时间轴 分类 标签 关于

Contents

静态博客部署的最佳实践

 included in 运维部署
   766 words   2 minutes 

有关静态博客部署的文章、视频教程已经很多了

大致总结可以分为三类:

  1. Github Pages + Github Action(网站托管,如:Vercel)
  2. 本地编译 + rsync 远程服务器
  3. 本地编译 + 推送对象存储(七牛云)

最佳实践

  1. 本地更新完文章提交推送
  2. 触发 Github Action
  3. Action 的 workflow 中完成静态资源的编译、推送至云服务器
  4. 云服务器 Nginx 访问静态资源

之前博客一直部署在 Github+Vercel,奈何美国服务器延迟太高,

国内的阿里云、腾讯云的网站托管、云开发体验太差,

刚好双十一购入三年的 2 核 4G 8M 带宽的轻量服务器(腾讯云 YYDS)!!!

趁着周末研究研究如何部署到云服务器上,

总体体验不错,满足了我既要远程编译,Github 托管代码、访问速度要快的需求,

这套流程中你只需要写好文章(不需要编博客译环境),推送至 Github 即可,

没有跑完这整个流程之前还比较担心 Github rsync 到腾讯云服务器会不会要很久,毕竟 Github 服务器在美国

实际测试 30s 内就可以完成整套 workflow,还是比较满意的

PS:首次可能会慢点,后续的 rsync 应该都是增量更新

https://img.aladdinding.cn/VV5VrP.png

https://img.aladdinding.cn/image-20211104233251348.png

顺带也开启了 HTTP/2.0,还是挺香的

https://img.aladdinding.cn/image-20211104233528117.png

部分配置文件

使用 PEM 格式生成公钥私钥

1

ssh-keygen -m PEM -t rsa -b 4096

生成的公钥追加到 authorized_keys 中

1

cd .ssh/;cat id_rsa.pub >> authorized_keys

Github Action

.github/workflows/main.yml

 1
 2
 3
 4
 5
 6
 7
 8
 9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59

# This is a basic workflow to help you get started with Actions

name: github pages

# Controls when the workflow will run
on:
  # Triggers the workflow on push or pull request events but only for the main branch
  push:
    branches: [main]
    paths-ignore:
      - '.gitignore'
      - 'README.md'
  pull_request:
    branches: [main]

  # Allows you to run this workflow manually from the Actions tab
  workflow_dispatch:

# A workflow run is made up of one or more jobs that can run sequentially or in parallel
jobs:
  # This workflow contains a single job called "build"
  deploy:
    # The type of runner that the job will run on
    runs-on: ubuntu-latest
    concurrency:
      group: ${{github.workflow}}-${{ github.ref }}

    # Steps represent a sequence of tasks that will be executed as part of the job
    steps:
      # Checks-out your repository under $GITHUB_WORKSPACE, so your job can access it
      - uses: actions/checkout@v2

      # Runs a single command using the runners shell
      - name: Setup Hugo
        uses: peaceiris/actions-hugo@v2
        with:
          hugo-version: '0.85.0'
          extended: true

      - name: Build
        run: hugo --minify

      # Runs a set of commands using the runners shell
      - name: Github Deploy
        uses: peaceiris/actions-gh-pages@v3
        if: github.ref == 'refs/heads/main'
        with:
          github_token: ${{secrets.ACCESS_TOKEN}}
          publish_dir: ./public

      # Deploy to Server
      - name: Server
        uses: easingthemes/ssh-deploy@main
        env:
          SSH_PRIVATE_KEY: ${{secrets.SERVER_SSH_KEY}}
          SOURCE: "public/"
          REMOTE_HOST: ${{secrets.REMOTE_HOST}}
          REMOTE_USER: ${{secrets.REMOTE_USER}}
          TARGET: ${{secrets.REMOTE_TARGET}}

Nginx

  • 开启了 HTTP/2.0
  • HTTP 访问 301 跳转到 HTTPS
 1
 2
 3
 4
 5
 6
 7
 8
 9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28

server {
    listen         80;
    listen       [::]:80;
    server_name  <your.domain>;
    return         301 https://$host$request_uri;
}

server {
    listen       443 ssl http2;
    listen       [::]:443 ssl http2;
    server_name  <your.domain>;

    ssl_certificate "<your.pem>";
    ssl_certificate_key "<your.key>";
    ssl_session_cache shared:SSL:1m;
    ssl_session_timeout  10m;
    ssl_ciphers HIGH:!aNULL:!MD5;
    ssl_prefer_server_ciphers on;

    access_log  /var/log/nginx/access.log;
    error_log  /var/log/nginx/error.log;

    location / {
        root   <your.dir>/public;
        index  index.html;
   }

}
Updated on 2021-11-04
 博客
Back | Home