重口另类在线播放不卡,真人无码国产作爱免费,国产欧美一区二区三区久久,日本无遮真人祼交视频,亚洲色无码中文字幕在线,国产乱子伦精品免费高清,国产超级va在线观看视频,免费 无码 国产在现看 http://www.vanhostingweb.com 分享技術(shù),共同進(jìn)步 Sat, 29 Jun 2024 12:00:10 +0000 zh-Hans hourly 1 如何在 Ubuntu 上安裝Vendure 22.04 http://www.vanhostingweb.com/5635.html Sat, 29 Jun 2024 12:00:10 +0000 http://www.vanhostingweb.com/?p=5635

介紹

Vendure 是一個開源的無頭商務(wù)框架,允許構(gòu)建由 Node.js、TypeScript 和 GraphQL 提供支持的生產(chǎn)就緒電子商務(wù)應(yīng)用程序。它的工作原理是通過 API 公開所有應(yīng)用程序功能。Vendure 在 GraphQL API 上公開了所有商店前端功能,并且不提供默認(rèn)的商店前端界面。這提高了開發(fā)人員的靈活性,因?yàn)樗试S您使用任何前端技術(shù)創(chuàng)建店面。

本文介紹如何在 Ubuntu 22.04 Vultr 服務(wù)器上部署 Vendure。您需要將該框架與 Vultr Object Storage(PostgreSQL 托管數(shù)據(jù)庫)和 Redis? 集成,以構(gòu)建生產(chǎn)就緒型應(yīng)用程序。

先決條件

準(zhǔn)備工作:

安裝Node.js

Vendure 需要 Node.js 版本 16.x 或更高版本。按照以下步驟中的說明安裝最新的 Node.js 版本。

  1. 更新服務(wù)器 
     $ sudo apt update
  2. 創(chuàng)建目錄keyrings 
     $ sudo mkdir -p /etc/apt/keyrings
  3. 下載節(jié)點(diǎn)源 GPG 密鑰并將其添加到服務(wù)器密鑰 
     curl -fsSL https://deb.nodesource.com/gpgkey/nodesource-repo.gpg.key | sudo gpg --dearmor -o /etc/apt/keyrings/nodesource.gpg
  4. 將Node.js存儲庫添加到源列表中。替換為您想要的版本apt20 
     NODE_MAJOR=20
 echo "deb [signed-by=/etc/apt/keyrings/nodesource.gpg] https://deb.nodesource.com/node_$NODE_MAJOR.x nodistro main" | sudo tee /etc/apt/sources.list.d/nodesource.list
  5. 更新服務(wù)器程序包 
     $ sudo apt update
  6. 安裝Node.js 
     $ sudo apt install nodejs -y
  7. 驗(yàn)證已安裝的Node.js版本 
     $ nodejs --version

    輸出:

     v20.5.1

設(shè)置本地 PostgreSQL 數(shù)據(jù)庫服務(wù)器

要在服務(wù)器上安裝 Vendure,您需要將應(yīng)用程序數(shù)據(jù)臨時保存在本地 PostgreSQL 數(shù)據(jù)庫服務(wù)器上。稍后,您可以先將數(shù)據(jù)遷移到 Vultr Managed Database for MySQL,然后再將應(yīng)用程序部署到生產(chǎn)環(huán)境。如下所述設(shè)置本地?cái)?shù)據(jù)庫。

在 PostgreSQL 上啟用密碼身份驗(yàn)證

  1. 驗(yàn)證已安裝的 PostgreSQL 版本 
     $ psql --version

    輸出:

     psql (PostgreSQL) 14.16 (Ubuntu 14.16-0ubuntu0.22.04.1)
  2. 根據(jù)您的 PostgreSQL 版本,使用文本編輯器編輯文件,例如pg_hba.confnano 
     $ sudo nano /etc/postgresql/14/main/pg_hba.conf
  3. 查找以下配置行 
     # "local" is for Unix domain socket connections only
 local   all             all                                     peer
  4. 將身份驗(yàn)證方法更改為peermd5 
     local   all             all                                     md5

    保存并關(guān)閉文件

  5. 重新啟動 PostgreSQL 數(shù)據(jù)庫服務(wù)器 
     $ sudo systemctl restart postgresql

創(chuàng)建新的 PostgreSQL 數(shù)據(jù)庫

  1. 登錄PostgreSQL數(shù)據(jù)庫服務(wù)器 
     $ sudo -u postgres psql
  2. 創(chuàng)建新數(shù)據(jù)庫 
     postgres=# CREATE DATABASE vendure_db;

    輸出:

     CREATE DATABASE
  3. 使用強(qiáng)密碼創(chuàng)建新的數(shù)據(jù)庫用戶 
     postgres=# CREATE USER vendure_user WITH ENCRYPTED PASSWORD 'strong-password';

    輸出:

     CREATE ROLE
  4. 授予用戶對 Vendure 數(shù)據(jù)庫的完全權(quán)限 
     postgres=# GRANT ALL PRIVILEGES ON DATABASE vendure_db TO vendure_user;

    輸出:

     GRANT
  5. 退出 PostgreSQL 控制臺 
     postgres-# \q

安裝 Vendure

  1. 使用 Node.js 工具,使用該工具安裝 Vendure。npx@vendure/create 
     $ npx @vendure/create vendure-app
  2. 回復(fù)每個安裝提示,如下所述按 安裝軟件包Y@vendure/create 
     Need to install the following packages:
   @vendure/create@2.0.2
 Ok to proceed? (y) y

    選擇為正在使用的數(shù)據(jù)庫Postgres

     ◆  Which database are you using?
 │  ○ MySQL
 │  ○ MariaDB
 │  ● Postgres
 │  ○ SQLite
 │  ○ SQL.js

    按下可設(shè)置為 PostgreSQL 主機(jī)名ENTERlocalhost

     ◆  What's the database host address?
 │  localhost

    按下可保留為 PostgreSQL 端口號ENTER5432

     ◆  What port is the database listening on?
 │  5432

    輸入您之前創(chuàng)建的 PostgreSQL 數(shù)據(jù)庫名稱

     ◆  What's the name of the database?
 │  vendure_db

    按下可將 PostgreSQL 架構(gòu)設(shè)置為 publicENTER

        What's the schema name we should use?
 │  public

    輸入您之前創(chuàng)建的 PostgreSQL 用戶

     ◇  What's the database user name?
 │  vendure_user

    輸入您之前創(chuàng)建的 PostgreSQL 數(shù)據(jù)庫用戶密碼

     ◇  What's the database password?
 │  strong-password

    按下可保留為默認(rèn)管理員用戶名。將用戶名更改為所需值ENTERsuperadmin

     ◇  What identifier do you want to use for the superadmin user?
 │  superadmin
 │

    輸入您想要的超級管理員用戶名或按下以使用默認(rèn)密碼ENTER

     ◇  What password do you want to use for the superadmin user?
 │  superadmin
 │

    Select?and press?to populate the database with sample product datayesENTER

     ◆  Populate with some sample product data?
 │  ● yes
 │  ○ no
  3. When successful, the installation process should complete with the following output: 
     ◇  Server successfully initialized and populated
 │
 ◇   ──────────────────────────────────────────╮
 │                                             │
 │  Success! Created a new Vendure server at:  │
 │                                             │
 │                                             │
 │  /home/example_user/vendure-app             │
 │                                             │
 │                                             │
 │  We suggest that you start by typing:       │
 │                                             │
 │                                             │
 │  $ cd vendure-app                           │
 │  $ npm run dev                              │
 │                                             │
 ├─────────────────────────────────────────────╯
 │
 └  Happy hacking!
  4. List files in your working directory 
     $ ls

    Output:

     vendure-app

    Verify that a new?directory is available on the listvendure-app

Set Up the Vultr Managed Database for PostgreSQL

  1. Log in to your Vultr Managed Database for PostgreSQL. Replace?,?,?with your actual valuesvultradmin1234host.vultrdb.com 
     $ psql -h host.vultrdb.com -d postgres -U vultradmin

    Or, copy and use your database connection string from your Vultr Managed Database for PostgreSQL control panel

    get-postgresql-url

  2. When logged in, create a new database 
     defaultdb=> CREATE DATABASE venduredb;

    Output:

     CREATE DATABASE
  3. Quit PostgreSQL console 
     defaultdb=> \q

將本地 PostgreSQL 數(shù)據(jù)庫數(shù)據(jù)遷移到 Vultr PostgreSQL 托管數(shù)據(jù)庫

  1. 使用之前創(chuàng)建的用戶和數(shù)據(jù)庫將 PostgreSQL 數(shù)據(jù)庫備份到文件venduredb.sql 
     $ pg_dump --no-owner -U vendure_user -d vendure_db -W > venduredb.sql

    出現(xiàn)提示時,輸入您之前設(shè)置的正確的 Vendure 用戶數(shù)據(jù)庫密碼

  2. 使用備份文件,將數(shù)據(jù)庫還原到 Vultr PostgreSQL 托管數(shù)據(jù)庫。將 ,, 替換為您的實(shí)際詳細(xì)信息。host.vultrdb.comvendure_dbvultradmin 
     $ psql -h host.vultrdb.com -d vendure_db -U vultradmin < venduredb.sql
  3. 恢復(fù)完成后,訪問 Vultr Managed Database for PostgreSQL 
     $ psql -h host.vultrdb.com -d vendure_db -U vultradmin
  4. 查看 Vendure 數(shù)據(jù)庫表 
     vendure_db=> \dt

    輸出:

                               List of relations
  Schema |                    Name                     | Type  | Owner 
 --------+---------------------------------------------+-------+-------
  public | address                                     | table | vultradmin
  public | administrator                               | table | vultradmin
  public | asset                                       | table | vultradmin
  public | asset_channels_channel                      | table | vultradmin
  public | asset_tags_tag                              | table | vultradmin
  public | authentication_method                       | table | vultradmin
  public | channel                                     | table | vultradmin
  public | collection                                  | table | vultradmin
  public | collection_asset                            | table | vultradmin
  public | collection_channels_channel                 | table | vultradmin
  public | collection_closure                          | table | vultradmin
  public | collection_product_variants_product_variant | table | vultradmin
  public | collection_translation                      | table | vultradmin
  public | customer                                    | table | vultradmin
  public | customer_channels_channel                   | table | vultradmin
  public | customer_group                              | table | vultradmin
  public | customer_groups_customer_group              | table | vultradmin
  public | facet                                       | table | vultradmin
  public | facet_channels_channel                      | table | vultradmin
 :

    Enter 退出 PostgreSQL 尋呼機(jī)Q

  5. 退出 PostgreSQL 控制臺 
     # \q
  6. 在 Vultr 客戶門戶中,下載 Vultr Managed Database for PostgreSQL 簽名證書文件ca-certificate.crtdownload-certificate
  7. 下載后,在終端會話中使用文件并將其上傳到服務(wù)器scp 
     $ scp ca-certificate.crt example_user@SERVER-IP:/home/example_user/
  8. 上傳時,請驗(yàn)證證書文件在用戶主目錄中是否可用 
     $ ls

    輸出:

     ca-certificate.crt
  9. 將證書文件移動到目錄中。/usr/local/share/ca-certificates/ 
     $ sudo mv ca-certificate.crt /usr/local/share/ca-certificates/
  10. 編輯文件vendure-config.ts 
     $ nano src/vendure-config.ts
  11. 從文件頂部導(dǎo)入方法readFileSyncnode:fs 
     import { readFileSync } from 'node:fs';
  12. 將以下聲明添加到該部分dbConnectionOptions 
     ssl: {
     rejectUnauthorized: true,
     ca: readFileSync('/usr/local/share/ca-certificates/ca-certificate.crt').toString(),
 },

    您編輯的部分應(yīng)如下所示:dbConnectionOptions

     dbConnectionOptions: {
     type: 'postgres',
     // See the README.md "Migrations" section for an explanation of
     // the `synchronize` and `migrations` options.
     synchronize: false,
     migrations: [path.join(__dirname, './migrations/*.+(js|ts)')],
     logging: false,
     database: process.env.DB_NAME,
     schema: process.env.DB_SCHEMA,
     host: process.env.DB_HOST,
     port: +process.env.DB_PORT,
     username: process.env.DB_USERNAME,
     password: process.env.DB_PASSWORD,
     ssl: {
         rejectUnauthorized: true,
         ca: readFileSync('/usr/local/share/ca-certificates/ca-certificate.crt').toString(),
     },
 },

    保存并關(guān)閉文件。

切換 Vendure PostgreSQL 數(shù)據(jù)庫配置

  1. 切換到目錄vendure-app 
     $ cd vendure-app
  2. 編輯文件.env 
     $ nano .env
  3. 使用 Vultr Managed Database for PostgreSQL 詳細(xì)信息更新以下現(xiàn)有變量 
     DB_HOST=host.vultrdb.com   
 DB_PORT=1234
 DB_NAME=vendure_db
 DB_USERNAME=vultradmin
 DB_PASSWORD=managed-db-password

    Save and close the file.

Store Vendure Assets in Object Storage

Create a New Bucket

  1. Log in to the?Vultr customer portal
  2. Navigate to?Products -> Cloud Storage -> Object Storage.product-object-storage-menu
  3. Access your Vultr Object Storage control panelobject-storage
  4. Navigate to?Bucketsbucket-tab
  5. Click the?Create Bucket?button, and assign the bucket a name of your choice. For example?vendurecreate-bucket

Sync the Assets to Vultr Object Storage

  1. View your working directory 
     $ pwd

    Verify that you're operating in the?directory, or switch to the directoryvendure-app

     $ cd vendure-app
  2. Using the?tool, synchronize the Vendure assets directory to your Vultr Object Storage buckets3cmd 
     $ s3cmd sync static/assets/ s3://vendure/

    Verify that the file transfer completes successfully

Add the Vultr Object Storage Configuration

  1. Using?, install the?and?packagesnpm@aws-sdk/client-s3@aws-sdk/lib-storage 
     $ npm install @aws-sdk/client-s3 @aws-sdk/lib-storage --save
  2. Edit the?fileenvironment.d.ts 
     $ nano src/environment.d.ts
  3. Add the following configurations within the?functionProcessEnv 
     S3_ENDPOINT: string;
 S3_ACCESS_KEY_ID: string;
 S3_SECRET_ACCESS_KEY: string;
 S3_BUCKET_NAME: string;

    Save and close the file.

    Your edited file should look like the one below:

     namespace NodeJS {
     interface ProcessEnv {
         APP_ENV: string;
         COOKIE_SECRET: string;
         SUPERADMIN_USERNAME: string;
         SUPERADMIN_PASSWORD: string;
         DB_HOST: string;
         DB_PORT: number;
         DB_NAME: string;
         DB_USERNAME: string;
         DB_PASSWORD: string;
         DB_SCHEMA: string;
         S3_ENDPOINT: string;
         S3_ACCESS_KEY_ID: string;
         S3_SECRET_ACCESS_KEY: string;
         S3_BUCKET_NAME: string;
     }
  4. Edit the?file:.env 
     $ nano .env
  5. Add the following environment variables to the file. Replace the placeholder values with your actual Vultr Object Storage details 
     S3_ENDPOINT=https://YOUR_VULTR_OBJECT_STORAGE_HOST
 S3_ACCESS_KEY_ID=YOUR_VULTR_OBJECT_STORAGE_ACCESS_KEY
 S3_SECRET_ACCESS_KEY=YOUR_VULTR_OBJECT_STORAGE_SECRET_KEY
 S3_BUCKET_NAME=YOUR_VULTR_OBJECT_STORAGE_BUCKET_NAME

    Save and close the file.

    You can view your Vultr Object Storage details on the instance overview section

    s3-credentials

  6. Back up the original?filevendure-config.ts 
     $ mv src/vendure-config.ts src/vendure-config.ORIG
  7. Create the file again 
     $ nano src/vendure-config.ts
  8. Add the following updated contents to the file. Replace?with your actual domainexample.com 
     import {
     dummyPaymentHandler,
     DefaultJobQueuePlugin,
     DefaultSearchPlugin,
     VendureConfig,
 } from '@vendure/core';
 import { AssetServerPlugin, configureS3AssetStorage } from '@vendure/asset-server-plugin';
 import { defaultEmailHandlers, EmailPlugin } from '@vendure/email-plugin';
 import { AdminUiPlugin } from '@vendure/admin-ui-plugin';
 import 'dotenv/config';
 import path from 'path';

 const IS_DEV = process.env.APP_ENV === 'dev';

 export const config: VendureConfig = {
     apiOptions: {
         port: 3000,
         adminApiPath: 'admin-api',
         shopApiPath: 'shop-api',
         // The following options are useful in development mode,
         // but are best turned off for production for security
         // reasons.
         ...(IS_DEV ? {
             adminApiPlayground: {
                 settings: { 'request.credentials': 'include' } as any,
             },
             adminApiDebug: true,
             shopApiPlayground: {
                 settings: { 'request.credentials': 'include' } as any,
             },
             shopApiDebug: true,
         } : {}),
     },
     authOptions: {
         tokenMethod: ['bearer', 'cookie'],
         superadminCredentials: {
             identifier: process.env.SUPERADMIN_USERNAME,
             password: process.env.SUPERADMIN_PASSWORD,
         },
         cookieOptions: {
           secret: process.env.COOKIE_SECRET,
         },
     },
     dbConnectionOptions: {
         type: 'postgres',
         // See the README.md "Migrations" section for an explanation of
         // the `synchronize` and `migrations` options.
         synchronize: false,
         migrations: [path.join(__dirname, './migrations/*.+(js|ts)')],
         logging: false,
         database: process.env.DB_NAME,
         schema: process.env.DB_SCHEMA,
         host: process.env.DB_HOST,
         port: +process.env.DB_PORT,
         username: process.env.DB_USERNAME,
         password: process.env.DB_PASSWORD,
     },
     paymentOptions: {
         paymentMethodHandlers: [dummyPaymentHandler],
     },
     // When adding or altering custom field definitions, the database will
     // need to be updated. See the "Migrations" section in README.md.
     customFields: {},
     plugins: [
         AssetServerPlugin.init({
             route: 'assets',
             assetUploadDir: path.join(__dirname, '../static/assets'),
             assetUrlPrefix: IS_DEV ? undefined : 'https://example.com/assets/',
             storageStrategyFactory: configureS3AssetStorage({
                 bucket: process.env.S3_BUCKET_NAME,
                 credentials: {
                     accessKeyId: process.env.S3_ACCESS_KEY_ID,
                     secretAccessKey: process.env.S3_SECRET_ACCESS_KEY,
                 },
                 nativeS3Configuration: {
                     endpoint: process.env.S3_ENDPOINT,
                     forcePathStyle: true,
                     signatureVersion: 'v4',
                     region: 'eu-west-1',
                 },
             }),
         }),
         DefaultJobQueuePlugin.init({ useDatabaseForBuffer: true }),
         DefaultSearchPlugin.init({ bufferUpdates: false, indexStockStatus: true }),
         EmailPlugin.init({
             devMode: true,
             outputPath: path.join(__dirname, '../static/email/test-emails'),
             route: 'mailbox',
             handlers: defaultEmailHandlers,
             templatePath: path.join(__dirname, '../static/email/templates'),
             globalTemplateVars: {
                 // The following variables will change depending on your storefront implementation.
                 // Here we are assuming a storefront running at http://localhost:8080.
                 fromAddress: '"example" <noreply@example.com>',
                 verifyEmailAddressUrl: 'http://localhost:8080/verify',
                 passwordResetUrl: 'http://localhost:8080/password-reset',
                 changeEmailAddressUrl: 'http://localhost:8080/verify-email-address-change'
             },
         }),
         AdminUiPlugin.init({
             route: 'admin',
             port: 3002,
         }),
     ],
 };

    Save and close the file.

    The above configuration imports the?and?assets to Vendure. Then, it defines the Vendure URL?in the?section.configureS3AssetStorageasset-server-pluginexample.comAssetServerPlugin.init({

Store the Job Queue and Session Cache in Redis?

Vendure keeps the job queue in the PostgreSQL database by default. To store the jobs in a Vultr Managed Database for Caching, use the BullMQ job queue plugin as described in the steps below.

Set Up the Job Queue

  1. Install the BullMQ job queue plugin 
     $ npm install @vendure/job-queue-plugin bullmq@1 --save
  2. Edit the?fileenvironment.d.ts 
     $ nano src/environment.d.ts
  3. Add the following declarations to the?interface after your?directivesProcessEnvS3 
     REDIS_HOST: string;
 REDIS_PORT: number;
 REDIS_USERNAME: string;
 REDIS_PASSWORD: string;

    Save and close the file.

  4. Edit the?filevendure-config.ts 
     $ nano src/vendure-config.ts
  5. Add the?import directive at the top of the fileBullMQJobQueuePlugin 
     import { BullMQJobQueuePlugin } from '@vendure/job-queue-plugin/package/bullmq';

    In the?section, find the?initialization directiveplugins:DefaultJobQueuePlugin

     DefaultJobQueuePlugin.init({ useDatabaseForBuffer: true }),

    Replace it with the following?declarationsBullMQJobQueuePlugin

     BullMQJobQueuePlugin.init({
     connection: {
         port: process.env.REDIS_PORT,
         host: process.env.REDIS_HOST,
         username: process.env.REDIS_USERNAME,
         password: process.env.REDIS_PASSWORD,
         tls: {},
     }
 }),

    Save and close the file.

  6. Edit the?file.env 
     $ nano .env
  7. Add the following environment variables at the end of the file. Replace the placeholder values with your Vultr Managed Database for Caching details 
     REDIS_HOST=host.vultrd.com
 REDIS_PORT=1234
 REDIS_USERNAME=admin
 REDIS_PASSWORD=strong-password

    You can find your Vultr Managed Database for Caching details on your instance overview section

    redis-connection-details

Configure Session Cache

Vendure stores the session object cache in your system memory. It's fast and suitable for a single-instance deployment. However, for horizontal scaling or multi-instance deployment, you must store the session cache to an external data store such as a Vultr Managed Database for Caching. To enable Redis?, create a custom session cache strategy as described below.

  1. Create a new?file in the?directoryredis-session-cache-strategy.tsplugins 
     $ nano src/plugins/redis-session-cache-strategy.ts
  2. Add the following configurations to the file 
     import { CachedSession, Logger, SessionCacheStrategy, VendurePlugin } from '@vendure/core';
 import { Redis, RedisOptions } from 'ioredis';

 export interface RedisSessionCachePluginOptions {
   namespace?: string;
   redisOptions?: RedisOptions;
 }
 const loggerCtx = 'RedisSessionCacheStrategy';
 const DEFAULT_NAMESPACE = 'vendure-session-cache';

 export class RedisSessionCacheStrategy implements SessionCacheStrategy {
   private client: Redis;
   constructor(private options: RedisSessionCachePluginOptions) {}

   init() {
     this.client = new Redis(this.options.redisOptions as RedisOptions);
     this.client.on('error', err => Logger.error(err.message, loggerCtx, err.stack));
   }

   async get(sessionToken: string): Promise<CachedSession | undefined> {
     const retrieved = await this.client.get(this.namespace(sessionToken));
     if (retrieved) {
       try {
         return JSON.parse(retrieved);
       } catch (e: any) {
         Logger.error(`Could not parse cached session data: ${e.message}`, loggerCtx);
       }
     }
   }

   async set(session: CachedSession) {
     await this.client.set(this.namespace(session.token), JSON.stringify(session));
   }

   async delete(sessionToken: string) {
     await this.client.del(this.namespace(sessionToken));
   }

   clear() {
     // not implemented
   }

   private namespace(key: string) {
     return `${this.options.namespace ?? DEFAULT_NAMESPACE}:${key}`;
   }
 }

 @VendurePlugin({
   configuration: config => {
     config.authOptions.sessionCacheStrategy = new RedisSessionCacheStrategy(
       RedisSessionCachePlugin.options,
     );
     return config;
   },
 })
 export class RedisSessionCachePlugin {
   static options: RedisSessionCachePluginOptions;
   static init(options: RedisSessionCachePluginOptions) {
     this.options = options;
     return this;
   }
 }

    Save and close the file

  3. Edit the?filevendure-config.ts 
     $ nano src/vendure-config.ts
  4. Add the?directive to the import sectionRedisSessionCachePlugin 
     import { RedisSessionCachePlugin } from './plugins/redis-session-cache-strategy';

    Within the?section, add the following code after?to initialize the?Plugins: [AdminUiPlugin.init(...)RedisSessionCachePlugin

     RedisSessionCachePlugin.init({
     redisOptions: {
         port: process.env.REDIS_PORT,
         host: process.env.REDIS_HOST,
         username: process.env.REDIS_USERNAME,
         password: process.env.REDIS_PASSWORD,
         tls: {},
     }
 }),

    Save and close the file.

Build for Vendure Production

  1. Edit the?file.env 
     $ nano .env
  2. Change the?value from?to?APP_ENVdevproduction 
     APP_ENV=production

    Save and close the file.

  3. Install the Vendure harden plugin that locks down your schema and protects your shop API from malicious queries 
     $ npm install @vendure/harden-plugin --save
  4. Edit the?filevendure-config.ts 
     $ nano src/vendure-config.ts
  5. Add the following?import directive to the?sectionharden pluginimport 
     import { HardenPlugin } from '@vendure/harden-plugin';

    Within the?section, add the following code to initialize the harden pluginPlugins:

     HardenPlugin.init({
     maxQueryComplexity: 500,
     apiMode: IS_DEV ? 'dev' : 'prod',
 }),

    Save and close the file.

    The edited?file should look like the one below:vendure-config.ts

     import {
     dummyPaymentHandler,
     DefaultJobQueuePlugin,
     DefaultSearchPlugin,
     VendureConfig,
 } from '@vendure/core';
 import { defaultEmailHandlers, EmailPlugin } from '@vendure/email-plugin';
 import { AssetServerPlugin, configureS3AssetStorage } from '@vendure/asset-server-plugin';
 import { AdminUiPlugin } from '@vendure/admin-ui-plugin';
 import { BullMQJobQueuePlugin } from '@vendure/job-queue-plugin/package/bullmq';
 import { RedisSessionCachePlugin } from './plugins/redis-session-cache-strategy';
 import { HardenPlugin } from '@vendure/harden-plugin';
 import 'dotenv/config';
 import path from 'path';
 import { readFileSync } from 'node:fs';

 const IS_DEV = process.env.APP_ENV === 'dev';

 export const config: VendureConfig = {
     apiOptions: {
         port: 3000,
         adminApiPath: 'admin-api',
         shopApiPath: 'shop-api',
         // The following options are useful in development mode,
         // but are best turned off for production for security
         // reasons.
         ...(IS_DEV ? {
             adminApiPlayground: {
                 settings: { 'request.credentials': 'include' } as any,
             },
             adminApiDebug: true,
             shopApiPlayground: {
                 settings: { 'request.credentials': 'include' } as any,
             },
             shopApiDebug: true,
         } : {}),
     },
     authOptions: {
         tokenMethod: ['bearer', 'cookie'],
         superadminCredentials: {
             identifier: process.env.SUPERADMIN_USERNAME,
             password: process.env.SUPERADMIN_PASSWORD,
         },
         cookieOptions: {
           secret: process.env.COOKIE_SECRET,
         },
     },
     dbConnectionOptions: {
         type: 'postgres',
         // See the README.md "Migrations" section for an explanation of
         // the `synchronize` and `migrations` options.
         synchronize: false,
         migrations: [path.join(__dirname, './migrations/*.+(js|ts)')],
         logging: false,
         database: process.env.DB_NAME,
         schema: process.env.DB_SCHEMA,
         host: process.env.DB_HOST,
         port: +process.env.DB_PORT,
         username: process.env.DB_USERNAME,
         password: process.env.DB_PASSWORD,
     ssl: {
             rejectUnauthorized: true,
             ca: readFileSync('/usr/local/share/ca-certificates/ca-certificate.crt').toString(),
         },
     },
     paymentOptions: {
         paymentMethodHandlers: [dummyPaymentHandler],
     },
     // When adding or altering custom field definitions, the database will
     // need to be updated. See the "Migrations" section in README.md.
     customFields: {},
     plugins: [
         AssetServerPlugin.init({
             route: 'assets',
             assetUploadDir: path.join(__dirname, '../static/assets'),
             assetUrlPrefix: IS_DEV ? undefined : 'https://example.hisman.org/assets/',
             storageStrategyFactory: configureS3AssetStorage({
                 bucket: process.env.S3_BUCKET_NAME,
                 credentials: {
                     accessKeyId: process.env.S3_ACCESS_KEY_ID,
                     secretAccessKey: process.env.S3_SECRET_ACCESS_KEY,
                 },
                 nativeS3Configuration: {
                     endpoint: process.env.S3_ENDPOINT,
                     forcePathStyle: true,
                     signatureVersion: 'v4',
                     region: 'eu-west-1',
                 },
             }),
         }),
     RedisSessionCachePlugin.init({
             redisOptions: {
                 port: process.env.REDIS_PORT,
                 host: process.env.REDIS_HOST,
                 username: process.env.REDIS_USERNAME,
                 password: process.env.REDIS_PASSWORD,
                 tls: {},
             }
         }),
         BullMQJobQueuePlugin.init({
             connection: {
                 port: process.env.REDIS_PORT,
                 host: process.env.REDIS_HOST,
                 username: process.env.REDIS_USERNAME,
                 password: process.env.REDIS_PASSWORD,
                 tls: {},
             }
         }),
         HardenPlugin.init({
             maxQueryComplexity: 500,
             apiMode: IS_DEV ? 'dev' : 'prod',
         }),
         DefaultSearchPlugin.init({ bufferUpdates: false, indexStockStatus: true }),
         EmailPlugin.init({
             devMode: true,
             outputPath: path.join(__dirname, '../static/email/test-emails'),
             route: 'mailbox',
             handlers: defaultEmailHandlers,
             templatePath: path.join(__dirname, '../static/email/templates'),
             globalTemplateVars: {
                 // The following variables will change depending on your storefront implementation.
                 // Here we are assuming a storefront running at http://localhost:8080.
                 fromAddress: '"example" <noreply@example.com>',
                 verifyEmailAddressUrl: 'http://localhost:8080/verify',
                 passwordResetUrl: 'http://localhost:8080/password-reset',
                 changeEmailAddressUrl: 'http://localhost:8080/verify-email-address-change'
             },
         }),
         AdminUiPlugin.init({
             route: 'admin',
             port: 3002,
         }),
     ],
 };
  6. Build the Vendure application 
     $ npm run build

    npm?writes the build files to the?directorydist

Run the Production Vendure App

  1. Install the?packagePM2 
     $ sudo npm install pm2 -g
  2. Run the Vendure app server in cluster mode 
     $ pm2 start ./dist/index.js -i max
  3. Run the Vendure app worker in cluster mode 
     $ pm2 start ./dist/index-worker.js -i max

    Output:

     [PM2] Starting /home/user/vendure-app/dist/index-worker.js in cluster_mode (0 instance)
 [PM2] Done.
 ┌────┬─────────────────┬─────────────┬─────────┬─────────┬──────────┬────────┬──────┬───────────┬──────────┬──────────┬──────────┬──────────┐
 │ id │ name            │ namespace   │ version │ mode    │ pid      │ uptime │ ?    │ status    │ cpu      │ mem      │ user     │ watching │
 ├────┼─────────────────┼─────────────┼─────────┼─────────┼──────────┼────────┼──────┼───────────┼──────────┼──────────┼──────────┼──────────┤
 │ 0  │ index           │ default     │ 0.1.0   │ cluster │ 232015   │ 47s    │ 0    │ online    │ 0%       │ 135.0mb  │ user     │ disabled │
 │ 1  │ index-worker    │ default     │ 0.1.0   │ cluster │ 232052   │ 0s     │ 0    │ online    │ 0%       │ 36.5mb   │ user     │ disabled │
 └────┴─────────────────┴─────────────┴─────────┴─────────┴──────────┴────────┴──────┴───────────┴──────────┴──────────┴──────────┴──────────┘
  4. Generate and run a startup script to start PM2 when the server reboots 
     $ pm2 startup

    Output:

     [PM2] Init System found: systemd
 [PM2] To setup the Startup Script, copy/paste the following command:
 sudo env PATH=$PATH:/usr/bin /usr/lib/node_modules/pm2/bin/pm2 startup systemd -u example_user --hp /home/example_user
  5. Save all the running processes 
     $ pm2 save
  6. Using?, test that your Vendure app runs on the default port?wget3000 
     $ wget -S http://localhost:3000/admin/

    Output:

     --2023-08-18 10:30:28--  http://localhost:3000/admin/
 Resolving localhost (localhost)... ::1, 127.0.0.1
 Connecting to localhost (localhost)|::1|:3000... connected.
 HTTP request sent, awaiting response...
   HTTP/1.1 200 OK
   X-Powered-By: Express
   Vary: Origin
   Access-Control-Allow-Credentials: true
   Access-Control-Expose-Headers: vendure-auth-token
   Accept-Ranges: bytes
   Cache-Control: public, max-age=0
   Last-Modified: Fri, 18 Aug 2023 09:34:01 GMT
   ETag: W/"268-18a07fe9b82"
   Content-Type: text/html; charset=UTF-8
   Content-Length: 616
   Date: Fri, 18 Aug 2023 10:30:28 GMT
   Connection: keep-alive
   Keep-Alive: timeout=5
 Length: 616 [text/html]
 Saving to: ‘index.html’

    If Vendure fails to run and listen on port?. Start it using the following command to view the runtime log and catch any errors3000

     $ npm run dev

    Output:

     [server] info 8/31/23, 8:25 PM - [BullMQJobQueuePlugin] Checking Redis connection... 
 [server] info 8/31/23, 8:25 PM - [BullMQJobQueuePlugin] Connected to Redis ✔ 
 [server] info 8/31/23, 8:25 PM - [NestApplication] Nest application successfully started 
 [server] info 8/31/23, 8:25 PM - [Vendure Server] ================================================ 
 [server] info 8/31/23, 8:25 PM - [Vendure Server] Vendure server (v2.0.6) now running on port 3000 
 [server] info 8/31/23, 8:25 PM - [Vendure Server] ------------------------------------------------ 
 [server] info 8/31/23, 8:25 PM - [Vendure Server] Shop API:     http://localhost:3000/shop-api 
 [server] info 8/31/23, 8:25 PM - [Vendure Server] Admin API:    http://localhost:3000/admin-api 
 [server] info 8/31/23, 8:25 PM - [Vendure Server] Asset server: http://localhost:3000/assets 
 [server] info 8/31/23, 8:25 PM - [Vendure Server] Dev mailbox:  http://localhost:3000/mailbox 
 [server] info 8/31/23, 8:25 PM - [Vendure Server] Admin UI:     http://localhost:3000/admin 
 [server] info 8/31/23, 8:25 PM - [Vendure Server] ================================================

    When successful, verify that Vendure runs on port?3000

Configure Nginx as a Reverse Proxy

To securely access the Vendure app through your domain name, configure Nginx as a reverse proxy to handle connections to the backend port?as described below.3000

  1. Install Nginx 
     $ sudo apt install nginx
  2. Disable the default Nginx configuration 
     $ sudo unlink /etc/nginx/sites-enabled/default
  3. Create a new Nginx virtual host configuration file 
     $ sudo nano /etc/nginx/sites-available/vendure
  4. Add the following configurations to the file. Replace?with your actual domainexample.com 
     server {
     listen 80;

     server_name example.com;

     location / {
         proxy_pass http://localhost:3000;
         proxy_http_version 1.1;
         proxy_set_header Upgrade $http_upgrade;
         proxy_set_header Connection 'upgrade';
         proxy_set_header Host $host;
         proxy_set_header X-Real-IP $remote_addr;
         proxy_set_header X-Forwarded-Proto $scheme;
         proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
         proxy_cache_bypass $http_upgrade;
     }
 }

    Save and close the file.

  5. Enable the Nginx configuration file 
     $ sudo ln -s /etc/nginx/sites-available/vendure /etc/nginx/sites-enabled/
  6. Test your configurations from syntax errors 
     $ sudo nginx -t
  7. Reload Nginx configurations to save changes 
     $ sudo nginx -s reload

Security

To secure Vendure for production use, allow Nginx to accept incoming connections on HTTP port?and the HTTPS port?. Then, securely redirect all HTTP requests to HTTPS by generating SSL certificates as described in the steps below.80443

Configure the Firewall

  1. Allow SSH port connection to the server 
     $ sudo ufw allow 'OpenSSH'
  2. Allow the Nginx HTTP and HTTPS ports profile 
     $ sudo ufw allow 'Nginx Full'
  3. Enable the firewall 
     $ sudo ufw enable
  4. Verify the firewall status 
     $ sudo ufw status

    Output:

     Status: active

 To                         Action      From
 --                         ------      ----
 22/tcp                     ALLOW       Anywhere
 Nginx Full                 ALLOW       Anywhere
 22/tcp (v6)                ALLOW       Anywhere (v6)
 Nginx Full (v6)            ALLOW       Anywhere (v6)

Secure Vendure with Let's Encrypt SSL Certificates

  1. Using?, install the Certbot Let's Encrypt client toolsnap 
     $ sudo snap install --classic certbot
  2. Create a symbolic link for the system wide Certbot command to?/usr/bin 
     $ sudo ln -s /snap/bin/certbot /usr/bin/certbot
  3. Generate your Let's Encrypt SSL certificate. Replace?,?with your domain, and email address respectivelyexample.comhello@example.com 
     $ sudo certbot --nginx -d example.com -m hello@example.com --agree-tos
  4. Verify that Certbot auto renews the SSL certificate upon expiry 
     $ sudo certbot renew --dry-run

Test the Application

  1. Using a web browser such as Chrome, access your Vendure shop administrator page 
     https://example.com/admin

    vendure-login

    Log in with the?credentials you set earlier. When successful, the administrator dashboard should displaysuperadmin

    vendure-dashboard

  2. Navigate to the?Inventory?menu. Verify that all sample products display on the page. Try to update or delete any of them.vendure-inventory-page
  3. Navigate to the?Assets?menu and upload a sample imagevendure-assets-page
  4. 在 Vultr 客戶門戶會話中,查看 Vultr 對象存儲桶。驗(yàn)證映像在存儲桶中是否可用vendure-bucket
  5. 除了 Vendure 管理員頁面,還可以訪問以下 GraphQL API 端點(diǎn):
    • 管理員 GraphQL API:https://example.com/admin-api
    • 購買 GraphQL API:https://example.com/shop-api

當(dāng)您設(shè)計(jì) Vendure 商店時,前端界面會隨著您的產(chǎn)品和設(shè)計(jì)而激活。

結(jié)論

在本指南中,您安裝了 Vendure 應(yīng)用程序并將其部署到生產(chǎn)環(huán)境。您還將 Vendure 配置為使用 Vultr 對象存儲、用于 PostgreSQL 的 Vultr 托管數(shù)據(jù)庫和用于緩存的 Vultr 托管數(shù)據(jù)庫。有關(guān) Vendure 的更多信息,請?jiān)L問官方文檔

]]> Ubuntu 18.04/18.10安裝BBR加速 http://www.vanhostingweb.com/3812.html Mon, 30 Mar 2020 23:15:33 +0000 http://www.vanhostingweb.com/?p=3812

Google BBR 是一款免費(fèi)開源的TCP擁塞控制傳輸控制協(xié)議, 可以使 Linux 服務(wù)器顯著提高吞吐量和減少 TCP 連接的延遲。 項(xiàng)目地址:https://github.com/google/bbr

Ubuntu開啟BBR

Step 1:修改系統(tǒng)變量

echo "net.core.default_qdisc=fq" >> /etc/sysctl.conf
echo "net.ipv4.tcp_congestion_control=bbr" >> /etc/sysctl.conf

Step 2:保存生效

sysctl -p

Step 3:檢查BBR是否開啟

sysctl net.ipv4.tcp_available_congestion_control

如果?返回

net.ipv4.tcp_available_congestion_control = bbr cubic reno

則開啟成功!

Step 4:檢查BBR是否啟動成功

lsmod | grep bbr

如果返回

tcp_bbr                20480  14

則啟動?成功

]]> 亚洲中文色欧另类欧美,久久久久久久激情,亚洲 日韩 欧美 另类 国产,中文字幕高清无码男人的天堂 www.sucaiwu.net