debian7編譯安裝tengine添加lua和ldap模塊
一、安裝開發環境javascript
# aptitute update # aptitude install -y build-essential # aptitude install -y libldap2-dev openssl libssl-dev
二、升級gcc和glibc(debian7自帶的版本過低,編譯會報錯)css
# vim /etc/apt/sources.list deb http://ftp.debian.org/debian sid main # apt-get update # apt-get -t sid install libc6 gcc # gcc -v gcc version 6.4.0 20170724 (Debian 6.4.0-2)
三、下載nginx-auth-ldap模塊包java
# git clone https://github.com/kvspb/nginx-auth-ldap.git
四、安裝luanode
# aptitude install -y lua5.1 liblua5.1-0 liblua5.1-0-dev # lua -v Lua 5.1.5 Copyright (C) 1994-2012 Lua.org, PUC-Rio
五、下載nginx-lua模塊包nginx
# wget https://github.com/openresty/lua-nginx-module/archive/v0.10.9rc8.tar.gz # tar xvf v0.10.9rc8.tar.gz # mv lua-nginx-module-0.10.9rc8/ lua-nginx-module
六、編譯安裝tenginegit
查看幫助github
--with-http_lua_module enable ngx_http_lua_module (will also enable --with-md5 and --with-sha1)
--with-http_lua_module=shared enable ngx_http_lua_module (shared) (will also enable --with-md5 and --with-sha1)
--with-lua-inc=PATH set Lua headers path (where lua.h/lauxlib.h/... are located)
--with-lua-lib=PATH set Lua library path (where liblua.{a,so} are located, only support Lua-5.1.x)
--with-http_reqstat_module=shared enable ngx_http_reqstat_module (shared)
下載源碼包解壓編譯redis
# cd /usr/local/src # wget http://tengine.taobao.org/download/tengine-2.2.0.tar.gz # tar xvf tengine-2.2.0.tar.gz # cd tengine-2.2.0/ # ./configure --prefix=/usr/local/nginx01 --with-http_reqstat_module=shared --add-module=../nginx-auth-ldap --add-module=../lua-nginx-module # make -j 32 # make install
或者把lua模塊編譯成動態shrareddocker
# ./configure --prefix=/docker/tengine-2.2.0 --with-http_reqstat_module=shared --with-http_lua_module=shared --add-module=../nginx-auth-ldap
拷貝動態共享對象文件到安裝目錄的modules目錄json
# make dso_install
七、修改主配置文件
# vim nginx.conf
user www;
worker_processes 8;
worker_rlimit_nofile 409600;
pid sbin/nginx-tengine.pid;
#error_log logs/error.log;
#error_log logs/error.log notice;
error_log logs/error.log info;
events {
use epoll;
worker_connections 409600;
}
# load modules compiled as Dynamic Shared Object (DSO)
#
dso {
# load ngx_http_lua_module;
load ngx_http_reqstat_module.so;
}
http {
include mime.types;
default_type application/octet-stream;
server_names_hash_bucket_size 128;
client_header_buffer_size 32k;
large_client_header_buffers 4 32k;
client_max_body_size 64m;
sendfile on;
server_tokens off;
tcp_nopush on;
keepalive_timeout 60;
tcp_nodelay on;
add_header Xdebug proxy01;
proxy_connect_timeout 60;
proxy_read_timeout 60;
proxy_send_timeout 60;
proxy_buffer_size 128k;
proxy_buffers 4 256k;
proxy_busy_buffers_size 256k;
proxy_temp_file_write_size 256k;
proxy_ignore_client_abort on;
gzip on;
gzip_min_length 1k;
gzip_buffers 4 16k;
gzip_http_version 1.0;
gzip_comp_level 2;
gzip_types text/plain text/css application/json application/x-javascript text/xml text/javascript image/png image/jpgi application/javascripti image/jpeg;
gzip_vary on;
lua_package_path "/usr/local/nginx/lua/redis.lua;;";
map $http_upgrade $connection_upgrade {
default "";
'' "";
}
log_format oupeng_logs '$remote_addr - $remote_user [$time_local] "$request" "$request_body" '
'$status $body_bytes_sent "$http_referer" '
'"$http_user_agent" $http_x_forwarded_for '
'$request_time $upstream_response_time';
log_format mini.oupeng '"$remote_addr" "$remote_user" "$time_local" "$request" '
'"$status" "$body_bytes_sent" "$http_referer" '
'"$http_user_agent" "$http_x_forwarded_for" '
'"$http_x_operette_branding" "$http_x_nhorizon_channel_id" '
'"$http_x_operamini_screen_width" "$http_x_operamini_screen_height" '
'"$http_x_operamini_id" "$http_x_operamini_phone_ua"';
log_format main '[$time_local] $status $remote_addr "$request" "$upstream_addr"';
log_format json '{"@timestamp":"$time_iso8601",'
'"host":"$server_addr",'
'"clientip":"$remote_addr",'
'"remote_user":"$remote_user",'
'"request":"$request",'
'"http_user_agent":"$http_user_agent",'
'"cookie_uid":"$cookie_uid",'
'"size":$body_bytes_sent,'
'"responsetime":$request_time,'
'"upstreamtime":"$upstream_response_time",'
'"upstreamhost":"$upstream_addr",'
'"http_host":"$host",'
'"url":"$uri",'
'"domain":"$host",'
'"xff":"$http_x_forwarded_for",'
'"referer":"$http_referer",'
'"status":"$status"}';
include vhosts/*.conf ;
}
八、添加ldap配置
# mkdir vhosts
# cd vhosts/
# vim a_ldap.conf
ldap_server ldapsv {
url ldap://192.168.2.164:389/dc=beijing,dc=op?uid?sub?(&(objectClass=person));
binddn "cn=admin,dc=beijing,dc=op";
binddn_passwd "D3llD3ll";
group_attribute uid;
group_attribute_is_dn on;
require valid_user;
}
九、添加kibana代理配置
# vim kibana.conf
upstream kibana-oupeng-com {
server 192.168.3.56:5601 weight=10 max_fails=3 fail_timeout=10;
server 192.168.3.49:5601 weight=10 max_fails=3 fail_timeout=10;
server 192.168.3.57:5601 weight=10 max_fails=3 fail_timeout=10;
ip_hash;
check interval=5000 rise=2 fall=5 timeout=1000 type=tcp;
}
server {
listen 80;
server_name kibana.oupeng.com;
# auth_basic "Restricted Access";
# auth_basic_user_file /usr/local/nginx/conf/htpasswd.users;
auth_ldap "Forbidden";
auth_ldap_servers ldapsv;
location / {
proxy_pass http://kibana-oupeng-com;
proxy_http_version 1.1;
proxy_set_header Upgrade $http_upgrade;
proxy_set_header Connection 'upgrade';
proxy_set_header Host $host;
proxy_cache_bypass $http_upgrade;
}
}
十、啓動nginx
# /usr/local/nginx/sbin/nginx -t # /usr/local/nginx/sbin/nginx
十一、查看版本和模塊信息
# /usr/local/nginx/sbin/nginx -V
相關文章
- 1. Tengine編譯安裝+lua+sticky模塊
- 2. 已安裝好的tengine編譯添加未被安裝的模塊
- 3. mac下Nginx+lua模塊編譯安裝
- 4. Nginx編譯安裝Lua模塊
- 5. Tengine編譯安裝
- 6. 編譯安裝Tengine
- 7. tengine編譯安裝
- 8. Nginx 編譯,添加未編譯安裝模塊ngx_cache_purge
- 9. 【LDAP安裝】在已編譯安裝的PHP環境下安裝LDAP模塊
- 10. Centos6安裝Tengine+Lua
- 更多相關文章...
- • Lua 模塊與包 - Lua 教程
- • Lua 環境安裝 - Lua 教程
- • Composer 安裝與使用
- • IntelliJ IDEA安裝代碼格式化插件
相關標籤/搜索
每日一句
-
每一个你不满意的现在,都有一个你没有努力的曾经。
最新文章
歡迎關注本站公眾號,獲取更多信息
