如何在 Ubuntu 上安裝Vendure 22.04

介紹

Vendure 是一個開源的無頭商務(wù)框架，允許構(gòu)建由 Node.js、TypeScript 和 GraphQL 提供支持的生產(chǎn)就緒電子商務(wù)應(yīng)用程序。它的工作原理是通過 API 公開所有應(yīng)用程序功能。Vendure 在 GraphQL API 上公開了所有商店前端功能，并且不提供默認的商店前端界面。這提高了開發(fā)人員的靈活性，因為它允許您使用任何前端技術(shù)創(chuàng)建店面。

本文介紹如何在 Ubuntu 22.04 Vultr 服務(wù)器上部署 Vendure。您需要將該框架與 Vultr Object Storage（PostgreSQL 托管數(shù)據(jù)庫）和 Redis? 集成，以構(gòu)建生產(chǎn)就緒型應(yīng)用程序。

先決條件

準備工作：

• 在 Vultr 上購買 Ubuntu 22.04 服務(wù)器
• 部署 Vultr Managed Database for PostgreSQL
• 部署用于緩存的 Vultr 托管數(shù)據(jù)庫
• 部署?Vultr 對象存儲
• 設(shè)置指向服務(wù)器的域?A?記錄
• 使用?SSH，以 root 身份登錄服務(wù)器
• 創(chuàng)建具有 sudo 權(quán)限的非 root 用戶
• 切換到新的 sudo 用戶帳戶

    # su example_user

• 安裝 PostgreSQL 數(shù)據(jù)庫服務(wù)器
• 在服務(wù)器上安裝 s3cmd：

    $ sudo apt install s3cmd

• 配置 s3cmd 以使用 Vultr 對象存儲

安裝Node.js

Vendure 需要 Node.js 版本 16.x 或更高版本。按照以下步驟中的說明安裝最新的 Node.js 版本。

1. 更新服務(wù)器

    $ sudo apt update

2. 創(chuàng)建目錄keyrings

    $ sudo mkdir -p /etc/apt/keyrings

3. 下載節(jié)點源 GPG 密鑰并將其添加到服務(wù)器密鑰

    curl -fsSL https://deb.nodesource.com/gpgkey/nodesource-repo.gpg.key | sudo gpg --dearmor -o /etc/apt/keyrings/nodesource.gpg

4. 將Node.js存儲庫添加到源列表中。替換為您想要的版本apt20

    NODE_MAJOR=20
    echo "deb [signed-by=/etc/apt/keyrings/nodesource.gpg] https://deb.nodesource.com/node_$NODE_MAJOR.x nodistro main" | sudo tee /etc/apt/sources.list.d/nodesource.list

5. 更新服務(wù)器程序包

    $ sudo apt update

6. 安裝Node.js

    $ sudo apt install nodejs -y

7. 驗證已安裝的Node.js版本

    $ nodejs --version

   輸出：

    v20.5.1

設(shè)置本地 PostgreSQL 數(shù)據(jù)庫服務(wù)器

要在服務(wù)器上安裝 Vendure，您需要將應(yīng)用程序數(shù)據(jù)臨時保存在本地 PostgreSQL 數(shù)據(jù)庫服務(wù)器上。稍后，您可以先將數(shù)據(jù)遷移到 Vultr Managed Database for MySQL，然后再將應(yīng)用程序部署到生產(chǎn)環(huán)境。如下所述設(shè)置本地數(shù)據(jù)庫。

在 PostgreSQL 上啟用密碼身份驗證

1. 驗證已安裝的 PostgreSQL 版本

    $ psql --version

   輸出：

    psql (PostgreSQL) 14.16 (Ubuntu 14.16-0ubuntu0.22.04.1)

2. 根據(jù)您的 PostgreSQL 版本，使用文本編輯器編輯文件，例如pg_hba.confnano

    $ sudo nano /etc/postgresql/14/main/pg_hba.conf

3. 查找以下配置行

    # "local" is for Unix domain socket connections only
    local   all             all                                     peer

4. 將身份驗證方法更改為peermd5

    local   all             all                                     md5

   保存并關(guān)閉文件

5. 重新啟動 PostgreSQL 數(shù)據(jù)庫服務(wù)器

    $ sudo systemctl restart postgresql

創(chuàng)建新的 PostgreSQL 數(shù)據(jù)庫

1. 登錄PostgreSQL數(shù)據(jù)庫服務(wù)器

    $ sudo -u postgres psql

2. 創(chuàng)建新數(shù)據(jù)庫

    postgres=# CREATE DATABASE vendure_db;

   輸出：

    CREATE DATABASE

3. 使用強密碼創(chuàng)建新的數(shù)據(jù)庫用戶

    postgres=# CREATE USER vendure_user WITH ENCRYPTED PASSWORD 'strong-password';

   輸出：

    CREATE ROLE

4. 授予用戶對 Vendure 數(shù)據(jù)庫的完全權(quán)限

    postgres=# GRANT ALL PRIVILEGES ON DATABASE vendure_db TO vendure_user;

   輸出：

    GRANT

5. 退出 PostgreSQL 控制臺

    postgres-# \q

安裝 Vendure

1. 使用 Node.js 工具，使用該工具安裝 Vendure。npx@vendure/create

    $ npx @vendure/create vendure-app

2. 回復(fù)每個安裝提示，如下所述按 安裝軟件包Y@vendure/create

    Need to install the following packages:
      @vendure/create@2.0.2
    Ok to proceed? (y) y

   選擇為正在使用的數(shù)據(jù)庫Postgres

    ◆  Which database are you using?
    │  ○ MySQL
    │  ○ MariaDB
    │  ● Postgres
    │  ○ SQLite
    │  ○ SQL.js

   按下可設(shè)置為 PostgreSQL 主機名ENTERlocalhost

    ◆  What's the database host address?
    │  localhost

   按下可保留為 PostgreSQL 端口號ENTER5432

    ◆  What port is the database listening on?
    │  5432

   輸入您之前創(chuàng)建的 PostgreSQL 數(shù)據(jù)庫名稱

    ◆  What's the name of the database?
    │  vendure_db

   按下可將 PostgreSQL 架構(gòu)設(shè)置為 publicENTER

       What's the schema name we should use?
    │  public

   輸入您之前創(chuàng)建的 PostgreSQL 用戶

    ◇  What's the database user name?
    │  vendure_user

   輸入您之前創(chuàng)建的 PostgreSQL 數(shù)據(jù)庫用戶密碼

    ◇  What's the database password?
    │  strong-password

   按下可保留為默認管理員用戶名。將用戶名更改為所需值ENTERsuperadmin

    ◇  What identifier do you want to use for the superadmin user?
    │  superadmin
    │

   輸入您想要的超級管理員用戶名或按下以使用默認密碼ENTER

    ◇  What password do you want to use for the superadmin user?
    │  superadmin
    │

   Select?and press?to populate the database with sample product datayesENTER

    ◆  Populate with some sample product data?
    │  ● yes
    │  ○ no

3. When successful, the installation process should complete with the following output:

    ◇  Server successfully initialized and populated
    │
    ◇   ──────────────────────────────────────────╮
    │                                             │
    │  Success! Created a new Vendure server at:  │
    │                                             │
    │                                             │
    │  /home/example_user/vendure-app             │
    │                                             │
    │                                             │
    │  We suggest that you start by typing:       │
    │                                             │
    │                                             │
    │  $ cd vendure-app                           │
    │  $ npm run dev                              │
    │                                             │
    ├─────────────────────────────────────────────╯
    │
    └  Happy hacking!

4. List files in your working directory

    $ ls

   Output:

    vendure-app

   Verify that a new?directory is available on the listvendure-app

Set Up the Vultr Managed Database for PostgreSQL

1. Log in to your Vultr Managed Database for PostgreSQL. Replace?,?,?with your actual valuesvultradmin1234host.vultrdb.com

    $ psql -h host.vultrdb.com -d postgres -U vultradmin

   Or, copy and use your database connection string from your Vultr Managed Database for PostgreSQL control panel

   

2. When logged in, create a new database

    defaultdb=> CREATE DATABASE venduredb;

   Output:

    CREATE DATABASE

3. Quit PostgreSQL console

    defaultdb=> \q

將本地 PostgreSQL 數(shù)據(jù)庫數(shù)據(jù)遷移到 Vultr PostgreSQL 托管數(shù)據(jù)庫

1. 使用之前創(chuàng)建的用戶和數(shù)據(jù)庫將 PostgreSQL 數(shù)據(jù)庫備份到文件venduredb.sql

    $ pg_dump --no-owner -U vendure_user -d vendure_db -W > venduredb.sql

   出現(xiàn)提示時，輸入您之前設(shè)置的正確的 Vendure 用戶數(shù)據(jù)庫密碼

2. 使用備份文件，將數(shù)據(jù)庫還原到 Vultr PostgreSQL 托管數(shù)據(jù)庫。將 ，， 替換為您的實際詳細信息。host.vultrdb.comvendure_dbvultradmin

    $ psql -h host.vultrdb.com -d vendure_db -U vultradmin < venduredb.sql

3. 恢復(fù)完成后，訪問 Vultr Managed Database for PostgreSQL

    $ psql -h host.vultrdb.com -d vendure_db -U vultradmin 

4. 查看 Vendure 數(shù)據(jù)庫表

    vendure_db=> \dt

   輸出：

                              List of relations
     Schema |                    Name                     | Type  | Owner 
    --------+---------------------------------------------+-------+-------
     public | address                                     | table | vultradmin
     public | administrator                               | table | vultradmin
     public | asset                                       | table | vultradmin
     public | asset_channels_channel                      | table | vultradmin
     public | asset_tags_tag                              | table | vultradmin
     public | authentication_method                       | table | vultradmin
     public | channel                                     | table | vultradmin
     public | collection                                  | table | vultradmin
     public | collection_asset                            | table | vultradmin
     public | collection_channels_channel                 | table | vultradmin
     public | collection_closure                          | table | vultradmin
     public | collection_product_variants_product_variant | table | vultradmin
     public | collection_translation                      | table | vultradmin
     public | customer                                    | table | vultradmin
     public | customer_channels_channel                   | table | vultradmin
     public | customer_group                              | table | vultradmin
     public | customer_groups_customer_group              | table | vultradmin
     public | facet                                       | table | vultradmin
     public | facet_channels_channel                      | table | vultradmin
    :

   Enter 退出 PostgreSQL 尋呼機Q

5. 退出 PostgreSQL 控制臺

    # \q

6. 在 Vultr 客戶門戶中，下載 Vultr Managed Database for PostgreSQL 簽名證書文件ca-certificate.crt
7. 下載后，在終端會話中使用文件并將其上傳到服務(wù)器scp

    $ scp ca-certificate.crt example_user@SERVER-IP:/home/example_user/

8. 上傳時，請驗證證書文件在用戶主目錄中是否可用

    $ ls

   輸出：

    ca-certificate.crt

9. 將證書文件移動到目錄中。/usr/local/share/ca-certificates/

    $ sudo mv ca-certificate.crt /usr/local/share/ca-certificates/

10. 編輯文件vendure-config.ts

     $ nano src/vendure-config.ts

11. 從文件頂部導(dǎo)入方法readFileSyncnode:fs

     import { readFileSync } from 'node:fs';

12. 將以下聲明添加到該部分dbConnectionOptions

     ssl: {
         rejectUnauthorized: true,
         ca: readFileSync('/usr/local/share/ca-certificates/ca-certificate.crt').toString(),
     },

    您編輯的部分應(yīng)如下所示：dbConnectionOptions

     dbConnectionOptions: {
         type: 'postgres',
         // See the README.md "Migrations" section for an explanation of
         // the `synchronize` and `migrations` options.
         synchronize: false,
         migrations: [path.join(__dirname, './migrations/*.+(js|ts)')],
         logging: false,
         database: process.env.DB_NAME,
         schema: process.env.DB_SCHEMA,
         host: process.env.DB_HOST,
         port: +process.env.DB_PORT,
         username: process.env.DB_USERNAME,
         password: process.env.DB_PASSWORD,
         ssl: {
             rejectUnauthorized: true,
             ca: readFileSync('/usr/local/share/ca-certificates/ca-certificate.crt').toString(),
         },
     },

    保存并關(guān)閉文件。

切換 Vendure PostgreSQL 數(shù)據(jù)庫配置

1. 切換到目錄vendure-app

    $ cd vendure-app

2. 編輯文件.env

    $ nano .env

3. 使用 Vultr Managed Database for PostgreSQL 詳細信息更新以下現(xiàn)有變量

    DB_HOST=host.vultrdb.com   
    DB_PORT=1234
    DB_NAME=vendure_db
    DB_USERNAME=vultradmin
    DB_PASSWORD=managed-db-password

   Save and close the file.

Store Vendure Assets in Object Storage

Create a New Bucket

1. Log in to the?Vultr customer portal
2. Navigate to?Products -> Cloud Storage -> Object Storage.
3. Access your Vultr Object Storage control panel
4. Navigate to?Buckets
5. Click the?Create Bucket?button, and assign the bucket a name of your choice. For example?vendure

Sync the Assets to Vultr Object Storage

1. View your working directory

    $ pwd

   Verify that you're operating in the?directory, or switch to the directoryvendure-app

    $ cd vendure-app

2. Using the?tool, synchronize the Vendure assets directory to your Vultr Object Storage buckets3cmd

    $ s3cmd sync static/assets/ s3://vendure/

   Verify that the file transfer completes successfully

Add the Vultr Object Storage Configuration

1. Using?, install the?and?packagesnpm@aws-sdk/client-s3@aws-sdk/lib-storage

    $ npm install @aws-sdk/client-s3 @aws-sdk/lib-storage --save

2. Edit the?fileenvironment.d.ts

    $ nano src/environment.d.ts

3. Add the following configurations within the?functionProcessEnv

    S3_ENDPOINT: string;
    S3_ACCESS_KEY_ID: string;
    S3_SECRET_ACCESS_KEY: string;
    S3_BUCKET_NAME: string;

   Save and close the file.

   Your edited file should look like the one below:

    namespace NodeJS {
        interface ProcessEnv {
            APP_ENV: string;
            COOKIE_SECRET: string;
            SUPERADMIN_USERNAME: string;
            SUPERADMIN_PASSWORD: string;
            DB_HOST: string;
            DB_PORT: number;
            DB_NAME: string;
            DB_USERNAME: string;
            DB_PASSWORD: string;
            DB_SCHEMA: string;
            S3_ENDPOINT: string;
            S3_ACCESS_KEY_ID: string;
            S3_SECRET_ACCESS_KEY: string;
            S3_BUCKET_NAME: string;
        }

4. Edit the?file:.env

    $ nano .env

5. Add the following environment variables to the file. Replace the placeholder values with your actual Vultr Object Storage details

    S3_ENDPOINT=https://YOUR_VULTR_OBJECT_STORAGE_HOST
    S3_ACCESS_KEY_ID=YOUR_VULTR_OBJECT_STORAGE_ACCESS_KEY
    S3_SECRET_ACCESS_KEY=YOUR_VULTR_OBJECT_STORAGE_SECRET_KEY
    S3_BUCKET_NAME=YOUR_VULTR_OBJECT_STORAGE_BUCKET_NAME

   Save and close the file.

   You can view your Vultr Object Storage details on the instance overview section

   

6. Back up the original?filevendure-config.ts

    $ mv src/vendure-config.ts src/vendure-config.ORIG

7. Create the file again

    $ nano src/vendure-config.ts 

8. Add the following updated contents to the file. Replace?with your actual domainexample.com

    import {
        dummyPaymentHandler,
        DefaultJobQueuePlugin,
        DefaultSearchPlugin,
        VendureConfig,
    } from '@vendure/core';
    import { AssetServerPlugin, configureS3AssetStorage } from '@vendure/asset-server-plugin';
    import { defaultEmailHandlers, EmailPlugin } from '@vendure/email-plugin';
    import { AdminUiPlugin } from '@vendure/admin-ui-plugin';
    import 'dotenv/config';
    import path from 'path';
   
    const IS_DEV = process.env.APP_ENV === 'dev';
   
    export const config: VendureConfig = {
        apiOptions: {
            port: 3000,
            adminApiPath: 'admin-api',
            shopApiPath: 'shop-api',
            // The following options are useful in development mode,
            // but are best turned off for production for security
            // reasons.
            ...(IS_DEV ? {
                adminApiPlayground: {
                    settings: { 'request.credentials': 'include' } as any,
                },
                adminApiDebug: true,
                shopApiPlayground: {
                    settings: { 'request.credentials': 'include' } as any,
                },
                shopApiDebug: true,
            } : {}),
        },
        authOptions: {
            tokenMethod: ['bearer', 'cookie'],
            superadminCredentials: {
                identifier: process.env.SUPERADMIN_USERNAME,
                password: process.env.SUPERADMIN_PASSWORD,
            },
            cookieOptions: {
              secret: process.env.COOKIE_SECRET,
            },
        },
        dbConnectionOptions: {
            type: 'postgres',
            // See the README.md "Migrations" section for an explanation of
            // the `synchronize` and `migrations` options.
            synchronize: false,
            migrations: [path.join(__dirname, './migrations/*.+(js|ts)')],
            logging: false,
            database: process.env.DB_NAME,
            schema: process.env.DB_SCHEMA,
            host: process.env.DB_HOST,
            port: +process.env.DB_PORT,
            username: process.env.DB_USERNAME,
            password: process.env.DB_PASSWORD,
        },
        paymentOptions: {
            paymentMethodHandlers: [dummyPaymentHandler],
        },
        // When adding or altering custom field definitions, the database will
        // need to be updated. See the "Migrations" section in README.md.
        customFields: {},
        plugins: [
            AssetServerPlugin.init({
                route: 'assets',
                assetUploadDir: path.join(__dirname, '../static/assets'),
                assetUrlPrefix: IS_DEV ? undefined : 'https://example.com/assets/',
                storageStrategyFactory: configureS3AssetStorage({
                    bucket: process.env.S3_BUCKET_NAME,
                    credentials: {
                        accessKeyId: process.env.S3_ACCESS_KEY_ID,
                        secretAccessKey: process.env.S3_SECRET_ACCESS_KEY,
                    },
                    nativeS3Configuration: {
                        endpoint: process.env.S3_ENDPOINT,
                        forcePathStyle: true,
                        signatureVersion: 'v4',
                        region: 'eu-west-1',
                    },
                }),
            }),
            DefaultJobQueuePlugin.init({ useDatabaseForBuffer: true }),
            DefaultSearchPlugin.init({ bufferUpdates: false, indexStockStatus: true }),
            EmailPlugin.init({
                devMode: true,
                outputPath: path.join(__dirname, '../static/email/test-emails'),
                route: 'mailbox',
                handlers: defaultEmailHandlers,
                templatePath: path.join(__dirname, '../static/email/templates'),
                globalTemplateVars: {
                    // The following variables will change depending on your storefront implementation.
                    // Here we are assuming a storefront running at http://localhost:8080.
                    fromAddress: '"example" <noreply@example.com>',
                    verifyEmailAddressUrl: 'http://localhost:8080/verify',
                    passwordResetUrl: 'http://localhost:8080/password-reset',
                    changeEmailAddressUrl: 'http://localhost:8080/verify-email-address-change'
                },
            }),
            AdminUiPlugin.init({
                route: 'admin',
                port: 3002,
            }),
        ],
    };

   Save and close the file.

   The above configuration imports the?and?assets to Vendure. Then, it defines the Vendure URL?in the?section.configureS3AssetStorageasset-server-pluginexample.comAssetServerPlugin.init({

Store the Job Queue and Session Cache in Redis?

Vendure keeps the job queue in the PostgreSQL database by default. To store the jobs in a Vultr Managed Database for Caching, use the BullMQ job queue plugin as described in the steps below.

Set Up the Job Queue

1. Install the BullMQ job queue plugin

    $ npm install @vendure/job-queue-plugin bullmq@1 --save

2. Edit the?fileenvironment.d.ts

    $ nano src/environment.d.ts

3. Add the following declarations to the?interface after your?directivesProcessEnvS3

    REDIS_HOST: string;
    REDIS_PORT: number;
    REDIS_USERNAME: string;
    REDIS_PASSWORD: string;

   Save and close the file.

4. Edit the?filevendure-config.ts

    $ nano src/vendure-config.ts

5. Add the?import directive at the top of the fileBullMQJobQueuePlugin

    import { BullMQJobQueuePlugin } from '@vendure/job-queue-plugin/package/bullmq';

   In the?section, find the?initialization directiveplugins:DefaultJobQueuePlugin

    DefaultJobQueuePlugin.init({ useDatabaseForBuffer: true }),

   Replace it with the following?declarationsBullMQJobQueuePlugin

    BullMQJobQueuePlugin.init({
        connection: {
            port: process.env.REDIS_PORT,
            host: process.env.REDIS_HOST,
            username: process.env.REDIS_USERNAME,
            password: process.env.REDIS_PASSWORD,
            tls: {},
        }
    }),

   Save and close the file.

6. Edit the?file.env

    $ nano .env

7. Add the following environment variables at the end of the file. Replace the placeholder values with your Vultr Managed Database for Caching details

    REDIS_HOST=host.vultrd.com
    REDIS_PORT=1234
    REDIS_USERNAME=admin
    REDIS_PASSWORD=strong-password

   You can find your Vultr Managed Database for Caching details on your instance overview section

   

Configure Session Cache

Vendure stores the session object cache in your system memory. It's fast and suitable for a single-instance deployment. However, for horizontal scaling or multi-instance deployment, you must store the session cache to an external data store such as a Vultr Managed Database for Caching. To enable Redis?, create a custom session cache strategy as described below.

1. Create a new?file in the?directoryredis-session-cache-strategy.tsplugins

    $ nano src/plugins/redis-session-cache-strategy.ts

2. Add the following configurations to the file

    import { CachedSession, Logger, SessionCacheStrategy, VendurePlugin } from '@vendure/core';
    import { Redis, RedisOptions } from 'ioredis';
   
    export interface RedisSessionCachePluginOptions {
      namespace?: string;
      redisOptions?: RedisOptions;
    }
    const loggerCtx = 'RedisSessionCacheStrategy';
    const DEFAULT_NAMESPACE = 'vendure-session-cache';
   
    export class RedisSessionCacheStrategy implements SessionCacheStrategy {
      private client: Redis;
      constructor(private options: RedisSessionCachePluginOptions) {}
   
      init() {
        this.client = new Redis(this.options.redisOptions as RedisOptions);
        this.client.on('error', err => Logger.error(err.message, loggerCtx, err.stack));
      }
   
      async get(sessionToken: string): Promise<CachedSession | undefined> {
        const retrieved = await this.client.get(this.namespace(sessionToken));
        if (retrieved) {
          try {
            return JSON.parse(retrieved);
          } catch (e: any) {
            Logger.error(`Could not parse cached session data: ${e.message}`, loggerCtx);
          }
        }
      }
   
      async set(session: CachedSession) {
        await this.client.set(this.namespace(session.token), JSON.stringify(session));
      }
   
      async delete(sessionToken: string) {
        await this.client.del(this.namespace(sessionToken));
      }
   
      clear() {
        // not implemented
      }
   
      private namespace(key: string) {
        return `${this.options.namespace ?? DEFAULT_NAMESPACE}:${key}`;
      }
    }
   
    @VendurePlugin({
      configuration: config => {
        config.authOptions.sessionCacheStrategy = new RedisSessionCacheStrategy(
          RedisSessionCachePlugin.options,
        );
        return config;
      },
    })
    export class RedisSessionCachePlugin {
      static options: RedisSessionCachePluginOptions;
      static init(options: RedisSessionCachePluginOptions) {
        this.options = options;
        return this;
      }
    }

   Save and close the file

3. Edit the?filevendure-config.ts

    $ nano src/vendure-config.ts

4. Add the?directive to the import sectionRedisSessionCachePlugin

    import { RedisSessionCachePlugin } from './plugins/redis-session-cache-strategy';

   Within the?section, add the following code after?to initialize the?Plugins: [AdminUiPlugin.init(...)RedisSessionCachePlugin

    RedisSessionCachePlugin.init({
        redisOptions: {
            port: process.env.REDIS_PORT,
            host: process.env.REDIS_HOST,
            username: process.env.REDIS_USERNAME,
            password: process.env.REDIS_PASSWORD,
            tls: {},
        }
    }),

   Save and close the file.

Build for Vendure Production

1. Edit the?file.env

    $ nano .env

2. Change the?value from?to?APP_ENVdevproduction

    APP_ENV=production

   Save and close the file.

3. Install the Vendure harden plugin that locks down your schema and protects your shop API from malicious queries

    $ npm install @vendure/harden-plugin --save

4. Edit the?filevendure-config.ts

    $ nano src/vendure-config.ts

5. Add the following?import directive to the?sectionharden pluginimport

    import { HardenPlugin } from '@vendure/harden-plugin';

   Within the?section, add the following code to initialize the harden pluginPlugins:

    HardenPlugin.init({
        maxQueryComplexity: 500,
        apiMode: IS_DEV ? 'dev' : 'prod',
    }),

   Save and close the file.

   The edited?file should look like the one below:vendure-config.ts

    import {
        dummyPaymentHandler,
        DefaultJobQueuePlugin,
        DefaultSearchPlugin,
        VendureConfig,
    } from '@vendure/core';
    import { defaultEmailHandlers, EmailPlugin } from '@vendure/email-plugin';
    import { AssetServerPlugin, configureS3AssetStorage } from '@vendure/asset-server-plugin';
    import { AdminUiPlugin } from '@vendure/admin-ui-plugin';
    import { BullMQJobQueuePlugin } from '@vendure/job-queue-plugin/package/bullmq';
    import { RedisSessionCachePlugin } from './plugins/redis-session-cache-strategy';
    import { HardenPlugin } from '@vendure/harden-plugin';
    import 'dotenv/config';
    import path from 'path';
    import { readFileSync } from 'node:fs';
   
    const IS_DEV = process.env.APP_ENV === 'dev';
   
    export const config: VendureConfig = {
        apiOptions: {
            port: 3000,
            adminApiPath: 'admin-api',
            shopApiPath: 'shop-api',
            // The following options are useful in development mode,
            // but are best turned off for production for security
            // reasons.
            ...(IS_DEV ? {
                adminApiPlayground: {
                    settings: { 'request.credentials': 'include' } as any,
                },
                adminApiDebug: true,
                shopApiPlayground: {
                    settings: { 'request.credentials': 'include' } as any,
                },
                shopApiDebug: true,
            } : {}),
        },
        authOptions: {
            tokenMethod: ['bearer', 'cookie'],
            superadminCredentials: {
                identifier: process.env.SUPERADMIN_USERNAME,
                password: process.env.SUPERADMIN_PASSWORD,
            },
            cookieOptions: {
              secret: process.env.COOKIE_SECRET,
            },
        },
        dbConnectionOptions: {
            type: 'postgres',
            // See the README.md "Migrations" section for an explanation of
            // the `synchronize` and `migrations` options.
            synchronize: false,
            migrations: [path.join(__dirname, './migrations/*.+(js|ts)')],
            logging: false,
            database: process.env.DB_NAME,
            schema: process.env.DB_SCHEMA,
            host: process.env.DB_HOST,
            port: +process.env.DB_PORT,
            username: process.env.DB_USERNAME,
            password: process.env.DB_PASSWORD,
        ssl: {
                rejectUnauthorized: true,
                ca: readFileSync('/usr/local/share/ca-certificates/ca-certificate.crt').toString(),
            },
        },
        paymentOptions: {
            paymentMethodHandlers: [dummyPaymentHandler],
        },
        // When adding or altering custom field definitions, the database will
        // need to be updated. See the "Migrations" section in README.md.
        customFields: {},
        plugins: [
            AssetServerPlugin.init({
                route: 'assets',
                assetUploadDir: path.join(__dirname, '../static/assets'),
                assetUrlPrefix: IS_DEV ? undefined : 'https://example.hisman.org/assets/',
                storageStrategyFactory: configureS3AssetStorage({
                    bucket: process.env.S3_BUCKET_NAME,
                    credentials: {
                        accessKeyId: process.env.S3_ACCESS_KEY_ID,
                        secretAccessKey: process.env.S3_SECRET_ACCESS_KEY,
                    },
                    nativeS3Configuration: {
                        endpoint: process.env.S3_ENDPOINT,
                        forcePathStyle: true,
                        signatureVersion: 'v4',
                        region: 'eu-west-1',
                    },
                }),
            }),
        RedisSessionCachePlugin.init({
                redisOptions: {
                    port: process.env.REDIS_PORT,
                    host: process.env.REDIS_HOST,
                    username: process.env.REDIS_USERNAME,
                    password: process.env.REDIS_PASSWORD,
                    tls: {},
                }
            }),
            BullMQJobQueuePlugin.init({
                connection: {
                    port: process.env.REDIS_PORT,
                    host: process.env.REDIS_HOST,
                    username: process.env.REDIS_USERNAME,
                    password: process.env.REDIS_PASSWORD,
                    tls: {},
                }
            }),
            HardenPlugin.init({
                maxQueryComplexity: 500,
                apiMode: IS_DEV ? 'dev' : 'prod',
            }),
            DefaultSearchPlugin.init({ bufferUpdates: false, indexStockStatus: true }),
            EmailPlugin.init({
                devMode: true,
                outputPath: path.join(__dirname, '../static/email/test-emails'),
                route: 'mailbox',
                handlers: defaultEmailHandlers,
                templatePath: path.join(__dirname, '../static/email/templates'),
                globalTemplateVars: {
                    // The following variables will change depending on your storefront implementation.
                    // Here we are assuming a storefront running at http://localhost:8080.
                    fromAddress: '"example" <noreply@example.com>',
                    verifyEmailAddressUrl: 'http://localhost:8080/verify',
                    passwordResetUrl: 'http://localhost:8080/password-reset',
                    changeEmailAddressUrl: 'http://localhost:8080/verify-email-address-change'
                },
            }),
            AdminUiPlugin.init({
                route: 'admin',
                port: 3002,
            }),
        ],
    };

6. Build the Vendure application

    $ npm run build

   npm?writes the build files to the?directorydist

Run the Production Vendure App

1. Install the?packagePM2

    $ sudo npm install pm2 -g

2. Run the Vendure app server in cluster mode

    $ pm2 start ./dist/index.js -i max

3. Run the Vendure app worker in cluster mode

    $ pm2 start ./dist/index-worker.js -i max

   Output:

    [PM2] Starting /home/user/vendure-app/dist/index-worker.js in cluster_mode (0 instance)
    [PM2] Done.
    ┌────┬─────────────────┬─────────────┬─────────┬─────────┬──────────┬────────┬──────┬───────────┬──────────┬──────────┬──────────┬──────────┐
    │ id │ name            │ namespace   │ version │ mode    │ pid      │ uptime │ ?    │ status    │ cpu      │ mem      │ user     │ watching │
    ├────┼─────────────────┼─────────────┼─────────┼─────────┼──────────┼────────┼──────┼───────────┼──────────┼──────────┼──────────┼──────────┤
    │ 0  │ index           │ default     │ 0.1.0   │ cluster │ 232015   │ 47s    │ 0    │ online    │ 0%       │ 135.0mb  │ user     │ disabled │
    │ 1  │ index-worker    │ default     │ 0.1.0   │ cluster │ 232052   │ 0s     │ 0    │ online    │ 0%       │ 36.5mb   │ user     │ disabled │
    └────┴─────────────────┴─────────────┴─────────┴─────────┴──────────┴────────┴──────┴───────────┴──────────┴──────────┴──────────┴──────────┘

4. Generate and run a startup script to start PM2 when the server reboots

    $ pm2 startup

   Output:

    [PM2] Init System found: systemd
    [PM2] To setup the Startup Script, copy/paste the following command:
    sudo env PATH=$PATH:/usr/bin /usr/lib/node_modules/pm2/bin/pm2 startup systemd -u example_user --hp /home/example_user

5. Save all the running processes

    $ pm2 save

6. Using?, test that your Vendure app runs on the default port?wget3000

    $ wget -S http://localhost:3000/admin/

   Output:

    --2023-08-18 10:30:28--  http://localhost:3000/admin/
    Resolving localhost (localhost)... ::1, 127.0.0.1
    Connecting to localhost (localhost)|::1|:3000... connected.
    HTTP request sent, awaiting response...
      HTTP/1.1 200 OK
      X-Powered-By: Express
      Vary: Origin
      Access-Control-Allow-Credentials: true
      Access-Control-Expose-Headers: vendure-auth-token
      Accept-Ranges: bytes
      Cache-Control: public, max-age=0
      Last-Modified: Fri, 18 Aug 2023 09:34:01 GMT
      ETag: W/"268-18a07fe9b82"
      Content-Type: text/html; charset=UTF-8
      Content-Length: 616
      Date: Fri, 18 Aug 2023 10:30:28 GMT
      Connection: keep-alive
      Keep-Alive: timeout=5
    Length: 616 [text/html]
    Saving to: ‘index.html’

   If Vendure fails to run and listen on port?. Start it using the following command to view the runtime log and catch any errors3000

    $ npm run dev

   Output:

    [server] info 8/31/23, 8:25 PM - [BullMQJobQueuePlugin] Checking Redis connection... 
    [server] info 8/31/23, 8:25 PM - [BullMQJobQueuePlugin] Connected to Redis ✔ 
    [server] info 8/31/23, 8:25 PM - [NestApplication] Nest application successfully started 
    [server] info 8/31/23, 8:25 PM - [Vendure Server] ================================================ 
    [server] info 8/31/23, 8:25 PM - [Vendure Server] Vendure server (v2.0.6) now running on port 3000 
    [server] info 8/31/23, 8:25 PM - [Vendure Server] ------------------------------------------------ 
    [server] info 8/31/23, 8:25 PM - [Vendure Server] Shop API:     http://localhost:3000/shop-api 
    [server] info 8/31/23, 8:25 PM - [Vendure Server] Admin API:    http://localhost:3000/admin-api 
    [server] info 8/31/23, 8:25 PM - [Vendure Server] Asset server: http://localhost:3000/assets 
    [server] info 8/31/23, 8:25 PM - [Vendure Server] Dev mailbox:  http://localhost:3000/mailbox 
    [server] info 8/31/23, 8:25 PM - [Vendure Server] Admin UI:     http://localhost:3000/admin 
    [server] info 8/31/23, 8:25 PM - [Vendure Server] ================================================ 

   When successful, verify that Vendure runs on port?3000

Configure Nginx as a Reverse Proxy

To securely access the Vendure app through your domain name, configure Nginx as a reverse proxy to handle connections to the backend port?as described below.3000

1. Install Nginx

    $ sudo apt install nginx

2. Disable the default Nginx configuration

    $ sudo unlink /etc/nginx/sites-enabled/default

3. Create a new Nginx virtual host configuration file

    $ sudo nano /etc/nginx/sites-available/vendure

4. Add the following configurations to the file. Replace?with your actual domainexample.com

    server {
        listen 80;
   
        server_name example.com;
   
        location / {
            proxy_pass http://localhost:3000;
            proxy_http_version 1.1;
            proxy_set_header Upgrade $http_upgrade;
            proxy_set_header Connection 'upgrade';
            proxy_set_header Host $host;
            proxy_set_header X-Real-IP $remote_addr;
            proxy_set_header X-Forwarded-Proto $scheme;
            proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
            proxy_cache_bypass $http_upgrade;
        }
    }

   Save and close the file.

5. Enable the Nginx configuration file

    $ sudo ln -s /etc/nginx/sites-available/vendure /etc/nginx/sites-enabled/

6. Test your configurations from syntax errors

    $ sudo nginx -t

7. Reload Nginx configurations to save changes

    $ sudo nginx -s reload

Security

To secure Vendure for production use, allow Nginx to accept incoming connections on HTTP port?and the HTTPS port?. Then, securely redirect all HTTP requests to HTTPS by generating SSL certificates as described in the steps below.80443

Configure the Firewall

1. Allow SSH port connection to the server

    $ sudo ufw allow 'OpenSSH'

2. Allow the Nginx HTTP and HTTPS ports profile

    $ sudo ufw allow 'Nginx Full'

3. Enable the firewall

    $ sudo ufw enable

4. Verify the firewall status

    $ sudo ufw status

   Output:

    Status: active
   
    To                         Action      From
    --                         ------      ----
    22/tcp                     ALLOW       Anywhere
    Nginx Full                 ALLOW       Anywhere
    22/tcp (v6)                ALLOW       Anywhere (v6)
    Nginx Full (v6)            ALLOW       Anywhere (v6)

Secure Vendure with Let's Encrypt SSL Certificates

1. Using?, install the Certbot Let's Encrypt client toolsnap

    $ sudo snap install --classic certbot

2. Create a symbolic link for the system wide Certbot command to?/usr/bin

    $ sudo ln -s /snap/bin/certbot /usr/bin/certbot

3. Generate your Let's Encrypt SSL certificate. Replace?,?with your domain, and email address respectivelyexample.comhello@example.com

    $ sudo certbot --nginx -d example.com -m hello@example.com --agree-tos

4. Verify that Certbot auto renews the SSL certificate upon expiry

    $ sudo certbot renew --dry-run

Test the Application

1. Using a web browser such as Chrome, access your Vendure shop administrator page

    https://example.com/admin

   

   Log in with the?credentials you set earlier. When successful, the administrator dashboard should displaysuperadmin

   

2. Navigate to the?Inventory?menu. Verify that all sample products display on the page. Try to update or delete any of them.
3. Navigate to the?Assets?menu and upload a sample image
4. 在 Vultr 客戶門戶會話中，查看 Vultr 對象存儲桶。驗證映像在存儲桶中是否可用
5. 除了 Vendure 管理員頁面，還可以訪問以下 GraphQL API 端點：
   • 管理員 GraphQL API：https://example.com/admin-api
   • 購買 GraphQL API：https://example.com/shop-api

當(dāng)您設(shè)計 Vendure 商店時，前端界面會隨著您的產(chǎn)品和設(shè)計而激活。

結(jié)論

在本指南中，您安裝了 Vendure 應(yīng)用程序并將其部署到生產(chǎn)環(huán)境。您還將 Vendure 配置為使用 Vultr 對象存儲、用于 PostgreSQL 的 Vultr 托管數(shù)據(jù)庫和用于緩存的 Vultr 托管數(shù)據(jù)庫。有關(guān) Vendure 的更多信息，請訪問官方文檔。