mirror of
https://18126008609:longquanjian123@gitee.com/feigong123/aurask.git
synced 2026-04-19 15:00:35 +00:00
5.4 KiB
5.4 KiB
Aurask k3s / DevCloud 部署说明
本文档基于当前仓库与 DevCloud 现网结构,兼顾两部分目标:
- 保留已落地的 DevCloud
base + production overlay部署方式 - 纳入本次新增的门户登录流、Google 登录、Langflow / AnythingLLM 嵌入配置
目录结构
deploy/k3s/
README.md
base/
namespace.yaml
aurask-runtime-config.yaml
aurask-config.yaml
aurask-api-pvc.yaml
aurask-api.yaml
aurask-worker.yaml
aurask-web.yaml
aurask-manager.yaml
postgres.yaml
redis.yaml
kustomization.yaml
secrets.example.yaml
overlays/
production/
kustomization.yaml
aurask-api-production.yaml
aurask-worker-production.yaml
aurask-web-production.yaml
aurask-manager-production.yaml
postgres-production.yaml
redis-production.yaml
runtime-config-production.yaml
examples/
aurask-runtime-secrets.example.yaml
aurask-postgres-secret.example.yaml
aurask-redis-secret.example.yaml
当前 DevCloud 现网映射
域名与入口
- 公网域名:
https://aurask.xyz https://aurask.xyz/api/*→aurask-apihttps://aurask.xyz/*→aurask-web- 当前由前端宿主机 Caddy 转发到 DevCloud NodePort
已知镜像与端口
- API 镜像:
registry.mydevcloud.love/devcloud/aurask-api:latest - Web 镜像:
registry.mydevcloud.love/devcloud/aurask-web:latest - Manager 镜像:
registry.mydevcloud.love/devcloud/aurask-manager:latest aurask-apiNodePort:30091aurask-webNodePort:30090aurask-managerNodePort:30092
生产 overlay 节点绑定
aurask-api:devcloud-trade-agent-1aurask-worker:devcloud-trade-agent-1postgres:devcloud-trade-agent-1redis:devcloud-trade-agent-1aurask-web:devcloud-trade-agent-2aurask-manager:devcloud-trade-agent-2
Base 层职责
deploy/k3s/base/ 保持通用资源,不直接写死生产节点:
namespace.yaml:Aurask namespaceaurask-runtime-config.yaml:桥接/运行时基础配置aurask-config.yaml:站点、门户、登录、嵌入默认配置aurask-api-pvc.yaml:MVP 状态文件持久化aurask-api.yaml:API Deployment + Serviceaurask-worker.yaml:Worker Deploymentaurask-web.yaml:用户门户 Deployment + Serviceaurask-manager.yaml:管理员门户 Deployment + Servicepostgres.yaml:PostgreSQL / PGVector 基础资源redis.yaml:Redis 基础资源
本次新增的门户配置
aurask-config.yaml
新增以下站点默认值:
AURASK_PUBLIC_BASE_URL=https://aurask.xyzAURASK_PUBLIC_API_BASE_URL=https://aurask.xyz/apiAURASK_PUBLIC_LANGFLOW_URL=https://aurask.xyz/runtime/langflow/AURASK_PUBLIC_ANYTHINGLLM_URL=https://aurask.xyz/runtime/anythingllm/AURASK_DEVCLOUD_API_IMAGE=registry.mydevcloud.love/devcloud/aurask-api:latestAURASK_DEVCLOUD_WEB_IMAGE=registry.mydevcloud.love/devcloud/aurask-web:latestAURASK_DEVCLOUD_API_NODE_URL=http://45.113.2.55:30091AURASK_DEVCLOUD_WEB_NODE_URL=http://45.113.2.55:30090AURASK_GOOGLE_ENABLED=trueAURASK_SESSION_TTL_DAYS=7
secrets.example.yaml
新增门户与外部组件需要的 Secret 占位:
AURASK_DATABASE_URLAURASK_ANYTHINGLLM_API_KEYAURASK_LANGFLOW_API_KEYAURASK_GOOGLE_CLIENT_ID
说明:
secrets.example.yaml仅作模板,不应直接提交真实密钥- 生产建议继续使用
External Secrets Operator或SOPS + age
API / Web 部署说明
aurask-api
职责:
- API Gateway
- Google 登录
- Session 签发与校验
- 配额、订单、支付、工作流入口
- 返回门户配置与嵌入 URL
配置说明:
- 继续挂载
/data/state.json,兼容当前 MVPJsonStore - 同时读取:
aurask-runtime-configaurask-configaurask-runtime-secretsaurask-secrets
aurask-web
职责:
- 承载
protal/ - 对外提供
/signin - 登录后提供
Workflows/Knowledge Base双标签工作台
生产 overlay 说明
deploy/k3s/overlays/production/ 负责绑定现网特定配置:
- NodeSelector
- NodePort
- 生产 runtime 开关
当前生产 overlay 已保留:
aurask-api-production.yamlaurask-worker-production.yamlaurask-web-production.yamlaurask-manager-production.yamlpostgres-production.yamlredis-production.yamlruntime-config-production.yaml
运行时嵌入建议
当前门户已经引用:
https://aurask.xyz/runtime/langflow/https://aurask.xyz/runtime/anythingllm/
建议后续分两步完成:
- 先由公网反代到内部运行时入口
- 再收敛为
aurask-api网关代理鉴权,避免直接暴露运行时
300 MAU 首版建议
集群规模
3台 k3s server2台 general worker2台 runtime worker
组件建议
aurask-apiaurask-webaurask-workeraurask-manager- PostgreSQL + PGVector
- Redis
- 后续补充 Langflow / AnythingLLM 专用清单
部署方式
应用基础资源
kubectl apply -k deploy/k3s/base
应用生产 overlay
kubectl apply -k deploy/k3s/overlays/production
后续建议
建议继续推进:
- 用 PostgreSQL Repository 替换
JsonStore - 让
aurask-worker接入真实 Redis 队列消费 - 为 Langflow / AnythingLLM 增加独立清单
- 增加 Ingress / TLS / NetworkPolicy
- 让运行时访问统一收敛到 Aurask 网关代理