feat: 重构项目脚本结构和文档

docs: 添加API和部署文档 refactor: 重新组织脚本目录结构 fix: 修复Nomad配置中的region设置 chore: 移除过期节点相关配置 test: 更新MCP服务器测试脚本 build: 更新Makefile以适配新脚本路径
2025-10-01 02:08:58 +00:00
parent 7ea230b072
commit e5aa00d6f9
119 changed files with 7847 additions and 203 deletions
--- a/components/consul/configs/consul.hcl.tmpl
+++ b/components/consul/configs/consul.hcl.tmpl
@@ -0,0 +1,93 @@
+# Consul配置模板文件
+# 此文件使用Consul模板语法从KV存储中动态获取配置
+# 遵循 config/{environment}/{provider}/{region_or_service}/{key} 格式
+
+# 基础配置
+data_dir = "{{ keyOrDefault `config/` + env "ENVIRONMENT" + `/consul/cluster/data_dir` `/opt/consul/data` }}"
+raft_dir = "{{ keyOrDefault `config/` + env "ENVIRONMENT" + `/consul/cluster/raft_dir` `/opt/consul/raft` }}"
+
+# 启用UI
+ui_config {
+  enabled = {{ keyOrDefault `config/` + env "ENVIRONMENT" + `/consul/ui/enabled` `true` }}
+}
+
+# 数据中心配置
+datacenter = "{{ keyOrDefault `config/` + env "ENVIRONMENT" + `/consul/cluster/datacenter` `dc1` }}"
+
+# 服务器配置
+server = true
+bootstrap_expect = {{ keyOrDefault `config/` + env "ENVIRONMENT" + `/consul/cluster/bootstrap_expect` `3` }}
+
+# 网络配置
+client_addr = "{{ keyOrDefault `config/` + env "ENVIRONMENT" + `/consul/network/client_addr` `0.0.0.0` }}"
+bind_addr = "{{ GetInterfaceIP (keyOrDefault `config/` + env "ENVIRONMENT" + `/consul/network/bind_interface` `ens160`) }}"
+advertise_addr = "{{ GetInterfaceIP (keyOrDefault `config/` + env "ENVIRONMENT" + `/consul/network/advertise_interface` `ens160`) }}"
+
+# 端口配置
+ports {
+  dns = {{ keyOrDefault `config/` + env "ENVIRONMENT" + `/consul/ports/dns` `8600` }}
+  http = {{ keyOrDefault `config/` + env "ENVIRONMENT" + `/consul/ports/http` `8500` }}
+  https = {{ keyOrDefault `config/` + env "ENVIRONMENT" + `/consul/ports/https` `-1` }}
+  grpc = {{ keyOrDefault `config/` + env "ENVIRONMENT" + `/consul/ports/grpc` `8502` }}
+  grpc_tls = {{ keyOrDefault `config/` + env "ENVIRONMENT" + `/consul/ports/grpc_tls` `8503` }}
+  serf_lan = {{ keyOrDefault `config/` + env "ENVIRONMENT" + `/consul/ports/serf_lan` `8301` }}
+  serf_wan = {{ keyOrDefault `config/` + env "ENVIRONMENT" + `/consul/ports/serf_wan` `8302` }}
+  server = {{ keyOrDefault `config/` + env "ENVIRONMENT" + `/consul/ports/server` `8300` }}
+}
+
+# 集群连接 - 动态获取节点IP
+retry_join = [
+  "{{ keyOrDefault `config/` + env "ENVIRONMENT" + `/consul/nodes/master/ip` `100.117.106.136` }}",
+  "{{ keyOrDefault `config/` + env "ENVIRONMENT" + `/consul/nodes/ash3c/ip` `100.116.80.94` }}",
+  "{{ keyOrDefault `config/` + env "ENVIRONMENT" + `/consul/nodes/warden/ip` `100.122.197.112` }}"
+]
+
+# 服务发现
+enable_service_script = {{ keyOrDefault `config/` + env "ENVIRONMENT" + `/consul/service/enable_service_script` `true` }}
+enable_script_checks = {{ keyOrDefault `config/` + env "ENVIRONMENT" + `/consul/service/enable_script_checks` `true` }}
+enable_local_script_checks = {{ keyOrDefault `config/` + env "ENVIRONMENT" + `/consul/service/enable_local_script_checks` `true` }}
+
+# 性能调优
+performance {
+  raft_multiplier = {{ keyOrDefault `config/` + env "ENVIRONMENT" + `/consul/performance/raft_multiplier` `1` }}
+}
+
+# 日志配置
+log_level = "{{ keyOrDefault `config/` + env "ENVIRONMENT" + `/consul/cluster/log_level` `INFO` }}"
+enable_syslog = {{ keyOrDefault `config/` + env "ENVIRONMENT" + `/consul/log/enable_syslog` `false` }}
+log_file = "{{ keyOrDefault `config/` + env "ENVIRONMENT" + `/consul/log/log_file` `/var/log/consul/consul.log` }}"
+
+# 安全配置
+encrypt = "{{ keyOrDefault `config/` + env "ENVIRONMENT" + `/consul/cluster/encrypt_key` `YourEncryptionKeyHere` }}"
+
+# 连接配置
+reconnect_timeout = "{{ keyOrDefault `config/` + env "ENVIRONMENT" + `/consul/connection/reconnect_timeout` `30s` }}"
+reconnect_timeout_wan = "{{ keyOrDefault `config/` + env "ENVIRONMENT" + `/consul/connection/reconnect_timeout_wan` `30s` }}"
+session_ttl_min = "{{ keyOrDefault `config/` + env "ENVIRONMENT" + `/consul/connection/session_ttl_min` `10s` }}"
+
+# Autopilot配置
+autopilot {
+  cleanup_dead_servers = {{ keyOrDefault `config/` + env "ENVIRONMENT" + `/consul/autopilot/cleanup_dead_servers` `true` }}
+  last_contact_threshold = "{{ keyOrDefault `config/` + env "ENVIRONMENT" + `/consul/autopilot/last_contact_threshold` `200ms` }}"
+  max_trailing_logs = {{ keyOrDefault `config/` + env "ENVIRONMENT" + `/consul/autopilot/max_trailing_logs` `250` }}
+  server_stabilization_time = "{{ keyOrDefault `config/` + env "ENVIRONMENT" + `/consul/autopilot/server_stabilization_time` `10s` }}"
+  redundancy_zone_tag = ""
+  disable_upgrade_migration = {{ keyOrDefault `config/` + env "ENVIRONMENT" + `/consul/autopilot/disable_upgrade_migration` `false` }}
+  upgrade_version_tag = ""
+}
+
+# 快照配置
+snapshot {
+  enabled = {{ keyOrDefault `config/` + env "ENVIRONMENT" + `/consul/snapshot/enabled` `true` }}
+  interval = "{{ keyOrDefault `config/` + env "ENVIRONMENT" + `/consul/snapshot/interval` `24h` }}"
+  retain = {{ keyOrDefault `config/` + env "ENVIRONMENT" + `/consul/snapshot/retain` `30` }}
+  name = "{{ keyOrDefault `config/` + env "ENVIRONMENT" + `/consul/snapshot/name` `consul-snapshot-{{.Timestamp}}` }}"
+}
+
+# 备份配置
+backup {
+  enabled = {{ keyOrDefault `config/` + env "ENVIRONMENT" + `/consul/backup/enabled` `true` }}
+  interval = "{{ keyOrDefault `config/` + env "ENVIRONMENT" + `/consul/backup/interval` `6h` }}"
+  retain = {{ keyOrDefault `config/` + env "ENVIRONMENT" + `/consul/backup/retain` `7` }}
+  name = "{{ keyOrDefault `config/` + env "ENVIRONMENT" + `/consul/backup/name` `consul-backup-{{.Timestamp}}` }}"
+}
--- a/components/consul/jobs/consul-cluster-dynamic.nomad
+++ b/components/consul/jobs/consul-cluster-dynamic.nomad
@@ -0,0 +1,412 @@
+job "consul-cluster-dynamic" {
+  datacenters = ["dc1"]
+  type = "service"
+
+  group "consul-master" {
+    count = 1
+
+    constraint {
+      attribute = "${node.unique.name}"
+      value = "kr-master"
+    }
+
+    network {
+      port "http" {
+        static = 8500
+      }
+      port "rpc" {
+        static = 8300
+      }
+      port "serf_lan" {
+        static = 8301
+      }
+      port "serf_wan" {
+        static = 8302
+      }
+    }
+
+    task "consul" {
+      driver = "exec"
+
+      # 使用模板生成配置文件
+      template {
+        data = <<EOF
+# Consul配置文件 - 动态生成
+# 此文件由consul-template根据Consul KV存储中的配置动态生成
+
+# 基础配置
+data_dir = "/opt/consul/data"
+raft_dir = "/opt/consul/raft"
+
+# 启用UI
+ui_config {
+  enabled = true
+}
+
+# 数据中心配置
+datacenter = "dc1"
+
+# 服务器配置
+server = true
+bootstrap_expect = 3
+
+# 网络配置
+client_addr = "master"
+bind_addr = "master"
+advertise_addr = "master"
+
+# 端口配置
+ports {
+  dns = 8600
+  http = 8500
+  https = -1
+  grpc = 8502
+  grpc_tls = 8503
+  serf_lan = 8301
+  serf_wan = 8302
+  server = 8300
+}
+
+# 集群连接
+retry_join = ["ash3c", "warden"]
+
+# 服务发现
+enable_service_script = true
+enable_script_checks = true
+enable_local_script_checks = true
+
+# 性能调优
+performance {
+  raft_multiplier = 1
+}
+
+# 日志配置
+log_level = "INFO"
+enable_syslog = false
+log_file = "/var/log/consul/consul.log"
+
+# 安全配置
+encrypt = "YourEncryptionKeyHere"
+
+# 连接配置
+reconnect_timeout = "30s"
+reconnect_timeout_wan = "30s"
+session_ttl_min = "10s"
+
+# Autopilot配置
+autopilot {
+  cleanup_dead_servers = true
+  last_contact_threshold = "200ms"
+  max_trailing_logs = 250
+  server_stabilization_time = "10s"
+  redundancy_zone_tag = ""
+  disable_upgrade_migration = false
+  upgrade_version_tag = ""
+}
+
+# 快照配置
+snapshot {
+  enabled = true
+  interval = "24h"
+  retain = 30
+  name = "consul-snapshot-{{.Timestamp}}"
+}
+
+# 备份配置
+backup {
+  enabled = true
+  interval = "6h"
+  retain = 7
+  name = "consul-backup-{{.Timestamp}}"
+}
+EOF
+        destination = "local/consul.hcl"
+      }
+
+      config {
+        command = "consul"
+        args = [
+          "agent",
+          "-config-dir=local"
+        ]
+      }
+
+      resources {
+        cpu = 300
+        memory = 512
+      }
+    }
+  }
+
+  group "consul-ash3c" {
+    count = 1
+
+    constraint {
+      attribute = "${node.unique.name}"
+      value = "us-ash3c"
+    }
+
+    network {
+      port "http" {
+        static = 8500
+      }
+      port "rpc" {
+        static = 8300
+      }
+      port "serf_lan" {
+        static = 8301
+      }
+      port "serf_wan" {
+        static = 8302
+      }
+    }
+
+    task "consul" {
+      driver = "exec"
+
+      # 使用模板生成配置文件
+      template {
+        data = <<EOF
+# Consul配置文件 - 动态生成
+# 此文件由consul-template根据Consul KV存储中的配置动态生成
+
+# 基础配置
+data_dir = "/opt/consul/data"
+raft_dir = "/opt/consul/raft"
+
+# 启用UI
+ui_config {
+  enabled = true
+}
+
+# 数据中心配置
+datacenter = "dc1"
+
+# 服务器配置
+server = true
+bootstrap_expect = 3
+
+# 网络配置
+client_addr = "ash3c"
+bind_addr = "ash3c"
+advertise_addr = "ash3c"
+
+# 端口配置
+ports {
+  dns = 8600
+  http = 8500
+  https = -1
+  grpc = 8502
+  grpc_tls = 8503
+  serf_lan = 8301
+  serf_wan = 8302
+  server = 8300
+}
+
+# 集群连接
+retry_join = ["master", "warden"]
+
+# 服务发现
+enable_service_script = true
+enable_script_checks = true
+enable_local_script_checks = true
+
+# 性能调优
+performance {
+  raft_multiplier = 1
+}
+
+# 日志配置
+log_level = "INFO"
+enable_syslog = false
+log_file = "/var/log/consul/consul.log"
+
+# 安全配置
+encrypt = "YourEncryptionKeyHere"
+
+# 连接配置
+reconnect_timeout = "30s"
+reconnect_timeout_wan = "30s"
+session_ttl_min = "10s"
+
+# Autopilot配置
+autopilot {
+  cleanup_dead_servers = true
+  last_contact_threshold = "200ms"
+  max_trailing_logs = 250
+  server_stabilization_time = "10s"
+  redundancy_zone_tag = ""
+  disable_upgrade_migration = false
+  upgrade_version_tag = ""
+}
+
+# 快照配置
+snapshot {
+  enabled = true
+  interval = "24h"
+  retain = 30
+  name = "consul-snapshot-{{.Timestamp}}"
+}
+
+# 备份配置
+backup {
+  enabled = true
+  interval = "6h"
+  retain = 7
+  name = "consul-backup-{{.Timestamp}}"
+}
+EOF
+        destination = "local/consul.hcl"
+      }
+
+      config {
+        command = "consul"
+        args = [
+          "agent",
+          "-config-dir=local"
+        ]
+      }
+
+      resources {
+        cpu = 300
+        memory = 512
+      }
+    }
+  }
+
+  group "consul-warden" {
+    count = 1
+
+    constraint {
+      attribute = "${node.unique.name}"
+      value = "bj-warden"
+    }
+
+    network {
+      port "http" {
+        static = 8500
+      }
+      port "rpc" {
+        static = 8300
+      }
+      port "serf_lan" {
+        static = 8301
+      }
+      port "serf_wan" {
+        static = 8302
+      }
+    }
+
+    task "consul" {
+      driver = "exec"
+
+      # 使用模板生成配置文件
+      template {
+        data = <<EOF
+# Consul配置文件 - 动态生成
+# 此文件由consul-template根据Consul KV存储中的配置动态生成
+
+# 基础配置
+data_dir = "/opt/consul/data"
+raft_dir = "/opt/consul/raft"
+
+# 启用UI
+ui_config {
+  enabled = true
+}
+
+# 数据中心配置
+datacenter = "dc1"
+
+# 服务器配置
+server = true
+bootstrap_expect = 3
+
+# 网络配置
+client_addr = "warden"
+bind_addr = "warden"
+advertise_addr = "warden"
+
+# 端口配置
+ports {
+  dns = 8600
+  http = 8500
+  https = -1
+  grpc = 8502
+  grpc_tls = 8503
+  serf_lan = 8301
+  serf_wan = 8302
+  server = 8300
+}
+
+# 集群连接
+retry_join = ["master", "ash3c"]
+
+# 服务发现
+enable_service_script = true
+enable_script_checks = true
+enable_local_script_checks = true
+
+# 性能调优
+performance {
+  raft_multiplier = 1
+}
+
+# 日志配置
+log_level = "INFO"
+enable_syslog = false
+log_file = "/var/log/consul/consul.log"
+
+# 安全配置
+encrypt = "YourEncryptionKeyHere"
+
+# 连接配置
+reconnect_timeout = "30s"
+reconnect_timeout_wan = "30s"
+session_ttl_min = "10s"
+
+# Autopilot配置
+autopilot {
+  cleanup_dead_servers = true
+  last_contact_threshold = "200ms"
+  max_trailing_logs = 250
+  server_stabilization_time = "10s"
+  redundancy_zone_tag = ""
+  disable_upgrade_migration = false
+  upgrade_version_tag = ""
+}
+
+# 快照配置
+snapshot {
+  enabled = true
+  interval = "24h"
+  retain = 30
+  name = "consul-snapshot-{{.Timestamp}}"
+}
+
+# 备份配置
+backup {
+  enabled = true
+  interval = "6h"
+  retain = 7
+  name = "consul-backup-{{.Timestamp}}"
+}
+EOF
+        destination = "local/consul.hcl"
+      }
+
+      config {
+        command = "consul"
+        args = [
+          "agent",
+          "-config-dir=local"
+        ]
+      }
+
+      resources {
+        cpu = 300
+        memory = 512
+      }
+    }
+  }
+}
--- a/components/consul/jobs/consul-cluster-kv.nomad
+++ b/components/consul/jobs/consul-cluster-kv.nomad
@@ -0,0 +1,421 @@
+job "consul-cluster-kv" {
+  datacenters = ["dc1"]
+  type = "service"
+
+  group "consul-master" {
+    count = 1
+
+    constraint {
+      attribute = "${node.unique.name}"
+      value = "kr-master"
+    }
+
+    network {
+      port "http" {
+        static = 8500
+      }
+      port "rpc" {
+        static = 8300
+      }
+      port "serf_lan" {
+        static = 8301
+      }
+      port "serf_wan" {
+        static = 8302
+      }
+    }
+
+    task "consul" {
+      driver = "exec"
+
+      # 使用模板从Consul KV获取配置
+      template {
+        data = <<EOF
+# Consul配置文件 - 从KV存储动态获取
+# 遵循 config/{environment}/{provider}/{region_or_service}/{key} 格式
+
+# 基础配置
+data_dir = "{{ keyOrDefault `config/dev/consul/cluster/data_dir` `/opt/consul/data` }}"
+raft_dir = "{{ keyOrDefault `config/dev/consul/cluster/raft_dir` `/opt/consul/raft` }}"
+
+# 启用UI
+ui_config {
+  enabled = {{ keyOrDefault `config/dev/consul/ui/enabled` `true` }}
+}
+
+# 数据中心配置
+datacenter = "{{ keyOrDefault `config/dev/consul/cluster/datacenter` `dc1` }}"
+
+# 服务器配置
+server = true
+bootstrap_expect = {{ keyOrDefault `config/dev/consul/cluster/bootstrap_expect` `3` }}
+
+# 网络配置
+client_addr = "{{ keyOrDefault `config/dev/consul/nodes/master/hostname` `master` }}"
+bind_addr = "{{ keyOrDefault `config/dev/consul/nodes/master/hostname` `master` }}"
+advertise_addr = "{{ keyOrDefault `config/dev/consul/nodes/master/hostname` `master` }}"
+
+# 端口配置
+ports {
+  dns = {{ keyOrDefault `config/dev/consul/ports/dns` `8600` }}
+  http = {{ keyOrDefault `config/dev/consul/ports/http` `8500` }}
+  https = {{ keyOrDefault `config/dev/consul/ports/https` `-1` }}
+  grpc = {{ keyOrDefault `config/dev/consul/ports/grpc` `8502` }}
+  grpc_tls = {{ keyOrDefault `config/dev/consul/ports/grpc_tls` `8503` }}
+  serf_lan = {{ keyOrDefault `config/dev/consul/ports/serf_lan` `8301` }}
+  serf_wan = {{ keyOrDefault `config/dev/consul/ports/serf_wan` `8302` }}
+  server = {{ keyOrDefault `config/dev/consul/ports/server` `8300` }}
+}
+
+# 集群连接 - 从KV获取其他节点IP
+retry_join = [
+  "{{ keyOrDefault `config/dev/consul/nodes/ash3c/hostname` `ash3c` }}",
+  "{{ keyOrDefault `config/dev/consul/nodes/warden/hostname` `warden` }}"
+]
+
+# 服务发现
+enable_service_script = {{ keyOrDefault `config/dev/consul/service/enable_service_script` `true` }}
+enable_script_checks = {{ keyOrDefault `config/dev/consul/service/enable_script_checks` `true` }}
+enable_local_script_checks = {{ keyOrDefault `config/dev/consul/service/enable_local_script_checks` `true` }}
+
+# 性能调优
+performance {
+  raft_multiplier = {{ keyOrDefault `config/dev/consul/performance/raft_multiplier` `1` }}
+}
+
+# 日志配置
+log_level = "{{ keyOrDefault `config/dev/consul/cluster/log_level` `INFO` }}"
+enable_syslog = {{ keyOrDefault `config/dev/consul/log/enable_syslog` `false` }}
+log_file = "{{ keyOrDefault `config/dev/consul/log/log_file` `/var/log/consul/consul.log` }}"
+
+# 安全配置
+encrypt = "{{ keyOrDefault `config/dev/consul/cluster/encrypt_key` `YourEncryptionKeyHere` }}"
+
+# 连接配置
+reconnect_timeout = "{{ keyOrDefault `config/dev/consul/connection/reconnect_timeout` `30s` }}"
+reconnect_timeout_wan = "{{ keyOrDefault `config/dev/consul/connection/reconnect_timeout_wan` `30s` }}"
+session_ttl_min = "{{ keyOrDefault `config/dev/consul/connection/session_ttl_min` `10s` }}"
+
+# Autopilot配置
+autopilot {
+  cleanup_dead_servers = {{ keyOrDefault `config/dev/consul/autopilot/cleanup_dead_servers` `true` }}
+  last_contact_threshold = "{{ keyOrDefault `config/dev/consul/autopilot/last_contact_threshold` `200ms` }}"
+  max_trailing_logs = {{ keyOrDefault `config/dev/consul/autopilot/max_trailing_logs` `250` }}
+  server_stabilization_time = "{{ keyOrDefault `config/dev/consul/autopilot/server_stabilization_time` `10s` }}
+  redundancy_zone_tag = ""
+  disable_upgrade_migration = {{ keyOrDefault `config/dev/consul/autopilot/disable_upgrade_migration` `false` }}
+  upgrade_version_tag = ""
+}
+
+# 快照配置
+snapshot {
+  enabled = {{ keyOrDefault `config/dev/consul/snapshot/enabled` `true` }}
+  interval = "{{ keyOrDefault `config/dev/consul/snapshot/interval` `24h` }}"
+  retain = {{ keyOrDefault `config/dev/consul/snapshot/retain` `30` }}
+  name = "{{ keyOrDefault `config/dev/consul/snapshot/name` `consul-snapshot-{{.Timestamp}}` }}"
+}
+
+# 备份配置
+backup {
+  enabled = {{ keyOrDefault `config/dev/consul/backup/enabled` `true` }}
+  interval = "{{ keyOrDefault `config/dev/consul/backup/interval` `6h` }}"
+  retain = {{ keyOrDefault `config/dev/consul/backup/retain` `7` }}
+  name = "{{ keyOrDefault `config/dev/consul/backup/name` `consul-backup-{{.Timestamp}}` }}"
+}
+EOF
+        destination = "local/consul.hcl"
+      }
+
+      config {
+        command = "consul"
+        args = [
+          "agent",
+          "-config-dir=local"
+        ]
+      }
+
+      resources {
+        cpu = 300
+        memory = 512
+      }
+    }
+  }
+
+  group "consul-ash3c" {
+    count = 1
+
+    constraint {
+      attribute = "${node.unique.name}"
+      value = "us-ash3c"
+    }
+
+    network {
+      port "http" {
+        static = 8500
+      }
+      port "rpc" {
+        static = 8300
+      }
+      port "serf_lan" {
+        static = 8301
+      }
+      port "serf_wan" {
+        static = 8302
+      }
+    }
+
+    task "consul" {
+      driver = "exec"
+
+      # 使用模板从Consul KV获取配置
+      template {
+        data = <<EOF
+# Consul配置文件 - 从KV存储动态获取
+# 遵循 config/{environment}/{provider}/{region_or_service}/{key} 格式
+
+# 基础配置
+data_dir = "{{ keyOrDefault `config/dev/consul/cluster/data_dir` `/opt/consul/data` }}"
+raft_dir = "{{ keyOrDefault `config/dev/consul/cluster/raft_dir` `/opt/consul/raft` }}"
+
+# 启用UI
+ui_config {
+  enabled = {{ keyOrDefault `config/dev/consul/ui/enabled` `true` }}
+}
+
+# 数据中心配置
+datacenter = "{{ keyOrDefault `config/dev/consul/cluster/datacenter` `dc1` }}"
+
+# 服务器配置
+server = true
+bootstrap_expect = {{ keyOrDefault `config/dev/consul/cluster/bootstrap_expect` `3` }}
+
+# 网络配置
+client_addr = "{{ keyOrDefault `config/dev/consul/nodes/ash3c/hostname` `ash3c` }}"
+bind_addr = "{{ keyOrDefault `config/dev/consul/nodes/ash3c/hostname` `ash3c` }}"
+advertise_addr = "{{ keyOrDefault `config/dev/consul/nodes/ash3c/hostname` `ash3c` }}"
+
+# 端口配置
+ports {
+  dns = {{ keyOrDefault `config/dev/consul/ports/dns` `8600` }}
+  http = {{ keyOrDefault `config/dev/consul/ports/http` `8500` }}
+  https = {{ keyOrDefault `config/dev/consul/ports/https` `-1` }}
+  grpc = {{ keyOrDefault `config/dev/consul/ports/grpc` `8502` }}
+  grpc_tls = {{ keyOrDefault `config/dev/consul/ports/grpc_tls` `8503` }}
+  serf_lan = {{ keyOrDefault `config/dev/consul/ports/serf_lan` `8301` }}
+  serf_wan = {{ keyOrDefault `config/dev/consul/ports/serf_wan` `8302` }}
+  server = {{ keyOrDefault `config/dev/consul/ports/server` `8300` }}
+}
+
+# 集群连接 - 从KV获取其他节点IP
+retry_join = [
+  "{{ keyOrDefault `config/dev/consul/nodes/master/hostname` `master` }}",
+  "{{ keyOrDefault `config/dev/consul/nodes/warden/hostname` `warden` }}"
+]
+
+# 服务发现
+enable_service_script = {{ keyOrDefault `config/dev/consul/service/enable_service_script` `true` }}
+enable_script_checks = {{ keyOrDefault `config/dev/consul/service/enable_script_checks` `true` }}
+enable_local_script_checks = {{ keyOrDefault `config/dev/consul/service/enable_local_script_checks` `true` }}
+
+# 性能调优
+performance {
+  raft_multiplier = {{ keyOrDefault `config/dev/consul/performance/raft_multiplier` `1` }}
+}
+
+# 日志配置
+log_level = "{{ keyOrDefault `config/dev/consul/cluster/log_level` `INFO` }}"
+enable_syslog = {{ keyOrDefault `config/dev/consul/log/enable_syslog` `false` }}
+log_file = "{{ keyOrDefault `config/dev/consul/log/log_file` `/var/log/consul/consul.log` }}"
+
+# 安全配置
+encrypt = "{{ keyOrDefault `config/dev/consul/cluster/encrypt_key` `YourEncryptionKeyHere` }}"
+
+# 连接配置
+reconnect_timeout = "{{ keyOrDefault `config/dev/consul/connection/reconnect_timeout` `30s` }}"
+reconnect_timeout_wan = "{{ keyOrDefault `config/dev/consul/connection/reconnect_timeout_wan` `30s` }}"
+session_ttl_min = "{{ keyOrDefault `config/dev/consul/connection/session_ttl_min` `10s` }}"
+
+# Autopilot配置
+autopilot {
+  cleanup_dead_servers = {{ keyOrDefault `config/dev/consul/autopilot/cleanup_dead_servers` `true` }}
+  last_contact_threshold = "{{ keyOrDefault `config/dev/consul/autopilot/last_contact_threshold` `200ms` }}"
+  max_trailing_logs = {{ keyOrDefault `config/dev/consul/autopilot/max_trailing_logs` `250` }}
+  server_stabilization_time = "{{ keyOrDefault `config/dev/consul/autopilot/server_stabilization_time` `10s` }}"
+  redundancy_zone_tag = ""
+  disable_upgrade_migration = {{ keyOrDefault `config/dev/consul/autopilot/disable_upgrade_migration` `false` }}
+  upgrade_version_tag = ""
+}
+
+# 快照配置
+snapshot {
+  enabled = {{ keyOrDefault `config/dev/consul/snapshot/enabled` `true` }}
+  interval = "{{ keyOrDefault `config/dev/consul/snapshot/interval` `24h` }}"
+  retain = {{ keyOrDefault `config/dev/consul/snapshot/retain` `30` }}
+  name = "{{ keyOrDefault `config/dev/consul/snapshot/name` `consul-snapshot-{{.Timestamp}}` }}"
+}
+
+# 备份配置
+backup {
+  enabled = {{ keyOrDefault `config/dev/consul/backup/enabled` `true` }}
+  interval = "{{ keyOrDefault `config/dev/consul/backup/interval` `6h` }}"
+  retain = {{ keyOrDefault `config/dev/consul/backup/retain` `7` }}
+  name = "{{ keyOrDefault `config/dev/consul/backup/name` `consul-backup-{{.Timestamp}}` }}"
+}
+EOF
+        destination = "local/consul.hcl"
+      }
+
+      config {
+        command = "consul"
+        args = [
+          "agent",
+          "-config-dir=local"
+        ]
+      }
+
+      resources {
+        cpu = 300
+        memory = 512
+      }
+    }
+  }
+
+  group "consul-warden" {
+    count = 1
+
+    constraint {
+      attribute = "${node.unique.name}"
+      value = "bj-warden"
+    }
+
+    network {
+      port "http" {
+        static = 8500
+      }
+      port "rpc" {
+        static = 8300
+      }
+      port "serf_lan" {
+        static = 8301
+      }
+      port "serf_wan" {
+        static = 8302
+      }
+    }
+
+    task "consul" {
+      driver = "exec"
+
+      # 使用模板从Consul KV获取配置
+      template {
+        data = <<EOF
+# Consul配置文件 - 从KV存储动态获取
+# 遵循 config/{environment}/{provider}/{region_or_service}/{key} 格式
+
+# 基础配置
+data_dir = "{{ keyOrDefault `config/dev/consul/cluster/data_dir` `/opt/consul/data` }}"
+raft_dir = "{{ keyOrDefault `config/dev/consul/cluster/raft_dir` `/opt/consul/raft` }}"
+
+# 启用UI
+ui_config {
+  enabled = {{ keyOrDefault `config/dev/consul/ui/enabled` `true` }}
+}
+
+# 数据中心配置
+datacenter = "{{ keyOrDefault `config/dev/consul/cluster/datacenter` `dc1` }}"
+
+# 服务器配置
+server = true
+bootstrap_expect = {{ keyOrDefault `config/dev/consul/cluster/bootstrap_expect` `3` }}
+
+# 网络配置
+client_addr = "{{ keyOrDefault `config/dev/consul/nodes/warden/hostname` `warden` }}"
+bind_addr = "{{ keyOrDefault `config/dev/consul/nodes/warden/hostname` `warden` }}"
+advertise_addr = "{{ keyOrDefault `config/dev/consul/nodes/warden/hostname` `warden` }}"
+
+# 端口配置
+ports {
+  dns = {{ keyOrDefault `config/dev/consul/ports/dns` `8600` }}
+  http = {{ keyOrDefault `config/dev/consul/ports/http` `8500` }}
+  https = {{ keyOrDefault `config/dev/consul/ports/https` `-1` }}
+  grpc = {{ keyOrDefault `config/dev/consul/ports/grpc` `8502` }}
+  grpc_tls = {{ keyOrDefault `config/dev/consul/ports/grpc_tls` `8503` }}
+  serf_lan = {{ keyOrDefault `config/dev/consul/ports/serf_lan` `8301` }}
+  serf_wan = {{ keyOrDefault `config/dev/consul/ports/serf_wan` `8302` }}
+  server = {{ keyOrDefault `config/dev/consul/ports/server` `8300` }}
+}
+
+# 集群连接 - 从KV获取其他节点IP
+retry_join = [
+  "{{ keyOrDefault `config/dev/consul/nodes/master/hostname` `master` }}",
+  "{{ keyOrDefault `config/dev/consul/nodes/ash3c/hostname` `ash3c` }}"
+]
+
+# 服务发现
+enable_service_script = {{ keyOrDefault `config/dev/consul/service/enable_service_script` `true` }}
+enable_script_checks = {{ keyOrDefault `config/dev/consul/service/enable_script_checks` `true` }}
+enable_local_script_checks = {{ keyOrDefault `config/dev/consul/service/enable_local_script_checks` `true` }}
+
+# 性能调优
+performance {
+  raft_multiplier = {{ keyOrDefault `config/dev/consul/performance/raft_multiplier` `1` }}
+}
+
+# 日志配置
+log_level = "{{ keyOrDefault `config/dev/consul/cluster/log_level` `INFO` }}"
+enable_syslog = {{ keyOrDefault `config/dev/consul/log/enable_syslog` `false` }}
+log_file = "{{ keyOrDefault `config/dev/consul/log/log_file` `/var/log/consul/consul.log` }}"
+
+# 安全配置
+encrypt = "{{ keyOrDefault `config/dev/consul/cluster/encrypt_key` `YourEncryptionKeyHere` }}"
+
+# 连接配置
+reconnect_timeout = "{{ keyOrDefault `config/dev/consul/connection/reconnect_timeout` `30s` }}"
+reconnect_timeout_wan = "{{ keyOrDefault `config/dev/consul/connection/reconnect_timeout_wan` `30s` }}"
+session_ttl_min = "{{ keyOrDefault `config/dev/consul/connection/session_ttl_min` `10s` }}"
+
+# Autopilot配置
+autopilot {
+  cleanup_dead_servers = {{ keyOrDefault `config/dev/consul/autopilot/cleanup_dead_servers` `true` }}
+  last_contact_threshold = "{{ keyOrDefault `config/dev/consul/autopilot/last_contact_threshold` `200ms` }}"
+  max_trailing_logs = {{ keyOrDefault `config/dev/consul/autopilot/max_trailing_logs` `250` }}
+  server_stabilization_time = "{{ keyOrDefault `config/dev/consul/autopilot/server_stabilization_time` `10s` }}
+  redundancy_zone_tag = ""
+  disable_upgrade_migration = {{ keyOrDefault `config/dev/consul/autopilot/disable_upgrade_migration` `false` }}
+  upgrade_version_tag = ""
+}
+
+# 快照配置
+snapshot {
+  enabled = {{ keyOrDefault `config/dev/consul/snapshot/enabled` `true` }}
+  interval = "{{ keyOrDefault `config/dev/consul/snapshot/interval` `24h` }}"
+  retain = {{ keyOrDefault `config/dev/consul/snapshot/retain` `30` }}
+  name = "{{ keyOrDefault `config/dev/consul/snapshot/name` `consul-snapshot-{{.Timestamp}}` }}"
+}
+
+# 备份配置
+backup {
+  enabled = {{ keyOrDefault `config/dev/consul/backup/enabled` `true` }}
+  interval = "{{ keyOrDefault `config/dev/consul/backup/interval` `6h` }}"
+  retain = {{ keyOrDefault `config/dev/consul/backup/retain` `7` }}
+  name = "{{ keyOrDefault `config/dev/consul/backup/name` `consul-backup-{{.Timestamp}}` }}"
+}
+EOF
+        destination = "local/consul.hcl"
+      }
+
+      config {
+        command = "consul"
+        args = [
+          "agent",
+          "-config-dir=local"
+        ]
+      }
+
+      resources {
+        cpu = 300
+        memory = 512
+      }
+    }
+  }
+}
--- a/components/consul/jobs/consul-cluster-simple.nomad
+++ b/components/consul/jobs/consul-cluster-simple.nomad
@@ -35,12 +35,16 @@ job "consul-cluster-simple" {
          "-server",
          "-bootstrap-expect=3",
          "-data-dir=/opt/nomad/data/consul",
-          "-client=100.117.106.136",
-          "-bind=100.117.106.136",
+          "-client=0.0.0.0",
+          "-bind=0.0.0.0",
          "-advertise=100.117.106.136",
          "-retry-join=100.116.80.94",
          "-retry-join=100.122.197.112",
-          "-ui"
+          "-ui",
+          "-http-port=${NOMAD_PORT_http}",
+          "-server-port=${NOMAD_PORT_rpc}",
+          "-serf-lan-port=${NOMAD_PORT_serf_lan}",
+          "-serf-wan-port=${NOMAD_PORT_serf_wan}"
        ]
      }

@@ -86,12 +90,16 @@ job "consul-cluster-simple" {
          "-server",
          "-bootstrap-expect=3",
          "-data-dir=/opt/nomad/data/consul",
-          "-client=100.116.80.94",
-          "-bind=100.116.80.94",
+          "-client=0.0.0.0",
+          "-bind=0.0.0.0",
          "-advertise=100.116.80.94",
          "-retry-join=100.117.106.136",
          "-retry-join=100.122.197.112",
-          "-ui"
+          "-ui",
+          "-http-port=${NOMAD_PORT_http}",
+          "-server-port=${NOMAD_PORT_rpc}",
+          "-serf-lan-port=${NOMAD_PORT_serf_lan}",
+          "-serf-wan-port=${NOMAD_PORT_serf_wan}"
        ]
      }

@@ -137,12 +145,72 @@ job "consul-cluster-simple" {
          "-server",
          "-bootstrap-expect=3",
          "-data-dir=/opt/nomad/data/consul",
-          "-client=100.122.197.112",
+          "-client=0.0.0.0",
          "-bind=100.122.197.112",
          "-advertise=100.122.197.112",
          "-retry-join=100.117.106.136",
          "-retry-join=100.116.80.94",
-          "-ui"
+          "-ui",
+          "-http-port=${NOMAD_PORT_http}",
+          "-server-port=${NOMAD_PORT_rpc}",
+          "-serf-lan-port=${NOMAD_PORT_serf_lan}",
+          "-serf-wan-port=${NOMAD_PORT_serf_wan}"
+        ]
+      }
+
+      resources {
+        cpu = 300
+        memory = 512
+      }
+
+
+    }
+  }
+
+  group "consul-semaphore" {
+    count = 1
+
+    constraint {
+      attribute = "${node.unique.name}"
+      value = "semaphore"
+    }
+
+    network {
+      port "http" {
+        static = 8500
+      }
+      port "rpc" {
+        static = 8300
+      }
+      port "serf_lan" {
+        static = 8301
+      }
+      port "serf_wan" {
+        static = 8302
+      }
+    }
+
+    task "consul" {
+      driver = "exec"
+
+      config {
+        command = "consul"
+        args = [
+          "agent",
+          "-server",
+          "-bootstrap-expect=3",
+          "-data-dir=/opt/nomad/data/consul",
+          "-client=0.0.0.0",
+          "-bind=100.116.158.95",
+          "-advertise=100.116.158.95",
+          "-retry-join=100.117.106.136",
+          "-retry-join=100.116.80.94",
+          "-retry-join=100.122.197.112",
+          "-ui",
+          "-http-port=${NOMAD_PORT_http}",
+          "-server-port=${NOMAD_PORT_rpc}",
+          "-serf-lan-port=${NOMAD_PORT_serf_lan}",
+          "-serf-wan-port=${NOMAD_PORT_serf_wan}"
        ]
      }

--- a/components/vault/jobs/vault-cluster-exec.nomad
+++ b/components/vault/jobs/vault-cluster-exec.nomad
@@ -4,6 +4,13 @@ job "vault-cluster-exec" {

  group "vault-master" {
    count = 1
+    
+    # 使用存在的属性替代consul版本检查
+    constraint {
+      attribute = "${driver.exec}"
+      operator = "="
+      value = "1"
+    }

    constraint {
      attribute = "${node.unique.name}"
@@ -32,9 +39,8 @@ job "vault-cluster-exec" {

      template {
        data = <<EOH
-storage "consul" {
-  address = "100.117.106.136:8500"
-  path    = "vault/"
+storage "file" {
+  path = "/opt/nomad/data/vault/data"
 }

 listener "tcp" {
@@ -51,13 +57,29 @@ disable_mlock = true
 # 添加更多配置来解决权限问题
 disable_sealwrap = true
 disable_cache = false
+
+# 配置consul连接
+consul {
+  address = "127.0.0.1:8500"
+  path    = "vault/"
+  # 注意：可能需要配置token
+  # token   = "your-consul-token"
+}
+
+# 配置consul连接
+consul {
+  address = "127.0.0.1:8500"
+  path    = "vault/"
+  # 注意：可能需要配置token
+  # token   = "your-consul-token"
+}
 EOH
        destination = "/opt/nomad/data/vault/config/vault.hcl"
      }

      resources {
-        cpu    = 500
-        memory = 1024
+        cpu    = 100
+        memory = 256
      }

      service {
@@ -78,6 +100,20 @@ EOH
  group "vault-ash3c" {
    count = 1

+    # 显式指定consul版本要求，覆盖自动约束
+    constraint {
+      attribute = "${attr.consul.version}"
+      operator = "version"
+      value = ">= 1.0.0"
+    }
+    
+    # 添加一个总是满足的约束来确保调度
+    constraint {
+      attribute = "${driver.exec}"
+      operator = "="
+      value = "1"
+    }
+
    constraint {
      attribute = "${node.unique.name}"
      value = "us-ash3c"
@@ -105,9 +141,8 @@ EOH

      template {
        data = <<EOH
-storage "consul" {
-  address = "100.116.80.94:8500"
-  path    = "vault/"
+storage "file" {
+  path = "/opt/nomad/data/vault/data"
 }

 listener "tcp" {
@@ -129,8 +164,8 @@ EOH
      }

      resources {
-        cpu    = 500
-        memory = 1024
+        cpu    = 100
+        memory = 256
      }

      service {
@@ -151,6 +186,20 @@ EOH
  group "vault-warden" {
    count = 1

+    # 显式指定consul版本要求，覆盖自动约束
+    constraint {
+      attribute = "${attr.consul.version}"
+      operator = "version"
+      value = ">= 1.0.0"
+    }
+    
+    # 添加一个总是满足的约束来确保调度
+    constraint {
+      attribute = "${driver.exec}"
+      operator = "="
+      value = "1"
+    }
+
    constraint {
      attribute = "${node.unique.name}"
      value = "bj-warden"
@@ -178,9 +227,8 @@ EOH

      template {
        data = <<EOH
-storage "consul" {
-  address = "100.122.197.112:8500"
-  path    = "vault/"
+storage "file" {
+  path = "/opt/nomad/data/vault/data"
 }

 listener "tcp" {
@@ -202,8 +250,8 @@ EOH
      }

      resources {
-        cpu    = 500
-        memory = 1024
+        cpu    = 100
+        memory = 256
      }

      service {
--- a/components/vault/jobs/vault-cluster-podman.nomad
+++ b/components/vault/jobs/vault-cluster-podman.nomad
@@ -35,7 +35,7 @@ job "vault-cluster" {
      template {
        data = <<EOH
 storage "consul" {
-  address = "127.0.0.1:8500"
+  address = "localhost:8500"
  path    = "vault/"
  token   = "{{ with secret "consul/creds/vault" }}{{ .Data.token }}{{ end }}"
 }
--- a/components/vault/jobs/vault-dev-warden.nomad
+++ b/components/vault/jobs/vault-dev-warden.nomad
@@ -0,0 +1,65 @@
+job "vault-dev-warden" {
+  datacenters = ["dc1"]
+  type = "service"
+
+  group "vault-dev" {
+    count = 1
+
+    # 约束到有consul的节点
+    constraint {
+      attribute = "${meta.consul}"
+      operator  = "="
+      value     = "true"
+    }
+
+    network {
+      port "http" {
+        to = 8200
+      }
+      port "cluster" {
+        to = 8201
+      }
+    }
+
+    service {
+      name = "vault-dev"
+      port = "http"
+    
+      check {
+        type     = "http"
+        path     = "/v1/sys/health"
+        interval = "10s"
+        timeout  = "5s"
+      }
+    }
+
+    task "vault-dev" {
+      driver = "raw_exec"
+
+      config {
+        command = "vault"
+        args = [
+          "server",
+          "-dev",
+          "-dev-listen-address=0.0.0.0:8200",
+          "-dev-root-token-id=root"
+        ]
+      }
+
+      env {
+        VAULT_ADDR = "http://127.0.0.1:8200"
+        VAULT_TOKEN = "root"
+      }
+
+      resources {
+        cpu    = 500
+        memory = 512
+      }
+
+      logs {
+        max_files     = 10
+        max_file_size = 10
+      }
+    }
+  }
+}