ben/mgmt
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

feat: 重构项目脚本结构和文档

Browse Source 
docs: 添加API和部署文档
refactor: 重新组织脚本目录结构
fix: 修复Nomad配置中的region设置
chore: 移除过期节点相关配置
test: 更新MCP服务器测试脚本
build: 更新Makefile以适配新脚本路径
This commit is contained in:
Houzhong Xu
2025-10-01 02:08:58 +00:00
parent 7ea230b072
commit e5aa00d6f9
119 changed files with 7847 additions and 203 deletions
Download Patch File Download Diff File Expand all files Collapse all files

78
components/vault/jobs/vault-cluster-exec.nomad
View File

@@ -4,6 +4,13 @@ job "vault-cluster-exec" {
group "vault-master" {
count = 1
# 使用存在的属性替代consul版本检查
constraint {
attribute = "${driver.exec}"
operator = "="
value = "1"
}
constraint {
attribute = "${node.unique.name}"
@@ -32,9 +39,8 @@ job "vault-cluster-exec" {
template {
data = <<EOH
storage "consul" {
address = "100.117.106.136:8500"
path = "vault/"
storage "file" {
path = "/opt/nomad/data/vault/data"
}
listener "tcp" {
@@ -51,13 +57,29 @@ disable_mlock = true
# 添加更多配置来解决权限问题
disable_sealwrap = true
disable_cache = false
# 配置consul连接
consul {
address = "127.0.0.1:8500"
path = "vault/"
# 注意可能需要配置token
# token = "your-consul-token"
}
# 配置consul连接
consul {
address = "127.0.0.1:8500"
path = "vault/"
# 注意可能需要配置token
# token = "your-consul-token"
}
EOH
destination = "/opt/nomad/data/vault/config/vault.hcl"
}
resources {
cpu = 500
memory = 1024
cpu = 100
memory = 256
}
service {
@@ -78,6 +100,20 @@ EOH
group "vault-ash3c" {
count = 1
# 显式指定consul版本要求覆盖自动约束
constraint {
attribute = "${attr.consul.version}"
operator = "version"
value = ">= 1.0.0"
}
# 添加一个总是满足的约束来确保调度
constraint {
attribute = "${driver.exec}"
operator = "="
value = "1"
}
constraint {
attribute = "${node.unique.name}"
value = "us-ash3c"
@@ -105,9 +141,8 @@ EOH
template {
data = <<EOH
storage "consul" {
address = "100.116.80.94:8500"
path = "vault/"
storage "file" {
path = "/opt/nomad/data/vault/data"
}
listener "tcp" {
@@ -129,8 +164,8 @@ EOH
}
resources {
cpu = 500
memory = 1024
cpu = 100
memory = 256
}
service {
@@ -151,6 +186,20 @@ EOH
group "vault-warden" {
count = 1
# 显式指定consul版本要求覆盖自动约束
constraint {
attribute = "${attr.consul.version}"
operator = "version"
value = ">= 1.0.0"
}
# 添加一个总是满足的约束来确保调度
constraint {
attribute = "${driver.exec}"
operator = "="
value = "1"
}
constraint {
attribute = "${node.unique.name}"
value = "bj-warden"
@@ -178,9 +227,8 @@ EOH
template {
data = <<EOH
storage "consul" {
address = "100.122.197.112:8500"
path = "vault/"
storage "file" {
path = "/opt/nomad/data/vault/data"
}
listener "tcp" {
@@ -202,8 +250,8 @@ EOH
}
resources {
cpu = 500
memory = 1024
cpu = 100
memory = 256
}
service {

2
components/vault/jobs/vault-cluster-podman.nomad
View File

@@ -35,7 +35,7 @@ job "vault-cluster" {
template {
data = <<EOH
storage "consul" {
address = "127.0.0.1:8500"
address = "localhost:8500"
path = "vault/"
token = "{{ with secret "consul/creds/vault" }}{{ .Data.token }}{{ end }}"
}

65
components/vault/jobs/vault-dev-warden.nomad Normal file
View File

@@ -0,0 +1,65 @@
job "vault-dev-warden" {
datacenters = ["dc1"]
type = "service"
group "vault-dev" {
count = 1
# 约束到有consul的节点
constraint {
attribute = "${meta.consul}"
operator = "="
value = "true"
}
network {
port "http" {
to = 8200
}
port "cluster" {
to = 8201
}
}
service {
name = "vault-dev"
port = "http"
check {
type = "http"
path = "/v1/sys/health"
interval = "10s"
timeout = "5s"
}
}
task "vault-dev" {
driver = "raw_exec"
config {
command = "vault"
args = [
"server",
"-dev",
"-dev-listen-address=0.0.0.0:8200",
"-dev-root-token-id=root"
]
}
env {
VAULT_ADDR = "http://127.0.0.1:8200"
VAULT_TOKEN = "root"
}
resources {
cpu = 500
memory = 512
}
logs {
max_files = 10
max_file_size = 10
}
}
}
}