docker 总结

作者: 分类: php 时间: 2022-02-16 评论: 暂无评论

✪docker组成
1.dockerClient客户端
2.Docker Daemon守护进程
3.Docker Image镜像
4.DockerContainer容器
✪用途
1.组建微服务架构
2.待补充
✪镜像常用命令

docker search nginx                        #查看注册表中是否有nginx镜像
docker image pull  nginx:latest            #下载nginx镜像
docker images                          #查看本地镜像
docker commit container-name image-name       #基于修改后的容器创建镜像
docker load -i nginx.tar.gz               #导入nginx镜像
docker save -o nginx.tag.gz nginx:latest      #导出nginx镜像
docker build -t centos:8 -f dockerfile PATH    #基于dockerfile文件创建镜像
dcker inspect nginx                    #显示nginx镜像的详细信息
docker rmi nginx                     #删除镜像
docker push  ip/nginx:v1                 #推送镜像nginx到本地仓库
docker tag  nginx:latest  nginx:v1             #给镜像nginx标记标签v1
docker history  nginx                  #查看镜像nginx的历史构建信息

✪容器常用命令

docker create -it IMAGE:LABEL            #创建容器(并不是启动容器)
docker ps                        #查看所有处于开机状态的容器
docker ps -a                      #查看所有状态的容器
docker start CONTAINER_ID              #启动容器
docker  stop  NAME/ID                   #终止容器
docker  kill  NAME/ID                 #终止容器
docker  restart  NAME/ID               #重启容器
docker run -it IMAGE:LABEL /bin/bash        #创建并运行一个容器,且直接进入容器里
docker run -<strong>d</strong>ti IMAGE:LABEL    #以后台守护进程形态运行(-d参数)
docker -rm -f NAME/ID                 #删除指定容器
docker rm $(docker ps -aq)              #一次性删除全部已经退出的容器 
docker exec -it NAME/ID /bin/bash         #进入容器(实在容器中打开新的终端,并且可以启动新的进程)
docker attach NAME/ID                 #直接进入容器(不启动新的进程)      
docker export NAME/ID > nginxtest.tar       #导出容器(导出一个已经创建的容器到文件,不管容器是否运行)
cat  nginxtest.tar  | docker  import  - test   #将容器导入系统成为镜像
docker logs -f NAME/ID                 #查看容器日志
docker pause NAME/ID                 #暂停容器
docker unpause NAME/ID                #取消暂停,继续运行容器

✪docker端口映射

docker run -d -p  1234:80  httpd                 #把容器的1234映射到主机的80端口,主机80端口被占用

关于JWT鉴权方案

作者: 分类: php 时间: 2022-02-06 评论: 暂无评论

git:https://github.com/lcobucci/jwt

composer require lcobucci/jwt 3.4.6

jwt鉴权配置confi.php

  
'jwt_expire_time'        => 3600*24*10,                //token过期时间 默认10天
'jwt_secrect'            => '86L$1Q1@*##hgh!#@BG',    //签名秘钥
'jwt_iss'                => 'HDGHWDDAW@#8dj29009',    //发送端
'jwt_aud'                => '66dGzhw@dj@3#2ddaQ@',    //接收端
'jwt_refresh_expire_time'=> 3600*24*30,                //refresh_token过期时间 默认30天

Jwt.php 模块

 <?php 

namespace app\api\controller;
use Lcobucci\JWT\Builder;
use Lcobucci\JWT\Signer\Hmac\Sha256;
use Lcobucci\JWT\Parser;
use Lcobucci\JWT\ValidationData;

class Jwt{
    

private static $instance = null;

private $token;
private $decodeToken;
private $iss;  //发送数据端
private $aud;      //数据接收
private $uid; //用户UID
private $secrect;
private $expTime;


public static function getInstance(){
    if(is_null(self::$instance)){
        self::$instance = new self();
    }
    return self::$instance;
}

private function __construct(){
    
}

public function getToken(){
    return (string)$this->token;
}

public function setToken($token){
    $this->token = $token;
    return $this;
}

public function setUid($uid){
    $this->uid = $uid;
    return $this;
}    

public function getUid(){
    return $this->uid;
}

public function setExpTime($expTime){
    $this->expTime = $expTime;
    return $this;        
}    

public function setIss($iss){
    $this->iss = $iss;
    return $this;
}

public function setAud($aud){
    $this->aud = $aud;
    return $this;
}

public function setSecrect($secrect){
    $this->secrect =md5($this->uid.$secrect);
    return $this;
}

public function encode(){
    $time = time();
    $this->token = (new Builder())->setHeader('alg','HS256')
        ->setIssuer($this->iss)
        ->setAudience($this->aud)
        ->setIssuedAt($time)
        ->setExpiration($time+$this->expTime)
        ->set('uid',$this->uid)
        ->sign(new Sha256(),$this->secrect)
        ->getToken();
    
    return $this;
}


public function decode(){
    
    try{
        $this->decodeToken = (new Parser())->parse((string) $this->token); // Parses from a string
        $this->uid = $this->decodeToken->getClaim('uid');
        return $this->decodeToken;
    }catch (RuntimeException $e){
        throw new \Exception($e->getMessage());
    }
    
}
    
public function validate(){
    $data = new ValidationData(); // It will use the current time to validate (iat, nbf and exp)
    $data->setIssuer($this->iss);
    $data->setAudience($this->aud);
    $data->setId($this->uid);
    
    return $this->decode()->validate($data);
}


public function verify(){
    return $this->decode()->verify(new Sha256(),$this->secrect);
}

}

生成token

$jwt = Jwt::getInstance();
    $jwt->setIss(config('my.jwt_iss'))
           ->setAud(config('my.jwt_aud'))
            ->setSecrect(config('my.jwt_secrect'))
            ->setExpTime(config('my.jwt_expire_time'))
            ->setUid($uid);
    $token = $jwt->encode()->getToken();

中间件鉴权

<?php
namespace app\api\middleware;
use app\api\controller\Jwt;
class JwtAuth
{
    public function handle($request, \Closure $next)
    {
        $token = $request->header('Authorization');
        if (!$token) {
            return json(['status' => config('my.jwtExpireCode'), 'msg' => '请重新登录']);
        }
        if (count(explode('.', $token)) <> 3) {
            return json(['status' => config('my.jwtExpireCode'), 'msg' => '请重新登录']);
        }
        $jwt = Jwt::getInstance();
        $uid = $jwt->decode()->getClaim('uid');
        $jwt->setIss(config('my.jwt_iss'))
            ->setAud(config('my.jwt_aud'))
            ->setUid($uid)
            ->setSecrect(config('my.jwt_secrect'))
            ->setToken($token);

        if ($jwt->decode()->getClaim('exp') < time()) {
            return json(['status' => config('my.jwtExpireCode'), 'msg' => '请重新登录']);
        }
        if ($jwt->validate() && $jwt->verify()) {
            $request->uid = $uid;
            return $next($request);
        } else {
            return json(['status' => config('my.jwtExpireCode'), 'msg' => '请重新登录']);
        }

    }
}

状态机设计(任务,订单)

作者: 分类: php 时间: 2022-02-06 评论: 暂无评论

1.为什么要有状态机?状态机又是什么?
有些订单的状态,任务的状态过于复杂,状态机是为了方便我们管理整个任务,订单的状态,防止错误的状态切换。毕竟现在都是团队合作。有一个模型来管理,也好规范其它程序员代码质量。

2.订单状态机

namespace app\api\service;

class OrderService
{
    //订单状态可以考虑成int 类型,mysql检索速度快
    public static $STATUS_NEW = 'new';   //新订单
    public static $STATUS_PAYED = 'payed'; //已支付
    public static $STATUS_DELIVERY = 'delivery'; //已发货
    public static $STATUS_RECEIVED = 'received'; //收货
    public static $STATUS_COMPLETE = 'complete';  //已完成

    private static $ALLOW_CHANGE_STATUS = [
        'new' => ['payed'],
        'payed' => ['delivery'],
        'received' => ['received'],
        'delivery' => ['complete'],
    ];

    /**
     * 状态切换
     * @param $status
     * @param $data
     * @throws \Exception
     */
    public function changeStu($status, $data)
    {
        //check order status
        $order=Order::find($data['orderNo']);
        if(!in_array($status,self::$ALLOW_CHANGE_STATUS[$order['status']])){
            throw new \Exception(' order status error');
        }
        
        
    }

    /**
     *  订单管理
     * @param $status
     * @param $data
     * @return bool|void
     */
    public function dispatch($status, $data)
    {
        $result = false;
        switch ($status) {
            case self::$STATUS_NEW:
                $result = self::createNew($data);
                break;
            case self::$STATUS_PAYED:
                $result = self::payed($data);
                break;
            case self::$STATUS_DELIVERY:
                $result = self::delivery($data);
                break;
            case self::$STATUS_RECEIVED:
                $result = self::received($data);
                break;
            case self::$STATUS_COMPLETE:
                $result = self::complete($data);
                break;
            default:
                $result = false;
        }
        return $result;
    }


    //各自功能实现
    private static function createNew($data)
    {
        //create new order
    }

    private static function payed($data)
    {
        //make the order payed
    }

    private static function delivery($data)
    {
        //make the order delivery
    }

    private static function received($data)
    {
        //make the order reveived
    }

    private static function complete($data)
    {
        //make the order complete
    }


}

php输出js文件

作者: 分类: php 时间: 2021-06-25 评论: 暂无评论 
header('content-type:application/octet-stream');
header('content-disposition:attachment; filename='.time().'.js');
echo $jsdata;

远程更新git项目代码

作者: 分类: git 时间: 2021-06-21 评论: 暂无评论

1.添加 hook.php 脚本,记得 检查PHP的exec函数 是否被禁用

$web_root='/www/wwwroot/xxx.com'; //服务器 项目根目录地址
$shell = "cd {$web_root}/ && pwd && git pull 2>&1";
exec($shell,$out); 
print_r($out);

2.在代码管理库(gitea ,github)添加钩子,指向上面的php地址 http://xxx.com/hook.php

3.在服务添加 www 权限

cd ~
vi .git-credentials
https://用户名:密码@gitee.com
git config --global credential.helper store
#执行成功后出现~/.gitconfig文件
cp ~/.gitconfig /home/www/
cp ~/.git-credentials /home/www/
cd /home/www
chown www.www .gitconfig
chown www.www .git-credentials

4.到你的项目下执行

chmod -R 777 .git

6.检查项目权限,如果不对

chown -R www.www  项目地址

5.用浏览器访问 http://xxx.com/hook.php
成功结果返回
Array ( [0] => /www/wwwroot/dcc.com [1] => Already up-to-date. )

Top ↑