欢迎您访问程序员文章站本站旨在为大家提供分享程序员计算机编程知识!
您现在的位置是: 首页  >  科技

安装研发服务器

程序员文章站 2022-06-25 08:01:06
重装服务器真是一个耗精力的过程,尤其是用ghost做数据全盘备份,数据ghost恢复蜗牛一般的速度,再加上ghost居然人生第一次碰到了软件会异常问题,真的是让人痛苦不堪啊。从现在想来,可能不如用imagex来备份数据,imagex至少可以直接mount,省了我不断的恢复过程啊。回想起来,选ghos ......

重装服务器真是一个耗精力的过程,尤其是用ghost做数据全盘备份,数据ghost恢复蜗牛一般的速度,再加上ghost居然人生第一次碰到了软件会异常问题,真的是让人痛苦不堪啊。从现在想来,可能不如用imagex来备份数据,imagex至少可以直接mount,省了我不断的恢复过程啊。回想起来,选ghost唯一的理由,应该是:全盘备份,可以必要时候全盘恢复。不过,这个不是这里的重点。这里主要讲服务安装时候,自动化脚本构建。当然,使用构建脚本的方法,可能真的不如直接手动操作,但是,万一需要第二台或第二次再来一遍呢。当然,程序员对于人肉方法,也是倾向于不屑一顾的。

1. 组织架构

公司转向了事业部制,大概的公司结构如下: 安装研发服务器 基本svn设计是,每个事业部有一个svn库,下面设一级目录,hw/fpga/fw/sw,分别授权不同的工程师访问。

2. 创建用户和用户组

用户归属于事业部,需要创建事业部组,事业部下根据研发性质,在细分成hw/fpga/fw/sw用户组,创建用户用命令“net user”,从excel生成命令脚本使用excel的vba生成,代码如下:

sub createscript()
    dim row as integer, i as integer
    dim tsusr as textstream, tssmtp as textstream
    dim usr as string, grp as string, cmt as string
    dim outfolder as string
    
    set fso = createobject("scripting.filesystemobject")
    outfolder = "d:\byhx\server\"
    set tsusr = fso.opentextfile(outfolder & "0.servadmin.cmd", forwriting, true)
    set tssmtp = fso.opentextfile(outfolder & "0.sendmail.ps1", forwriting, true)
    
    ' powershell,需要先执行以下的语句,才能执行ps1脚本
    tssmtp.writeline "# execute below command first, then ps1 script will allowed."
    tssmtp.writeline "# set-executionpolicy -executionpolicy unrestricted -scope currentuser"
    
    ' 创建事业部和大的用户性质用户组
    for row = 2 to 18
        grp = range("l" & row)
        if left(grp, 2) <> "rd" then grp = "bu-" & grp
        tsusr.writeline "net localgroup " & grp & " /add /comment:""" & range("m" & row) & """"
    next row
    
    ' 创建事业部下研发分类用户组,以及列出同类研发事业部组列表
    for row = 2 to 13
        grp = range("l" & row)
        cmt = range("m" & row)
        if left(grp, 2) <> "rd" then grp = "bu-" & grp
        tsusr.writeline "net localgroup " & grp & "-hw   /add /comment:""" & cmt & " 硬件"""
        tsusr.writeline "net localgroup " & grp & "-fpga /add /comment:""" & cmt & " fpga"""
        tsusr.writeline "net localgroup " & grp & "-fw   /add /comment:""" & cmt & " 嵌入"""
        tsusr.writeline "net localgroup " & grp & "-sw   /add /comment:""" & cmt & " 软件"""
    next row
    
    for row = 2 to 1000
        usr = trim(range("a" & row).text)
        grp = trim(range("d" & row).text)
        ' 行的a列为空,表示处理结束
        if usr = "" then exit for
        ' 非rd的,添加bu前缀
        if left(grp, 2) <> "rd" then grp = "bu-" & grp
        ' 添加用户
        tsusr.writeline "net user " & usr & " """ & range("b" & row) & """ /add /active:yes /expires:never /fullname:" & range("c" & row)
        ' 用户密码永不过期
        tsusr.writeline "wmic useraccount where name='" & usr & "' set passwordexpires=false"
        ' 把用户添加到事业部
        tsusr.writeline "net localgroup " & grp & " " & usr & " /add"
        
        ' 根据研发内容,添加用户到事业部研发组
        if range("e" & row).text = "y" then tsusr.writeline "net localgroup " & grp & "-hw   " & usr & " /add" & vbcrlf & "net localgroup rd-allhw   " & usr & " /add"
        if range("f" & row).text = "y" then tsusr.writeline "net localgroup " & grp & "-fpga " & usr & " /add" & vbcrlf & "net localgroup rd-allfpga " & usr & " /add"
        if range("g" & row).text = "y" then tsusr.writeline "net localgroup " & grp & "-fw   " & usr & " /add" & vbcrlf & "net localgroup rd-allfw   " & usr & " /add"
        if range("h" & row).text = "y" then tsusr.writeline "net localgroup " & grp & "-sw   " & usr & " /add" & vbcrlf & "net localgroup rd-allsw   " & usr & " /add"
        if range("i" & row).text = "y" then tsusr.writeline "net localgroup bu-leader " & usr & " /add"
    next row
        
    tsusr.close
    tssmtp.close
    msgbox "ok"
end sub

3. 安装和配置svn

3.1 建立svn库

安装完毕之后,建立一个demo库,手动添加管理账号的读写访问权限,拷贝出账号认证配置文件,再准备好需要的svn的hook文件。 准备好事业部列表文件“1.svn-repo.txt”,每行只有事业部的名称(从excel拷贝出来即可),用批处理命令,生成svn库,以及离线svn配置。

for /f %%i in (1.svn-repo.txt) do (
svnadmin create e:\repositories\%%i
mkdir %%i\conf\
mkdir %%i\hooks\
copy /y visualsvn-winauthz.ini %%i\conf\
copy /y pre-commit.cmd %%i\hooks\
)

3.2 创建一级目录并配置

用svn命令,管理账号,创建各个库的一级目录:

for /f %%i in (1.svn-repo.txt) do (
svn mkdir https://byhx-masterserv:8443/svn/%%i/hw -m "create hardware folder"
svn mkdir https://byhx-masterserv:8443/svn/%%i/fpga -m "create fpga folder"
svn mkdir https://byhx-masterserv:8443/svn/%%i/fw -m "create firmware folder"
svn mkdir https://byhx-masterserv:8443/svn/%%i/sw -m "create software folder"
)

用类似的循环,用“psgetsid”工具,获取用户的sid信息文件,单个sid信息类似于

sid for my-co-server\whom:
s-1-5-21-316025195-1075053894-3005689260-1012

利用shell脚本,处理sid信息(注意先转换“sidresult.txt”为unix格式)

cat sidresult.txt | egrep "sid\ for|s\-1" | sed -e 'n;s/\n//g' | sed -e 's/^.*\\//g' > sidlist.txt

处理完信息类似于:

whom:s-1-5-21-316025195-1075053894-3005689260-1012

有了sid信息表之后,用excel的vba,处理权限信息:

function getsid(sname as string)
    dim sidfile as textstream
    dim outfolder as string
    dim str as string, s1 as string
    dim pos as integer
    
    outfolder = "d:\byhx\server\"
    
    set sidfile = fso.opentextfile(outfolder & "sidlist.txt", forreading)
    do while not sidfile.atendofstream
        str = sidfile.readline
        pos = instr(str, ":")
        s1 = left(str, pos - 1)
        if s1 = sname then
            getsid = mid(str, pos + 1)
            exit do
        end if
    loop
end function

sub modiprivilege()
    dim row as integer, i as integer
    dim outfolder as string
    dim authfile as textstream
    dim str as string, s1 as string
    dim usr as string, grp as string
    
    set fso = createobject("scripting.filesystemobject")
    outfolder = "d:\byhx\server\"

    ' 给负责人添加库的完全权限
    for row = 2 to 1000
        usr = trim(range("a" & row).text)
        grp = trim(range("d" & row).text)
        ' 行的a列为空,表示处理结束
        if usr = "" then exit for
        ' 非rd的,添加bu前缀
        if left(grp, 2) <> "rd" then grp = "bu-" & grp
        
        if range("i" & row).text = "y" then
            str = outfolder & grp & "\conf\visualsvn-winauthz.ini"
            set authfile = fso.opentextfile(str, forappending)
            authfile.writeline getsid(usr) & "=rw"
            authfile.close
        end if
    next row

    ' 事业部下研发分类用户组,设置权限
    for row = 2 to 13
        grp = range("l" & row)
        if left(grp, 2) <> "rd" then grp = "bu-" & grp
        
        set authfile = fso.opentextfile(outfolder & grp & "\conf\visualsvn-winauthz.ini", forappending)
        authfile.writeline vbcrlf & "[/hw]"
        authfile.writeline getsid(grp & "-hw") & "=rw"
        authfile.writeline vbcrlf & "[/fpga]"
        authfile.writeline getsid(grp & "-fpga") & "=rw"
        authfile.writeline vbcrlf & "[/fw]"
        authfile.writeline getsid(grp & "-fw") & "=rw"
        authfile.writeline vbcrlf & "[/sw]"
        authfile.writeline getsid(grp & "-sw") & "=rw"
        authfile.close
    next row
    
    msgbox "ok"
end sub

将离线的svn配置文件,复制到svn库目录,重启svn服务,svn配置完成。

4. 发送通知邮件

需要把各个账户的密码,通知到各位同仁。将excel的用户名和密码这两列,复制到文本文件。转为unix格式。发送邮件脚本如下:

#!/usr/bin/bash
input="mailaccount.txt"
while ifs= read -r line
do
	_usr=`echo -n $line | gawk '{printf "%s",$1}'`
	_pwd=`echo -n $line | gawk '{printf "%s",$2}' | ./htmlenc.exe`
	cat swithmailsettings.xml | sed -e "s/__to_person__/$_usr/g" -e "s/__password__/$_pwd/g" > account.xml
	./swithmail.exe /s /x account.xml
done < "$input"

命令行邮件工具选择了“swithmail”,依据的是7 command line utilities to easily send email using smtp的推荐。当然,用powershell也可以,就是比较麻烦一点点。