Tyk网关Docker安装

时间  2019-12-07
标签 tyk 网关 docker 安装 栏目 Docker 繁體版
原文   原文链接

文档指南

官方文档python

查看官方Docker安装指南,发现只提供了镜像地址,并未给出详细操做步骤git

With Docker

Tyk has three containers that are available to set up a Docker installation:github

All three are required for a full deployment. We recommend that each container is installed on a separate machine for optimum performance.redis

实践

Tyk Gateway container

参考镜像指南,此处的目标是搭建带Dashboard的Tyk网关docker

Gateway - Pro installation with Dashboard

The gateway in a Pro installation is dependent on the dashboard service. We will assume that the dashboard service is installed, up and running. If not, we would recommend that you follow the dashboard installation guide here:json

github.com/TykTechnolo…bootstrap

The gateway relies upon the dashboard service to load it's api definitions & proxy configurations. As such, there is no need to mount any app directory.api

docker run -d \
  --name tyk_gateway \
  --network tyk \
  -p 8080:8080 \
  -v $(pwd)/tyk.with_dashboard.conf:/opt/tyk-gateway/tyk.conf \
  tykio/tyk-gateway:latest
复制代码

文档中说明搭建网关须要先搭建Dashboard浏览器

Tyk Dashboard container

安装指南,指南的第六步指向的链接已经失效,由此推断以前存在一键安装脚本bash

Quickstart

  1. Ensure you have set up the Redis, MongoDB and Tyk Gateway containers

  2. Set up the docker instance IP as the Dashboard hostname (in your /etc/hosts file or as a DNS):

    127.0.0.1 dashboard.tyk.docker

  3. Run the Dashboard

    docker run -d --name tyk_dashboard -p 3000:3000 --link tyk_redis:redis --link tyk_mongo:mongo --link tyk_gateway:tyk_gateway tykio/tyk-dashboard

  4. You should now be able to access your Dashboard at http://dashboard.tyk.docker:3000/ (note for OSX users, replace 127.0.0.1 with whatever IP address your docker VM runs)

  5. Enter your Dashboard License. Go to http://dashboard.tyk.docker:3000/. You will see a screen asking for a license, enter it in the section marked “Already have a license?” and click Use this license.

  6. Grab the bootstrap script from our tyk-dashboard github repo and run:

    ./bootstrap.sh dashboard.tyk.docker

To use an external configuration files, use the -v option to mount it over /opt/tyk-dashboard/tyk_analytics.conf

通过查找发现了旧版指南连接仍然能够访问,但不建议使用,旧版指南

按照文档的说法须要申请许可证,官方提供开发许可证,提供邮箱便可获取12个月的受权,申请地址

申请后根据文档提供的Docker启动语句准备环境和Docker-compose文件便于一键启动

docker-compose.yml文件

version: "3.1"

services:

 tyk_gateway:
 image: tykio/tyk-gateway:latest
 restart: always
 networks:
 - tyk-service-bridge
 volumes:
 - /www/wwwroot/tyk-free/apps:/opt/tyk-gateway/apps
 depends_on:
 - tyk_dashboard

 tyk_dashboard:
 image: tykio/tyk-dashboard
 restart: always
 networks:
 - tyk-service-bridge
 ports:
 - 3000:3000
 depends_on:
 - mongo
 - redis

 mongo:
 image: mongo
 restart: always
 networks:
 - tyk-service-bridge

 redis:
 image: redis:4.0-alpine
 restart: always
 networks:
 - tyk-service-bridge

networks:
 tyk-service-bridge:
 driver: bridge
复制代码

启动

$ docker-compose up
复制代码

放行防火墙

$ firewall-cmd --zone=public --add-port=3000/tcp --permanent 
$ firewall-cmd --reload
复制代码

访问浏览器IP:3000输入秘钥

1554004096241.png

许可证已经发送到注册邮件中,激活后可登录

1554004144220.png

但此时没有默认的用户名和密码,而且暂时未找到配置的方式(差评),须要经过官方脚本注册用户名和密码

但官方脚本依赖Python环境,若主机没有python环境则没法执行

启动脚本:

#!/bin/bash
# Usage ./bootstrap.sh DASHBOARD_HOSTNAME

LOCALIP=$1
RANDOM_USER=$(env LC_CTYPE=C tr -dc "a-z0-9" < /dev/urandom | head -c 10)
PASS="test123"

echo "Creating Organisation"
ORGDATA=$(curl --silent --header "admin-auth: 12345" --header "Content-Type:application/json" --data '{"owner_name": "Default Org.","owner_slug": "default", "cname_enabled": true, "cname": ""}' http://$LOCALIP:3000/admin/organisations 2>&1)
#echo $ORGDATA
ORGID=$(echo $ORGDATA | python -c 'import json,sys;obj=json.load(sys.stdin);print(obj["Meta"])')
echo "ORGID: $ORGID"

echo "Adding new user"
USER_DATA=$(curl --silent --header "admin-auth: 12345" --header "Content-Type:application/json" --data '{"first_name": "John","last_name": "Smith","email_address": "'$RANDOM_USER'@example.com","password":"'$PASS'", "active": true,"org_id": "'$ORGID'"}' http://$LOCALIP:3000/admin/users 2>&1)
#echo $USER_DATA
USER_CODE=$(echo $USER_DATA | python -c 'import json,sys;obj=json.load(sys.stdin);print(obj["Message"])')
echo "USER AUTH: $USER_CODE"

USER_LIST=$(curl --silent --header "authorization: $USER_CODE" http://$LOCALIP:3000/api/users 2>&1)
#echo $USER_LIST

USER_ID=$(echo $USER_LIST | python -c 'import json,sys;obj=json.load(sys.stdin);print(obj["users"][0]["id"])')
echo "NEW ID: $USER_ID"

echo "Setting password"
OK=$(curl --silent --header "authorization: $USER_CODE" --header "Content-Type:application/json" http://$LOCALIP:3000/api/users/$USER_ID/actions/reset --data '{"new_password":"'$PASS'"}')

echo ""

echo "DONE"
echo "===="
echo "Login at http://$LOCALIP:3000/"
echo "User: $RANDOM_USER@example.com"
echo "Pass: $PASS"
echo ""
复制代码

为了方便使用,此处建立了包含启动脚本的Docker镜像

仓库地址:fjy8018/tyk-bootstrap

使用方法:

$ docker run --rm -it --network tyk-free_tyk-service-bridge -e TARGET_IP=tyk_dashboard  fjy8018/tyk-bootstrap:0.1
复制代码

随即得到登录名和密码

1554007784141.png

登录成功

1554018550325.png
相关文章
相关标签/搜索
每日一句
    每一个你不满意的现在,都有一个你没有努力的曾经。
本站公众号
   欢迎关注本站公众号,获取更多信息
联系我们 最近搜索 最新文章 沪ICP备13005482号-10 MyBatis教程 SQL 教程 MySQL教程 Java 教程 Thymeleaf 教程 Hibernate教程 Spring教程 Redis教程