add huiwing domain config

conf/huiwing/.htpasswd

@@ -0,0 +1 @@
+huiwing:$apr1$r50umplo$ltopNoFz2rhNuSgKN46e0/

conf/huiwing/admin.conf

@@ -0,0 +1,111 @@
+server {
+#     https://serverfault.com/questions/798734/use-variable-for-server-name-in-nginx#
+#     server_name $servername;
+    server_name "admin.huiwings.cn";
+    listen 443 ssl;
+    client_max_body_size 10M;
+
+    # disable in local test env
+    ssl_certificate /etc/letsencrypt/live/huiwings.cn/fullchain.pem; # managed by Certbot
+    ssl_certificate_key /etc/letsencrypt/live/huiwings.cn/privkey.pem; # managed by Certbot
+
+    set $tmp_file_dir "/file_upload"; # 文件存储路径
+    set $task_server "http://127.0.0.1:8080"; # task server host
+    set $htyuc "http://127.0.0.1:3000"; #htyuc host
+    set $resty_loc "/usr/local/openresty";
+    set $convert "/usr/bin/convert";
+    set $upyun_operator "moicen";
+    set $upyun_password "NyJ51zRwFApY9Wo9EHJMrb8GI9YtvpVN";
+    set $upyun_bucket "alchemy";
+    set $upyun_directory "music-room";
+    set $upyun_domain "https://upyun.huiwings.cn";
+    set $wx_domain "wx.huiwings.cn";
+    set $upt_secret "0D32E581A445404FA4C306709724FA07";
+    set $upt_duration 3600;
+
+    location / {
+        try_files $uri $uri/ /index.html;
+        proxy_set_header  Host "admin.huiwings.cn";
+        proxy_set_header  X-Real-IP $remote_addr;
+        # disable in local test env
+        proxy_set_header  X-Forwarded-Proto https;
+        proxy_set_header  X-Forwarded-For $remote_addr;
+        proxy_set_header  X-Forwarded-Host $remote_addr;
+    }
+
+    root $resty_loc/nginx/html/admin;
+    index index.html;
+
+    add_header Access-Control-Allow-Origin $http_origin always;
+    add_header Access-Control-Allow-Methods 'GET, POST, OPTIONS' always;
+    add_header Access-Control-Allow-Headers 'Authorization,unionid,HtySudoerToken,HtyHost,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type' always;
+    add_header Access-Control-Allow-Credentials true always;
+    add_header Access-Control-Max-Age 86400 always;
+    if ($request_method = 'OPTIONS') {
+        return 200;
+    }
+
+
+    location /api/ngx/image/check {
+         content_by_lua_file $resty_loc/nginx/scripts/check_file.lua;
+    }
+
+    location /api/ngx/image/upload_combined {
+         content_by_lua_file $resty_loc/nginx/scripts/upload_combined_image.lua;
+    }
+    #Upload image files
+    location /api/ngx/image/upload {
+         content_by_lua_file $resty_loc/nginx/scripts/old_upload.lua;
+    }
+    #upload image from weixin media
+    location /api/ngx/image/wx_upload_single {
+         content_by_lua_file $resty_loc/nginx/scripts/wx_upload_single.lua;
+    }
+    #upload image files to combine by form
+    location /api/ngx/image/form_upload_to_combine {
+         content_by_lua_file $resty_loc/nginx/scripts/form_upload_to_combine.lua;
+    }
+    #Upload image files to combine by wx
+    location /api/ngx/image/wx_upload_to_combine {
+         content_by_lua_file $resty_loc/nginx/scripts/wx_upload_to_combine.lua;
+    }
+    #compress image file by form
+    location /api/ngx/image/form_upload_to_compress {
+         content_by_lua_file $resty_loc/nginx/scripts/form_upload_to_compress.lua;
+    }
+    #Combine image files
+    location /api/ngx/image/combine {
+         content_by_lua_file $resty_loc/nginx/scripts/combine.lua;
+    }
+    #Audio file download
+    location /api/ngx/audio/upload {
+         content_by_lua_file $resty_loc/nginx/scripts/upload_audio.lua;
+    }
+    #Audio file convert
+    location /api/ngx/audio/convert {
+         content_by_lua_file $resty_loc/nginx/scripts/convert_audio.lua;
+    }
+
+    location /api/ngx/upt {
+         content_by_lua_file $resty_loc/nginx/scripts/upt.lua;
+    }
+
+#     location /api/ngx/convert/test {
+#          content_by_lua_file $resty_loc/nginx/scripts/test.lua;
+#     }
+
+    location /api/v1/ws/ {
+        proxy_pass http://127.0.0.1:3001/api/v1/ws/;
+    }
+    location /api/v1/uc/ {
+        proxy_pass http://127.0.0.1:3000/api/v1/uc/;
+    }
+}
+
+server {
+  listen 80;
+  server_name "admin.huiwings.cn";
+  location / {
+    return 301 https://$host$request_uri;
+  }
+}

conf/huiwing/ai.conf

@@ -0,0 +1,52 @@
+server {
+#     https://serverfault.com/questions/798734/use-variable-for-server-name-in-nginx#
+#     server_name $servername;
+    server_name "ai.huiwings.cn";
+    listen 443 ssl;
+#    listen 80;
+    client_max_body_size 10M;
+
+    # disable in local test env
+     ssl_certificate /etc/letsencrypt/live/huiwings.cn/fullchain.pem; # managed by Certbot
+    ssl_certificate_key /etc/letsencrypt/live/huiwings.cn/privkey.pem; # managed by Certbot
+
+    location / {
+        try_files $uri $uri/ /index.html;
+        proxy_set_header  Host "ai.huiwings.cn";
+        proxy_set_header  X-Real-IP $remote_addr;
+        # disable in local test env
+        proxy_set_header  X-Forwarded-Proto https;
+        proxy_set_header  X-Forwarded-For $remote_addr;
+        proxy_set_header  X-Forwarded-Host $remote_addr;
+    }
+
+    location /api/v1/index {
+
+       return 200 "Ai api index";
+    }
+    add_header Access-Control-Allow-Origin $http_origin always;
+    add_header Access-Control-Allow-Methods 'GET, POST, OPTIONS' always;
+    add_header Access-Control-Allow-Headers 'Authorization,unionid,HtySudoerToken,HtyHost,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type' always;
+    add_header Access-Control-Allow-Credentials true always;
+    add_header Access-Control-Max-Age 86400 always;
+    if ($request_method = 'OPTIONS') {
+        return 200;
+    }
+
+    location /api/v1/ai/ {
+        proxy_set_header Host            $host;
+        add_header Access-Control-Allow-Origin $http_origin always;
+        add_header Access-Control-Allow-Methods 'GET, POST, OPTIONS' always;
+        add_header Access-Control-Allow-Headers 'Authorization,HtyAdminToken,HtySudoerToken,HtyHost,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type' always;
+        add_header Access-Control-Allow-Credentials true always;
+        add_header Access-Control-Max-Age 86400 always;
+        if ($request_method = 'OPTIONS') {
+            return 200;
+        }
+
+#         auth_basic "ai_api access auth";
+#         auth_basic_user_file /usr/local/openresty/nginx/conf.d/.htpasswd;
+
+        proxy_pass http://127.0.0.1:5000/;
+    }
+}

conf/huiwing/music-room.conf

@@ -0,0 +1,49 @@
+server {
+#     https://serverfault.com/questions/798734/use-variable-for-server-name-in-nginx#
+#     server_name $servername;
+    server_name "music-room.huiwings.cn";
+    listen 443 ssl;
+    client_max_body_size 10M;
+
+    set $resty_loc "/usr/local/openresty";
+
+    # disable in local test env
+    ssl_certificate /etc/letsencrypt/live/huiwings.cn/fullchain.pem; # managed by Certbot
+    ssl_certificate_key /etc/letsencrypt/live/huiwings.cn/privkey.pem; # managed by Certbot
+
+    location / {
+        try_files $uri $uri/ /index.html;
+        proxy_set_header  Host "music-room.huiwings.cn";
+        proxy_set_header  X-Real-IP $remote_addr;
+        # disable in local test env
+        proxy_set_header  X-Forwarded-Proto https;
+        proxy_set_header  X-Forwarded-For $remote_addr;
+        proxy_set_header  X-Forwarded-Host $remote_addr;
+    }
+
+    root $resty_loc/nginx/html/music-room;
+    index index.html;
+
+    # 公众号校验 炼金工坊
+    location /MP_verify_Jo6pKmy43wx7S5Sh.txt {
+        return 200 'Jo6pKmy43wx7S5Sh';
+    }
+
+    # 公众号校验 慧添翼音乐教室
+    location /MP_verify_xDbyXEtPHigY8dCN.txt {
+        return 200 'xDbyXEtPHigY8dCN';
+    }
+
+    # 小程序业务域名校验
+    location /wy7of6ofMw.txt {
+        return 200 'aa91a8d33359e82465dcc0aae9284b27';
+    }
+}
+
+server {
+  listen 80;
+  server_name "music-room.huiwings.cn";
+  location / {
+    return 301 https://$host$request_uri;
+  }
+}

conf/huiwing/ts.conf

@@ -0,0 +1,37 @@
+server {
+#     https://serverfault.com/questions/798734/use-variable-for-server-name-in-nginx#
+#     server_name $servername;
+    server_name "ts.huiwings.cn";
+    listen 443 ssl;
+    listen 80;
+    client_max_body_size 10M;
+
+    # disable in local test env
+     ssl_certificate /etc/letsencrypt/live/huiwings.cn/fullchain.pem; # managed by Certbot
+     ssl_certificate_key /etc/letsencrypt/live/huiwings.cn/privkey.pem; # managed by Certbot
+
+    set $task_server "http://127.0.0.1:8080"; # task server host
+    set $htyuc "http://127.0.0.1:3000"; #htyuc host
+    set $resty_loc "/usr/local/openresty";
+
+    location /api/v1/ts/ {
+
+        add_header Access-Control-Allow-Origin $http_origin always;
+        add_header Access-Control-Allow-Methods 'GET, POST, OPTIONS' always;
+        add_header Access-Control-Allow-Headers 'Authorization,HtyAdminToken,HtySudoerToken,HtyHost,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type' always;
+        add_header Access-Control-Allow-Credentials true always;
+        add_header Access-Control-Max-Age 86400 always;
+        if ($request_method = 'OPTIONS') {
+            return 200;
+        }
+        proxy_pass http://127.0.0.1:8080/api/v1/ts/;
+    }
+}
+
+# server {
+#   listen 80;
+#   server_name "ts.huiwings.cn";
+#   location / {
+#     return 301 https://$host$request_uri;
+#   }
+# }

cp_scripts_huiwing.sh

@@ -0,0 +1,32 @@
+#!/bin/sh
+set -x
+
+# Openresty config
+
+# -- Get openresty config path
+openresty_sub_config_dir='/usr/local/openresty/nginx/conf.d'
+echo $openresty_sub_config_dir
+
+# -- Make sub config dir
+mkdir -p $openresty_sub_config_dir
+# -- Copy sun config file
+cp conf/huiwing/*.conf $openresty_sub_config_dir
+
+
+# Lua scripts
+
+# -- Get openresty install path
+openresty_lua_scripts_dir='/usr/local/openresty/nginx/scripts'
+echo $openresty_lua_scripts_dir
+# -- Make scripts dir
+mkdir -p $openresty_lua_scripts_dir
+# -- Copy scripts file
+cp -rv scripts/* $openresty_lua_scripts_dir
+# -- Replace scripts path in file
+sed -i -e "s|<SCRIPT_PATH>|$openresty_lua_scripts_dir|g" \
+  "$openresty_lua_scripts_dir"/*.lua  \
+  "$openresty_lua_scripts_dir"/lib/*.lua \
+
+# Reload openresty
+openresty -t
+openresty -s reload