feat jenkins cicd

2025-12-31 23:34:44 +08:00
parent 670140e7d3
commit 01621ec237
32 changed files with 505 additions and 92 deletions
--- a/Server/gateway/Dockerfile
+++ b/Server/gateway/Dockerfile
@@ -1,10 +1,11 @@
-FROM alpine:latest
+FROM alpine:3.23.2

 RUN apk add --no-cache tzdata && \
    ln -sf /usr/share/zoneinfo/Asia/Shanghai /etc/localtime && \
    echo "Asia/Shanghai" > /etc/timezone

-COPY gateway/ /app/
+COPY server-gateway /app/server-gateway
+COPY config /app/config
 RUN chmod 777 /app/server-gateway

 WORKDIR /app
--- a/Server/gateway/Jenkinsfile
+++ b/Server/gateway/Jenkinsfile
@@ -0,0 +1,139 @@
+pipeline {
+    agent none
+
+    environment {
+        // 仓库
+        REPO_URL = 'http://47.108.184.184/gitea/HuXiaoHei/Game.git'
+        REPO_CREDENTIALS_ID = '80805ba2-f4ac-4d84-aee6-d4cce5fc0a96'
+
+        // Registry
+        REGISTRY_URL = 'registry.hlsq.asia'
+        REGISTRY_CREDENTIALS_ID = '0d79fc0b-a150-470b-bd0d-2639b2826031'
+
+        // 部署目标服务器
+        SERVER_HOST = 'www.hlsq.asia'
+        SERVER_USER = 'root'
+        REMOTE_DIR = '/opt/apps'
+        SSH_CREDENTIALS_ID = 'server-ssh-key'
+
+        // 基础信息
+        APP_NAME = 'server-gateway'
+        GO_MOD_CACHE_DIR = '/home/pi/Desktop/docker/jenkins/caches/go-mod'
+        GO_BUILD_CACHE_DIR = '/home/pi/Desktop/docker/jenkins/caches/go-build'
+    }
+
+    options {
+        skipDefaultCheckout true
+    }
+
+    stages {
+        stage('Checkout') {
+            agent any
+            steps {
+                checkout([
+                    $class: 'GitSCM',
+                    branches: [[name: '*/master']],
+                    doGenerateSubmoduleConfigurations: false,
+                    extensions: [],
+                    userRemoteConfigs: [[
+                        credentialsId: env.REPO_CREDENTIALS_ID,
+                        url: env.REPO_URL
+                    ]]
+                ])
+                // 立刻保存Git的Commit，避免并发问题
+                script {
+                    def shortCommit = sh(script: 'git rev-parse --short=8 HEAD', returnStdout: true).trim()
+                    env.IMAGE_TAG = "${env.REGISTRY_URL}/${env.APP_NAME}:${shortCommit}"
+                    echo "Checked out commit: ${env.IMAGE_TAG}"
+                }
+            }
+        }
+
+        stage('Build Go Binary') {
+            agent {
+                docker {
+                    image 'golang:1.23.1-alpine'
+                    reuseNode true
+                    args '-u root:root -v $GO_MOD_CACHE_DIR:/go/pkg/mod -v $GO_BUILD_CACHE_DIR:/root/.cache/go-build'
+                }
+            }
+            steps {
+                dir('Server/gateway') {
+                    sh """
+                        export GOPROXY=https://goproxy.cn,direct
+                        export CGO_ENABLED=0
+                        export GOOS=linux
+                        export GOARCH=amd64
+
+                        go build -o ${env.APP_NAME} .
+                    """
+                }
+            }
+        }
+
+        stage('Push Docker Image') {
+            agent any
+            steps {
+                dir('Server/gateway') {
+                    script {
+                        withCredentials([usernamePassword(
+                            credentialsId: env.REGISTRY_CREDENTIALS_ID,
+                            usernameVariable: 'DOCKER_USER',
+                            passwordVariable: 'DOCKER_PASS'
+                        )]) {
+                            sh """
+                                echo "$DOCKER_PASS" | docker login --username "$DOCKER_USER" --password-stdin ${env.REGISTRY_URL}
+                                docker build -t ${env.IMAGE_TAG} .
+                                docker push ${env.IMAGE_TAG}
+                                docker rmi ${env.IMAGE_TAG}
+                                docker logout ${env.REGISTRY_URL}
+                            """
+                        }
+                    }
+                }
+            }
+        }
+
+//         stage('Deploy to Server') {
+//             steps {
+//                 script {
+//                     echo "Deploying image: ${IMAGE_TAG} to ${env.SERVER_HOST}"
+//
+//                     sshagent (credentials: [env.SSH_CREDENTIALS_ID]) {
+//                         sh """
+//                             ssh ${env.SERVER_USER}@${env.SERVER_HOST} << 'EOF'
+//                                 # 登录私有 registry（使用 Jenkins 注入的凭据）
+//                                 echo "$REGISTRY_PASS" | docker login ${env.REGISTRY} --username "$REGISTRY_USER" --password-stdin
+//
+//                                 # 拉取最新镜像
+//                                 docker pull ${IMAGE_TAG}
+//
+//                                 # 停止并删除旧容器（如果存在）
+//                                 docker stop ${env.APP_NAME} 2>/dev/null || true
+//                                 docker rm ${env.APP_NAME} 2>/dev/null || true
+//
+//                                 # 启动新容器（根据你的需求调整端口、环境变量等）
+//                                 docker run -d \\
+//                                     --name ${env.APP_NAME} \\
+//                                     --restart unless-stopped \\
+//                                     -p 8080:8080 \\
+//                                     ${IMAGE_TAG}
+//
+//                                 # 可选：登出 registry
+//                                 docker logout ${env.REGISTRY}
+//                         """
+//                     }
+//                 }
+//             }
+//         }
+    }
+
+    post {
+        success {
+            echo '✅ 构建、推送镜像与部署成功！'
+        }
+        failure {
+            echo '❌ 构建失败，请检查日志。'
+        }
+    }
+}
--- a/Server/gateway/app/app.go
+++ b/Server/gateway/app/app.go
@@ -22,7 +22,7 @@ func (p *Program) Init(_ svc.Environment) error {
 	p.moduleList = append(p.moduleList, &ModuleBase{})
 	p.moduleList = append(p.moduleList, &ModuleDB{})
 	p.moduleList = append(p.moduleList, &ModulePrometheus{})
-	p.moduleList = append(p.moduleList, &ModuleGrpcGateway{})
+	p.moduleList = append(p.moduleList, &ModuleWebServer{})
 	p.moduleList = append(p.moduleList, &ModuleWebsocketServer{})
 	p.moduleList = append(p.moduleList, &ModuleGrpcServer{})

--- a/Server/gateway/app/prometheus.go
+++ b/Server/gateway/app/prometheus.go
@@ -27,7 +27,7 @@ func (m *ModulePrometheus) start() error {
 	go func() {
 		defer m.wg.Done()
 		m.server = &http.Server{
-			Addr:    fmt.Sprintf("%v:%v", config.Get().Monitor.Prometheus.Address, config.Get().Monitor.Prometheus.Port),
+			Addr:    fmt.Sprintf("%v:%v", config.Get().Metric.Prometheus.Address, config.Get().Metric.Prometheus.Port),
 			Handler: promhttp.Handler(),
 		}
 		if err := m.server.ListenAndServe(); err != nil && !errors.Is(err, http.ErrServerClosed) {
--- a/Server/gateway/app/grpc_gateway.go
+++ b/Server/gateway/app/grpc_gateway.go
@@ -2,7 +2,6 @@ package app

 import (
 	"common/log"
-	"common/net/grpc/service"
 	"context"
 	"errors"
 	"fmt"
@@ -12,20 +11,18 @@ import (
 	"sync"
 )

-// ModuleGrpcGateway GrpcGateway服务模块
-type ModuleGrpcGateway struct {
-	wg *sync.WaitGroup
-	// 微服务列表
-	services []service.IService
-	server   *http.Server
+// ModuleWebServer Web服务模块
+type ModuleWebServer struct {
+	wg     *sync.WaitGroup
+	server *http.Server
 }

-func (m *ModuleGrpcGateway) init() error {
+func (m *ModuleWebServer) init() error {
 	m.wg = &sync.WaitGroup{}
 	return nil
 }

-func (m *ModuleGrpcGateway) start() error {
+func (m *ModuleWebServer) start() error {
 	m.wg.Add(1)
 	go func() {
 		defer m.wg.Done()
@@ -41,7 +38,7 @@ func (m *ModuleGrpcGateway) start() error {
 	return nil
 }

-func (m *ModuleGrpcGateway) stop() error {
+func (m *ModuleWebServer) stop() error {
 	if err := m.server.Shutdown(context.Background()); err != nil {
 		log.Errorf("stop http server failed: %v", err)
 	}
--- a/Server/gateway/config/config.dev.yaml
+++ b/Server/gateway/config/config.dev.yaml
@@ -8,7 +8,7 @@ log:
  maxBackups: 100
  maxAge: 7

-monitor:
+metric:
  prometheus:
    address: "0.0.0.0"
    port: 8504
--- a/Server/gateway/config/config.go
+++ b/Server/gateway/config/config.go
@@ -2,17 +2,24 @@ package config

 import "common/config"

-const path = "./config"
-const KeyUserAccessToken = "user:access:%v"
-const KeyUserRefreshToken = "user:refresh:%v"
+const (
+	path                = "./config"
+	KeyUserAccessToken  = "user:access:%v"
+	KeyUserRefreshToken = "user:refresh:%v"
+)
+
+// PublicPaths 不需要鉴权的接口，硬编码注册
+var PublicPaths = []string{
+	"/user/info",
+}

 type Config struct {
-	App     *config.AppConfig     `yaml:"app"`
-	Log     *config.LogConfig     `yaml:"log"`
-	Monitor *config.MonitorConfig `yaml:"monitor"`
-	DB      *config.DBConfig      `yaml:"db"`
-	Serve   *config.ServeConfig   `yaml:"serve"`
-	Auth    *struct {
+	App    *config.AppConfig    `yaml:"app"`
+	Log    *config.LogConfig    `yaml:"log"`
+	Metric *config.MetricConfig `yaml:"metric"`
+	DB     *config.DBConfig     `yaml:"db"`
+	Serve  *config.ServeConfig  `yaml:"serve"`
+	Auth   *struct {
 		Secret string `yaml:"secret"`
 		Expire int64  `yaml:"expire"`
 	}
--- a/Server/gateway/config/config.prod.yaml
+++ b/Server/gateway/config/config.prod.yaml
@@ -8,7 +8,7 @@ log:
  maxBackups: 100
  maxAge: 7

-monitor:
+metric:
  prometheus:
    address: "0.0.0.0"
    port: 8504
--- a/Server/gateway/internal/handler/http_handler/test.go
+++ b/Server/gateway/internal/handler/http_handler/test.go
@@ -0,0 +1,27 @@
+package http_handler
+
+import (
+	"common/net/http/http_resp"
+	"github.com/gin-gonic/gin"
+)
+
+// 这个模块处理用户登录
+
+type TestReq struct {
+}
+
+type TestResp struct {
+	Info string `json:"info"`
+}
+
+func Test(c *gin.Context) {
+	req := &TestReq{}
+	if err := c.ShouldBindJSON(req); err != nil {
+		http_resp.JsonBadRequest(c)
+		return
+	}
+
+	http_resp.JsonOK(c, http_resp.Success(&TestResp{
+		Info: "成功了",
+	}))
+}
--- a/Server/gateway/internal/net/http_gateway/middleward.go
+++ b/Server/gateway/internal/net/http_gateway/middleward.go
@@ -43,24 +43,35 @@ func ginLogger(logger *zap.SugaredLogger) gin.HandlerFunc {

 func authJwt() gin.HandlerFunc {
 	return func(c *gin.Context) {
-		authHeader := c.GetHeader("Authorization")
-		if authHeader == "" {
+		// 如果是Public接口，有Token就读，没有就算了
+		public := false
+		for _, path := range config.PublicPaths {
+			if strings.HasPrefix(c.Request.URL.Path, path) {
+				public = true
+				break
+			}
+		}
+
+		token := strings.TrimPrefix(c.GetHeader("Authorization"), "Bearer ")
+		if token == "" {
+			if public {
+				c.Next()
+				return
+			}
 			http_resp.AbortUnauthorized(c)
 			return
 		}
-
-		parts := strings.Split(authHeader, " ")
-		if len(parts) != 2 || strings.ToLower(parts[0]) != "bearer" {
-			http_resp.AbortUnauthorized(c)
-			return
-		}
-
-		claims, err := utils.ParseToken(parts[1], config.Get().Auth.Secret)
+		claims, err := utils.ParseToken(token, config.Get().Auth.Secret)
 		if err != nil {
+			if public {
+				c.Next()
+				return
+			}
 			http_resp.AbortUnauthorized(c)
 			return
 		}

+		// 这里将Header写到请求中，grpc-gateway框架会读取然后传给grpc服务
 		c.Request.Header.Set("X-Usn", strconv.Itoa(int(claims.USN)))
 		c.Next()
 	}
--- a/Server/gateway/internal/net/http_gateway/router.go
+++ b/Server/gateway/internal/net/http_gateway/router.go
@@ -72,6 +72,7 @@ func initBaseRoute(r *gin.RouterGroup) {
 	g := r.Group("/gw")
 	g.POST("/login", http_handler.Login)
 	g.POST("/refresh_token", http_handler.RefreshToken)
+	g.GET("/test", http_handler.Test)
 }

 func initUserPath(r *gin.RouterGroup) {