Public/Safe3-openresty-manager
2
0
Fork 0
mirror of https://github.com/Safe3/openresty-manager.git synced 2025-10-04 22:01:52 +08:00
Code Issues Projects Releases Packages Wiki Activity
Safe3-openresty-manager/docs/cn/installer.sh
UUSEC Technology 0c53554310 update
2025-09-27 17:11:11 +08:00

327 lines
12 KiB
Bash
Raw Permalink Blame History

This file contains ambiguous Unicode characters

This file contains Unicode characters that might be confused with other characters. If you think that this is intentional, you can safely ignore this warning. Use the Escape button to reveal them.

#!/bin/bash
# OpenResty Manager 一键安装脚本
# 支持系统CentOS/RHEL 7+, Debian 11+, Ubuntu 18+, Fedora 32+, etc
info() {
echo -e "\033[32m[OpenResty Manager] $*\033[0m"
}
warning() {
echo -e "\033[33m[OpenResty Manager] $*\033[0m"
}
abort() {
echo -e "\033[31m[OpenResty Manager] $*\033[0m"
exit 1
}
if [[ $EUID -ne 0 ]]; then
abort "此脚本必须以root权限运行"
fi
OS_ARCH=$(uname -m)
case "$OS_ARCH" in
x86_64|arm*|aarch64)
;;
*)
abort "不支持的 CPU 架构: $OS_ARCH"
;;
esac
if [ -f /etc/os-release ]; then
source /etc/os-release
OS_NAME=$ID
OS_VERSION=$VERSION_ID
elif type lsb_release >/dev/null 2>&1; then
OS_NAME=$(lsb_release -si | tr '[:upper:]' '[:lower:]')
OS_VERSION=$(lsb_release -sr)
else
abort "无法检测操作系统"
fi
if [ "$OS_NAME" = "tencentos" ]; then
OS_NAME="tlinux"
fi
normalize_version() {
local version=$1
version=$(echo "$version" | tr -d '[:alpha:]_-' | sed 's/\.\+/./g')
IFS='.' read -ra segments <<< "$version"
while [ ${#segments[@]} -lt 4 ]; do
segments+=(0)
done
printf "%04d%04d%04d%04d" \
"${segments[0]}" \
"${segments[1]}" \
"${segments[2]}" \
"${segments[3]}"
}
NEW_OS_VERSION=$(normalize_version "$OS_VERSION")
install_dependencies() {
case $OS_NAME in
ubuntu)
apt-get update
apt-get -y install software-properties-common
add-apt-repository ppa:maxmind/ppa
apt-get -y install --no-install-recommends wget gnupg ca-certificates lsb-release libmaxminddb0 curl tar logrotate
;;
debian)
apt-get update
apt-get -y install --no-install-recommends wget gnupg ca-certificates libmaxminddb0 curl tar logrotate
;;
centos|rocky|oracle|rhel|amazon|anolis|alinux|tlinux|mariner)
yum install -y yum-utils wget libmaxminddb curl tar logrotate
;;
fedora)
dnf install -y dnf-plugins-core wget libmaxminddb curl tar logrotate
;;
sles|opensuse)
zypper install -y wget libmaxminddb curl tar logrotate
;;
alpine)
apk add wget libmaxminddb curl tar logrotate
;;
*)
abort "不支持的Linux发行版: $OS_NAME"
;;
esac
}
check_ports() {
if [ $(command -v ss) ]; then
for port in 80 443 777 34567; do
if ss -tln "( sport = :${port} )" | grep -q LISTEN; then
abort "端口 ${port} 被占用, 请关闭该端口后重新安装"
fi
done
fi
}
add_repository() {
case $OS_NAME in
ubuntu)
local v2=$(normalize_version "22")
local v3=$(normalize_version "18")
if [ "$NEW_OS_VERSION" -ge "$v2" ]; then
wget -O - https://openresty.org/package/pubkey.gpg | gpg --dearmor -o /usr/share/keyrings/openresty.gpg
if [ "$OS_ARCH" = "x86_64" ]; then
echo "deb [arch=$(dpkg --print-architecture) signed-by=/usr/share/keyrings/openresty.gpg] http://openresty.org/package/ubuntu $(lsb_release -sc) main" | tee /etc/apt/sources.list.d/openresty.list > /dev/null
else
echo "deb [arch=$(dpkg --print-architecture) signed-by=/usr/share/keyrings/openresty.gpg] http://openresty.org/package/arm64/ubuntu $(lsb_release -sc) main" | tee /etc/apt/sources.list.d/openresty.list > /dev/null
fi
elif [ "$NEW_OS_VERSION" -lt "$v3" ]; then
abort "操作系统版本过低"
else
wget -O - https://openresty.org/package/pubkey.gpg | apt-key add -
if [ "$OS_ARCH" = "x86_64" ]; then
echo "deb http://openresty.org/package/ubuntu $(lsb_release -sc) main" | tee /etc/apt/sources.list.d/openresty.list
else
echo "deb http://openresty.org/package/arm64/ubuntu $(lsb_release -sc) main" | tee /etc/apt/sources.list.d/openresty.list
fi
fi
apt-get update
;;
debian)
local v2=$(normalize_version "12")
if [ "$NEW_OS_VERSION" -ge "$v2" ]; then
wget -O - https://openresty.org/package/pubkey.gpg | gpg --dearmor -o /etc/apt/trusted.gpg.d/openresty.gpg
else
wget -O - https://openresty.org/package/pubkey.gpg | apt-key add -
fi
codename=`grep -Po 'VERSION="[0-9]+ \(\K[^)]+' /etc/os-release`
if [ "$OS_ARCH" = "x86_64" ]; then
echo "deb http://openresty.org/package/debian $codename openresty" | tee /etc/apt/sources.list.d/openresty.list
else
echo "deb http://openresty.org/package/arm64/debian $codename openresty" | tee /etc/apt/sources.list.d/openresty.list
fi
apt-get update
;;
centos|rhel|alinux|anolis|tlinux|rocky|mariner)
local v2=$(normalize_version "9")
if [ "$NEW_OS_VERSION" -ge "$v2" ]; then
wget -O /etc/yum.repos.d/openresty.repo "https://openresty.org/package/${OS_NAME}/openresty2.repo"
else
wget -O /etc/yum.repos.d/openresty.repo "https://openresty.org/package/${OS_NAME}/openresty.repo"
fi
yum check-update
;;
fedora)
dnf config-manager --add-repo https://openresty.org/package/fedora/openresty.repo
;;
amazon|oracle)
yum-config-manager --add-repo "https://openresty.org/package/${OS_NAME}/openresty.repo"
;;
sles)
rpm --import https://openresty.org/package/pubkey.gpg
zypper ar -g --refresh --check "https://openresty.org/package/sles/openresty.repo"
zypper mr --gpgcheck-allow-unsigned-repo openresty
;;
opensuse)
zypper ar -g --refresh --check https://openresty.org/package/opensuse/openresty.repo
zypper --gpg-auto-import-keys refresh
;;
alpine)
wget -O '/etc/apk/keys/admin@openresty.com-5ea678a6.rsa.pub' 'http://openresty.org/package/admin@openresty.com-5ea678a6.rsa.pub'
. /etc/os-release
MAJOR_VER=`echo $VERSION_ID | sed 's/\.[0-9]\+$//'`
echo "http://openresty.org/package/alpine/v$MAJOR_VER/main" | tee -a /etc/apk/repositories
apk update
;;
*)
abort "不支持的Linux发行版"
;;
esac
}
install_openresty() {
case $OS_NAME in
debian|ubuntu)
apt-get install -y openresty
;;
centos|rhel|amazon|anolis|alinux|tlinux|rocky|oracle|mariner)
yum install -y openresty
;;
fedora)
dnf install -y openresty
;;
sles|opensuse)
zypper install -y openresty
;;
alpine)
apk add openresty
;;
esac
if [ $? -ne "0" ]; then
abort "OpenResty安装失败, 请参考 https://openresty.org/cn/linux-packages.html 查看你的系统版本是否受支持"
fi
systemctl stop openresty > /dev/null 2>&1
systemctl disable openresty > /dev/null 2>&1
}
install_docker() {
if [ ! $(command -v docker) ]; then
warning "未检测到 Docker 引擎,我们将自动为您安装。过程较慢,请耐心等待 ..."
case $OS_NAME in
alinux)
wget -O /etc/yum.repos.d/docker-ce.repo http://mirrors.cloud.aliyuncs.com/docker-ce/linux/centos/docker-ce.repo
sed -i 's|https://mirrors.aliyun.com|http://mirrors.cloud.aliyuncs.com|g' /etc/yum.repos.d/docker-ce.repo
local v3=$(normalize_version "3")
if [ "$NEW_OS_VERSION" -ge "$v3" ]; then
dnf -y install dnf-plugin-releasever-adapter --repo alinux3-plus
dnf -y install docker-ce docker-ce-cli containerd.io docker-buildx-plugin docker-compose-plugin
else
yum -y install yum-plugin-releasever-adapter --disablerepo=* --enablerepo=plus
yum -y install docker-ce docker-ce-cli containerd.io docker-buildx-plugin docker-compose-plugin
fi
;;
anolis)
yum -y erase podman buildah
yum -y install yum-utils device-mapper-persistent-data lvm2
yum-config-manager --add-repo http://mirrors.aliyun.com/docker-ce/linux/centos/docker-ce.repo
yum -y install docker-ce docker-ce-cli containerd.io docker-buildx-plugin docker-compose-plugin
;;
tlinux)
local v4=$(normalize_version "4")
if [ "$NEW_OS_VERSION" -ge "$v4" ]; then
yum install docker -y
else
yum install tencentos-release-docker-ce -y
yum install docker-ce -y
fi
;;
*)
curl https://om.uusec.com/install-docker.sh -o /tmp/install-docker.sh
sh /tmp/install-docker.sh --mirror Aliyun
if [ $? -ne "0" ]; then
abort "Docker 引擎自动安装失败,请在执行此脚本之前手动安装它。"
fi
;;
esac
mkdir -p /etc/docker
echo '{"registry-mirrors":["https://docker.1ms.run","https://docker.1panel.live","https://doublezonline.cloud/"]}' > /etc/docker/daemon.json
systemctl enable docker && systemctl daemon-reload && systemctl restart docker
fi
}
optimize_network() {
sysctl -w net.ipv4.tcp_mem="3097431 4129911 6194862" > /dev/null 2>&1
sysctl -w net.ipv4.tcp_rmem="4096 87380 6291456" > /dev/null 2>&1
sysctl -w net.ipv4.tcp_wmem="4096 65536 4194304" > /dev/null 2>&1
sysctl -w net.ipv4.tcp_max_tw_buckets=262144 > /dev/null 2>&1
sysctl -w net.ipv4.tcp_tw_recycle=0 > /dev/null 2>&1
sysctl -w net.ipv4.tcp_tw_reuse=1 > /dev/null 2>&1
sysctl -w net.ipv4.tcp_syncookies=1 > /dev/null 2>&1
sysctl -w net.ipv4.tcp_fin_timeout=15 > /dev/null 2>&1
sysctl -w net.ipv4.ip_local_port_range="1024 65535" > /dev/null 2>&1
sysctl -w net.ipv4.tcp_max_syn_backlog=65535 > /dev/null 2>&1
sysctl -w net.core.somaxconn=65535 > /dev/null 2>&1
sysctl -w net.core.netdev_max_backlog=200000 > /dev/null 2>&1
sysctl -p > /dev/null 2>&1
}
install_openresty_manager() {
if [ "$OS_ARCH" = "x86_64" ]; then
curl https://download.uusec.com/om.tgz -o /tmp/om.tgz
else
curl https://download.uusec.com/om_arm64.tgz -o /tmp/om.tgz
fi
export OM_LANGUAGE=zh
mkdir -p /opt && tar -zxf /tmp/om.tgz -C /opt/ && /opt/om/oms -s install && /opt/om/oms -s start
if [ $? -ne "0" ]; then
abort "OpenResty Manager安装失败"
fi
}
allow_firewall_ports() {
if [ ! -f "/opt/om/.fw" ];then
echo "" > /opt/om/.fw
if [ $(command -v firewall-cmd) ]; then
firewall-cmd --permanent --add-port={80,443,34567}/tcp > /dev/null 2>&1
firewall-cmd --reload > /dev/null 2>&1
elif [ $(command -v ufw) ]; then
for port in 80 443 34567; do ufw allow $port/tcp > /dev/null 2>&1; done
ufw reload > /dev/null 2>&1
fi
fi
}
main() {
info "检测到系统:${OS_NAME} ${OS_VERSION} ${OS_ARCH}"
warning "安装依赖..."
install_dependencies
warning "检查端口冲突 ..."
check_ports
if [ ! $(command -v openresty) ]; then
warning "添加OpenResty仓库..."
add_repository
warning "安装OpenResty..."
install_openresty
fi
install_docker
if [ ! -e "/opt/om" ]; then
warning "安装OpenResty Manager..."
optimize_network
install_openresty_manager
else
abort '目录 "/opt/om" 已存在, 请确认删除后再试'
fi
warning "添加防火墙端口例外..."
allow_firewall_ports
info "恭喜你安装成功"
}
main
Reference in a new issue View git blame Copy permalink