add scripts for cdn

change aes mode to cfb in encrypt / decrypt in Security
2026-04-22 10:46:33 +00:00 · 2025-02-25 19:48:27 +02:00
parent 32955e4c66
commit 6d28085b7e
17 changed files with 104 additions and 7 deletions
@@ -0,0 +1,14 @@
+mkdir -p ~/cdn/data
+
+certbot certonly --standalone -d cdn.azaion.com
+
+cd /etc/letsencrypt/live/cdn.azaion.com-0001 || exit
+
+chmod -R 755 privkey.pem
+ln -s privkey.pem private.key
+
+chmod -R 755 fullchain.pem
+ln -s fullchain.pem public.crt
+cd ~ || exit
+
+sh restart-minio.sh
@@ -0,0 +1,6 @@
+
+MC_BINARY_PATH="/usr/local/bin/mc"
+wget https://dl.min.io/client/mc/release/linux-amd64/mc -O ${MC_BINARY_PATH}
+chmod +x ${MC_BINARY_PATH}
+export PATH=$PATH:${MC_BINARY_PATH} >> ~/.profile
+source ~/.profile
@@ -0,0 +1,12 @@
+mc alias set cdn http://localhost:9020 azaion-cdn-admin AzAA2onCdDmNinnn_CDN_1
+
+mc admin user add cdn azaion-cdn-uploader AaazzA2onCuuPlonad_CerrDN_1
+mc admin policy create cdn CDNUploadPolicy uploader_policy.json
+mc admin policy attach cdn CDNUploadPolicy --user azaion-cdn-uploader
+
+
+mc admin user add cdn azaion-cdn-user AaazzA2onCussSerrrErDN_1
+mc admin policy create cdn CDNUserPolicy user_policy.json
+mc admin policy attach cdn CDNUserPolicy --user azaion-cdn-user
+
+mc mb cdn/models
@@ -0,0 +1,15 @@
+docker stop minio
+docker rm minio
+
+docker run \
+   -p 9020:9000 \
+   -p 9021:9001 \
+   --name minio \
+   -v ~/minio/data:/data \
+   -v /etc/letsencrypt/live/cdn.azaion.com-0001:/certs \
+   -e "MINIO_ROOT_USER=azaion-cdn-admin" \
+   -e "MINIO_ROOT_PASSWORD=AzAA2onCdDmNinnn_CDN_1" \
+   quay.io/minio/minio server /data \
+   --address ":9000" \
+   --console-address ":9001" \
+   --certs-dir /certs
@@ -0,0 +1,17 @@
+{
+  "Version": "2012-10-17",
+  "Statement": [
+    {
+      "Effect": "Allow",
+      "Action": [
+        "s3:PutObject"
+      ],
+      "Resource": ["arn:aws:s3:::models/*"]
+    },
+        {
+            "Effect": "Allow",
+            "Action": [ "s3:ListBucket" ],
+            "Resource": [ "arn:aws:s3:::models" ]
+        }
+    ]
+}
@@ -0,0 +1,15 @@
+{
+  "Version": "2012-10-17",
+  "Statement": [
+    {
+      "Effect": "Allow",
+      "Action": [ "s3:GetObject" ],
+      "Resource": ["arn:aws:s3:::models/*"]
+    },
+    {
+      "Effect": "Allow",
+      "Action": [ "s3:ListBucket" ],
+      "Resource": [ "arn:aws:s3:::models" ]
+    }
+  ]
+}