files/
[root@master common]# cd /srv/salt/base/start/
[root@master start]# ls
lamt_start.sls start_files
[root@master start]# vim lamt_start.sls
include:
- start.start_files.httpd_start
- start.start_files.mysql_start
- start.start_files.tomcat_start
启动lamt所需文件
[root@master start]# cd start_files/
[root@master start_files]# ls
httpd_start.sls mysql_start.sls tomcat_start.sls
[root@master start_files]# vim httpd_start.sls
httpd-service:
service.running:
- name: httpd
- enable: True
[root@master start_files]# vim mysql_start.sls
mariadb.service:
service.running:
- name: mariadb
- enable: True
[root@master start_files]# vim tomcat_start.sls
tomcat-service:
service.running:
- name: tomcat
- enable: True
5.9 编写top.sls
[root@master ~]# cd /srv/salt/base/
[root@master base]# cat top.sls
base:
'*':
- modules.common.yum
- modules.common.init-install
- project.lamt
- start.lamt_start
- modules.database.mariadb.mysql_passwd
6. 扩展:编写salt-ssh脚本
[root@master ~]# mkdir -p /srv/salt/base/minion/files/
[root@master ~]# cd /srv/salt/base/minion/
[root@master minion]# ls
files install.sls minion_ssh.sh
[root@master minion]# vim minion_ssh.sh
#!/bin/bash
echo "正在安装salt-ssh"
yum -y install salt-ssh &> /dev/null
echo "salt-ssh安装完成!"
read -p "请输入minion的类型:" ID
read -p "请输入minion的IP:" IP
read -p "请输入minion的passwd:" passwd
cat /etc/salt/roster | grep $IP &> /dev/null
if [ $? -ne 0 ];then
cat >> /etc/salt/roster << EOF
$ID:
host: $IP
user: root
passwd: $passwd
EOF
fi
echo 'StrictHostKeyChecking no' > /root/.ssh/config
[root@master minion]# vim install.sls
/etc/yum.repos.d/CentOS-Base.repo:
file.managed:
- source: salt://minion/files/CentOS-Base.repo
- user: root
- group: root
- mode: 0644
/etc/yum.repos.d/epel.repo:
file.managed:
- source: salt://minion/files/epel.repo
- user: root
- group: root
- mode: 0644
cmd.run:
- name: yum clean all && yum makecache fast
/tmp/salt-repo-latest-2.el7.noarch.rpm:
file.managed:
- source: salt://minion/files/salt-repo-latest-2.el7.noarch.rpm
- user: root
- group: root
- mode: 0644
cmd.run:
- name: yum -y install /tmp/salt-repo-latest-2.el7.noarch.rpm
minion_install:
pkg.installed:
- name: salt-minion
/etc/salt/minion:
file.managed:
- source: salt://minion/files/minion
- user: root
- group: root
- mode: 0644
salt-minion:
service.running:
- name: salt-minion
- enable: True
- watch:
- file: /etc/salt/minion
[root@master minion]# cd files/
[root@master files]# ls
CentOS-Base.repo epel.repo minion salt-repo-latest-2.el7.noarch.rpm
[root@master files]# vim minion
......
master: 192.168.30.150 //因此想改master端,改一下IP即可
本文地址:https://blog.csdn.net/zyy130988/article/details/108214300