Browse Source

客户生产环境搭建

wany 1 year ago
parent
commit
957d0d9b5d
27 changed files with 2705 additions and 0 deletions
  1. 133 0
      docker-prod/app_http_jdk_17/Dockerfile
  2. 1 0
      docker-prod/app_http_jdk_17/build_docker.sh
  3. 1 0
      docker-prod/app_http_jdk_17/run_docker.sh
  4. 72 0
      docker-prod/docker-compose.yml
  5. 143 0
      docker-prod/nginx_https_1_25_1/Dockerfile
  6. 1 0
      docker-prod/nginx_https_1_25_1/build_docker.sh
  7. 48 0
      docker-prod/nginx_https_1_25_1/conf/conf.d/default.conf
  8. 32 0
      docker-prod/nginx_https_1_25_1/conf/nginx.conf
  9. 45 0
      docker-prod/nginx_https_1_25_1/conf_default/conf.d/default.conf
  10. 25 0
      docker-prod/nginx_https_1_25_1/conf_default/fastcgi_params
  11. 99 0
      docker-prod/nginx_https_1_25_1/conf_default/mime.types
  12. 32 0
      docker-prod/nginx_https_1_25_1/conf_default/nginx.conf
  13. 17 0
      docker-prod/nginx_https_1_25_1/conf_default/scgi_params
  14. 17 0
      docker-prod/nginx_https_1_25_1/conf_default/uwsgi_params
  15. 2 0
      docker-prod/nginx_https_1_25_1/run_docker.sh
  16. 62 0
      docker-prod/nginx_https_1_25_1/ssl/scs1706086600731_themetech-dt.com_server.crt
  17. 27 0
      docker-prod/nginx_https_1_25_1/ssl/scs1706086600731_themetech-dt.com_server.key
  18. 149 0
      docker-prod/postgresql_14_1/Dockerfile
  19. 1 0
      docker-prod/postgresql_14_1/build_docker.sh
  20. 100 0
      docker-prod/postgresql_14_1/postgrescnf/pg_hba.conf
  21. 798 0
      docker-prod/postgresql_14_1/postgrescnf/postgresql.conf
  22. 798 0
      docker-prod/postgresql_14_1/postgrescnf/postgresql_origin.conf
  23. 2 0
      src/main/java/com/kingtom/shengtai/app/message/util/UniAppUtils.java
  24. 40 0
      src/main/resources/application-prod-conf.yml
  25. 1 0
      src/main/resources/application.yml
  26. 14 0
      src/main/resources/init/org/org-prod.json
  27. 45 0
      src/main/resources/log4j2-prod.xml

+ 133 - 0
docker-prod/app_http_jdk_17/Dockerfile

@@ -0,0 +1,133 @@
+#基础镜像
+FROM openjdk:17
+#容器内根:/mnt
+WORKDIR /mnt
+
+#解决中文乱码问题
+ENV LANG C.UTF-8
+ENV LANGUAGE zh_CN.UTF-8
+ENV LC_ALL C.UTF-8
+ENV TZ Asia/Shanghai
+#指定jvm运行参数(提供默认值-按照物理3G计算)
+ENV JAVA_OPTS="-Xmx2048M -Xms2048M -Xmn768M -XX:MaxMetaspaceSize=256M -XX:MetaspaceSize=256M"
+#指定环境(prod-生产,dev-开发)
+ENV APP_ACTIVE="prod"
+#指定配置项(预留)
+ENV BOOT_CONFIG=""
+
+#卷目录(关联日志配置log4j2-prod.xml,关联存储配置application-prod.yml)
+VOLUME ["/mnt/app_logs","/mnt/app_storage","/mnt/app_jars"]
+
+#暴露容器端口为8080
+EXPOSE 8080
+
+#容器启动时执行的命令
+ENTRYPOINT nohup java -server ${JAVA_OPTS} -Dfile.encoding=UTF-8 -Dsun.jnu.encoding=UTF-8 -Djava.security.egd=file:/dev/./urandom -Dspring.profiles.active=${APP_ACTIVE} -jar /mnt/app_jars/shengtai.jar ${BOOT_CONFIG}
+
+
+
+
+
+
+
+
+#docker inspect,这段信息别动
+#[
+#    {
+#        "Id": "sha256:fd2772d5af9a3e60fe8b0a5c8ff16e5dc59ff5033705a9919ee59bf663aae5c7",
+#        "RepoTags": [
+#            "gift_app:v1"
+#        ],
+#        "RepoDigests": [],
+#        "Parent": "",
+#        "Comment": "buildkit.dockerfile.v0",
+#        "Created": "2023-06-27T14:10:10.057222675+08:00",
+#        "Container": "",
+#        "ContainerConfig": {
+#            "Hostname": "",
+#            "Domainname": "",
+#            "User": "",
+#            "AttachStdin": false,
+#            "AttachStdout": false,
+#            "AttachStderr": false,
+#            "Tty": false,
+#            "OpenStdin": false,
+#            "StdinOnce": false,
+#            "Env": null,
+#            "Cmd": null,
+#            "Image": "",
+#            "Volumes": null,
+#            "WorkingDir": "",
+#            "Entrypoint": null,
+#            "OnBuild": null,
+#            "Labels": null
+#        },
+#        "DockerVersion": "",
+#        "Author": "qima",
+#        "Config": {
+#            "Hostname": "",
+#            "Domainname": "",
+#            "User": "",
+#            "AttachStdin": false,
+#            "AttachStdout": false,
+#            "AttachStderr": false,
+#            "ExposedPorts": {
+#                "8080/tcp": {}
+#            },
+#            "Tty": false,
+#            "OpenStdin": false,
+#            "StdinOnce": false,
+#            "Env": [
+#                "PATH=/usr/java/openjdk-17/bin:/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin",
+#                "JAVA_HOME=/usr/java/openjdk-17",
+#                "LANG=C.UTF-8",
+#                "JAVA_VERSION=17.0.2",
+#                "LANGUAGE=zh_CN.UTF-8",
+#                "LC_ALL=C.UTF-8",
+#                "TZ=Asia/Shanghai",
+#                "JAVA_OPTS=-Xmx2048M -Xms2048M -Xmn768M -XX:MaxMetaspaceSize=256M -XX:MetaspaceSize=256M",
+#                "APP_ACTIVE=prod",
+#                "BOOT_CONFIG="
+#            ],
+#            "Cmd": null,
+#            "Image": "",
+#            "Volumes": {
+#                "[/mnt/app_logs,/mnt/app_storage]": {}
+#            },
+#            "WorkingDir": "/mnt",
+#            "Entrypoint": [
+#                "/bin/sh",
+#                "-c",
+#                "nohup java -server ${JAVA_OPTS} -Dfile.encoding=UTF-8 -Dsun.jnu.encoding=UTF-8 -Djava.security.egd=file:/dev/./urandom -Dspring.profiles.active=${APP_ACTIVE} -jar /mnt/app.jar ${BOOT_CONFIG}"
+#            ],
+#            "OnBuild": null,
+#            "Labels": null
+#        },
+#        "Architecture": "amd64",
+#        "Os": "linux",
+#        "Size": 514102948,
+#        "VirtualSize": 514102948,
+#        "GraphDriver": {
+#            "Data": {
+#                "LowerDir": "/var/lib/docker/overlay2/6zo7j8n4x2pul51m4z3e3lpj8/diff:/var/lib/docker/overlay2/0c9b8ac9bc6dbb5278f4433a17310534db404f62fdbe226220a95b92577957af/diff:/var/lib/docker/overlay2/bb4e03b128b60431dbece15b0ffd0e072b7decea3d3fc7b6cea32d59b49faf26/diff:/var/lib/docker/overlay2/fc6a5268bb7a5255205b14f2f81edebb6e292e345d6eaeef365698a5188d4b41/diff",
+#                "MergedDir": "/var/lib/docker/overlay2/lc0l37hs4kcfol4425lorsvo1/merged",
+#                "UpperDir": "/var/lib/docker/overlay2/lc0l37hs4kcfol4425lorsvo1/diff",
+#                "WorkDir": "/var/lib/docker/overlay2/lc0l37hs4kcfol4425lorsvo1/work"
+#            },
+#            "Name": "overlay2"
+#        },
+#        "RootFS": {
+#            "Type": "layers",
+#            "Layers": [
+#                "sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166",
+#                "sha256:27ee19dc88f2661d3e42161a9b0b5f4c59089269ee71c9f212c71139ea9edf52",
+#                "sha256:dc9fa3d8b576eada8a4f97ca296d0db470ea7342d544e7e2f3c42715d20c2798",
+#                "sha256:5f70bf18a086007016e948b04aed3b82103a36bea41755b6cddfaf10ace3c6ef",
+#                "sha256:441e155b4ffda31c75b6dedcdda7859a04c3096346fed4ed4ca7552cbbce7d94"
+#            ]
+#        },
+#        "Metadata": {
+#            "LastTagTime": "2023-06-27T14:10:10.250446336+08:00"
+#        }
+#    }
+#]

+ 1 - 0
docker-prod/app_http_jdk_17/build_docker.sh

@@ -0,0 +1 @@
+docker build -t shengtai_http_app:v1 .

+ 1 - 0
docker-prod/app_http_jdk_17/run_docker.sh

@@ -0,0 +1 @@
+docker run --name shengtai_http_app -d -p 8080:8080 -v /mnt/shengtai/docker/app_http_jdk_17/app_logs:/mnt/app_logs -v /mnt/shengtai/docker/app_http_jdk_17/app_storage:/mnt/app_storage shengtai_http_app:v1

+ 72 - 0
docker-prod/docker-compose.yml

@@ -0,0 +1,72 @@
+version: '2.2'
+services:
+  shengtai_postgres: # 数据库
+    # restart: always # 一ac直启动
+    image: shengtai_postgres:v1 # 镜像(已自定义好的)
+    container_name: shengtai_postgres # 容器名称
+    ports: # 端口暴露(对外)
+      - 5432:5432
+    volumes: # 挂载数据目录
+      - /mnt/shengtai/docker/postgresql_14_1/data/:/var/lib/postgresql/data
+    networks: # 同一网络,保障访问
+      - shengtai
+    cap_drop: # 权限
+      - ALL
+    cap_add: # 权限
+      - CHOWN
+      - DAC_OVERRIDE
+      - SETGID
+      - SETUID
+    environment: #
+      - POSTGRES_PASSWORD=kingtom888*
+
+  shengtai_http_app: # 应用程序
+    # restart: always # 保持一直启动
+    image: shengtai_http_app:v1 # 镜像(已自定义好的)
+    container_name: shengtai_http_app # 容器名称
+    depends_on: # 启动顺序依赖
+      - shengtai_postgres
+    ports: # 端口暴露(对外)
+      - 8080:8080
+    networks: # 同一网络保障访问
+      - shengtai
+    volumes: # 日志挂载
+      - /mnt/shengtai/docker/app_http_jdk_17/app_logs:/mnt/app_logs
+      - /mnt/shengtai/docker/nginx_https_1_25_1/www/upload:/mnt/app_storage
+      - /mnt/shengtai/docker/app_http_jdk_17/app_jars:/mnt/app_jars
+    cap_drop: # 权限
+      - ALL
+    cap_add: # 权限
+      - CHOWN
+      - DAC_OVERRIDE
+      - SETGID
+      - SETUID
+    links: # 链接到mysql
+      - shengtai_postgres:shengtai_postgres
+  shengtai_https_nginx: # 前端程序
+    image: shengtai_https_nginx:v1 # 镜像(已自定义好的)
+    container_name: shengtai_https_nginx # 容器名称
+    privileged: true
+    tty: true
+    depends_on: # 启动顺序依赖
+      - shengtai_http_app
+    ports: # 端口暴露(对外)
+      - 8081:80
+      - 443:443
+    networks: # 同一网络保障访问
+      - shengtai
+    volumes: # 日志挂载
+      - /mnt/shengtai/docker/nginx_https_1_25_1/www:/usr/share/nginx/html
+      - /mnt/shengtai/docker/nginx_https_1_25_1/logs:/var/log/nginx
+      - /mnt/shengtai/docker/nginx_https_1_25_1/conf/nginx.conf:/etc/nginx/nginx.conf
+      - /mnt/shengtai/docker/nginx_https_1_25_1/conf/conf.d/default.conf:/etc/nginx/conf.d/default.conf
+    cap_drop: # 权限
+      - ALL
+    cap_add: # 权限
+      - CHOWN
+      - DAC_OVERRIDE
+      - SETGID
+      - SETUID
+networks:
+  shengtai:
+    external: false

+ 143 - 0
docker-prod/nginx_https_1_25_1/Dockerfile

@@ -0,0 +1,143 @@
+#基础镜像
+FROM nginx:1.25.1
+# 复制自定义Nginx配置文件
+COPY conf/ /etc/nginx/
+
+# 复制SSL证书和密钥到容器
+COPY ssl/scs1706086600731_themetech-dt.com_server.crt /etc/nginx/ssl/ssl.pem
+COPY ssl/scs1706086600731_themetech-dt.com_server.key /etc/nginx/ssl/ssl.key
+
+#解决中文乱码问题
+#ENV LANG C.UTF-8
+#ENV LANGUAGE zh_CN.UTF-8
+#ENV LC_ALL C.UTF-8
+#ENV TZ Asia/Shanghai
+#其他沿用
+
+
+
+
+
+
+
+
+#docker inspect,这段信息别动
+#[
+#    {
+#        "Id": "sha256:021283c8eb95be02b23db0de7f609d603553c6714785e7a673c6594a624ffbda",
+#        "RepoTags": [
+#            "nginx:1.25.1",
+#            "nginx:latest"
+#        ],
+#        "RepoDigests": [
+#            "nginx@sha256:08bc36ad52474e528cc1ea3426b5e3f4bad8a130318e3140d6cfe29c8892c7ef"
+#        ],
+#        "Parent": "",
+#        "Comment": "",
+#        "Created": "2023-07-04T17:24:26.955102691Z",
+#        "Container": "1202d20005c45c16a7c97a3e50ae2a74113557f6645062e78797c946247d12e3",
+#        "ContainerConfig": {
+#            "Hostname": "1202d20005c4",
+#            "Domainname": "",
+#            "User": "",
+#            "AttachStdin": false,
+#            "AttachStdout": false,
+#            "AttachStderr": false,
+#            "ExposedPorts": {
+#                "80/tcp": {}
+#            },
+#            "Tty": false,
+#            "OpenStdin": false,
+#            "StdinOnce": false,
+#            "Env": [
+#                "PATH=/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin",
+#                "NGINX_VERSION=1.25.1",
+#                "NJS_VERSION=0.7.12",
+#                "PKG_RELEASE=1~bookworm"
+#            ],
+#            "Cmd": [
+#                "/bin/sh",
+#                "-c",
+#                "#(nop) ",
+#                "CMD [\"nginx\" \"-g\" \"daemon off;\"]"
+#            ],
+#            "Image": "sha256:bd2050702d728548dc037af4a4da56f38fb4b774ca1e6beaa6079fdfb01733ed",
+#            "Volumes": null,
+#            "WorkingDir": "",
+#            "Entrypoint": [
+#                "/docker-entrypoint.sh"
+#            ],
+#            "OnBuild": null,
+#            "Labels": {
+#                "maintainer": "NGINX Docker Maintainers <docker-maint@nginx.com>"
+#            },
+#            "StopSignal": "SIGQUIT"
+#        },
+#        "DockerVersion": "20.10.23",
+#        "Author": "",
+#        "Config": {
+#            "Hostname": "",
+#            "Domainname": "",
+#            "User": "",
+#            "AttachStdin": false,
+#            "AttachStdout": false,
+#            "AttachStderr": false,
+#            "ExposedPorts": {
+#                "80/tcp": {}
+#            },
+#            "Tty": false,
+#            "OpenStdin": false,
+#            "StdinOnce": false,
+#            "Env": [
+#                "PATH=/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin",
+#                "NGINX_VERSION=1.25.1",
+#                "NJS_VERSION=0.7.12",
+#                "PKG_RELEASE=1~bookworm"
+#            ],
+#            "Cmd": [
+#                "nginx",
+#                "-g",
+#                "daemon off;"
+#            ],
+#            "Image": "sha256:bd2050702d728548dc037af4a4da56f38fb4b774ca1e6beaa6079fdfb01733ed",
+#            "Volumes": null,
+#            "WorkingDir": "",
+#            "Entrypoint": [
+#                "/docker-entrypoint.sh"
+#            ],
+#            "OnBuild": null,
+#            "Labels": {
+#                "maintainer": "NGINX Docker Maintainers <docker-maint@nginx.com>"
+#            },
+#            "StopSignal": "SIGQUIT"
+#        },
+#        "Architecture": "amd64",
+#        "Os": "linux",
+#        "Size": 186855082,
+#        "VirtualSize": 186855082,
+#        "GraphDriver": {
+#            "Data": {
+#                "LowerDir": "/var/lib/docker/overlay2/9a85d46f172305edce5b1d949b451d834a2f77362ed6ced8841022bd8f6952f4/diff:/var/lib/docker/overlay2/9f336a267ef8dca2de512c2c6b75766ee8b963bbb0217002f96d2149b98e3d81/diff:/var/lib/docker/overlay2/99bb4d53dcb69708b9dad1f0eb21230653c50a80741c92ffdb6ec25e0bd2040b/diff:/var/lib/docker/overlay2/d70f0421dfb34e8f8c103254543d3ea8b347756b9585c9b2626d3112ea59fc1e/diff:/var/lib/docker/overlay2/490f91813e424fa9589b7f216f15d531d3be871ebf9bddf2e1d04927494d79c7/diff:/var/lib/docker/overlay2/e1dbdb73ff65e42cc6256c28837111149b2f3070b0192d7ba9367c4d470d9e7b/diff",
+#                "MergedDir": "/var/lib/docker/overlay2/60aac90f37e722474c0160cd679c5a6ca962249f88a42f6a0f3decd3ecec59f7/merged",
+#                "UpperDir": "/var/lib/docker/overlay2/60aac90f37e722474c0160cd679c5a6ca962249f88a42f6a0f3decd3ecec59f7/diff",
+#                "WorkDir": "/var/lib/docker/overlay2/60aac90f37e722474c0160cd679c5a6ca962249f88a42f6a0f3decd3ecec59f7/work"
+#            },
+#            "Name": "overlay2"
+#        },
+#        "RootFS": {
+#            "Type": "layers",
+#            "Layers": [
+#                "sha256:24839d45ca455f36659219281e0f2304520b92347eb536ad5cc7b4dbb8163588",
+#                "sha256:b821d93f6666533e9d135afb55b05327ee35823bb29014d3c4744b01fc35ccc5",
+#                "sha256:1998c5cd2230129d55a6d8553cd57df27a400614a4d7d510017467150de89739",
+#                "sha256:f36897eea34df8a4bfea6e0dfaeb693eea7654cd7030bb03767188664a8a7429",
+#                "sha256:9fdfd12bc85b7a97fef2d42001735cfc5fe24a7371928643192b5494a02497c1",
+#                "sha256:434c6a715c30517afd50547922c1014d43762ebbc51151b0ecee9b0374a29f10",
+#                "sha256:3c9d04c9ebd5324784eb9a556a7507c5284aa7353bac7a727768fed180709a69"
+#            ]
+#        },
+#        "Metadata": {
+#            "LastTagTime": "0001-01-01T00:00:00Z"
+#        }
+#    }
+#]

+ 1 - 0
docker-prod/nginx_https_1_25_1/build_docker.sh

@@ -0,0 +1 @@
+docker build -t shengtai_https_nginx:v1 .

+ 48 - 0
docker-prod/nginx_https_1_25_1/conf/conf.d/default.conf

@@ -0,0 +1,48 @@
+server {
+    listen       80;
+    listen  [::]:80;
+    server_name  themetech-dt.com;
+    rewrite ^(.*) https://$server_name$1 permanent;
+}
+
+server {
+    listen       443 ssl;
+    server_name  themetech-dt.com;
+
+    ssl_certificate      /etc/nginx/ssl/ssl.pem;
+    ssl_certificate_key  /etc/nginx/ssl/ssl.key;
+
+    ssl_session_cache    shared:SSL:1m;
+    ssl_session_timeout  5m;
+
+    ssl_ciphers  HIGH:!aNULL:!MD5;
+    ssl_prefer_server_ciphers  on;
+
+    location / {
+        proxy_set_header   X-Real-IP         $remote_addr;
+        proxy_set_header   Host              $http_host;
+        proxy_set_header   X-Forwarded-For   $proxy_add_x_forwarded_for;
+        root   /usr/share/nginx/html;
+        index  index.html index.htm;
+    }
+
+    location ^~ /apis/ {
+        proxy_pass  http://shengtai_http_app:8080/apis/;
+        proxy_http_version 1.1;
+        proxy_set_header Upgrade $http_upgrade;
+        proxy_set_header Connection "upgrade";
+        proxy_read_timeout 10s;
+
+        proxy_redirect    off;
+        proxy_set_header X-Forwarded-Proto  $scheme;
+        proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
+        proxy_set_header X-Real-IP $remote_addr;
+        proxy_set_header Host $http_host;
+        proxy_next_upstream http_502 http_504 error timeout invalid_header;
+    }
+
+    error_page   500 502 503 504  /50x.html;
+    location = /50x.html {
+        root   /usr/share/nginx/html;
+    }
+}

+ 32 - 0
docker-prod/nginx_https_1_25_1/conf/nginx.conf

@@ -0,0 +1,32 @@
+
+user  nginx;
+worker_processes  auto;
+
+error_log  /var/log/nginx/error.log notice;
+pid        /var/run/nginx.pid;
+
+
+events {
+    worker_connections  1024;
+}
+
+
+http {
+    include       /etc/nginx/mime.types;
+    default_type  application/octet-stream;
+
+    log_format  main  '$remote_addr - $remote_user [$time_local] "$request" '
+                      '$status $body_bytes_sent "$http_referer" '
+                      '"$http_user_agent" "$http_x_forwarded_for"';
+
+    access_log  /var/log/nginx/access.log  main;
+
+    sendfile        on;
+    #tcp_nopush     on;
+
+    keepalive_timeout  65;
+
+    #gzip  on;
+
+    include /etc/nginx/conf.d/*.conf;
+}

+ 45 - 0
docker-prod/nginx_https_1_25_1/conf_default/conf.d/default.conf

@@ -0,0 +1,45 @@
+server {
+    listen       80;
+    listen  [::]:80;
+    server_name  localhost;
+
+    #access_log  /var/log/nginx/host.access.log  main;
+
+    location / {
+        root   /usr/share/nginx/html;
+        index  index.html index.htm;
+    }
+
+    #error_page  404              /404.html;
+
+    # redirect server error pages to the static page /50x.html
+    #
+    error_page   500 502 503 504  /50x.html;
+    location = /50x.html {
+        root   /usr/share/nginx/html;
+    }
+
+    # proxy the PHP scripts to Apache listening on 127.0.0.1:80
+    #
+    #location ~ \.php$ {
+    #    proxy_pass   http://127.0.0.1;
+    #}
+
+    # pass the PHP scripts to FastCGI server listening on 127.0.0.1:9000
+    #
+    #location ~ \.php$ {
+    #    root           html;
+    #    fastcgi_pass   127.0.0.1:9000;
+    #    fastcgi_index  index.php;
+    #    fastcgi_param  SCRIPT_FILENAME  /scripts$fastcgi_script_name;
+    #    include        fastcgi_params;
+    #}
+
+    # deny access to .htaccess files, if Apache's document root
+    # concurs with nginx's one
+    #
+    #location ~ /\.ht {
+    #    deny  all;
+    #}
+}
+

+ 25 - 0
docker-prod/nginx_https_1_25_1/conf_default/fastcgi_params

@@ -0,0 +1,25 @@
+
+fastcgi_param  QUERY_STRING       $query_string;
+fastcgi_param  REQUEST_METHOD     $request_method;
+fastcgi_param  CONTENT_TYPE       $content_type;
+fastcgi_param  CONTENT_LENGTH     $content_length;
+
+fastcgi_param  SCRIPT_NAME        $fastcgi_script_name;
+fastcgi_param  REQUEST_URI        $request_uri;
+fastcgi_param  DOCUMENT_URI       $document_uri;
+fastcgi_param  DOCUMENT_ROOT      $document_root;
+fastcgi_param  SERVER_PROTOCOL    $server_protocol;
+fastcgi_param  REQUEST_SCHEME     $scheme;
+fastcgi_param  HTTPS              $https if_not_empty;
+
+fastcgi_param  GATEWAY_INTERFACE  CGI/1.1;
+fastcgi_param  SERVER_SOFTWARE    nginx/$nginx_version;
+
+fastcgi_param  REMOTE_ADDR        $remote_addr;
+fastcgi_param  REMOTE_PORT        $remote_port;
+fastcgi_param  SERVER_ADDR        $server_addr;
+fastcgi_param  SERVER_PORT        $server_port;
+fastcgi_param  SERVER_NAME        $server_name;
+
+# PHP only, required if PHP was built with --enable-force-cgi-redirect
+fastcgi_param  REDIRECT_STATUS    200;

+ 99 - 0
docker-prod/nginx_https_1_25_1/conf_default/mime.types

@@ -0,0 +1,99 @@
+
+types {
+    text/html                                        html htm shtml;
+    text/css                                         css;
+    text/xml                                         xml;
+    image/gif                                        gif;
+    image/jpeg                                       jpeg jpg;
+    application/javascript                           js;
+    application/atom+xml                             atom;
+    application/rss+xml                              rss;
+
+    text/mathml                                      mml;
+    text/plain                                       txt;
+    text/vnd.sun.j2me.app-descriptor                 jad;
+    text/vnd.wap.wml                                 wml;
+    text/x-component                                 htc;
+
+    image/avif                                       avif;
+    image/png                                        png;
+    image/svg+xml                                    svg svgz;
+    image/tiff                                       tif tiff;
+    image/vnd.wap.wbmp                               wbmp;
+    image/webp                                       webp;
+    image/x-icon                                     ico;
+    image/x-jng                                      jng;
+    image/x-ms-bmp                                   bmp;
+
+    font/woff                                        woff;
+    font/woff2                                       woff2;
+
+    application/java-archive                         jar war ear;
+    application/json                                 json;
+    application/mac-binhex40                         hqx;
+    application/msword                               doc;
+    application/pdf                                  pdf;
+    application/postscript                           ps eps ai;
+    application/rtf                                  rtf;
+    application/vnd.apple.mpegurl                    m3u8;
+    application/vnd.google-earth.kml+xml             kml;
+    application/vnd.google-earth.kmz                 kmz;
+    application/vnd.ms-excel                         xls;
+    application/vnd.ms-fontobject                    eot;
+    application/vnd.ms-powerpoint                    ppt;
+    application/vnd.oasis.opendocument.graphics      odg;
+    application/vnd.oasis.opendocument.presentation  odp;
+    application/vnd.oasis.opendocument.spreadsheet   ods;
+    application/vnd.oasis.opendocument.text          odt;
+    application/vnd.openxmlformats-officedocument.presentationml.presentation
+                                                     pptx;
+    application/vnd.openxmlformats-officedocument.spreadsheetml.sheet
+                                                     xlsx;
+    application/vnd.openxmlformats-officedocument.wordprocessingml.document
+                                                     docx;
+    application/vnd.wap.wmlc                         wmlc;
+    application/wasm                                 wasm;
+    application/x-7z-compressed                      7z;
+    application/x-cocoa                              cco;
+    application/x-java-archive-diff                  jardiff;
+    application/x-java-jnlp-file                     jnlp;
+    application/x-makeself                           run;
+    application/x-perl                               pl pm;
+    application/x-pilot                              prc pdb;
+    application/x-rar-compressed                     rar;
+    application/x-redhat-package-manager             rpm;
+    application/x-sea                                sea;
+    application/x-shockwave-flash                    swf;
+    application/x-stuffit                            sit;
+    application/x-tcl                                tcl tk;
+    application/x-x509-ca-cert                       der pem crt;
+    application/x-xpinstall                          xpi;
+    application/xhtml+xml                            xhtml;
+    application/xspf+xml                             xspf;
+    application/zip                                  zip;
+
+    application/octet-stream                         bin exe dll;
+    application/octet-stream                         deb;
+    application/octet-stream                         dmg;
+    application/octet-stream                         iso img;
+    application/octet-stream                         msi msp msm;
+
+    audio/midi                                       mid midi kar;
+    audio/mpeg                                       mp3;
+    audio/ogg                                        ogg;
+    audio/x-m4a                                      m4a;
+    audio/x-realaudio                                ra;
+
+    video/3gpp                                       3gpp 3gp;
+    video/mp2t                                       ts;
+    video/mp4                                        mp4;
+    video/mpeg                                       mpeg mpg;
+    video/quicktime                                  mov;
+    video/webm                                       webm;
+    video/x-flv                                      flv;
+    video/x-m4v                                      m4v;
+    video/x-mng                                      mng;
+    video/x-ms-asf                                   asx asf;
+    video/x-ms-wmv                                   wmv;
+    video/x-msvideo                                  avi;
+}

+ 32 - 0
docker-prod/nginx_https_1_25_1/conf_default/nginx.conf

@@ -0,0 +1,32 @@
+
+user  nginx;
+worker_processes  auto;
+
+error_log  /var/log/nginx/error.log notice;
+pid        /var/run/nginx.pid;
+
+
+events {
+    worker_connections  1024;
+}
+
+
+http {
+    include       /etc/nginx/mime.types;
+    default_type  application/octet-stream;
+
+    log_format  main  '$remote_addr - $remote_user [$time_local] "$request" '
+                      '$status $body_bytes_sent "$http_referer" '
+                      '"$http_user_agent" "$http_x_forwarded_for"';
+
+    access_log  /var/log/nginx/access.log  main;
+
+    sendfile        on;
+    #tcp_nopush     on;
+
+    keepalive_timeout  65;
+
+    #gzip  on;
+
+    include /etc/nginx/conf.d/*.conf;
+}

+ 17 - 0
docker-prod/nginx_https_1_25_1/conf_default/scgi_params

@@ -0,0 +1,17 @@
+
+scgi_param  REQUEST_METHOD     $request_method;
+scgi_param  REQUEST_URI        $request_uri;
+scgi_param  QUERY_STRING       $query_string;
+scgi_param  CONTENT_TYPE       $content_type;
+
+scgi_param  DOCUMENT_URI       $document_uri;
+scgi_param  DOCUMENT_ROOT      $document_root;
+scgi_param  SCGI               1;
+scgi_param  SERVER_PROTOCOL    $server_protocol;
+scgi_param  REQUEST_SCHEME     $scheme;
+scgi_param  HTTPS              $https if_not_empty;
+
+scgi_param  REMOTE_ADDR        $remote_addr;
+scgi_param  REMOTE_PORT        $remote_port;
+scgi_param  SERVER_PORT        $server_port;
+scgi_param  SERVER_NAME        $server_name;

+ 17 - 0
docker-prod/nginx_https_1_25_1/conf_default/uwsgi_params

@@ -0,0 +1,17 @@
+
+uwsgi_param  QUERY_STRING       $query_string;
+uwsgi_param  REQUEST_METHOD     $request_method;
+uwsgi_param  CONTENT_TYPE       $content_type;
+uwsgi_param  CONTENT_LENGTH     $content_length;
+
+uwsgi_param  REQUEST_URI        $request_uri;
+uwsgi_param  PATH_INFO          $document_uri;
+uwsgi_param  DOCUMENT_ROOT      $document_root;
+uwsgi_param  SERVER_PROTOCOL    $server_protocol;
+uwsgi_param  REQUEST_SCHEME     $scheme;
+uwsgi_param  HTTPS              $https if_not_empty;
+
+uwsgi_param  REMOTE_ADDR        $remote_addr;
+uwsgi_param  REMOTE_PORT        $remote_port;
+uwsgi_param  SERVER_PORT        $server_port;
+uwsgi_param  SERVER_NAME        $server_name;

+ 2 - 0
docker-prod/nginx_https_1_25_1/run_docker.sh

@@ -0,0 +1,2 @@
+docker run --name shengtai_https_nginx -d -p 8081:80 -p 443:443 -v
+/mnt/shengtai/docker/nginx_https_1_25_1/www:/usr/share/nginx/html -v /mnt/shengtai/docker/nginx_https_1_25_1/logs:/var/log/nginx shengtai_https_nginx:v1

+ 62 - 0
docker-prod/nginx_https_1_25_1/ssl/scs1706086600731_themetech-dt.com_server.crt

@@ -0,0 +1,62 @@
+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----
+-----BEGIN CERTIFICATE-----
+MIIEqjCCA5KgAwIBAgIQDeD/te5iy2EQn2CMnO1e0zANBgkqhkiG9w0BAQsFADBh
+MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3
+d3cuZGlnaWNlcnQuY29tMSAwHgYDVQQDExdEaWdpQ2VydCBHbG9iYWwgUm9vdCBH
+MjAeFw0xNzExMjcxMjQ2NDBaFw0yNzExMjcxMjQ2NDBaMG4xCzAJBgNVBAYTAlVT
+MRUwEwYDVQQKEwxEaWdpQ2VydCBJbmMxGTAXBgNVBAsTEHd3dy5kaWdpY2VydC5j
+b20xLTArBgNVBAMTJEVuY3J5cHRpb24gRXZlcnl3aGVyZSBEViBUTFMgQ0EgLSBH
+MjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAO8Uf46i/nr7pkgTDqnE
+eSIfCFqvPnUq3aF1tMJ5hh9MnO6Lmt5UdHfBGwC9Si+XjK12cjZgxObsL6Rg1njv
+NhAMJ4JunN0JGGRJGSevbJsA3sc68nbPQzuKp5Jc8vpryp2mts38pSCXorPR+sch
+QisKA7OSQ1MjcFN0d7tbrceWFNbzgL2csJVQeogOBGSe/KZEIZw6gXLKeFe7mupn
+NYJROi2iC11+HuF79iAttMc32Cv6UOxixY/3ZV+LzpLnklFq98XORgwkIJL1HuvP
+ha8yvb+W6JislZJL+HLFtidoxmI7Qm3ZyIV66W533DsGFimFJkz3y0GeHWuSVMbI
+lfsCAwEAAaOCAU8wggFLMB0GA1UdDgQWBBR435GQX+7erPbFdevVTFVT7yRKtjAf
+BgNVHSMEGDAWgBROIlQgGJXm427mD/r6uRLtBhePOTAOBgNVHQ8BAf8EBAMCAYYw
+HQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMBIGA1UdEwEB/wQIMAYBAf8C
+AQAwNAYIKwYBBQUHAQEEKDAmMCQGCCsGAQUFBzABhhhodHRwOi8vb2NzcC5kaWdp
+Y2VydC5jb20wQgYDVR0fBDswOTA3oDWgM4YxaHR0cDovL2NybDMuZGlnaWNlcnQu
+Y29tL0RpZ2lDZXJ0R2xvYmFsUm9vdEcyLmNybDBMBgNVHSAERTBDMDcGCWCGSAGG
+/WwBAjAqMCgGCCsGAQUFBwIBFhxodHRwczovL3d3dy5kaWdpY2VydC5jb20vQ1BT
+MAgGBmeBDAECATANBgkqhkiG9w0BAQsFAAOCAQEAoBs1eCLKakLtVRPFRjBIJ9LJ
+L0s8ZWum8U8/1TMVkQMBn+CPb5xnCD0GSA6L/V0ZFrMNqBirrr5B241OesECvxIi
+98bZ90h9+q/X5eMyOD35f8YTaEMpdnQCnawIwiHx06/0BfiTj+b/XQih+mqt3ZXe
+xNCJqKexdiB2IWGSKcgahPacWkk/BAQFisKIFYEqHzV974S3FAz/8LIfD58xnsEN
+GfzyIDkH3JrwYZ8caPTf6ZX9M1GrISN8HnWTtdNCH2xEajRa/h9ZBXjUyFKQrGk2
+n2hcLrfZSbynEC/pSw/ET7H5nWwckjmAJ1l9fcnbqkU/pf6uMQmnfl0JQjJNSg==
+-----END CERTIFICATE-----

+ 27 - 0
docker-prod/nginx_https_1_25_1/ssl/scs1706086600731_themetech-dt.com_server.key

@@ -0,0 +1,27 @@
+-----BEGIN RSA PRIVATE KEY-----
+MIIEpAIBAAKCAQEAv2gW2WIyjgmQwyV51uk1d91vKrcptirSd856SlEMupGxkriI
+uTXGQ7UuIG7A/wLSZmDk+2AJSWg7Ore0d58BjWZiAsQ+JEfrURFY6FuT4/+7xOgK
+9HCojgT6bGSQGODrh2FMqVI6fO6r0cXbv7XI+GXvMABLLWH+wprvVNOQ8wzcMg3f
+G9QoEXsHP0IqF3WaUg6s9CWRYJPEVxJjwED/8S8YUFIrzAwkgzmiGKwrJUS91O9Z
+7tJJtY6deu05zmluB9TGpl9vZ+hRAIsFfBDKVhcpWNuXsk7mlCZz0uqad1FdDj4Z
+b5onkT1m5Kexuoadv7XuKqGyRC/EgPxqkVdIlQIDAQABAoIBAG2Z1dOeZiJtGcaU
+tAK6wVIkqt5DyY+1T5Uo11+sr2Q5vvurzSZ4w1HL8mDB6qNbY00aWKQUZtzw4VGL
+FbyVgRcNtDuvUYIG6JkgHM/YeIPK0SM8V+GGjQ3djeP5ZYXJbTS1I2elXTZimGJj
+MKTDHBQYknDjCikvfujCPR9OkiaJi/STh3FNrhl5H9bpDyb2ZCoQNP0R+nsU8dhH
+g0/p7RnQ2wMZTGepv1ixdbgN8n7q6FnEahrcAM108MGOg36LdvLeqVRa7xtKGCx2
+13fDCLYh8ICRoGrJY5N++BZ5bVBldNM7rsr1gNC4Pp5jKKX35/le9of/WtYvk4VS
+f5scD2ECgYEA/D02k1xvTpj64xP8b1IcxFLDvHS02mjfnJDWbiJLGGrFZL+vZ01p
+w7YLk6E4T9FyY401FK60aLsRKkwSmJ0KCBOteDIYz6fV0sYLtP4NCTXt0f7gcYEr
++crA3DLKpS94AVH4cQ4Skfv3GVxDXm+PbO1gvbXwi7ZvgkEKjEfIqB0CgYEAwkKu
+RQzAdoGnYL05ei6vUj7ec+WFcTi4DtNe14Q77frtw9QPVtQRpBFbnAA5ZbplzZVt
+06jX84mOwVmho+9PoTuEwZ5z9w92Y0BgqG1oNxRXfi1tYuqYDw9bZ0bU1OKmXvwW
+Diu7MwHZaWU08PMVfktdYgQiQaVitQ3FSeO5aNkCgYEAj2UZRpLw8CTF1BwDkSGE
+GxPWFKfgPJ4MKUypqniyalIgn5LdW4PF0a4HTMkFY1L1jaSz/WsIQtW9/2a516rH
+DippnoAUXNDUHPvboewfaxIOfihAXiaJ4nqiQ0xYqamftlhsPZE7e2RbaD5sSh5v
+0gPs0EzDUBnJsKnbHj6c0v0CgYEAwK14wr46K5C/3oDxAJJLjO0UoamW6M0UKohW
+OrdK5emMaT7tk/a2JKCe16WVSKRQE1BSZazDvSfEM1zeqYZU2hv5uj2a0gNBLoKN
+HKGfy3neqiUOqRz8g3t88nvb3+eKkw3AJoATpi0AYrxifVbuC51e2zg0bh5HQEOP
+WpGHtkkCgYBu8TKVDQpJqKrBhJVxIrSdndekhWu0xPNOdxjl4FJCc0L3KiXLEQd9
+l8TPhUowr1FAultixBG7lCQjVlYpQDGLQpIah5jmcbdc+Yi47kiLExJs6IJnwTcR
+RxgRGrb/frLhr92c/Q2PCDhqXw0a3NMikfSQOmDeJvKwyyy0SX3mKg==
+-----END RSA PRIVATE KEY-----

+ 149 - 0
docker-prod/postgresql_14_1/Dockerfile

@@ -0,0 +1,149 @@
+#基础镜像
+FROM postgres:14.1
+#容器内根:/mnt
+WORKDIR /mnt
+#配置文件复制
+COPY postgrescnf /var/lib/postgresql/data
+
+#解决中文乱码问题
+#ENV LANG C.UTF-8
+#ENV LANGUAGE zh_CN.UTF-8
+#ENV LC_ALL C.UTF-8
+#ENV TZ Asia/Shanghai
+#其他沿用
+
+
+
+
+
+
+
+
+
+#docker inspect,这段信息别动
+#[
+#    {
+#        "Id": "sha256:da2cb49d7a8d1416cfc2ec6fb47b60112b3a2f276bcf7439ef18e7c505b83fc6",
+#        "RepoTags": [
+#            "postgres:14.1"
+#        ],
+#        "RepoDigests": [
+#            "postgres@sha256:3162a6ead070474b27289f09eac4c865e75f93847a2d7098f718ee5a721637c4"
+#        ],
+#        "Parent": "",
+#        "Comment": "",
+#        "Created": "2022-01-27T01:10:09.170390248Z",
+#        "Container": "a9ba1a5a32a6a74c2b697e05e9bffa21155021634a84633a94499ca3b847d5a2",
+#        "ContainerConfig": {
+#            "Hostname": "a9ba1a5a32a6",
+#            "Domainname": "",
+#            "User": "",
+#            "AttachStdin": false,
+#            "AttachStdout": false,
+#            "AttachStderr": false,
+#            "ExposedPorts": {
+#                "5432/tcp": {}
+#            },
+#            "Tty": false,
+#            "OpenStdin": false,
+#            "StdinOnce": false,
+#            "Env": [
+#                "PATH=/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin:/usr/lib/postgresql/14/bin",
+#                "GOSU_VERSION=1.14",
+#                "LANG=en_US.utf8",
+#                "PG_MAJOR=14",
+#                "PG_VERSION=14.1-1.pgdg110+1",
+#                "PGDATA=/var/lib/postgresql/data"
+#            ],
+#            "Cmd": [
+#                "/bin/sh",
+#                "-c",
+#                "#(nop) ",
+#                "CMD [\"postgres\"]"
+#            ],
+#            "Image": "sha256:091d7037aafbccb2c7b44d28a9db365fbdebd505e901a8c247703c608da9e43d",
+#            "Volumes": {
+#                "/var/lib/postgresql/data": {}
+#            },
+#            "WorkingDir": "",
+#            "Entrypoint": [
+#                "docker-entrypoint.sh"
+#            ],
+#            "OnBuild": null,
+#            "Labels": {},
+#            "StopSignal": "SIGINT"
+#        },
+#        "DockerVersion": "20.10.7",
+#        "Author": "",
+#        "Config": {
+#            "Hostname": "",
+#            "Domainname": "",
+#            "User": "",
+#            "AttachStdin": false,
+#            "AttachStdout": false,
+#            "AttachStderr": false,
+#            "ExposedPorts": {
+#                "5432/tcp": {}
+#            },
+#            "Tty": false,
+#            "OpenStdin": false,
+#            "StdinOnce": false,
+#            "Env": [
+#                "PATH=/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin:/usr/lib/postgresql/14/bin",
+#                "GOSU_VERSION=1.14",
+#                "LANG=en_US.utf8",
+#                "PG_MAJOR=14",
+#                "PG_VERSION=14.1-1.pgdg110+1",
+#                "PGDATA=/var/lib/postgresql/data"
+#            ],
+#            "Cmd": [
+#                "postgres"
+#            ],
+#            "Image": "sha256:091d7037aafbccb2c7b44d28a9db365fbdebd505e901a8c247703c608da9e43d",
+#            "Volumes": {
+#                "/var/lib/postgresql/data": {}
+#            },
+#            "WorkingDir": "",
+#            "Entrypoint": [
+#                "docker-entrypoint.sh"
+#            ],
+#            "OnBuild": null,
+#            "Labels": null,
+#            "StopSignal": "SIGINT"
+#        },
+#        "Architecture": "amd64",
+#        "Os": "linux",
+#        "Size": 374037906,
+#        "VirtualSize": 374037906,
+#        "GraphDriver": {
+#            "Data": {
+#                "LowerDir": "/var/lib/docker/overlay2/e261704c8cbc22c1e5f46dbc8a68bf44586aeca4b4665dea1615b8894791c9a7/diff:/var/lib/docker/overlay2/81f97f7d424beedab75b6489abf231fb2611c956413ba5fbbab269683436b174/diff:/var/lib/docker/overlay2/2994059e7d94423c52f0b8fa6ab19b57efe14a04e5d43225454596a1726e264a/diff:/var/lib/docker/overlay2/5f0a0b7ab201ad31f4760de6028b4adc381c3dcc5a06d238707c484d8132adfc/diff:/var/lib/docker/overlay2/dfaae7ec39d26065a2764af8731496249fb157639fe9549b67cb28344495bce8/diff:/var/lib/docker/overlay2/4c6e51499b1729ac19cf9c792295baa5d51152937fd337f9d14544f7796aa620/diff:/var/lib/docker/overlay2/bec799523e0708479525fa5f6d72102af736f8678aa848953ae2b6cbca04e672/diff:/var/lib/docker/overlay2/0f4be3623f01416f1fd6691f4d40da79444c08c620d45ce75244aedc6279c068/diff:/var/lib/docker/overlay2/90c861ce624ace25fb21eb8c79e99c024b57496923bab2074586cd7b52c96df0/diff:/var/lib/docker/overlay2/c6ed47b6177c6ae2d15786108d2ee14db4a990118f7ef151223e07cfb11b3d59/diff:/var/lib/docker/overlay2/0ac26801cf6a8b3fe2a3b1305a2d9451913c112724bd8f200a607c1a81846946/diff:/var/lib/docker/overlay2/f76ddda10867050883eab42b043a1ddbca5fc042ef93f53db0511acbdfa5035e/diff",
+#                "MergedDir": "/var/lib/docker/overlay2/dc33bd5afd13c82cea677dfeb20aaf3dafbd689c4f9e6e0d30b060b80dac82ca/merged",
+#                "UpperDir": "/var/lib/docker/overlay2/dc33bd5afd13c82cea677dfeb20aaf3dafbd689c4f9e6e0d30b060b80dac82ca/diff",
+#                "WorkDir": "/var/lib/docker/overlay2/dc33bd5afd13c82cea677dfeb20aaf3dafbd689c4f9e6e0d30b060b80dac82ca/work"
+#            },
+#            "Name": "overlay2"
+#        },
+#        "RootFS": {
+#            "Type": "layers",
+#            "Layers": [
+#                "sha256:7d0ebbe3f5d26c1b5ec4d5dbb6fe3205d7061f9735080b0162d550530328abd6",
+#                "sha256:504d3c78f1942134301a91d83b6d2102b2c398eab2c81a76f62b9eb33f8c000b",
+#                "sha256:8c1f84338867a554126fe7100341ff8174fe71e13518389803e4e1050aa8f200",
+#                "sha256:10e60ad30e5f437ff02dd7273545deeeabb0d07595dae73cc0f1ea2d38a2956f",
+#                "sha256:96d824739a641ee2e8f36bcd8ff576c7ba72029184aaa7c8ec5c418f5c60802f",
+#                "sha256:a4b9517dfa8c2c05e3cd3423f52535a7e551ac7e4c026541742c054b19b1c5e4",
+#                "sha256:f2e4fedb957df6c5380f46b9b08e2554b1936a553acbc0c77579faf53724feda",
+#                "sha256:c1cf0fe2cfa15adc5603ebd8d0047d12afe9b82a634784c8b3967be55ffc33f2",
+#                "sha256:469b06b8e1fd519e751e45a5c21c6a0b5981434253e41958d08c3defc7724b0a",
+#                "sha256:adb28f5e87a9c6419cb648847f38f3cd61cf9932d2d754d2b6176a22ad9d7d00",
+#                "sha256:bb548d9ab6d956fbb23140fac291a61a6264d4d3d6b37c8069c380dfdce21202",
+#                "sha256:8fadd3fddd7ea4f521a313f64d435faf1f33fc8cce2af9c6c7dfd84567d4f913",
+#                "sha256:988d526226faab58a6045a2e57903f1b7d7d546dbc4a3cfc20d028c9ccdb7bc1"
+#            ]
+#        },
+#        "Metadata": {
+#            "LastTagTime": "0001-01-01T00:00:00Z"
+#        }
+#    }
+#]

+ 1 - 0
docker-prod/postgresql_14_1/build_docker.sh

@@ -0,0 +1 @@
+docker build -t shengtai_postgres:v1 .

+ 100 - 0
docker-prod/postgresql_14_1/postgrescnf/pg_hba.conf

@@ -0,0 +1,100 @@
+# PostgreSQL Client Authentication Configuration File
+# ===================================================
+#
+# Refer to the "Client Authentication" section in the PostgreSQL
+# documentation for a complete description of this file.  A short
+# synopsis follows.
+#
+# This file controls: which hosts are allowed to connect, how clients
+# are authenticated, which PostgreSQL user names they can use, which
+# databases they can access.  Records take one of these forms:
+#
+# local         DATABASE  USER  METHOD  [OPTIONS]
+# host          DATABASE  USER  ADDRESS  METHOD  [OPTIONS]
+# hostssl       DATABASE  USER  ADDRESS  METHOD  [OPTIONS]
+# hostnossl     DATABASE  USER  ADDRESS  METHOD  [OPTIONS]
+# hostgssenc    DATABASE  USER  ADDRESS  METHOD  [OPTIONS]
+# hostnogssenc  DATABASE  USER  ADDRESS  METHOD  [OPTIONS]
+#
+# (The uppercase items must be replaced by actual values.)
+#
+# The first field is the connection type:
+# - "local" is a Unix-domain socket
+# - "host" is a TCP/IP socket (encrypted or not)
+# - "hostssl" is a TCP/IP socket that is SSL-encrypted
+# - "hostnossl" is a TCP/IP socket that is not SSL-encrypted
+# - "hostgssenc" is a TCP/IP socket that is GSSAPI-encrypted
+# - "hostnogssenc" is a TCP/IP socket that is not GSSAPI-encrypted
+#
+# DATABASE can be "all", "sameuser", "samerole", "replication", a
+# database name, or a comma-separated list thereof. The "all"
+# keyword does not match "replication". Access to replication
+# must be enabled in a separate record (see example below).
+#
+# USER can be "all", a user name, a group name prefixed with "+", or a
+# comma-separated list thereof.  In both the DATABASE and USER fields
+# you can also write a file name prefixed with "@" to include names
+# from a separate file.
+#
+# ADDRESS specifies the set of hosts the record matches.  It can be a
+# host name, or it is made up of an IP address and a CIDR mask that is
+# an integer (between 0 and 32 (IPv4) or 128 (IPv6) inclusive) that
+# specifies the number of significant bits in the mask.  A host name
+# that starts with a dot (.) matches a suffix of the actual host name.
+# Alternatively, you can write an IP address and netmask in separate
+# columns to specify the set of hosts.  Instead of a CIDR-address, you
+# can write "samehost" to match any of the server's own IP addresses,
+# or "samenet" to match any address in any subnet that the server is
+# directly connected to.
+#
+# METHOD can be "trust", "reject", "md5", "password", "scram-sha-256",
+# "gss", "sspi", "ident", "peer", "pam", "ldap", "radius" or "cert".
+# Note that "password" sends passwords in clear text; "md5" or
+# "scram-sha-256" are preferred since they send encrypted passwords.
+#
+# OPTIONS are a set of options for the authentication in the format
+# NAME=VALUE.  The available options depend on the different
+# authentication methods -- refer to the "Client Authentication"
+# section in the documentation for a list of which options are
+# available for which authentication methods.
+#
+# Database and user names containing spaces, commas, quotes and other
+# special characters must be quoted.  Quoting one of the keywords
+# "all", "sameuser", "samerole" or "replication" makes the name lose
+# its special character, and just match a database or username with
+# that name.
+#
+# This file is read on server startup and when the server receives a
+# SIGHUP signal.  If you edit the file on a running system, you have to
+# SIGHUP the server for the changes to take effect, run "pg_ctl reload",
+# or execute "SELECT pg_reload_conf()".
+#
+# Put your actual configuration here
+# ----------------------------------
+#
+# If you want to allow non-local connections, you need to add more
+# "host" records.  In that case you will also need to make PostgreSQL
+# listen on a non-local interface via the listen_addresses
+# configuration parameter, or via the -i or -h command line switches.
+
+# CAUTION: Configuring the system for local "trust" authentication
+# allows any local user to connect as any PostgreSQL user, including
+# the database superuser.  If you do not trust all your local users,
+# use another authentication method.
+
+
+# TYPE  DATABASE        USER            ADDRESS                 METHOD
+
+# "local" is for Unix domain socket connections only
+local   all             all                                     trust
+# IPv4 local connections:
+host    all             all             127.0.0.1/32            trust
+# IPv6 local connections:
+host    all             all             ::1/128                 trust
+# Allow replication connections from localhost, by a user with the
+# replication privilege.
+local   replication     all                                     trust
+host    replication     all             127.0.0.1/32            trust
+host    replication     all             ::1/128                 trust
+
+host all all all scram-sha-256

+ 798 - 0
docker-prod/postgresql_14_1/postgrescnf/postgresql.conf

@@ -0,0 +1,798 @@
+# -----------------------------
+# PostgreSQL configuration file
+# -----------------------------
+#
+# This file consists of lines of the form:
+#
+#   name = value
+#
+# (The "=" is optional.)  Whitespace may be used.  Comments are introduced with
+# "#" anywhere on a line.  The complete list of parameter names and allowed
+# values can be found in the PostgreSQL documentation.
+#
+# The commented-out settings shown in this file represent the default values.
+# Re-commenting a setting is NOT sufficient to revert it to the default value;
+# you need to reload the server.
+#
+# This file is read on server startup and when the server receives a SIGHUP
+# signal.  If you edit the file on a running system, you have to SIGHUP the
+# server for the changes to take effect, run "pg_ctl reload", or execute
+# "SELECT pg_reload_conf()".  Some parameters, which are marked below,
+# require a server shutdown and restart to take effect.
+#
+# Any parameter can also be given as a command-line option to the server, e.g.,
+# "postgres -c log_connections=on".  Some parameters can be changed at run time
+# with the "SET" SQL command.
+#
+# Memory units:  B  = bytes            Time units:  us  = microseconds
+#                kB = kilobytes                     ms  = milliseconds
+#                MB = megabytes                     s   = seconds
+#                GB = gigabytes                     min = minutes
+#                TB = terabytes                     h   = hours
+#                                                   d   = days
+
+
+#------------------------------------------------------------------------------
+# FILE LOCATIONS
+#------------------------------------------------------------------------------
+
+# The default values of these variables are driven from the -D command-line
+# option or PGDATA environment variable, represented here as ConfigDir.
+
+#data_directory = 'ConfigDir'		# use data in another directory
+					# (change requires restart)
+#hba_file = 'ConfigDir/pg_hba.conf'	# host-based authentication file
+					# (change requires restart)
+#ident_file = 'ConfigDir/pg_ident.conf'	# ident configuration file
+					# (change requires restart)
+
+# If external_pid_file is not explicitly set, no extra PID file is written.
+#external_pid_file = ''			# write an extra PID file
+					# (change requires restart)
+
+
+#------------------------------------------------------------------------------
+# CONNECTIONS AND AUTHENTICATION
+#------------------------------------------------------------------------------
+
+# - Connection Settings -
+
+listen_addresses = '*'
+					# comma-separated list of addresses;
+					# defaults to 'localhost'; use '*' for all
+					# (change requires restart)
+#port = 5432				# (change requires restart)
+max_connections = 300			# (change requires restart)
+#superuser_reserved_connections = 3	# (change requires restart)
+#unix_socket_directories = '/var/run/postgresql'	# comma-separated list of directories
+					# (change requires restart)
+#unix_socket_group = ''			# (change requires restart)
+#unix_socket_permissions = 0777		# begin with 0 to use octal notation
+					# (change requires restart)
+#bonjour = off				# advertise server via Bonjour
+					# (change requires restart)
+#bonjour_name = ''			# defaults to the computer name
+					# (change requires restart)
+
+# - TCP settings -
+# see "man tcp" for details
+
+#tcp_keepalives_idle = 0		# TCP_KEEPIDLE, in seconds;
+					# 0 selects the system default
+#tcp_keepalives_interval = 0		# TCP_KEEPINTVL, in seconds;
+					# 0 selects the system default
+#tcp_keepalives_count = 0		# TCP_KEEPCNT;
+					# 0 selects the system default
+#tcp_user_timeout = 0			# TCP_USER_TIMEOUT, in milliseconds;
+					# 0 selects the system default
+
+#client_connection_check_interval = 0	# time between checks for client
+					# disconnection while running queries;
+					# 0 for never
+
+# - Authentication -
+
+#authentication_timeout = 1min		# 1s-600s
+#password_encryption = scram-sha-256	# scram-sha-256 or md5
+#db_user_namespace = off
+
+# GSSAPI using Kerberos
+#krb_server_keyfile = 'FILE:${sysconfdir}/krb5.keytab'
+#krb_caseins_users = off
+
+# - SSL -
+
+#ssl = off
+#ssl_ca_file = ''
+#ssl_cert_file = 'server.crt'
+#ssl_crl_file = ''
+#ssl_crl_dir = ''
+#ssl_key_file = 'server.key'
+#ssl_ciphers = 'HIGH:MEDIUM:+3DES:!aNULL' # allowed SSL ciphers
+#ssl_prefer_server_ciphers = on
+#ssl_ecdh_curve = 'prime256v1'
+#ssl_min_protocol_version = 'TLSv1.2'
+#ssl_max_protocol_version = ''
+#ssl_dh_params_file = ''
+#ssl_passphrase_command = ''
+#ssl_passphrase_command_supports_reload = off
+
+
+#------------------------------------------------------------------------------
+# RESOURCE USAGE (except WAL)
+#------------------------------------------------------------------------------
+
+# - Memory -
+
+shared_buffers = 2GB			# min 128kB
+					# (change requires restart)
+huge_pages = on			# on, off, or try
+					# (change requires restart)
+#huge_page_size = 0			# zero for system default
+					# (change requires restart)
+#temp_buffers = 8MB			# min 800kB
+#max_prepared_transactions = 0		# zero disables the feature
+					# (change requires restart)
+# Caution: it is not advisable to set max_prepared_transactions nonzero unless
+# you actively intend to use prepared transactions.
+work_mem = 128MB				# min 64kB
+#hash_mem_multiplier = 1.0		# 1-1000.0 multiplier on hash table work_mem
+maintenance_work_mem = 512MB		# min 1MB
+autovacuum_work_mem = 512MB		# min 1MB, or -1 to use maintenance_work_mem
+#logical_decoding_work_mem = 64MB	# min 64kB
+#max_stack_depth = 2MB			# min 100kB
+#shared_memory_type = mmap		# the default is the first option
+					# supported by the operating system:
+					#   mmap
+					#   sysv
+					#   windows
+					# (change requires restart)
+dynamic_shared_memory_type = mmap	# the default is the first option
+					# supported by the operating system:
+					#   posix
+					#   sysv
+					#   windows
+					#   mmap
+					# (change requires restart)
+#min_dynamic_shared_memory = 0MB	# (change requires restart)
+
+# - Disk -
+
+#temp_file_limit = -1			# limits per-process temp file space
+					# in kilobytes, or -1 for no limit
+
+# - Kernel Resources -
+
+#max_files_per_process = 1000		# min 64
+					# (change requires restart)
+
+# - Cost-Based Vacuum Delay -
+
+vacuum_cost_delay = 0			# 0-100 milliseconds (0 disables)
+#vacuum_cost_page_hit = 1		# 0-10000 credits
+#vacuum_cost_page_miss = 2		# 0-10000 credits
+#vacuum_cost_page_dirty = 20		# 0-10000 credits
+#vacuum_cost_limit = 200		# 1-10000 credits
+
+# - Background Writer -
+
+bgwriter_delay = 50ms			# 10-10000ms between rounds
+bgwriter_lru_maxpages = 500		# max buffers written/round, 0 disables
+bgwriter_lru_multiplier = 5.0		# 0-10.0 multiplier on buffers scanned/round
+#bgwriter_flush_after = 512kB		# measured in pages, 0 disables
+
+# - Asynchronous Behavior -
+
+#backend_flush_after = 0		# measured in pages, 0 disables
+effective_io_concurrency = 2		# 1-1000; 0 disables prefetching
+#maintenance_io_concurrency = 10	# 1-1000; 0 disables prefetching
+#max_worker_processes = 8		# (change requires restart)
+#max_parallel_workers_per_gather = 2	# taken from max_parallel_workers
+#max_parallel_maintenance_workers = 2	# taken from max_parallel_workers
+#max_parallel_workers = 8		# maximum number of max_worker_processes that
+					# can be used in parallel operations
+#parallel_leader_participation = on
+#old_snapshot_threshold = -1		# 1min-60d; -1 disables; 0 is immediate
+					# (change requires restart)
+
+
+#------------------------------------------------------------------------------
+# WRITE-AHEAD LOG
+#------------------------------------------------------------------------------
+
+# - Settings -
+
+#wal_level = replica			# minimal, replica, or logical
+					# (change requires restart)
+#fsync = on				# flush data to disk for crash safety
+					# (turning this off can cause
+					# unrecoverable data corruption)
+synchronous_commit = off		# synchronization level;
+					# off, local, remote_write, remote_apply, or on
+wal_sync_method = fsync		# the default is the first option
+					# supported by the operating system:
+					#   open_datasync
+					#   fdatasync (default on Linux and FreeBSD)
+					#   fsync
+					#   fsync_writethrough
+					#   open_sync
+#full_page_writes = on			# recover from partial page writes
+#wal_log_hints = off			# also do full page writes of non-critical updates
+					# (change requires restart)
+#wal_compression = off			# enable compression of full-page writes
+#wal_init_zero = on			# zero-fill new WAL files
+#wal_recycle = on			# recycle WAL files
+wal_buffers = 128MB			# min 32kB, -1 sets based on shared_buffers
+					# (change requires restart)
+wal_writer_delay = 50ms		# 1-10000 milliseconds
+#wal_writer_flush_after = 1MB		# measured in pages, 0 disables
+#wal_skip_threshold = 2MB
+
+commit_delay = 20			# range 0-100000, in microseconds
+commit_siblings = 10			# range 1-1000
+
+# - Checkpoints -
+
+checkpoint_timeout = 30min		# range 30s-1d
+checkpoint_completion_target = 0.99	# checkpoint target duration, 0.0 - 1.0
+#checkpoint_flush_after = 256kB		# measured in pages, 0 disables
+#checkpoint_warning = 30s		# 0 disables
+max_wal_size = 10GB
+min_wal_size = 80MB
+
+# - Archiving -
+
+#archive_mode = off		# enables archiving; off, on, or always
+				# (change requires restart)
+#archive_command = ''		# command to use to archive a logfile segment
+				# placeholders: %p = path of file to archive
+				#               %f = file name only
+				# e.g. 'test ! -f /mnt/server/archivedir/%f && cp %p /mnt/server/archivedir/%f'
+#archive_timeout = 0		# force a logfile segment switch after this
+				# number of seconds; 0 disables
+
+# - Archive Recovery -
+
+# These are only used in recovery mode.
+
+#restore_command = ''		# command to use to restore an archived logfile segment
+				# placeholders: %p = path of file to restore
+				#               %f = file name only
+				# e.g. 'cp /mnt/server/archivedir/%f %p'
+#archive_cleanup_command = ''	# command to execute at every restartpoint
+#recovery_end_command = ''	# command to execute at completion of recovery
+
+# - Recovery Target -
+
+# Set these only when performing a targeted recovery.
+
+#recovery_target = ''		# 'immediate' to end recovery as soon as a
+                                # consistent state is reached
+				# (change requires restart)
+#recovery_target_name = ''	# the named restore point to which recovery will proceed
+				# (change requires restart)
+#recovery_target_time = ''	# the time stamp up to which recovery will proceed
+				# (change requires restart)
+#recovery_target_xid = ''	# the transaction ID up to which recovery will proceed
+				# (change requires restart)
+#recovery_target_lsn = ''	# the WAL LSN up to which recovery will proceed
+				# (change requires restart)
+#recovery_target_inclusive = on # Specifies whether to stop:
+				# just after the specified recovery target (on)
+				# just before the recovery target (off)
+				# (change requires restart)
+#recovery_target_timeline = 'latest'	# 'current', 'latest', or timeline ID
+				# (change requires restart)
+#recovery_target_action = 'pause'	# 'pause', 'promote', 'shutdown'
+				# (change requires restart)
+
+
+#------------------------------------------------------------------------------
+# REPLICATION
+#------------------------------------------------------------------------------
+
+# - Sending Servers -
+
+# Set these on the primary and on any standby that will send replication data.
+
+#max_wal_senders = 10		# max number of walsender processes
+				# (change requires restart)
+#max_replication_slots = 10	# max number of replication slots
+				# (change requires restart)
+#wal_keep_size = 0		# in megabytes; 0 disables
+#max_slot_wal_keep_size = -1	# in megabytes; -1 disables
+#wal_sender_timeout = 60s	# in milliseconds; 0 disables
+#track_commit_timestamp = off	# collect timestamp of transaction commit
+				# (change requires restart)
+
+# - Primary Server -
+
+# These settings are ignored on a standby server.
+
+#synchronous_standby_names = ''	# standby servers that provide sync rep
+				# method to choose sync standbys, number of sync standbys,
+				# and comma-separated list of application_name
+				# from standby(s); '*' = all
+#vacuum_defer_cleanup_age = 0	# number of xacts by which cleanup is delayed
+
+# - Standby Servers -
+
+# These settings are ignored on a primary server.
+
+#primary_conninfo = ''			# connection string to sending server
+#primary_slot_name = ''			# replication slot on sending server
+#promote_trigger_file = ''		# file name whose presence ends recovery
+#hot_standby = on			# "off" disallows queries during recovery
+					# (change requires restart)
+#max_standby_archive_delay = 30s	# max delay before canceling queries
+					# when reading WAL from archive;
+					# -1 allows indefinite delay
+#max_standby_streaming_delay = 30s	# max delay before canceling queries
+					# when reading streaming WAL;
+					# -1 allows indefinite delay
+#wal_receiver_create_temp_slot = off	# create temp slot if primary_slot_name
+					# is not set
+#wal_receiver_status_interval = 10s	# send replies at least this often
+					# 0 disables
+#hot_standby_feedback = off		# send info from standby to prevent
+					# query conflicts
+#wal_receiver_timeout = 60s		# time that receiver waits for
+					# communication from primary
+					# in milliseconds; 0 disables
+#wal_retrieve_retry_interval = 5s	# time to wait before retrying to
+					# retrieve WAL after a failed attempt
+#recovery_min_apply_delay = 0		# minimum delay for applying changes during recovery
+
+# - Subscribers -
+
+# These settings are ignored on a publisher.
+
+#max_logical_replication_workers = 4	# taken from max_worker_processes
+					# (change requires restart)
+#max_sync_workers_per_subscription = 2	# taken from max_logical_replication_workers
+
+
+#------------------------------------------------------------------------------
+# QUERY TUNING
+#------------------------------------------------------------------------------
+
+# - Planner Method Configuration -
+
+#enable_async_append = on
+#enable_bitmapscan = on
+#enable_gathermerge = on
+#enable_hashagg = on
+#enable_hashjoin = on
+#enable_incremental_sort = on
+#enable_indexscan = on
+#enable_indexonlyscan = on
+#enable_material = on
+#enable_memoize = on
+#enable_mergejoin = on
+#enable_nestloop = on
+#enable_parallel_append = on
+#enable_parallel_hash = on
+#enable_partition_pruning = on
+#enable_partitionwise_join = off
+#enable_partitionwise_aggregate = off
+#enable_seqscan = on
+#enable_sort = on
+#enable_tidscan = on
+
+# - Planner Cost Constants -
+
+#seq_page_cost = 1.0			# measured on an arbitrary scale
+random_page_cost = 2.0			# same scale as above
+#cpu_tuple_cost = 0.01			# same scale as above
+#cpu_index_tuple_cost = 0.005		# same scale as above
+#cpu_operator_cost = 0.0025		# same scale as above
+#parallel_setup_cost = 1000.0	# same scale as above
+#parallel_tuple_cost = 0.1		# same scale as above
+#min_parallel_table_scan_size = 8MB
+#min_parallel_index_scan_size = 512kB
+effective_cache_size = 4GB
+
+#jit_above_cost = 100000		# perform JIT compilation if available
+					# and query more expensive than this;
+					# -1 disables
+#jit_inline_above_cost = 500000		# inline small functions if query is
+					# more expensive than this; -1 disables
+#jit_optimize_above_cost = 500000	# use expensive JIT optimizations if
+					# query is more expensive than this;
+					# -1 disables
+
+# - Genetic Query Optimizer -
+
+#geqo = on
+#geqo_threshold = 12
+#geqo_effort = 5			# range 1-10
+#geqo_pool_size = 0			# selects default based on effort
+#geqo_generations = 0			# selects default based on effort
+#geqo_selection_bias = 2.0		# range 1.5-2.0
+#geqo_seed = 0.0			# range 0.0-1.0
+
+# - Other Planner Options -
+
+#default_statistics_target = 100	# range 1-10000
+#constraint_exclusion = partition	# on, off, or partition
+#cursor_tuple_fraction = 0.1		# range 0.0-1.0
+#from_collapse_limit = 8
+#jit = on				# allow JIT compilation
+#join_collapse_limit = 8		# 1 disables collapsing of explicit
+					# JOIN clauses
+#plan_cache_mode = auto			# auto, force_generic_plan or
+					# force_custom_plan
+
+
+#------------------------------------------------------------------------------
+# REPORTING AND LOGGING
+#------------------------------------------------------------------------------
+
+# - Where to Log -
+
+log_destination = 'csvlog'		# Valid values are combinations of
+					# stderr, csvlog, syslog, and eventlog,
+					# depending on platform.  csvlog
+					# requires logging_collector to be on.
+
+# This is used when logging to stderr:
+logging_collector = on		# Enable capturing of stderr and csvlog
+					# into log files. Required to be on for
+					# csvlogs.
+					# (change requires restart)
+
+# These are only used if logging_collector is on:
+#log_directory = 'log'			# directory where log files are written,
+					# can be absolute or relative to PGDATA
+#log_filename = 'postgresql-%Y-%m-%d_%H%M%S.log'	# log file name pattern,
+					# can include strftime() escapes
+#log_file_mode = 0600			# creation mode for log files,
+					# begin with 0 to use octal notation
+#log_rotation_age = 1d			# Automatic rotation of logfiles will
+					# happen after that time.  0 disables.
+#log_rotation_size = 10MB		# Automatic rotation of logfiles will
+					# happen after that much log output.
+					# 0 disables.
+log_truncate_on_rotation = on		# If on, an existing log file with the
+					# same name as the new log file will be
+					# truncated rather than appended to.
+					# But such truncation only occurs on
+					# time-driven rotation, not on restarts
+					# or size-driven rotation.  Default is
+					# off, meaning append to existing files
+					# in all cases.
+
+# These are relevant when logging to syslog:
+#syslog_facility = 'LOCAL0'
+#syslog_ident = 'postgres'
+#syslog_sequence_numbers = on
+#syslog_split_messages = on
+
+# This is only relevant when logging to eventlog (Windows):
+# (change requires restart)
+#event_source = 'PostgreSQL'
+
+# - When to Log -
+
+#log_min_messages = warning		# values in order of decreasing detail:
+					#   debug5
+					#   debug4
+					#   debug3
+					#   debug2
+					#   debug1
+					#   info
+					#   notice
+					#   warning
+					#   error
+					#   log
+					#   fatal
+					#   panic
+
+#log_min_error_statement = error	# values in order of decreasing detail:
+					#   debug5
+					#   debug4
+					#   debug3
+					#   debug2
+					#   debug1
+					#   info
+					#   notice
+					#   warning
+					#   error
+					#   log
+					#   fatal
+					#   panic (effectively off)
+
+#log_min_duration_statement = -1	# -1 is disabled, 0 logs all statements
+					# and their durations, > 0 logs only
+					# statements running at least this number
+					# of milliseconds
+
+#log_min_duration_sample = -1		# -1 is disabled, 0 logs a sample of statements
+					# and their durations, > 0 logs only a sample of
+					# statements running at least this number
+					# of milliseconds;
+					# sample fraction is determined by log_statement_sample_rate
+
+#log_statement_sample_rate = 1.0	# fraction of logged statements exceeding
+					# log_min_duration_sample to be logged;
+					# 1.0 logs all such statements, 0.0 never logs
+
+
+#log_transaction_sample_rate = 0.0	# fraction of transactions whose statements
+					# are logged regardless of their duration; 1.0 logs all
+					# statements from all transactions, 0.0 never logs
+
+# - What to Log -
+
+#debug_print_parse = off
+#debug_print_rewritten = off
+#debug_print_plan = off
+#debug_pretty_print = on
+#log_autovacuum_min_duration = -1	# log autovacuum activity;
+					# -1 disables, 0 logs all actions and
+					# their durations, > 0 logs only
+					# actions running at least this number
+					# of milliseconds.
+#log_checkpoints = off
+#log_connections = off
+#log_disconnections = off
+#log_duration = off
+#log_error_verbosity = default		# terse, default, or verbose messages
+#log_hostname = off
+#log_line_prefix = '%m [%p] '		# special values:
+					#   %a = application name
+					#   %u = user name
+					#   %d = database name
+					#   %r = remote host and port
+					#   %h = remote host
+					#   %b = backend type
+					#   %p = process ID
+					#   %P = process ID of parallel group leader
+					#   %t = timestamp without milliseconds
+					#   %m = timestamp with milliseconds
+					#   %n = timestamp with milliseconds (as a Unix epoch)
+					#   %Q = query ID (0 if none or not computed)
+					#   %i = command tag
+					#   %e = SQL state
+					#   %c = session ID
+					#   %l = session line number
+					#   %s = session start timestamp
+					#   %v = virtual transaction ID
+					#   %x = transaction ID (0 if none)
+					#   %q = stop here in non-session
+					#        processes
+					#   %% = '%'
+					# e.g. '<%u%%%d> '
+#log_lock_waits = off			# log lock waits >= deadlock_timeout
+#log_recovery_conflict_waits = off	# log standby recovery conflict waits
+					# >= deadlock_timeout
+#log_parameter_max_length = -1		# when logging statements, limit logged
+					# bind-parameter values to N bytes;
+					# -1 means print in full, 0 disables
+#log_parameter_max_length_on_error = 0	# when logging an error, limit logged
+					# bind-parameter values to N bytes;
+					# -1 means print in full, 0 disables
+#log_statement = 'none'			# none, ddl, mod, all
+#log_replication_commands = off
+#log_temp_files = -1			# log temporary files equal or larger
+					# than the specified size in kilobytes;
+					# -1 disables, 0 logs all temp files
+log_timezone = 'Etc/UTC'
+
+
+#------------------------------------------------------------------------------
+# PROCESS TITLE
+#------------------------------------------------------------------------------
+
+#cluster_name = ''			# added to process titles if nonempty
+					# (change requires restart)
+update_process_title = off
+
+
+#------------------------------------------------------------------------------
+# STATISTICS
+#------------------------------------------------------------------------------
+
+# - Query and Index Statistics Collector -
+
+track_activities = off
+#track_activity_query_size = 1024	# (change requires restart)
+#track_counts = on
+#track_io_timing = off
+#track_wal_io_timing = off
+#track_functions = none			# none, pl, all
+#stats_temp_directory = 'pg_stat_tmp'
+
+
+# - Monitoring -
+
+#compute_query_id = auto
+#log_statement_stats = off
+#log_parser_stats = off
+#log_planner_stats = off
+#log_executor_stats = off
+
+
+#------------------------------------------------------------------------------
+# AUTOVACUUM
+#------------------------------------------------------------------------------
+
+autovacuum = on			# Enable autovacuum subprocess?  'on'
+					# requires track_counts to also be on.
+autovacuum_max_workers = 4		# max number of autovacuum subprocesses
+					# (change requires restart)
+autovacuum_naptime = 10s		# time between autovacuum runs
+#autovacuum_vacuum_threshold = 50	# min number of row updates before
+					# vacuum
+#autovacuum_vacuum_insert_threshold = 1000	# min number of row inserts
+					# before vacuum; -1 disables insert
+					# vacuums
+#autovacuum_analyze_threshold = 50	# min number of row updates before
+					# analyze
+#autovacuum_vacuum_scale_factor = 0.2	# fraction of table size before vacuum
+#autovacuum_vacuum_insert_scale_factor = 0.2	# fraction of inserts over table
+					# size before insert vacuum
+#autovacuum_analyze_scale_factor = 0.1	# fraction of table size before analyze
+#autovacuum_freeze_max_age = 200000000	# maximum XID age before forced vacuum
+					# (change requires restart)
+#autovacuum_multixact_freeze_max_age = 400000000	# maximum multixact age
+					# before forced vacuum
+					# (change requires restart)
+#autovacuum_vacuum_cost_delay = 2ms	# default vacuum cost delay for
+					# autovacuum, in milliseconds;
+					# -1 means use vacuum_cost_delay
+#autovacuum_vacuum_cost_limit = -1	# default vacuum cost limit for
+					# autovacuum, -1 means use
+					# vacuum_cost_limit
+
+
+#------------------------------------------------------------------------------
+# CLIENT CONNECTION DEFAULTS
+#------------------------------------------------------------------------------
+
+# - Statement Behavior -
+
+#client_min_messages = notice		# values in order of decreasing detail:
+					#   debug5
+					#   debug4
+					#   debug3
+					#   debug2
+					#   debug1
+					#   log
+					#   notice
+					#   warning
+					#   error
+#search_path = '"$user", public'	# schema names
+#row_security = on
+#default_table_access_method = 'heap'
+#default_tablespace = ''		# a tablespace name, '' uses the default
+#default_toast_compression = 'pglz'	# 'pglz' or 'lz4'
+#temp_tablespaces = ''			# a list of tablespace names, '' uses
+					# only default tablespace
+#check_function_bodies = on
+#default_transaction_isolation = 'read committed'
+#default_transaction_read_only = off
+#default_transaction_deferrable = off
+#session_replication_role = 'origin'
+#statement_timeout = 0			# in milliseconds, 0 is disabled
+#lock_timeout = 0			# in milliseconds, 0 is disabled
+#idle_in_transaction_session_timeout = 0	# in milliseconds, 0 is disabled
+#idle_session_timeout = 0		# in milliseconds, 0 is disabled
+#vacuum_freeze_table_age = 150000000
+#vacuum_freeze_min_age = 50000000
+#vacuum_failsafe_age = 1600000000
+#vacuum_multixact_freeze_table_age = 150000000
+#vacuum_multixact_freeze_min_age = 5000000
+#vacuum_multixact_failsafe_age = 1600000000
+#bytea_output = 'hex'			# hex, escape
+#xmlbinary = 'base64'
+#xmloption = 'content'
+#gin_pending_list_limit = 4MB
+
+# - Locale and Formatting -
+
+datestyle = 'iso, mdy'
+#intervalstyle = 'postgres'
+timezone = 'Etc/UTC'
+#timezone_abbreviations = 'Default'     # Select the set of available time zone
+					# abbreviations.  Currently, there are
+					#   Default
+					#   Australia (historical usage)
+					#   India
+					# You can create your own file in
+					# share/timezonesets/.
+#extra_float_digits = 1			# min -15, max 3; any value >0 actually
+					# selects precise output mode
+#client_encoding = sql_ascii		# actually, defaults to database
+					# encoding
+
+# These settings are initialized by initdb, but they can be changed.
+lc_messages = 'en_US.utf8'			# locale for system error message
+					# strings
+lc_monetary = 'en_US.utf8'			# locale for monetary formatting
+lc_numeric = 'en_US.utf8'			# locale for number formatting
+lc_time = 'en_US.utf8'				# locale for time formatting
+
+# default configuration for text search
+default_text_search_config = 'pg_catalog.english'
+
+# - Shared Library Preloading -
+
+#local_preload_libraries = ''
+#session_preload_libraries = ''
+#shared_preload_libraries = ''	# (change requires restart)
+#jit_provider = 'llvmjit'		# JIT library to use
+
+# - Other Defaults -
+
+#dynamic_library_path = '$libdir'
+#extension_destdir = ''			# prepend path when loading extensions
+					# and shared objects (added by Debian)
+#gin_fuzzy_search_limit = 0
+
+
+#------------------------------------------------------------------------------
+# LOCK MANAGEMENT
+#------------------------------------------------------------------------------
+
+#deadlock_timeout = 1s
+#max_locks_per_transaction = 64		# min 10
+					# (change requires restart)
+#max_pred_locks_per_transaction = 64	# min 10
+					# (change requires restart)
+#max_pred_locks_per_relation = -2	# negative values mean
+					# (max_pred_locks_per_transaction
+					#  / -max_pred_locks_per_relation) - 1
+#max_pred_locks_per_page = 2            # min 0
+
+
+#------------------------------------------------------------------------------
+# VERSION AND PLATFORM COMPATIBILITY
+#------------------------------------------------------------------------------
+
+# - Previous PostgreSQL Versions -
+
+#array_nulls = on
+#backslash_quote = safe_encoding	# on, off, or safe_encoding
+#escape_string_warning = on
+#lo_compat_privileges = off
+#quote_all_identifiers = off
+#standard_conforming_strings = on
+#synchronize_seqscans = on
+
+# - Other Platforms and Clients -
+
+#transform_null_equals = off
+
+
+#------------------------------------------------------------------------------
+# ERROR HANDLING
+#------------------------------------------------------------------------------
+
+#exit_on_error = off			# terminate session on any error?
+#restart_after_crash = on		# reinitialize after backend crash?
+#data_sync_retry = off			# retry or panic on failure to fsync
+					# data?
+					# (change requires restart)
+#recovery_init_sync_method = fsync	# fsync, syncfs (Linux 5.8+)
+
+
+#------------------------------------------------------------------------------
+# CONFIG FILE INCLUDES
+#------------------------------------------------------------------------------
+
+# These options allow settings to be loaded from files other than the
+# default postgresql.conf.  Note that these are directives, not variable
+# assignments, so they can usefully be given more than once.
+
+#include_dir = '...'			# include files ending in '.conf' from
+					# a directory, e.g., 'conf.d'
+#include_if_exists = '...'		# include file only if it exists
+#include = '...'			# include file
+
+
+#------------------------------------------------------------------------------
+# CUSTOMIZED OPTIONS
+#------------------------------------------------------------------------------
+
+# Add settings for extensions here

+ 798 - 0
docker-prod/postgresql_14_1/postgrescnf/postgresql_origin.conf

@@ -0,0 +1,798 @@
+# -----------------------------
+# PostgreSQL configuration file
+# -----------------------------
+#
+# This file consists of lines of the form:
+#
+#   name = value
+#
+# (The "=" is optional.)  Whitespace may be used.  Comments are introduced with
+# "#" anywhere on a line.  The complete list of parameter names and allowed
+# values can be found in the PostgreSQL documentation.
+#
+# The commented-out settings shown in this file represent the default values.
+# Re-commenting a setting is NOT sufficient to revert it to the default value;
+# you need to reload the server.
+#
+# This file is read on server startup and when the server receives a SIGHUP
+# signal.  If you edit the file on a running system, you have to SIGHUP the
+# server for the changes to take effect, run "pg_ctl reload", or execute
+# "SELECT pg_reload_conf()".  Some parameters, which are marked below,
+# require a server shutdown and restart to take effect.
+#
+# Any parameter can also be given as a command-line option to the server, e.g.,
+# "postgres -c log_connections=on".  Some parameters can be changed at run time
+# with the "SET" SQL command.
+#
+# Memory units:  B  = bytes            Time units:  us  = microseconds
+#                kB = kilobytes                     ms  = milliseconds
+#                MB = megabytes                     s   = seconds
+#                GB = gigabytes                     min = minutes
+#                TB = terabytes                     h   = hours
+#                                                   d   = days
+
+
+#------------------------------------------------------------------------------
+# FILE LOCATIONS
+#------------------------------------------------------------------------------
+
+# The default values of these variables are driven from the -D command-line
+# option or PGDATA environment variable, represented here as ConfigDir.
+
+#data_directory = 'ConfigDir'		# use data in another directory
+					# (change requires restart)
+#hba_file = 'ConfigDir/pg_hba.conf'	# host-based authentication file
+					# (change requires restart)
+#ident_file = 'ConfigDir/pg_ident.conf'	# ident configuration file
+					# (change requires restart)
+
+# If external_pid_file is not explicitly set, no extra PID file is written.
+#external_pid_file = ''			# write an extra PID file
+					# (change requires restart)
+
+
+#------------------------------------------------------------------------------
+# CONNECTIONS AND AUTHENTICATION
+#------------------------------------------------------------------------------
+
+# - Connection Settings -
+
+listen_addresses = '*'
+					# comma-separated list of addresses;
+					# defaults to 'localhost'; use '*' for all
+					# (change requires restart)
+#port = 5432				# (change requires restart)
+max_connections = 100			# (change requires restart)
+#superuser_reserved_connections = 3	# (change requires restart)
+#unix_socket_directories = '/var/run/postgresql'	# comma-separated list of directories
+					# (change requires restart)
+#unix_socket_group = ''			# (change requires restart)
+#unix_socket_permissions = 0777		# begin with 0 to use octal notation
+					# (change requires restart)
+#bonjour = off				# advertise server via Bonjour
+					# (change requires restart)
+#bonjour_name = ''			# defaults to the computer name
+					# (change requires restart)
+
+# - TCP settings -
+# see "man tcp" for details
+
+#tcp_keepalives_idle = 0		# TCP_KEEPIDLE, in seconds;
+					# 0 selects the system default
+#tcp_keepalives_interval = 0		# TCP_KEEPINTVL, in seconds;
+					# 0 selects the system default
+#tcp_keepalives_count = 0		# TCP_KEEPCNT;
+					# 0 selects the system default
+#tcp_user_timeout = 0			# TCP_USER_TIMEOUT, in milliseconds;
+					# 0 selects the system default
+
+#client_connection_check_interval = 0	# time between checks for client
+					# disconnection while running queries;
+					# 0 for never
+
+# - Authentication -
+
+#authentication_timeout = 1min		# 1s-600s
+#password_encryption = scram-sha-256	# scram-sha-256 or md5
+#db_user_namespace = off
+
+# GSSAPI using Kerberos
+#krb_server_keyfile = 'FILE:${sysconfdir}/krb5.keytab'
+#krb_caseins_users = off
+
+# - SSL -
+
+#ssl = off
+#ssl_ca_file = ''
+#ssl_cert_file = 'server.crt'
+#ssl_crl_file = ''
+#ssl_crl_dir = ''
+#ssl_key_file = 'server.key'
+#ssl_ciphers = 'HIGH:MEDIUM:+3DES:!aNULL' # allowed SSL ciphers
+#ssl_prefer_server_ciphers = on
+#ssl_ecdh_curve = 'prime256v1'
+#ssl_min_protocol_version = 'TLSv1.2'
+#ssl_max_protocol_version = ''
+#ssl_dh_params_file = ''
+#ssl_passphrase_command = ''
+#ssl_passphrase_command_supports_reload = off
+
+
+#------------------------------------------------------------------------------
+# RESOURCE USAGE (except WAL)
+#------------------------------------------------------------------------------
+
+# - Memory -
+
+shared_buffers = 128MB			# min 128kB
+					# (change requires restart)
+#huge_pages = try			# on, off, or try
+					# (change requires restart)
+#huge_page_size = 0			# zero for system default
+					# (change requires restart)
+#temp_buffers = 8MB			# min 800kB
+#max_prepared_transactions = 0		# zero disables the feature
+					# (change requires restart)
+# Caution: it is not advisable to set max_prepared_transactions nonzero unless
+# you actively intend to use prepared transactions.
+#work_mem = 4MB				# min 64kB
+#hash_mem_multiplier = 1.0		# 1-1000.0 multiplier on hash table work_mem
+#maintenance_work_mem = 64MB		# min 1MB
+#autovacuum_work_mem = -1		# min 1MB, or -1 to use maintenance_work_mem
+#logical_decoding_work_mem = 64MB	# min 64kB
+#max_stack_depth = 2MB			# min 100kB
+#shared_memory_type = mmap		# the default is the first option
+					# supported by the operating system:
+					#   mmap
+					#   sysv
+					#   windows
+					# (change requires restart)
+dynamic_shared_memory_type = posix	# the default is the first option
+					# supported by the operating system:
+					#   posix
+					#   sysv
+					#   windows
+					#   mmap
+					# (change requires restart)
+#min_dynamic_shared_memory = 0MB	# (change requires restart)
+
+# - Disk -
+
+#temp_file_limit = -1			# limits per-process temp file space
+					# in kilobytes, or -1 for no limit
+
+# - Kernel Resources -
+
+#max_files_per_process = 1000		# min 64
+					# (change requires restart)
+
+# - Cost-Based Vacuum Delay -
+
+#vacuum_cost_delay = 0			# 0-100 milliseconds (0 disables)
+#vacuum_cost_page_hit = 1		# 0-10000 credits
+#vacuum_cost_page_miss = 2		# 0-10000 credits
+#vacuum_cost_page_dirty = 20		# 0-10000 credits
+#vacuum_cost_limit = 200		# 1-10000 credits
+
+# - Background Writer -
+
+#bgwriter_delay = 200ms			# 10-10000ms between rounds
+#bgwriter_lru_maxpages = 100		# max buffers written/round, 0 disables
+#bgwriter_lru_multiplier = 2.0		# 0-10.0 multiplier on buffers scanned/round
+#bgwriter_flush_after = 512kB		# measured in pages, 0 disables
+
+# - Asynchronous Behavior -
+
+#backend_flush_after = 0		# measured in pages, 0 disables
+#effective_io_concurrency = 1		# 1-1000; 0 disables prefetching
+#maintenance_io_concurrency = 10	# 1-1000; 0 disables prefetching
+#max_worker_processes = 8		# (change requires restart)
+#max_parallel_workers_per_gather = 2	# taken from max_parallel_workers
+#max_parallel_maintenance_workers = 2	# taken from max_parallel_workers
+#max_parallel_workers = 8		# maximum number of max_worker_processes that
+					# can be used in parallel operations
+#parallel_leader_participation = on
+#old_snapshot_threshold = -1		# 1min-60d; -1 disables; 0 is immediate
+					# (change requires restart)
+
+
+#------------------------------------------------------------------------------
+# WRITE-AHEAD LOG
+#------------------------------------------------------------------------------
+
+# - Settings -
+
+#wal_level = replica			# minimal, replica, or logical
+					# (change requires restart)
+#fsync = on				# flush data to disk for crash safety
+					# (turning this off can cause
+					# unrecoverable data corruption)
+#synchronous_commit = on		# synchronization level;
+					# off, local, remote_write, remote_apply, or on
+#wal_sync_method = fsync		# the default is the first option
+					# supported by the operating system:
+					#   open_datasync
+					#   fdatasync (default on Linux and FreeBSD)
+					#   fsync
+					#   fsync_writethrough
+					#   open_sync
+#full_page_writes = on			# recover from partial page writes
+#wal_log_hints = off			# also do full page writes of non-critical updates
+					# (change requires restart)
+#wal_compression = off			# enable compression of full-page writes
+#wal_init_zero = on			# zero-fill new WAL files
+#wal_recycle = on			# recycle WAL files
+#wal_buffers = -1			# min 32kB, -1 sets based on shared_buffers
+					# (change requires restart)
+#wal_writer_delay = 200ms		# 1-10000 milliseconds
+#wal_writer_flush_after = 1MB		# measured in pages, 0 disables
+#wal_skip_threshold = 2MB
+
+#commit_delay = 0			# range 0-100000, in microseconds
+#commit_siblings = 5			# range 1-1000
+
+# - Checkpoints -
+
+#checkpoint_timeout = 5min		# range 30s-1d
+#checkpoint_completion_target = 0.9	# checkpoint target duration, 0.0 - 1.0
+#checkpoint_flush_after = 256kB		# measured in pages, 0 disables
+#checkpoint_warning = 30s		# 0 disables
+max_wal_size = 1GB
+min_wal_size = 80MB
+
+# - Archiving -
+
+#archive_mode = off		# enables archiving; off, on, or always
+				# (change requires restart)
+#archive_command = ''		# command to use to archive a logfile segment
+				# placeholders: %p = path of file to archive
+				#               %f = file name only
+				# e.g. 'test ! -f /mnt/server/archivedir/%f && cp %p /mnt/server/archivedir/%f'
+#archive_timeout = 0		# force a logfile segment switch after this
+				# number of seconds; 0 disables
+
+# - Archive Recovery -
+
+# These are only used in recovery mode.
+
+#restore_command = ''		# command to use to restore an archived logfile segment
+				# placeholders: %p = path of file to restore
+				#               %f = file name only
+				# e.g. 'cp /mnt/server/archivedir/%f %p'
+#archive_cleanup_command = ''	# command to execute at every restartpoint
+#recovery_end_command = ''	# command to execute at completion of recovery
+
+# - Recovery Target -
+
+# Set these only when performing a targeted recovery.
+
+#recovery_target = ''		# 'immediate' to end recovery as soon as a
+                                # consistent state is reached
+				# (change requires restart)
+#recovery_target_name = ''	# the named restore point to which recovery will proceed
+				# (change requires restart)
+#recovery_target_time = ''	# the time stamp up to which recovery will proceed
+				# (change requires restart)
+#recovery_target_xid = ''	# the transaction ID up to which recovery will proceed
+				# (change requires restart)
+#recovery_target_lsn = ''	# the WAL LSN up to which recovery will proceed
+				# (change requires restart)
+#recovery_target_inclusive = on # Specifies whether to stop:
+				# just after the specified recovery target (on)
+				# just before the recovery target (off)
+				# (change requires restart)
+#recovery_target_timeline = 'latest'	# 'current', 'latest', or timeline ID
+				# (change requires restart)
+#recovery_target_action = 'pause'	# 'pause', 'promote', 'shutdown'
+				# (change requires restart)
+
+
+#------------------------------------------------------------------------------
+# REPLICATION
+#------------------------------------------------------------------------------
+
+# - Sending Servers -
+
+# Set these on the primary and on any standby that will send replication data.
+
+#max_wal_senders = 10		# max number of walsender processes
+				# (change requires restart)
+#max_replication_slots = 10	# max number of replication slots
+				# (change requires restart)
+#wal_keep_size = 0		# in megabytes; 0 disables
+#max_slot_wal_keep_size = -1	# in megabytes; -1 disables
+#wal_sender_timeout = 60s	# in milliseconds; 0 disables
+#track_commit_timestamp = off	# collect timestamp of transaction commit
+				# (change requires restart)
+
+# - Primary Server -
+
+# These settings are ignored on a standby server.
+
+#synchronous_standby_names = ''	# standby servers that provide sync rep
+				# method to choose sync standbys, number of sync standbys,
+				# and comma-separated list of application_name
+				# from standby(s); '*' = all
+#vacuum_defer_cleanup_age = 0	# number of xacts by which cleanup is delayed
+
+# - Standby Servers -
+
+# These settings are ignored on a primary server.
+
+#primary_conninfo = ''			# connection string to sending server
+#primary_slot_name = ''			# replication slot on sending server
+#promote_trigger_file = ''		# file name whose presence ends recovery
+#hot_standby = on			# "off" disallows queries during recovery
+					# (change requires restart)
+#max_standby_archive_delay = 30s	# max delay before canceling queries
+					# when reading WAL from archive;
+					# -1 allows indefinite delay
+#max_standby_streaming_delay = 30s	# max delay before canceling queries
+					# when reading streaming WAL;
+					# -1 allows indefinite delay
+#wal_receiver_create_temp_slot = off	# create temp slot if primary_slot_name
+					# is not set
+#wal_receiver_status_interval = 10s	# send replies at least this often
+					# 0 disables
+#hot_standby_feedback = off		# send info from standby to prevent
+					# query conflicts
+#wal_receiver_timeout = 60s		# time that receiver waits for
+					# communication from primary
+					# in milliseconds; 0 disables
+#wal_retrieve_retry_interval = 5s	# time to wait before retrying to
+					# retrieve WAL after a failed attempt
+#recovery_min_apply_delay = 0		# minimum delay for applying changes during recovery
+
+# - Subscribers -
+
+# These settings are ignored on a publisher.
+
+#max_logical_replication_workers = 4	# taken from max_worker_processes
+					# (change requires restart)
+#max_sync_workers_per_subscription = 2	# taken from max_logical_replication_workers
+
+
+#------------------------------------------------------------------------------
+# QUERY TUNING
+#------------------------------------------------------------------------------
+
+# - Planner Method Configuration -
+
+#enable_async_append = on
+#enable_bitmapscan = on
+#enable_gathermerge = on
+#enable_hashagg = on
+#enable_hashjoin = on
+#enable_incremental_sort = on
+#enable_indexscan = on
+#enable_indexonlyscan = on
+#enable_material = on
+#enable_memoize = on
+#enable_mergejoin = on
+#enable_nestloop = on
+#enable_parallel_append = on
+#enable_parallel_hash = on
+#enable_partition_pruning = on
+#enable_partitionwise_join = off
+#enable_partitionwise_aggregate = off
+#enable_seqscan = on
+#enable_sort = on
+#enable_tidscan = on
+
+# - Planner Cost Constants -
+
+#seq_page_cost = 1.0			# measured on an arbitrary scale
+#random_page_cost = 4.0			# same scale as above
+#cpu_tuple_cost = 0.01			# same scale as above
+#cpu_index_tuple_cost = 0.005		# same scale as above
+#cpu_operator_cost = 0.0025		# same scale as above
+#parallel_setup_cost = 1000.0	# same scale as above
+#parallel_tuple_cost = 0.1		# same scale as above
+#min_parallel_table_scan_size = 8MB
+#min_parallel_index_scan_size = 512kB
+#effective_cache_size = 4GB
+
+#jit_above_cost = 100000		# perform JIT compilation if available
+					# and query more expensive than this;
+					# -1 disables
+#jit_inline_above_cost = 500000		# inline small functions if query is
+					# more expensive than this; -1 disables
+#jit_optimize_above_cost = 500000	# use expensive JIT optimizations if
+					# query is more expensive than this;
+					# -1 disables
+
+# - Genetic Query Optimizer -
+
+#geqo = on
+#geqo_threshold = 12
+#geqo_effort = 5			# range 1-10
+#geqo_pool_size = 0			# selects default based on effort
+#geqo_generations = 0			# selects default based on effort
+#geqo_selection_bias = 2.0		# range 1.5-2.0
+#geqo_seed = 0.0			# range 0.0-1.0
+
+# - Other Planner Options -
+
+#default_statistics_target = 100	# range 1-10000
+#constraint_exclusion = partition	# on, off, or partition
+#cursor_tuple_fraction = 0.1		# range 0.0-1.0
+#from_collapse_limit = 8
+#jit = on				# allow JIT compilation
+#join_collapse_limit = 8		# 1 disables collapsing of explicit
+					# JOIN clauses
+#plan_cache_mode = auto			# auto, force_generic_plan or
+					# force_custom_plan
+
+
+#------------------------------------------------------------------------------
+# REPORTING AND LOGGING
+#------------------------------------------------------------------------------
+
+# - Where to Log -
+
+#log_destination = 'stderr'		# Valid values are combinations of
+					# stderr, csvlog, syslog, and eventlog,
+					# depending on platform.  csvlog
+					# requires logging_collector to be on.
+
+# This is used when logging to stderr:
+#logging_collector = off		# Enable capturing of stderr and csvlog
+					# into log files. Required to be on for
+					# csvlogs.
+					# (change requires restart)
+
+# These are only used if logging_collector is on:
+#log_directory = 'log'			# directory where log files are written,
+					# can be absolute or relative to PGDATA
+#log_filename = 'postgresql-%Y-%m-%d_%H%M%S.log'	# log file name pattern,
+					# can include strftime() escapes
+#log_file_mode = 0600			# creation mode for log files,
+					# begin with 0 to use octal notation
+#log_rotation_age = 1d			# Automatic rotation of logfiles will
+					# happen after that time.  0 disables.
+#log_rotation_size = 10MB		# Automatic rotation of logfiles will
+					# happen after that much log output.
+					# 0 disables.
+#log_truncate_on_rotation = off		# If on, an existing log file with the
+					# same name as the new log file will be
+					# truncated rather than appended to.
+					# But such truncation only occurs on
+					# time-driven rotation, not on restarts
+					# or size-driven rotation.  Default is
+					# off, meaning append to existing files
+					# in all cases.
+
+# These are relevant when logging to syslog:
+#syslog_facility = 'LOCAL0'
+#syslog_ident = 'postgres'
+#syslog_sequence_numbers = on
+#syslog_split_messages = on
+
+# This is only relevant when logging to eventlog (Windows):
+# (change requires restart)
+#event_source = 'PostgreSQL'
+
+# - When to Log -
+
+#log_min_messages = warning		# values in order of decreasing detail:
+					#   debug5
+					#   debug4
+					#   debug3
+					#   debug2
+					#   debug1
+					#   info
+					#   notice
+					#   warning
+					#   error
+					#   log
+					#   fatal
+					#   panic
+
+#log_min_error_statement = error	# values in order of decreasing detail:
+					#   debug5
+					#   debug4
+					#   debug3
+					#   debug2
+					#   debug1
+					#   info
+					#   notice
+					#   warning
+					#   error
+					#   log
+					#   fatal
+					#   panic (effectively off)
+
+#log_min_duration_statement = -1	# -1 is disabled, 0 logs all statements
+					# and their durations, > 0 logs only
+					# statements running at least this number
+					# of milliseconds
+
+#log_min_duration_sample = -1		# -1 is disabled, 0 logs a sample of statements
+					# and their durations, > 0 logs only a sample of
+					# statements running at least this number
+					# of milliseconds;
+					# sample fraction is determined by log_statement_sample_rate
+
+#log_statement_sample_rate = 1.0	# fraction of logged statements exceeding
+					# log_min_duration_sample to be logged;
+					# 1.0 logs all such statements, 0.0 never logs
+
+
+#log_transaction_sample_rate = 0.0	# fraction of transactions whose statements
+					# are logged regardless of their duration; 1.0 logs all
+					# statements from all transactions, 0.0 never logs
+
+# - What to Log -
+
+#debug_print_parse = off
+#debug_print_rewritten = off
+#debug_print_plan = off
+#debug_pretty_print = on
+#log_autovacuum_min_duration = -1	# log autovacuum activity;
+					# -1 disables, 0 logs all actions and
+					# their durations, > 0 logs only
+					# actions running at least this number
+					# of milliseconds.
+#log_checkpoints = off
+#log_connections = off
+#log_disconnections = off
+#log_duration = off
+#log_error_verbosity = default		# terse, default, or verbose messages
+#log_hostname = off
+#log_line_prefix = '%m [%p] '		# special values:
+					#   %a = application name
+					#   %u = user name
+					#   %d = database name
+					#   %r = remote host and port
+					#   %h = remote host
+					#   %b = backend type
+					#   %p = process ID
+					#   %P = process ID of parallel group leader
+					#   %t = timestamp without milliseconds
+					#   %m = timestamp with milliseconds
+					#   %n = timestamp with milliseconds (as a Unix epoch)
+					#   %Q = query ID (0 if none or not computed)
+					#   %i = command tag
+					#   %e = SQL state
+					#   %c = session ID
+					#   %l = session line number
+					#   %s = session start timestamp
+					#   %v = virtual transaction ID
+					#   %x = transaction ID (0 if none)
+					#   %q = stop here in non-session
+					#        processes
+					#   %% = '%'
+					# e.g. '<%u%%%d> '
+#log_lock_waits = off			# log lock waits >= deadlock_timeout
+#log_recovery_conflict_waits = off	# log standby recovery conflict waits
+					# >= deadlock_timeout
+#log_parameter_max_length = -1		# when logging statements, limit logged
+					# bind-parameter values to N bytes;
+					# -1 means print in full, 0 disables
+#log_parameter_max_length_on_error = 0	# when logging an error, limit logged
+					# bind-parameter values to N bytes;
+					# -1 means print in full, 0 disables
+#log_statement = 'none'			# none, ddl, mod, all
+#log_replication_commands = off
+#log_temp_files = -1			# log temporary files equal or larger
+					# than the specified size in kilobytes;
+					# -1 disables, 0 logs all temp files
+log_timezone = 'Etc/UTC'
+
+
+#------------------------------------------------------------------------------
+# PROCESS TITLE
+#------------------------------------------------------------------------------
+
+#cluster_name = ''			# added to process titles if nonempty
+					# (change requires restart)
+#update_process_title = on
+
+
+#------------------------------------------------------------------------------
+# STATISTICS
+#------------------------------------------------------------------------------
+
+# - Query and Index Statistics Collector -
+
+#track_activities = on
+#track_activity_query_size = 1024	# (change requires restart)
+#track_counts = on
+#track_io_timing = off
+#track_wal_io_timing = off
+#track_functions = none			# none, pl, all
+#stats_temp_directory = 'pg_stat_tmp'
+
+
+# - Monitoring -
+
+#compute_query_id = auto
+#log_statement_stats = off
+#log_parser_stats = off
+#log_planner_stats = off
+#log_executor_stats = off
+
+
+#------------------------------------------------------------------------------
+# AUTOVACUUM
+#------------------------------------------------------------------------------
+
+#autovacuum = on			# Enable autovacuum subprocess?  'on'
+					# requires track_counts to also be on.
+#autovacuum_max_workers = 3		# max number of autovacuum subprocesses
+					# (change requires restart)
+#autovacuum_naptime = 1min		# time between autovacuum runs
+#autovacuum_vacuum_threshold = 50	# min number of row updates before
+					# vacuum
+#autovacuum_vacuum_insert_threshold = 1000	# min number of row inserts
+					# before vacuum; -1 disables insert
+					# vacuums
+#autovacuum_analyze_threshold = 50	# min number of row updates before
+					# analyze
+#autovacuum_vacuum_scale_factor = 0.2	# fraction of table size before vacuum
+#autovacuum_vacuum_insert_scale_factor = 0.2	# fraction of inserts over table
+					# size before insert vacuum
+#autovacuum_analyze_scale_factor = 0.1	# fraction of table size before analyze
+#autovacuum_freeze_max_age = 200000000	# maximum XID age before forced vacuum
+					# (change requires restart)
+#autovacuum_multixact_freeze_max_age = 400000000	# maximum multixact age
+					# before forced vacuum
+					# (change requires restart)
+#autovacuum_vacuum_cost_delay = 2ms	# default vacuum cost delay for
+					# autovacuum, in milliseconds;
+					# -1 means use vacuum_cost_delay
+#autovacuum_vacuum_cost_limit = -1	# default vacuum cost limit for
+					# autovacuum, -1 means use
+					# vacuum_cost_limit
+
+
+#------------------------------------------------------------------------------
+# CLIENT CONNECTION DEFAULTS
+#------------------------------------------------------------------------------
+
+# - Statement Behavior -
+
+#client_min_messages = notice		# values in order of decreasing detail:
+					#   debug5
+					#   debug4
+					#   debug3
+					#   debug2
+					#   debug1
+					#   log
+					#   notice
+					#   warning
+					#   error
+#search_path = '"$user", public'	# schema names
+#row_security = on
+#default_table_access_method = 'heap'
+#default_tablespace = ''		# a tablespace name, '' uses the default
+#default_toast_compression = 'pglz'	# 'pglz' or 'lz4'
+#temp_tablespaces = ''			# a list of tablespace names, '' uses
+					# only default tablespace
+#check_function_bodies = on
+#default_transaction_isolation = 'read committed'
+#default_transaction_read_only = off
+#default_transaction_deferrable = off
+#session_replication_role = 'origin'
+#statement_timeout = 0			# in milliseconds, 0 is disabled
+#lock_timeout = 0			# in milliseconds, 0 is disabled
+#idle_in_transaction_session_timeout = 0	# in milliseconds, 0 is disabled
+#idle_session_timeout = 0		# in milliseconds, 0 is disabled
+#vacuum_freeze_table_age = 150000000
+#vacuum_freeze_min_age = 50000000
+#vacuum_failsafe_age = 1600000000
+#vacuum_multixact_freeze_table_age = 150000000
+#vacuum_multixact_freeze_min_age = 5000000
+#vacuum_multixact_failsafe_age = 1600000000
+#bytea_output = 'hex'			# hex, escape
+#xmlbinary = 'base64'
+#xmloption = 'content'
+#gin_pending_list_limit = 4MB
+
+# - Locale and Formatting -
+
+datestyle = 'iso, mdy'
+#intervalstyle = 'postgres'
+timezone = 'Etc/UTC'
+#timezone_abbreviations = 'Default'     # Select the set of available time zone
+					# abbreviations.  Currently, there are
+					#   Default
+					#   Australia (historical usage)
+					#   India
+					# You can create your own file in
+					# share/timezonesets/.
+#extra_float_digits = 1			# min -15, max 3; any value >0 actually
+					# selects precise output mode
+#client_encoding = sql_ascii		# actually, defaults to database
+					# encoding
+
+# These settings are initialized by initdb, but they can be changed.
+lc_messages = 'en_US.utf8'			# locale for system error message
+					# strings
+lc_monetary = 'en_US.utf8'			# locale for monetary formatting
+lc_numeric = 'en_US.utf8'			# locale for number formatting
+lc_time = 'en_US.utf8'				# locale for time formatting
+
+# default configuration for text search
+default_text_search_config = 'pg_catalog.english'
+
+# - Shared Library Preloading -
+
+#local_preload_libraries = ''
+#session_preload_libraries = ''
+#shared_preload_libraries = ''	# (change requires restart)
+#jit_provider = 'llvmjit'		# JIT library to use
+
+# - Other Defaults -
+
+#dynamic_library_path = '$libdir'
+#extension_destdir = ''			# prepend path when loading extensions
+					# and shared objects (added by Debian)
+#gin_fuzzy_search_limit = 0
+
+
+#------------------------------------------------------------------------------
+# LOCK MANAGEMENT
+#------------------------------------------------------------------------------
+
+#deadlock_timeout = 1s
+#max_locks_per_transaction = 64		# min 10
+					# (change requires restart)
+#max_pred_locks_per_transaction = 64	# min 10
+					# (change requires restart)
+#max_pred_locks_per_relation = -2	# negative values mean
+					# (max_pred_locks_per_transaction
+					#  / -max_pred_locks_per_relation) - 1
+#max_pred_locks_per_page = 2            # min 0
+
+
+#------------------------------------------------------------------------------
+# VERSION AND PLATFORM COMPATIBILITY
+#------------------------------------------------------------------------------
+
+# - Previous PostgreSQL Versions -
+
+#array_nulls = on
+#backslash_quote = safe_encoding	# on, off, or safe_encoding
+#escape_string_warning = on
+#lo_compat_privileges = off
+#quote_all_identifiers = off
+#standard_conforming_strings = on
+#synchronize_seqscans = on
+
+# - Other Platforms and Clients -
+
+#transform_null_equals = off
+
+
+#------------------------------------------------------------------------------
+# ERROR HANDLING
+#------------------------------------------------------------------------------
+
+#exit_on_error = off			# terminate session on any error?
+#restart_after_crash = on		# reinitialize after backend crash?
+#data_sync_retry = off			# retry or panic on failure to fsync
+					# data?
+					# (change requires restart)
+#recovery_init_sync_method = fsync	# fsync, syncfs (Linux 5.8+)
+
+
+#------------------------------------------------------------------------------
+# CONFIG FILE INCLUDES
+#------------------------------------------------------------------------------
+
+# These options allow settings to be loaded from files other than the
+# default postgresql.conf.  Note that these are directives, not variable
+# assignments, so they can usefully be given more than once.
+
+#include_dir = '...'			# include files ending in '.conf' from
+					# a directory, e.g., 'conf.d'
+#include_if_exists = '...'		# include file only if it exists
+#include = '...'			# include file
+
+
+#------------------------------------------------------------------------------
+# CUSTOMIZED OPTIONS
+#------------------------------------------------------------------------------
+
+# Add settings for extensions here

+ 2 - 0
src/main/java/com/kingtom/shengtai/app/message/util/UniAppUtils.java

@@ -39,6 +39,8 @@ public class UniAppUtils{
         try(HttpResponse response = HttpUtil.createPost(url).body(JsonUtils.toJson(message)).contentType("application/json").execute()){
             if(response.getStatus() == 200){
                 log.info("给客户端发送消息成功,消息内容:" + JsonUtils.toJson(message));
+            } else{
+                log.warn("给客户端发送消息失败,消息内容:" + JsonUtils.toJson(message));
             }
         }
     }

+ 40 - 0
src/main/resources/application-prod-conf.yml

@@ -0,0 +1,40 @@
+env:
+  server:
+    port: 8080
+    #    ssl-key-store: gift_dev.pkcs12
+    #    ssl-key-store-password: 123456
+    #    ssl-store-type: pkcs12
+    pool-min-spare: 90
+  db:
+    ip: shengtai_postgres
+    port: 5432
+    dbname: shengtai
+    username: postgres
+    password: kingtom888*
+    poolsize: 90
+app:
+  system:
+    name: 盛泰公司供应商管理-试用平台
+    company: 盛泰公司
+    super-admin: ktadmin # 超级管理员账户
+    super-password: kt888888* # 超级管理员密码
+    default-password: kt123456 #所有账户默认密码
+    protocol: https
+    address: themetech-dt.com
+    port: 443
+    app: apis
+  init:
+    ddic: sex,district
+  storage:
+    path: /mnt/app_storage
+    nginx: /upload
+  wechat:
+    mini:
+      app-id:
+      app-secret:
+    pubnum:
+      app-id:
+      app-secret:
+uniapp:
+  cloud: #云推送消息地址
+    url: https://fc-mp-8aebd649-838c-4859-a7f9-2df57bc08f83.next.bspapp.com/test

+ 1 - 0
src/main/resources/application.yml

@@ -4,3 +4,4 @@ spring:
     group:
       local: local-conf,common
       dev: dev-conf,common
+      prod: prod-conf,common

+ 14 - 0
src/main/resources/init/org/org-prod.json

@@ -0,0 +1,14 @@
+{
+    "name":"盛泰公司",
+    "otherName":"盛泰公司",
+    "enName":null,
+    "type":"1000",
+    "usci":"915101003274788233",
+    "taxId":"915101003274788233",
+    "orgCode":"32747882-3",
+    "phones":["18111618069"],
+    "emails":["370748737@qq.com"],
+    "legalName":"杨成",
+    "legalPhone":"18111618069",
+    "username":"yangcheng"
+}

+ 45 - 0
src/main/resources/log4j2-prod.xml

@@ -0,0 +1,45 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<configuration>
+    <properties>
+        <property name="logBase">/mnt/app_logs/</property>
+    </properties>
+
+    <Appenders>
+        <Console name="Console" target="SYSTEM_OUT">
+            <PatternLayout charset="UTF-8" pattern="[%d] [%X{TRACE_ID}] [%-5p] [%t] [%c] - %m%n"/>
+        </Console>
+        <RollingFile name="AccessFile" fileName="${logBase}/logs/access.log" filePattern="${logBase}/logs/access.%d{yyyy-MM-dd}.log">
+            <PatternLayout pattern="[%d] [%X{TRACE_ID}] [%-5p] [%t] [%c] - %m%n"/>
+            <Policies>
+                <!-- 设置日志文件切分参数 -->
+                <OnStartupTriggeringPolicy/>
+                <!--设置日志基础文件大小,超过该大小就触发日志文件滚动更新-->
+                <SizeBasedTriggeringPolicy size="500 MB"/>
+                <!--设置日志文件滚动更新的时间,依赖于文件命名filePattern的设置-->
+                <TimeBasedTriggeringPolicy/>
+            </Policies>
+            <DefaultRolloverStrategy max="100"/>
+        </RollingFile>
+        <RollingFile name="ErrorFile" fileName="${logBase}/logs/error.log" filePattern="${logBase}/logs/error.%d{yyyy-MM-dd}.log">
+            <Filters>
+                <ThresholdFilter level="error" onMatch="ACCEPT" onMismatch="DENY"/>
+            </Filters>
+            <PatternLayout pattern="[%d] [%X{TRACE_ID}] [error] [%t] [%c] - %m%n"/>
+            <TimeBasedTriggeringPolicy/>
+        </RollingFile>
+    </Appenders>
+
+    <Loggers>
+        <Root level="info">
+            <AppenderRef ref="Console" level="all"/>
+            <AppenderRef ref="AccessFile" level="info"/>
+            <AppenderRef ref="ErrorFile" level="warn"/>
+        </Root>
+        <Logger name="org.springframework.boot.web.embedded" level="warn"/>
+        <Logger name="org.springframework" level="warn"/>
+        <Logger name="org.flywaydb.core" level="warn"/>
+        <Logger name="com.mybatis" level="warn"/>
+        <logger name="com.kingtom.kirin" level="info"/>
+        <logger name="com.kingtom.shengtai" level="info"/>
+    </Loggers>
+</configuration>