APISIX初体验-部署安装

最新推荐文章于 2024-06-01 23:31:52 发布
最新推荐文章于 2024-06-01 23:31:52 发布
阅读量2.6k 收藏 1
点赞数 1
分类专栏: 网关APISIX 文章标签: 学习
版权声明:本文为博主原创文章,遵循 CC 4.0 BY-SA 版权协议,转载请附上原文出处链接和本声明。
本文链接:https://blog.csdn.net/I_T_T_I/article/details/88342816
版权

1.从官网把apisix-docker仓库下载下来

git clone https://github.com/apache/apisix-docker.git
cd apisix-docker/example

2.找到docker-compose.yml文件,删除了一些暂时不用的配置

version: "3"
services:
  apisix-dashboard:
    image: apache/apisix-dashboard:2.13-alpine
    restart: always
    volumes:
    - ./dashboard_conf/conf.yaml:/usr/local/apisix-dashboard/conf/conf.yaml
    ports:
    - "9000:9000"
    networks:
      apisix:
  apisix:
    image: apache/apisix:2.14.1-alpine
    restart: always
    volumes:
      - ./apisix_log:/usr/local/apisix/logs
      - ./apisix_conf/config.yaml:/usr/local/apisix/conf/config.yaml:ro
    depends_on:
      - etcd
    ports:
      - "9080:9080/tcp"
      - "9091:9091/tcp"
      - "9443:9443/tcp"
      - "9092:9092/tcp"
    networks:
      apisix:
  etcd:
    image: bitnami/etcd:3.4.15
    restart: always
    volumes:
      - etcd_data:/bitnami/etcd
    environment:
      ETCD_ENABLE_V2: "true"
      ALLOW_NONE_AUTHENTICATION: "yes"
      ETCD_ADVERTISE_CLIENT_URLS: "http://0.0.0.0:2379"
      ETCD_LISTEN_CLIENT_URLS: "http://0.0.0.0:2379"
    ports:
      - "2379:2379/tcp"
    networks:
      apisix:
networks:
  apisix:
    driver: bridge
volumes:
  etcd_data:
    driver: local

我的服务器(10.10.10.2)目录结构如图

 etcd的配置文件

#
# Licensed to the Apache Software Foundation (ASF) under one or more
# contributor license agreements.  See the NOTICE file distributed with
# this work for additional information regarding copyright ownership.
# The ASF licenses this file to You under the Apache License, Version 2.0
# (the "License"); you may not use this file except in compliance with
# the License.  You may obtain a copy of the License at
#
#     http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS,
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
# See the License for the specific language governing permissions and
# limitations under the License.
#

# This is the configuration file for the etcd server.

# Human-readable name for this member.
name: 'default'

# Path to the data directory.
data-dir:

# Path to the dedicated wal directory.
wal-dir:

# Number of committed transactions to trigger a snapshot to disk.
snapshot-count: 10000

# Time (in milliseconds) of a heartbeat interval.
heartbeat-interval: 100

# Time (in milliseconds) for an election to timeout.
election-timeout: 1000

# Raise alarms when backend size exceeds the given quota. 0 means use the
# default quota.
quota-backend-bytes: 0

# List of comma separated URLs to listen on for peer traffic.
listen-peer-urls: http://0.0.0.0:2380

# List of comma separated URLs to listen on for client traffic.
listen-client-urls: http://0.0.0.0:2379

# Maximum number of snapshot files to retain (0 is unlimited).
max-snapshots: 5

# Maximum number of wal files to retain (0 is unlimited).
max-wals: 5

# Comma-separated white list of origins for CORS (cross-origin resource sharing).
cors:

# List of this member's peer URLs to advertise to the rest of the cluster.
# The URLs needed to be a comma-separated list.
initial-advertise-peer-urls: http://0.0.0.0:2380

# List of this member's client URLs to advertise to the public.
# The URLs needed to be a comma-separated list.
advertise-client-urls: http://0.0.0.0:2379

# Discovery URL used to bootstrap the cluster.
discovery:

# Valid values include 'exit', 'proxy'
discovery-fallback: 'proxy'

# HTTP proxy to use for traffic to discovery service.
discovery-proxy:

# DNS domain used to bootstrap initial cluster.
discovery-srv:

# Initial cluster configuration for bootstrapping.
initial-cluster:

# Initial cluster token for the etcd cluster during bootstrap.
initial-cluster-token: 'etcd-cluster'

# Initial cluster state ('new' or 'existing').
initial-cluster-state: 'new'

# Reject reconfiguration requests that would cause quorum loss.
strict-reconfig-check: false

# Accept etcd V2 client requests
enable-v2: true

# Enable runtime profiling data via HTTP server
enable-pprof: true

# Valid values include 'on', 'readonly', 'off'
proxy: 'off'

# Time (in milliseconds) an endpoint will be held in a failed state.
proxy-failure-wait: 5000

# Time (in milliseconds) of the endpoints refresh interval.
proxy-refresh-interval: 30000

# Time (in milliseconds) for a dial to timeout.
proxy-dial-timeout: 1000

# Time (in milliseconds) for a write to timeout.
proxy-write-timeout: 5000

# Time (in milliseconds) for a read to timeout.
proxy-read-timeout: 0

client-transport-security:
  # Path to the client server TLS cert file.
  cert-file:

  # Path to the client server TLS key file.
  key-file:

  # Enable client cert authentication.
  client-cert-auth: false

  # Path to the client server TLS trusted CA cert file.
  trusted-ca-file:

  # Client TLS using generated certificates
  auto-tls: false

peer-transport-security:
  # Path to the peer server TLS cert file.
  cert-file:

  # Path to the peer server TLS key file.
  key-file:

  # Enable peer client cert authentication.
  client-cert-auth: false

  # Path to the peer server TLS trusted CA cert file.
  trusted-ca-file:

  # Peer TLS using generated certificates.
  auto-tls: false

# Enable debug-level logging for etcd.
debug: false

logger: zap

# Specify 'stdout' or 'stderr' to skip journald logging even when running under systemd.
log-outputs: [stderr]

# Force to create a new one member cluster.
force-new-cluster: false

auto-compaction-mode: periodic
auto-compaction-retention: "1"

dashboard的配置文件

#
# Licensed to the Apache Software Foundation (ASF) under one or more
# contributor license agreements.  See the NOTICE file distributed with
# this work for additional information regarding copyright ownership.
# The ASF licenses this file to You under the Apache License, Version 2.0
# (the "License"); you may not use this file except in compliance with
# the License.  You may obtain a copy of the License at
#
#     http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS,
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
# See the License for the specific language governing permissions and
# limitations under the License.
#

conf:
  listen:
    host: 0.0.0.0     # `manager api` listening ip or host name
    port: 9000          # `manager api` listening port
  allow_list:           # If we don't set any IP list, then any IP access is allowed by default.
    - 0.0.0.0/0
  etcd:
    endpoints:          # supports defining multiple etcd host addresses for an etcd cluster
      - "http://10.10.10.2:2379"
                          # yamllint disable rule:comments-indentation
                          # etcd basic auth info
    # username: "root"    # ignore etcd username if not enable etcd auth
    # password: "123456"  # ignore etcd password if not enable etcd auth
    mtls:
      key_file: ""          # Path of your self-signed client side key
      cert_file: ""         # Path of your self-signed client side cert
      ca_file: ""           # Path of your self-signed ca cert, the CA is used to sign callers' certificates
    # prefix: /apisix     # apisix config's prefix in etcd, /apisix by default
  log:
    error_log:
      level: warn       # supports levels, lower to higher: debug, info, warn, error, panic, fatal
      file_path:
        logs/error.log  # supports relative path, absolute path, standard output
                        # such as: logs/error.log, /tmp/logs/error.log, /dev/stdout, /dev/stderr
    access_log:
      file_path:
        logs/access.log  # supports relative path, absolute path, standard output
                         # such as: logs/access.log, /tmp/logs/access.log, /dev/stdout, /dev/stderr
                         # log example: 2020-12-09T16:38:09.039+0800	INFO	filter/logging.go:46	/apisix/admin/routes/r1	{"status": 401, "host": "127.0.0.1:9000", "query": "asdfsafd=adf&a=a", "requestId": "3d50ecb8-758c-46d1-af5b-cd9d1c820156", "latency": 0, "remoteIP": "127.0.0.1", "method": "PUT", "errs": []}
authentication:
  secret:
    secret              # secret for jwt token generation.
                        # NOTE: Highly recommended to modify this value to protect `manager api`.
                        # if it's default value, when `manager api` start, it will generate a random string to replace it.
  expire_time: 3600     # jwt token expire time, in second
  users:                # yamllint enable rule:comments-indentation
    - username: admin   # username and password for login `manager api`
      password: 123456789
    - username: user
      password: 123456789

plugins:                          # plugin list (sorted in alphabetical order)
  - api-breaker
  - authz-keycloak
  - basic-auth
  - batch-requests
  - consumer-restriction
  - cors
  # - dubbo-proxy
  - echo
  # - error-log-logger
  # - example-plugin
  - fault-injection
  - grpc-transcode
  - hmac-auth
  - http-logger
  - ip-restriction
  - jwt-auth
  - kafka-logger
  - key-auth
  - limit-conn
  - limit-count
  - limit-req
  # - log-rotate
  # - node-status
  - openid-connect
  - prometheus
  - proxy-cache
  - proxy-mirror
  - proxy-rewrite
  - redirect
  - referer-restriction
  - request-id
  - request-validation
  - response-rewrite
  - serverless-post-function
  - serverless-pre-function
  # - skywalking
  - sls-logger
  - syslog
  - tcp-logger
  - udp-logger
  - uri-blocker
  - wolf-rbac
  - zipkin
  - server-info
  - traffic-split

apisix的配置文件

#
# Licensed to the Apache Software Foundation (ASF) under one or more
# contributor license agreements.  See the NOTICE file distributed with
# this work for additional information regarding copyright ownership.
# The ASF licenses this file to You under the Apache License, Version 2.0
# (the "License"); you may not use this file except in compliance with
# the License.  You may obtain a copy of the License at
#
#     http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS,
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
# See the License for the specific language governing permissions and
# limitations under the License.
#

apisix:
  node_listen: 9080              # APISIX listening port
  enable_ipv6: false

  allow_admin:                  # http://nginx.org/en/docs/http/ngx_http_access_module.html#allow
    - 0.0.0.0/0              # We need to restrict ip access rules for security. 0.0.0.0/0 is for test.

  admin_key:
    - name: "admin"
      key: 123456789
      role: admin                 # 命令行操作会使用到
    - name: "viewer"
      key: 123456789
      role: viewer
  
  enable_control: true
  control:
    ip: "0.0.0.0"
    port: 9092

etcd:
  host:                           # it's possible to define multiple etcd hosts addresses of the same etcd cluster.
    - "http://10.10.10.2:2379"     # multiple etcd address
  prefix: "/apisix"               # apisix configurations prefix
  timeout: 30                     # 30 seconds

然后执行

docker-compose up -d

3.登录使用

访问http://10.10.10.227:9000/,用户名密码:admin/123456789,开始使用

 

阿飞啊飞啊飞
关注
  • 1
    点赞
  • 1
    收藏
    觉得还不错? 一键收藏
  • 0
    评论
专栏目录
云原生 API 网关 APISIX 入门教程
easylife206的专栏
07-29 8163
公众号关注「奇妙的 Linux 世界」设为「星标」,每天带你玩转 Linux !​Apache APISIX 是 Apache 软件基金会下的云原生 API 网关,它具有动态、实时、高性能等特点,提供了负载均衡、动态上游、灰度发布(金丝雀发布)、服务熔断、限速、防御恶意攻击、身份认证、可观测性等丰富的流量管理功能。我们可以使用 Apache APISIX 来处理传统的南北向流量,也可以处理服务间...
云原生下最火的API网关-APISIX
03-03 5831
APISIX是一款基于Nginx和OpenResty的云原生API网关,由Apache APISIX社区维护。它提供了一个可扩展的、低延迟、高性能的API网关解决方案,支持常见的API管理功能,如流量控制、认证、转发、限速、缓存、日志等,并提供了灵活的插件机制,可支持自定义插件的开发和集成。
APISIX安装
最新发布
weixin_41558221的博客
06-01 430
【代码】APISIX安装
Apisix入门篇』从零到一掌握Apache APISIX:架构解析与实战指南
老陈聊架构
03-26 6297
🌐 深入Apache APISIX架构: 从Nginx到OpenResty,再到etcd,一站式掌握云原生API网关的构建精髓,领略其层次化设计的魅力。 🔌 核心组件全解析: 路由、上游、服务、消费者、插件...这些不再是抽象的概念,而是你API管理中的强大工具。 🛠 路由配置实操: 通过Admin API,轻松创建上游、配置路由,实现请求的精准转发,让理论与实践完美结合。 🌟 APISIX的独特优势: 动态路由、热插拔插件、云原生兼容性...这些特性让APISIX在API网关领域独树一帜。
APISIX简要叙述
учёба
12-16 1万+
1 概述 1.1 概念 APISIX 是基于 OpenResty + etcd 实现的云原生、高性能、可扩展的微服务 API 网关 OpenResty:通过 Lua 扩展 Nginx 实现的可伸缩的 Web 平台 Lua :使用C语言表现的一种轻量级可扩展脚本语言,开源 OpenResty 是一个 Web 应用服务器,Web 开发人员可以使用 Lua 脚本语言调动 Nginx 支持的各种 C 以及 Lua 模块,并且性能非常高 OpenResty 的目标是让你的 Web 服务直接跑在 Nginx 服务内
APISIX、APISIX Dashboard搭建、路由配置及插件使用
热门推荐
CaptainJava的博客
06-28 1万+
本文简要描述了APISIX、APISIX Dashboard的搭建 以及消费者consumer、常用插件等的使用
apisix-dashboard-3.0.1-0.el7.x86-64
08-16
apisix-dashboard rpm安装
apisix-ingress-controller:K8的入口控制器
04-01
apisix-ingress-controller中的所有配置都是使用Kubernetes CRD(自定义资源定义)定义的。 例如Apache APISIX中的configure ,针对上游的支持服务注册发现机制,负载平衡等。 apisix-ingress-controller是Apache ...
apisix-dashboard-2.13-0.el7.x86_64.rpm
08-05
apisix-dashboard-2.13-0.el7.x86_64.rpm,对应apisix版本为2.15
apisix-2.0-0.el7.noarch .rpm
11-10
APISIX 是一个云原生、高性能、可扩展的微服务 API 网关。 它是基于 OpenResty 和 etcd来实现,和传统 API 网关相比,APISIX 具备动态路由和插件热加载,特别适合微服务体系下的 API 管理。 APISIX 是基于云原生的...
apisix-1.3-0.el7.noarch.rpm
03-27
压缩包子文件的文件名称列表仅包含"apisix-1.3-0.el7.noarch.rpm",这意味着压缩包内只包含这个单一的RPM软件包文件,用户下载后可以直接使用RPM命令进行安装,例如: ```bash sudo rpm -Uvh apisix-1.3-0.el7....
apisix安装详解(版本2.7)
蓝亚之舟的博客
09-09 1万+
1、api网关介绍 api网关现在使用的是一个开源项目(apisix),然后在其上进行的二次开发(修改配置和增加插件),api网关本身相当于是代理服务器,或者说其本质就是一个代理服务器。 apisix的github网址:https://github.com/apache/apisix 使用java编写apisix插件:https://apisix.apache.org/blog/2021/06/21/use-Java-to-write-Apache-APISIX-plugins 中文官网地址:https:
【网关建设】02-APISIX实战之部署流程
Kearey的知识仓库
04-21 1474
在我的实际工作情况中,对于部署有这么几个硬性的要求: 1. 各个环境的服务器是无法连接外网的,所以没有办法使用在线安装,所以采用的是离线rpm包的方法进行的。 2. 由于生产环境对于root权限管理比较严格,所以要求我们在安装部署的时候,使用root用户进行安装,并确保后续可以使用非root用户进行启动。
安装apisix详细教程
leaning_java的博客
12-13 1545
安装apisix
apisix高性能网关-中文开发文档
Z.X的博客
06-12 3094
2020年6月12日13:48:33 github:https://github.com/apache/incubator-apisix 目前此项目已有成为apache孵化项目 官方中文文档 :https://github.com/apache/incubator-apisix/blob/master/README_CN.md 支持的功能很多,我个人比较推荐服务发现,这个很省资源,不然得吧j...
API服务网关实现之APISIX安装部署
黑马程序员官方博客
04-10 1万+
一、APISIX相关介绍 1、安全网关 安全网关设置的目的是防止Internet或外网不安全因素蔓延到自己企业或组织的内部网 。 安全网关在应用层和网络层上面都有防火墙的身影。 其范围从协议级过滤到十分复杂的应用级过滤等。推荐了解传智播客linux云计算+运维开发课程。 API网关:整个流量总入口,能够进行集中管理和控制! 2、apisix介绍 APISIX 是一个云原生、高性能、可...
apisix 安装
weixin_44160003的博客
07-21 717
本文基于docker-compose安装APISIX, 所以需要提前安装好docker、docker-compose。其中example目录结构如下:[外链图片转存失败,源站可能有防盗链机制,建议将图片保存下来直接上传(img-LBiI6wSu-1689926081871)(en-resource://database/726:1)]4.docker-compose操作5.附docker操作。
APISIX的安装和使用
weixin_40618306的博客
03-22 2744
上图是Dashboard平台的一个全景,它的功能简单紧凑,下面介绍每个菜单的功能;仪表盘:监测网关请求数据、ETCD数据等,同时还支持自定义监控对象的数据;路由:路由(Route)是请求的入口点,它定义了客户端请求与服务之间的匹配规则。路由可以与服务(Service)、上游(upstream)关联,一个服务可对应一组路由,一个路由可对应一个上游对象(一组后端服务节点),因此,每个匹配到路由的请求将被网关代理到路由绑定的上游服务中。服务:服务由路由中公共的插件配置、上游目标信息组合而成。
Linux Docker中APISIX集群部署【珍藏版】
记录工作开发中遇到的技术难点,方便自己查看,也希望可以帮助到他人...
03-30 5001
Apache APISIX 是 Apache 软件基金会下的云原生 API 网关,它兼具动态、实时、高性能等特点,提供了负载均衡、动态上游、灰度发布(金丝雀发布)、服务熔断、身份认证、可观测性等丰富的流量管理功能。我们可以使用 Apache APISIX 来处理传统的南北向流量,也可以处理服务间的东西向流量。同时,它也支持作为 K8s Ingress Controller 来使用。
apisix-dashboard-3.0.1-0.el7.x86_64.rpm 下载
01-20
可以通过以下步骤来下载apisix-dashboard-3.0.1-0.el7.x86_64.rpm文件: 1. 打开一个浏览器,并输入"https://apisix.apache.org/zh/docs/apisix-dashboard-3.0.1-0.el7.x86_64.rpm"。 2. 进入Apache APISIX官方网站...
评论
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值