流程
购买服务器(2核4G够用)
使用宝塔远程初始化服务器(服务器放行8888端口,安全组-新增策略{入;自定义TCP;8888;0.0.0.0/0})
购买域名
创建解析
域名备案(莱卡云-域名-域名备案)才能通过域名进行访问,否则只能通过ip访问
域名白名单(莱卡云-域名白名单)
创建网站(java项目为例)
构建项目(打包为jar包)
配置好数据库等
放行项目端口(确保该端口未被使用)
文件-上传jar包
网站-java项目-添加项目(绑定域名:zhangjianling.cn)
配置nginx文件见下方【nginx配置文件示例】代码块
启动项目进行测试
多个网站管理-二级域名(usercenter.zhangjianling.cn)
域名-解析-添加二级域名 usercenter.zhangjianling.cn
网站-usercenter-设置
指定服务器端口号(一定未被占用)
域名管理添加usercenter.zhangjianling.cn
配置文件,见下方【二级域名配置文件示例】代码块
示例代码
server
{ listen 80;
server_name zhangjianling.cn;
index index.html index.htm default.htm default.html;
root /www/wwwroot;
include /www/server/panel/vhost/nginx/extension/jenkins/*.conf;
#CERT-APPLY-CHECK--START
# 用于SSL证书申请时的文件验证相关配置 -- 请勿删除
include /www/server/panel/vhost/nginx/well-known/jenkins.conf;
#CERT-APPLY-CHECK--END
#SSL-START SSL相关配置,请勿删除或修改下一行带注释的404规则
#error_page 404/404.html;
#SSL-END
#REWRITE-START 伪静态相关配置
include /www/server/panel/vhost/rewrite/java_jenkins.conf;
#REWRITE-END
#禁止访问的文件或目录
location ~ ^/(\.user.ini|\.htaccess|\.git|\.svn|\.project|LICENSE|README.md|package.json|package-lock.json|\.env) {
return 404;
}
#一键申请SSL证书验证目录相关设置
location /.well-known/ {
root /www/wwwroot/java_node_ssl;
}
#禁止在证书验证目录放入敏感文件
if ( $uri ~ "^/\.well-known/.*\.(php|jsp|py|js|css|lua|ts|go|zip|tar\.gz|rar|7z|sql|bak)$" ) {
return 403;
}
#STATIC-START 静态资源相关配置
#STATIC-END
#PROXY-LOCAl-START 代理本地服务的相关配置
#PROXY-START/
location / {
proxy_pass http://127.0.0.1:9002;
proxy_set_header Host $host;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header REMOTE-HOST $remote_addr;
add_header X-Cache $upstream_cache_status;
proxy_set_header X-Host $host:$server_port;
proxy_set_header X-Scheme $scheme;
proxy_connect_timeout 30s;
proxy_read_timeout 86400s;
proxy_send_timeout 30s;
proxy_http_version 1.1;
proxy_set_header Upgrade $http_upgrade;
proxy_set_header Connection "upgrade";
}
#PROXY-END/
#PROXY-LOCAl-END
access_log /www/wwwlogs/jenkins.log;
error_log /www/wwwlogs/jenkins.error.log;
}server
{
listen 80;
server_name usercenter.zhangjianling.cn;
index index.html index.htm default.htm default.html;
root /www/wwwroot;
include /www/server/panel/vhost/nginx/extension/user-center/*.conf;
#CERT-APPLY-CHECK--START
# 用于SSL证书申请时的文件验证相关配置 -- 请勿删除
include /www/server/panel/vhost/nginx/well-known/user-center.conf;
#CERT-APPLY-CHECK--END
#SSL-START SSL相关配置,请勿删除或修改下一行带注释的404规则
#error_page 404/404.html;
#SSL-END
#REWRITE-START 伪静态相关配置
include /www/server/panel/vhost/rewrite/java_user-center.conf;
#REWRITE-END
#禁止访问的文件或目录
location ~ ^/(\.user.ini|\.htaccess|\.git|\.svn|\.project|LICENSE|README.md|package.json|package-lock.json|\.env) {
return 404;
}
#一键申请SSL证书验证目录相关设置
location /.well-known/ {
root /www/wwwroot/java_node_ssl;
}
#禁止在证书验证目录放入敏感文件
if ( $uri ~ "^/\.well-known/.*\.(php|jsp|py|js|css|lua|ts|go|zip|tar\.gz|rar|7z|sql|bak)$" ) {
return 403;
}
#STATIC-START 静态资源相关配置
#STATIC-END
#PROXY-LOCAl-START 代理本地服务的相关配置
#PROXY-START/
location / {
proxy_pass http://127.0.0.1:9001;
proxy_set_header Host $host;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header REMOTE-HOST $remote_addr;
add_header X-Cache $upstream_cache_status;
proxy_set_header X-Host $host:$server_port;
proxy_set_header X-Scheme $scheme;
proxy_connect_timeout 30s;
proxy_read_timeout 86400s;
proxy_send_timeout 30s;
proxy_http_version 1.1;
proxy_set_header Upgrade $http_upgrade;
proxy_set_header Connection "upgrade";
}
#PROXY-END/
#PROXY-LOCAl-END
access_log /www/wwwlogs/user-center.log;
error_log /www/wwwlogs/user-center.error.log;
}