product wiki confluence
s
- 破解过程
Atlassian Confluence 8.5.31 部署过程 , https://blog.csdn.net/vincent0920/article/details/128935917
| 序号 | 项目 | 描述 | 备注 |
| 0 | 下载软件 | https://github.com/siemens800my/MyProject/blob/master_fenzhi_01/lindows/linuxsoft/atlassian-agent-v1.3.1.zip https://product-downloads.atlassian.com/software/confluence/downloads/atlassian-confluence-8.5.31.zip https://www.atlassian.com/software/confluence/download-archives https://www.atlassian.com/zh/software/jira/download-archives |
|
| 1 | tomcat配置Confluence,在setenv.sh里配置启动参数 | -javaagent:/opt/atlassian-agent-v1.3.1/atlassian-agent.jar | 来源atlassian-agent-v1.3.1.zip |
| 2 | tomcat部署Confluence,放入数据库驱动 | /opt/atlassian-confluence-8.5.31/confluence/WEB-INF/lib/mysql-connector-java-8.0.29.jar | |
| 3 | tomcat启动Confluence命令 | /opt/atlassian-confluence-8.5.31/bin/catalina.sh run | |
| 4 | Linux 执行命令获取许可证密钥,先输入部署的服务器ID,如图 | java -jar /data/confluence/atlassian-agent.jar -p conf -m xxx@mail.com -n chao -o www.xxx.com -s 输入启动后的服务器ID |  |
| 5 | jira部署,获取key同样 | root@rocky2:/opt/jira/bin# java -jar /opt/atlassian-agent-v1.3.1/atlassian-agent.jar -p conf -m xxx@mail.com -n chao -o www.xxx.com -s BPBR-FN8Y-E161-3E9S |
- 架构问题
| 序号 | 项目 | 描述 | 备注 |
| 1 | 整体架构(生产推荐) | [ Browser ] | | HTTP / HTTPS v [ Nginx : 33333 / 443 ] | | proxy_pass v [ Confluence (Tomcat) : 127.0.0.1:8090 ] | +-- Synchrony (同 JVM) |
|
| 2 | Nginx 生产级配置(完整模板) | - 1️⃣ 主配置 /etc/nginx/nginx.conf(保持精简) |
- 2️⃣ Confluence 反向代理 /etc/nginx/conf.d/confluence.conf |
| 3 | Confluence Tomcat(必须配) | 配置文件 /opt/atlassian-confluence-8.5.31/conf/server.xml | - 配置内容 |
| 4 | Confluence 启动参数(生产建议) | 修改文件 /opt/atlassian-confluence-8.5.31/bin/setenv.sh | - 修改内容 |
| 5 | 问题处理 | 问题描述: nginx 访问url,出现502 gatway 代理错误 nginx 日志报错connect() to 127.0.0.1:8090 failed (13: Permission denied) 原因解释: 1、执行命令getenforce 结果为Enforcing 结论:SELinux 正在阻止 nginx → 8090 |
解决方案: 1)放行 nginx 网络访问权限, -P 是永久生效(重启不丢)2)给 8090 打 http_port_t 标签 - |
- 参考文档
https://www.cnblogs.com/xiaofeng0824/p/18309848
http://www.wyasw.com/webdoc/view/Pubff8080817172748c01717e40a60a0318.html
- 破解软件
https://www.cnblogs.com/xiaofeng0824/p/18309848
https://files-cdn.cnblogs.com/files/blogs/826714/confluence%E7%A0%B4%E8%A7%A3%E5%B7%A5%E5%85%B7-www.wyasw.com-eefwe2rd.rar?t=1721291345&download=true
- 下载软件confluence
https://www.atlassian.com/software/confluence/download-archives
https://product-downloads.atlassian.com/software/confluence/downloads/atlassian-confluence-10.0.3-x64.bin
https://product-downloads.atlassian.com/software/confluence/downloads/atlassian-confluence-10.0.3-x64.bin
- 安装软件
[root@rocky9 opt]# chmod 777 *
[root@rocky9 opt]# ./atlassian-confluence-10.0.3-x64.bin
Installing fontconfig and fonts
Rocky Linux 9 - BaseOS 3.2 kB/s | 4.1 kB 00:01
Rocky Linux 9 - AppStream 5.6 kB/s | 4.5 kB 00:00
Rocky Linux 9 - Extras 1.5 kB/s | 2.9 kB 00:01
、、、
Complete!- 安装提示
http://192.168.10.57:8090/setup/setupstart.action
-
Trial Installation:试用版(30 天),不需要付费,但必须配置数据库。
-
Production Installation:正式生产环境安装,必须要有 Confluence 商业许可证。
- B7R2-0ZPV-YUT9-1TVZ
AAABNQ0ODAoPeJxtkFtrwjAUgN/zKwJ7HJG0TtyEwGIbhqwXsdWhb7Eet0BMJUm7+e8Xby9jb+f68
Z3z8AE7XDYe0wjHw8noaRKCt7x+pM8TSnFM4xFKwTVWHb1qDUtas9cdmAZQ0R22YMv90oF1jEQos
SDPQ6n0wM6bJKKEhnprvGx8IQ/AtDK79tuhJnAGoah6YN52cB8SuVSaKdMrp7YaXl0DBgZGI9FL3
V3wbC+1gyshU6HvoD4d4YJPyjwXi2TGMxRAxoORQVX8HJU9XbWGwzGJYhLOugDuRyS6cx5s0e7AM
YoqUbB1ucQ5fxc4F5jjiqd4zouUD1BpP6VR7iqjipWq1DQTuBY8RxXYHuwsZdPxIiZ0M1+R9bJ+I
VG92qCbbehms/Se/S8372zzJR38+eUvhJyK2zAsAhRtFqfn2tawSoo0W+3gRBD6JS/j3gIUOWxgq
cu8lnf8kSSDsKmcvxoaFI4=X02ff- BXP9-RSBR-X5ZA-RASY
AAABOA0ODAoPeJxtkN9rwjAQx9/zVwT2OCJpi8wJgcU2DFl/SKub7i3WcwvEVJK0m//9os6Xsce7+
96Hz93dG+xw1XpMIxwn03EyjSb4uVje08mUUhzTeIwycK1VR686w9LO7HUPpgVU9oct2Gq/cmAdI
xFKLchzKJMe2HmTRJTQ0O+Ml60v5QGYVmbXfTnUBs4oNNUAzNsebiFRSKWZMoNyaqvhybVgYGQ0E
oPU/QXP9lI7uBJyFeYOlqcjXPBpVRSiTuc8RwFkPBgZVMX3UdnTVStJHkgUk3DWBXA7ItW982DLb
geOUdSIkm2qFS74i8CFwBw3PMMLXmZ8hCr7IY1yVxlVvqpGzXKBl4IXqAE7gJ1nbLZePJK6mdVkP
X7npObNBv3ahmk+z27V/3KL3raf0sGfX/4AnLKLCDAsAhQNG5LbDtDW3My5mskj1ws/eSf6fAIUe
ZwRnuy4UtNgJrsYb3pRyVM1zLM=X02fj- BN45-EW04-S00X-03B5
AAABNg0ODAoPeJxtkFFLwzAQx9/zKQI+SkbariiDgF0bZNi0w25OH7PspoEsHUla3bc3bu5FfLy7/
/343d1sYIdbFTBNcJrNcjrLM/woVrf0fkYpTmmaowq8cvoYdG9Z2du9GcAqQM1w2IJr92sPzjOSo
NKB/AlVMgD72SQJJTT2exukCo08ADPa7vpPj1TkTGJTj8CCG+Aa4kJqw7QdtddbAw9egYWJNYiP0
gxnPNtL4+FCqHWce1idjnDGl60Q/LlcFDWKIBvAyqjKv47anS5aWXZHkpTEs86A6xGlGXwA1/Q78
IyijjfsrV1jUTxxLDgucFdUeFk0VTFBrXuXVvuLjG5edKfnNccrXgjUgRvBLSo2b6Y54Rs6JR2lr
4Rm8xz92sZpvaiu1f9yy8GpD+nhzy+/AVLxih8wLAIUU74kZuxNChc1ELGZs+XNym2JYiYCFFz8+
Tt7w7dfCZjrTz6Cp+yBMvpMX02ff- 服务器ID:BRRI-PFU0-6XEE-RS6C
AAABNw0ODAoPeJxtkMtOwzAQRff+CksskSsnUQtUskSaGBSRR5WkCJZuOqWWXKeynUD/Hve1QSxn5
s7RmblrdwOuOodpiINgHk3n0RN+Ldp7+jinFIc0nKIUbGfkwcles6TXWzWA7gCVw34NptquLBjLS
IASA+IUSoUDdtokASU0RH7Hic6VYg9MSb3pvy3qPGfim3IE5swAtxAvhFRM6lFauVbwbDvQMNEK8
VGo4YxnW6EsXAi59HML7fEAZ3xSFQWvkyzOkQdpB1p4Vf5zkOZ40YqiBxKExJ91BtyOSNRgHZiy3
4BlFDW8ZJ/VChfxG8cFxzFu4hQv4zKNJ6gyX0JLe5GR5bts5CLnuOVxgRowI5gsZYu6zsjyZUXJ7
INzUjezBF1t/TTP0lv1v9xyMN1OWPjzy1+pIorZMC0CFQCRu+Hks6x0t5FYVWNvK+Mm3U7MwgIUJ
LR6hptxtqDm0zYtGsn3roGfJpA=X02fj- nginx + confluence部署方案2
# 需求方案,以后要这样部署
https://app.lindows.me:20001 → esxi
https://app.lindows.me:20002 → router
https://app.lindows.me:20003 → nas
https://app.lindows.me:20004 → confluence
https://app.lindows.me:20005 → jira
https://app.lindows.me:20005 → jenkins
# nginx 1.26.3 + confulence 8.5.31
root@rocky1:~# ll /etc/nginx/conf.d/
total 28
-rw-r--r--. 1 root root 1105 Feb 12 20:02 20001-esxi.conf.bak
-rw-r--r--. 1 root root 1327 Feb 12 21:07 20002-router.conf.bak
-rw-r--r--. 1 root root 1099 Feb 12 21:54 20003-nas.conf.bak
-rw-r--r--. 1 root root 1299 Feb 12 21:33 20004-confluence.conf
-rw-r--r--. 1 root root 1099 Feb 12 21:34 20005-jira.conf.bak
-rw-r--r--. 1 root root 1102 Feb 13 11:57 20006-jenkins.conf
-rw-r--r--. 1 root root 144 Feb 12 22:12 batch_rename.sh
root@rocky1:~# - nginx配置如下:/etc/nginx/conf.d/confluence.conf
server {
listen 33333 ssl;
server_name 112.83.8.142;
ssl_certificate /etc/nginx/ssl/confluence.crt;
ssl_certificate_key /etc/nginx/ssl/confluence.key;
client_max_body_size 100m;
# ================== Confluence ==================
location /wiki/ {
proxy_pass http://192.168.3.47:8090/wiki/;
proxy_http_version 1.1;
proxy_set_header Host $host;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header X-Forwarded-Proto https;
proxy_read_timeout 300;
proxy_send_timeout 300;
proxy_buffering off;
}
# 解决 /wiki 自动补 /
location = /wiki {
return 301 /wiki/;
}
# ================== Jenkins ==================
location /jenkins/ {
proxy_pass http://192.168.3.48:8080/jenkins/;
proxy_set_header Host $host;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-Proto https;
}
location = /jenkins {
return 301 /jenkins/;
}
}- confluence 配置如下:/opt/atlassian-confluence-8.5.31/conf/server.xml
<Server port="8000" shutdown="SHUTDOWN">
<Service name="Tomcat-Standalone">
<Connector
port="8090"
address="0.0.0.0"
protocol="org.apache.coyote.http11.Http11NioProtocol"
connectionTimeout="20000"
maxThreads="300"
minSpareThreads="50"
acceptCount="200"
enableLookups="false"
URIEncoding="UTF-8"
proxyName="112.83.8.142"
proxyPort="33333"
scheme="https"
/>
<Engine name="Standalone" defaultHost="localhost">
<Host name="localhost" appBase="webapps" unpackWARs="true" autoDeploy="false" startStopThreads="4">
<!-- Context path="" docBase="../confluence" reloadable="false" useHttpOnly="true" -->
<!-- 设置成wiki路径后,可以这样访问 http://192.168.3.48:33333/wiki -->
<Context path="/wiki" docBase="../confluence" reloadable="false" useHttpOnly="true">
<!-- Logging configuration for Confluence is specified in confluence/WEB-INF/classes/log4j.properties -->
<Manager pathname=""/>
<Valve className="org.apache.catalina.valves.StuckThreadDetectionValve" threshold="60"/>
<!-- http://tomcat.apache.org/tomcat-9.0-doc/config/valve.html#Access_Log_Valve -->
<Valve className="org.apache.catalina.valves.AccessLogValve"
directory="logs"
maxDays="30"
pattern="%t %{X-AUSERNAME}o %I %h %r %s %Dms %b %{Referer}i %{User-Agent}i"
prefix="conf_access_log"
requestAttributesEnabled="true"
rotatable="true"
suffix=".log"
/>
<!-- http://tomcat.apache.org/tomcat-9.0-doc/config/valve.html#Remote_IP_Valve -->
<Valve className="org.apache.catalina.valves.RemoteIpValve" />
</Context>
<Context path="${confluence.context.path}/synchrony-proxy" docBase="../synchrony-proxy"
reloadable="false" useHttpOnly="true">
<Valve className="org.apache.catalina.valves.StuckThreadDetectionValve" threshold="60"/>
</Context>
</Host>
</Engine>
</Service>
</Server>- 其他反向代理配置参考
- /etc/nginx/conf.d/20001-esxi.conf
root@rocky1:/etc/nginx/conf.d# more 443-esxi.conf
##
## HTTPS 访问 ESXI控制台(反代到 192.168.3.37:443)
##
server {
listen 33333 ssl;
server_name vmware.lindows.me;
charset utf-8;
access_log /var/log/nginx/vmware.access.log main;
error_log /var/log/nginx/vmware.error.log warn;
# ===== SSL 配置 =====
ssl_certificate /etc/nginx/ssl/confluence.crt;
ssl_certificate_key /etc/nginx/ssl/confluence.key;
ssl_protocols TLSv1.2 TLSv1.3;
ssl_ciphers HIGH:!aNULL:!MD5;
ssl_prefer_server_ciphers on;
client_max_body_size 100m;
location / {
proxy_pass https://192.168.3.37:443;
proxy_http_version 1.1;
proxy_set_header Host $host;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-Host $host;
proxy_set_header X-Forwarded-Server $host;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header X-Forwarded-Proto https;
proxy_read_timeout 300;
proxy_send_timeout 300;
proxy_connect_timeout 300;
proxy_buffering off;
}
}- /etc/nginx/conf.d/20003-nas.conf
root@rocky1:/etc/nginx/conf.d# more 5000-nas.conf
##
## HTTPS 访问 NAS控制台(反代到 192.168.3.37:5000)
##
server {
listen 33333 ssl;
server_name vmware.lindows.me;
charset utf-8;
access_log /var/log/nginx/vmware.access.log main;
error_log /var/log/nginx/vmware.error.log warn;
# ===== SSL 配置 =====
ssl_certificate /etc/nginx/ssl/confluence.crt;
ssl_certificate_key /etc/nginx/ssl/confluence.key;
ssl_protocols TLSv1.2 TLSv1.3;
ssl_ciphers HIGH:!aNULL:!MD5;
ssl_prefer_server_ciphers on;
client_max_body_size 100m;
location / {
proxy_pass https://192.168.3.37:5000;
proxy_http_version 1.1;
proxy_set_header Host $host;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-Host $host;
proxy_set_header X-Forwarded-Server $host;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header X-Forwarded-Proto https;
proxy_read_timeout 300;
proxy_send_timeout 300;
proxy_connect_timeout 300;
proxy_buffering off;
}
}- /etc/nginx/conf.d/20005-jira.conf
##
## HTTPS 访问 Jira(反代到 192.168.3.47:8091)
##
server {
listen 33333 ssl;
server_name jira.lindows.me;
charset utf-8;
access_log /var/log/nginx/jira.access.log main;
error_log /var/log/nginx/jira.error.log warn;
# ===== SSL 配置 =====
ssl_certificate /etc/nginx/ssl/confluence.crt;
ssl_certificate_key /etc/nginx/ssl/confluence.key;
ssl_protocols TLSv1.2 TLSv1.3;
ssl_ciphers HIGH:!aNULL:!MD5;
ssl_prefer_server_ciphers on;
client_max_body_size 100m;
location / {
proxy_pass http://192.168.3.47:8091;
proxy_http_version 1.1;
proxy_set_header Host $host;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-Host $host;
proxy_set_header X-Forwarded-Server $host;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header X-Forwarded-Proto https;
proxy_read_timeout 300;
proxy_send_timeout 300;
proxy_connect_timeout 300;
proxy_buffering off;
}
}- /etc/nginx/conf.d/20002-router.conf
##
## HTTPS 访问 Vmware(反代到 192.168.3.47:5000)
##
server {
listen 33333 ssl;
server_name route.lindows.me;
charset utf-8;
access_log /var/log/nginx/route.access.log main;
error_log /var/log/nginx/route.error.log warn;
# ===== SSL 配置 =====
ssl_certificate /etc/nginx/ssl/confluence.crt;
ssl_certificate_key /etc/nginx/ssl/confluence.key;
ssl_protocols TLSv1.2 TLSv1.3;
ssl_ciphers HIGH:!aNULL:!MD5;
ssl_prefer_server_ciphers on;
client_max_body_size 100m;
location / {
proxy_pass https://192.168.3.1:443;
proxy_ssl_verify off;
proxy_ssl_server_name on;
proxy_ssl_protocols TLSv1 TLSv1.1 TLSv1.2 TLSv1.3;
proxy_http_version 1.1;
# proxy_set_header不能用$host参数,只能ip地址,非标HTTP服务路由器会校验Host头信息。
proxy_set_header Host 192.168.3.1;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-Host $host;
proxy_set_header X-Forwarded-Server $host;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header X-Forwarded-Proto https;
proxy_read_timeout 300;
proxy_send_timeout 300;
proxy_connect_timeout 300;
proxy_buffering off;
}
}- /etc/nginx/conf.d/20004-confluence.conf
-
- /etc/nginx/conf.d/20006-jenkins.conf
-
- jenkins 部署
| 序号 | 项目 | 描述 | 备注 |
| 1 | java -jar -Duser.language=zh -Duser.country=CN -jar jenkins.war --httpPort=55555 | /root/.jenkins/secrets/initialAdminPassword 9e3765ccb948489192ea3da9c6119e31 |
|
end
浙公网安备 33010602011771号