solutions/enterprise-on-cloud/e-commerce-business-and-db-on-the-cloud.yml

ROSTemplateFormatVersion: '2015-09-01'
Description:
  zh-cn: 电商业务及数据库上云。
  en: E-commerce business and database on the cloud.
Metadata:
  ALIYUN::ROS::Interface:
    ParameterGroups:
      - Parameters:
          - InstanceType
          - SystemDiskCategory
          - ECS_ZoneId_1
          - ECS_ZoneId_2
          - Password
        Label:
          default: ECS
      - Parameters:
          - DBInstanceClass
          - RDS_ZoneId_1
          - RDS_ZoneId_2
          - DBPassword
        Label:
          default: RDS
      - Parameters:
          - LoadBalancerSpec
          - SLB_ZoneId_1
        Label:
          default: SLB
    TemplateTags:
      - acs:technical-solution:network:ECS:电商行业业务及数据库上云
Parameters:
  ECS_ZoneId_1:
    Type: String
    AssociationProperty: ALIYUN::ECS::Instance:ZoneId
    Label:
      zh-cn: ECS可用区A
      en: Availability Zone A of ECS
    Description:
      en: An availability zone to create for the ECS instance, <font color='red'><b>ensure that the current region has 
        at least two different availability zones to choose from</b>. If there are no two availability zones, 
        please change other parameters or switch to another region and check again.
      zh-cn: 创建ECS实例的可用区，<font color='red'><b>请确保当前地域有至少两个不同的可用区可供选择</b></font>。若无双可用区，请修改其他参数或切换至其他地域后重新查看。
  ECS_ZoneId_2:
    Type: String
    AssociationProperty: ALIYUN::ECS::Instance:ZoneId
    Label:
      zh-cn: ECS可用区B
      en: Availability Zone B of ECS
    Description:
      en: An availability zone to create for the ECS instance, <font color='red'><b>ensure that the current region has
        at least two different availability zones to choose from</b>. If there are no two availability zones,
        please change other parameters or switch to another region and check again.
      zh-cn: 创建ECS实例的可用区，<font color='red'><b>请确保当前地域有至少两个不同的可用区可供选择</b></font>。若无双可用区，请修改其他参数或切换至其他地域后重新查看。
  RDS_ZoneId_1:
    Type: String
    AssociationProperty: ALIYUN::ECS::Instance:ZoneId
    Label:
      zh-cn: RDS主可用区
      en: Master availability zone
    Description:
      en: The master availability zone to create for the RDS instance, <font color='red'><b>ensure that the current 
        region has at least two different availability zones to choose from</b>. If there are no two availability zones,
        please change other parameters or switch to another region and check again.
      zh-cn: 创建RDS实例的主可用区，<font color='red'><b>请确保当前地域有至少两个不同的可用区可供选择</b></font>。若无双可用区，请修改其他参数或切换至其他地域后重新查看。
  RDS_ZoneId_2:
    Type: String
    AssociationProperty: ALIYUN::ECS::Instance:ZoneId
    Label:
      zh-cn: RDS备可用区
      en: Slave availability zone
    Description:
      en: The slave availability zone to create for the RDS instance, <font color='red'><b>ensure that the current
        region has at least two different availability zones to choose from</b>. If there are no two availability zones,
        please change other parameters or switch to another region and check again.
      zh-cn: 创建RDS实例的备可用区，<font color='red'><b>请确保当前地域有至少两个不同的可用区可供选择</b></font>。若无双可用区，请修改其他参数或切换至其他地域后重新查看。
  InstanceType:
    Type: String
    Label:
      en: ECS Instance Type
      zh-cn: ECS实例规格
    AssociationProperty: ALIYUN::ECS::Instance::InstanceType
    AllowedPattern: 'ecs.u1.*'
  SystemDiskCategory:
    Type: String
    Default: cloud_essd
    Label:
      en: System disk type
      zh-cn: 系统盘类型
  Password:
    Type: String
    Label:
      en: ECS instance password
      zh-cn: ECS实例密码
    Description:
      en: 'Length 8-32 characters, can contain size letters, Numbers and special symbols,
        including: !@#$%^&*()_+-='
      zh-cn: 长度8-32个字符,可包含大小字母、数字及特殊符号（包含：!@#$%^&*()_+-=）
    ConstraintDescription:
      en: '8-32 characters, can contain size letters, Numbers and special symbols,
        including: !@#$%^&*()_+-='
      zh-cn: 8-32个字符,可包含大小字母、数字及特殊符号（包含：!@#$%^&*()_+-=）
    MinLength: 8
    MaxLength: 32
    NoEcho: true
  DBInstanceClass:
    Type: String
    Label:
      en: Specifications
      zh-cn: 规格
    Description:
      en: 'Select the instance specification based on the type of database engine
        and the available area support;<br>see detail: <a href=''https://www.alibabacloud.com/help/doc-detail/26312.html''
        target=''_blank''><b><font color=''blue''>Instance specification sheet</font></b></a>'
      zh-cn: 根据数据库引擎的类型和可用的区域支持选择实例规格；<br>请参见详细信息：<a href='https://help.aliyun.com/document_detail/26312.html'
        target='_blank'><b><font color='blue'>实例规格表</font></b></a>
    Default: rds.mysql.s2.large
  DBPassword:
    Type: String
    Label:
      en: Database password
      zh-cn: 数据库密码
    Description:
      en: 'Length 8-32 characters, can contain size letters, Numbers and special symbols,
        including: !@#$%^&*()_+-= <br>It applies to both the password of the self-built database on ECS and
        the password of RDS.'
      zh-cn: 长度8-32个字符,可包含大小字母、数字及特殊符号（包含：!@#$%^&*()_+-=）<br>同时适用于ECS上自建数据库的密码与RDS的密码。
    ConstraintDescription:
      en: '8-32 characters, can contain size letters, Numbers and special symbols,
        including: !@#$%^&*()_+-='
      zh-cn: 8-32个字符,可包含大小字母、数字及特殊符号（包含：!@#$%^&*()_+-=）
    MinLength: 8
    MaxLength: 32
    NoEcho: true
  LoadBalancerSpec:
    Type: String
    Label:
      en: Load balancer instance specification
      zh-cn: 负载均衡实例规格
    Default: slb.s1.small
    AssociationProperty: ALIYUN::SLB::Instance::InstanceType
  SLB_ZoneId_1:
    Type: String
    AssociationProperty: ALIYUN::NLB::Zone::ZoneId
    Label:
      zh-cn: SLB主可用区
      en: Master availability zone
    Description:
      en: The master availability zone to create for the SLB instance, <font color='red'><b>ensure that the current
        region has at least two different availability zones to choose from</b>. If there are no two availability zones,
        please change other parameters or switch to another region and check again.
      zh-cn: 创建SLB实例的主可用区，<font color='red'><b>请确保当前地域有至少两个不同的可用区可供选择</b></font>。若无双可用区，请修改其他参数或切换至其他地域后重新查看。
Resources:
  Vpc:
    Type: ALIYUN::ECS::VPC
    Properties:
      VpcName: E_Commerce_Vpc
      CidrBlock: 192.168.0.0/16
  ECS_Vsw_1:
    Type: ALIYUN::ECS::VSwitch
    Properties:
      VpcId:
        Ref: Vpc
      ZoneId:
        Ref: ECS_ZoneId_1
      CidrBlock: 192.168.0.0/24
  ECS_Vsw_2:
    Type: ALIYUN::ECS::VSwitch
    Properties:
      VpcId:
        Ref: Vpc
      ZoneId:
        Ref: ECS_ZoneId_2
      CidrBlock: 192.168.1.0/24
  SLB_Vsw_1:
    Type: ALIYUN::ECS::VSwitch
    Properties:
      VpcId:
        Ref: Vpc
      ZoneId:
        Ref: SLB_ZoneId_1
      CidrBlock: 192.168.2.0/24
  RDS_Vsw_1:
    Type: ALIYUN::ECS::VSwitch
    Properties:
      VpcId:
        Ref: Vpc
      ZoneId:
        Ref: RDS_ZoneId_1
      CidrBlock: 192.168.3.0/24
  RDS_Vsw_2:
    Type: ALIYUN::ECS::VSwitch
    Properties:
      VpcId:
        Ref: Vpc
      ZoneId:
        Ref: RDS_ZoneId_2
      CidrBlock: 192.168.4.0/24
  ECommerceSg:
    Type: ALIYUN::ECS::SecurityGroup
    Properties:
      VpcId:
        Ref: Vpc
      SecurityGroupIngress:
        - PortRange: 22/22
          Priority: 1
          SourceCidrIp: 0.0.0.0/0
          IpProtocol: tcp
          NicType: intranet
        - PortRange: 80/80
          Priority: 1
          SourceCidrIp: 0.0.0.0/0
          IpProtocol: tcp
          NicType: intranet
        - PortRange: 443/443
          Priority: 1
          SourceCidrIp: 0.0.0.0/0
          IpProtocol: tcp
          NicType: intranet
        - PortRange: 3389/3389
          Priority: 1
          SourceCidrIp: 0.0.0.0/0
          IpProtocol: tcp
          NicType: intranet
        - PortRange: -1/-1
          Priority: 1
          SourceCidrIp: 0.0.0.0/0
          IpProtocol: icmp
          NicType: intranet
  WordpressSg:
    Type: ALIYUN::ECS::SecurityGroup
    Properties:
      VpcId:
        Ref: Vpc
      SecurityGroupIngress:
        - PortRange: 22/22
          Priority: 1
          SourceCidrIp: 0.0.0.0/0
          IpProtocol: tcp
          NicType: intranet
        - PortRange: 80/80
          Priority: 1
          SourceCidrIp: 0.0.0.0/0
          IpProtocol: tcp
          NicType: intranet
        - PortRange: 443/443
          Priority: 1
          SourceCidrIp: 0.0.0.0/0
          IpProtocol: tcp
          NicType: intranet
        - PortRange: 3306/3306
          Priority: 1
          SourceCidrIp: 0.0.0.0/0
          IpProtocol: tcp
          NicType: intranet
        - PortRange: -1/-1
          Priority: 1
          SourceCidrIp: 0.0.0.0/0
          IpProtocol: icmp
          NicType: intranet
  DsDemoEcs_0:
    Type: ALIYUN::ECS::Instance
    Properties:
      VpcId:
        Ref: Vpc
      SecurityGroupId:
        Ref: ECommerceSg
      VSwitchId:
        Ref: ECS_Vsw_1
      InstanceName: ecs-ds-demo-01
      ZoneId:
        Ref: ECS_ZoneId_1
      InstanceChargeType: PostPaid
      InstanceType:
        Ref: InstanceType
      ImageId: centos
      SystemDiskCategory:
        Ref: SystemDiskCategory
      SystemDiskSize: 40
      AllocatePublicIP: false
      Password:
        Ref: Password
  DsDemoEcs_1:
    Type: ALIYUN::ECS::Instance
    Properties:
      VpcId:
        Ref: Vpc
      SecurityGroupId:
        Ref: ECommerceSg
      VSwitchId:
        Ref: ECS_Vsw_2
      InstanceName: ecs-ds-demo-02
      ZoneId:
        Ref: ECS_ZoneId_2
      InstanceChargeType: PostPaid
      InstanceType:
        Ref: InstanceType
      ImageId: centos
      SystemDiskCategory:
        Ref: SystemDiskCategory
      SystemDiskSize: 40
      AllocatePublicIP: false
      Password:
        Ref: Password
  Slb:
    Type: ALIYUN::SLB::LoadBalancer
    Properties:
      LoadBalancerSpec:
        Ref: LoadBalancerSpec
      VpcId:
        Ref: Vpc
      VSwitchId:
        Ref: SLB_Vsw_1
      LoadBalancerName: slb-ds-demo
      MasterZoneId:
        Ref: SLB_ZoneId_1
  SlbListener:
    Type: ALIYUN::SLB::Listener
    Properties:
      Persistence:
        CookieTimeout: 60
        StickySession: 'on'
        PersistenceTimeout: 180
        XForwardedFor: 'off'
        StickySessionType: insert
      ListenerPort: 80
      Bandwidth: -1
      HealthCheck:
        HttpCode: http_2xx,http_3xx,http_4xx,http_5xx
        HealthCheckType: tcp
        UnhealthyThreshold: 3
        Timeout: 5
        HealthyThreshold: 3
        Port: 80
        URI: /
        Interval: 2
      LoadBalancerId:
        Ref: Slb
      BackendServerPort: 80
      Protocol: tcp
  SlbBackendServerAttachment:
    Type: ALIYUN::SLB::BackendServerAttachment
    Properties:
      BackendServerList:
        - Ref: DsDemoEcs_0
        - Ref: DsDemoEcs_1
      BackendServerWeightList:
        - 100
        - 100
      LoadBalancerId:
        Ref: Slb
  WordpressDemoEcs:
    Type: ALIYUN::ECS::Instance
    Properties:
      VpcId:
        Ref: Vpc
      SecurityGroupId:
        Ref: WordpressSg
      VSwitchId:
        Ref: ECS_Vsw_2
      InstanceName: ecs-demo-wordpress
      ZoneId:
        Ref: ECS_ZoneId_2
      InstanceChargeType: PostPaid
      InstanceType:
        Ref: InstanceType
      ImageId: centos
      SystemDiskCategory:
        Ref: SystemDiskCategory
      SystemDiskSize: 40
      AllocatePublicIP: false
      Password:
        Ref: Password
  Eip_0:
    Type: ALIYUN::VPC::EIP
    Properties:
      Bandwidth: 2
      InstanceChargeType: Postpaid
      InternetChargeType: PayByTraffic
  Eip_1:
    Type: ALIYUN::VPC::EIP
    Properties:
      Bandwidth: 2
      InstanceChargeType: Postpaid
      InternetChargeType: PayByTraffic
  VpcEipAssociation_0:
    Type: ALIYUN::VPC::EIPAssociation
    Properties:
      InstanceId:
        Ref: Slb
      AllocationId:
        Ref: Eip_0
  VpcEipAssociation_1:
    Type: ALIYUN::VPC::EIPAssociation
    Properties:
      InstanceId:
        Ref: WordpressDemoEcs
      AllocationId:
        Ref: Eip_1
  InstallMysqlRunCommand:
    Type: ALIYUN::ECS::RunCommand
    DependsOn:
      - VpcEipAssociation_1
    Properties:
      Sync: true
      Type: RunShellScript
      Timeout: 600
      InstanceIds:
        - Ref: WordpressDemoEcs
      CommandContent:
        Fn::Sub:
          - |-
            #!/bin/bash
            wget http://repo.mysql.com/mysql-community-release-el7-5.noarch.rpm
            rpm -ivh mysql-community-release-el7-5.noarch.rpm
            yum install mysql-server -y
            systemctl start mysqld
            # 生成MySQL root用户，设置密码
            MYSQL_PASSWD="${RootPwd}"
            service mysqld start
            yum install expect -y
            echo '#!/usr/bin/expect' > dbroot.sh
            echo set timeout 60 >> dbroot.sh
            echo 'set password [lindex $argv 0]' >> dbroot.sh
            echo spawn mysql_secure_installation >> dbroot.sh
            echo expect { >> dbroot.sh
            echo '"Press y|Y for Yes" { send "Y\r"; exp_continue}' >> dbroot.sh
            echo '"password:" { send "${RootPwd}\r"; exp_continue}' >> dbroot.sh
            echo '"Please enter 0 = LOW, 1 = MEDIUM and 2 = STRONG:" { send "0\r"; exp_continue}' >> dbroot.sh
            echo '"Cleaning up" { send "\r"}' >> dbroot.sh
            echo } >> dbroot.sh
            echo interact >> dbroot.sh
            chmod +x dbroot.sh
            ./dbroot.sh
            # 生成DTS用户
            echo 'create database ${DtsDbName};' > setup.mysql
            echo 'create user "${DtsUserName}" identified by "${DtsUserPwd}";' >> setup.mysql
            echo 'GRANT ALL ON *.* TO "${DtsUserName}"@"%";' >> setup.mysql
            echo 'flush privileges;' >> setup.mysql
            chmod +x setup.mysql
            mysql -uroot -p${RootPwd} < setup.mysql
            # 添加测试数据
            echo 'use ${DtsDbName}' > setup_data.mysql
            echo 'CREATE TABLE ${DtsTableName} ( ' >> setup_data.mysql
            echo 'buyer_id varchar(32) DEFAULT NULL, ' >> setup_data.mysql
            echo 'buyer_prov varchar(32) DEFAULT NULL, ' >> setup_data.mysql
            echo 'gender varchar(32) DEFAULT NULL, ' >> setup_data.mysql
            echo 'age_range varchar(32) DEFAULT NULL, ' >> setup_data.mysql
            echo 'zodiac varchar(32) DEFAULT NULL ' >> setup_data.mysql
            echo ') ENGINE=InnoDB DEFAULT CHARSET=utf8;' >> setup_data.mysql
            echo 'insert into ${DtsTableName} ( buyer_id, buyer_prov, gender, age_range, zodiac ) values' >> setup_data.mysql
            echo '("0001","A","Male","20-30" ,"by"),' >> setup_data.mysql
            echo '("0002","B","Male","20-30" ,"by"),' >> setup_data.mysql
            echo '("0003","C","Female","30-40" ,"by"),' >> setup_data.mysql
            echo '("0004","D","Male","20-30" ,"by"),' >> setup_data.mysql
            echo '("0005","E","Male","20-30" ,"by"),' >> setup_data.mysql
            echo '("0006","F","Female","20-30" ,"by"),' >> setup_data.mysql
            echo '("0007","G","Female","10-20" ,"by"),' >> setup_data.mysql
            echo '("0008","H","Female","20-30" ,"by"),' >> setup_data.mysql
            echo '("0009","I","Male","20-30" ,"by"),' >> setup_data.mysql
            echo '("0010","J","Male","20-30" ,"by");' >> setup_data.mysql
            chmod +x setup_data.mysql
            mysql -uroot -p${RootPwd} < setup_data.mysql
          - RootPwd:
              Ref: DBPassword
            DtsUserName: dts_user
            DtsUserPwd:
              Ref: DBPassword
            DtsDbName: wordpress
            DtsTableName: demo_table
  RdsDBInstance:
    Type: ALIYUN::RDS::DBInstance
    Properties:
      Category: HighAvailability
      DBInstanceStorageType: local_ssd
      ZoneId:
        Ref: RDS_ZoneId_1
      SlaveZoneIds:
        - Ref: RDS_ZoneId_2
      VpcId:
        Ref: Vpc
      VSwitchId:
        Fn::Join:
          - ','
          - - Ref: RDS_Vsw_1
            - Ref: RDS_Vsw_2
      DBInstanceClass:
        Ref: DBInstanceClass
      DBInstanceStorage: 100
      DBMappings:
        - CharacterSetName: utf8
          DBName: wordpress_new
      Engine: MySQL
      EngineVersion: '5.6'
      MasterUserPassword:
        Ref: DBPassword
      MasterUserType: Super
      MasterUsername: myuser
      SecurityIPList: 192.168.0.0/16
      SecurityGroupId:
        Ref: ECommerceSg
  DtsInstance:
    Type: ALIYUN::DTS::Instance
    Properties:
      JobId:
        Fn::GetAtt:
          - MigrationJob
          - DtsJobId
      InstanceClass: small
      PayType: PostPaid
      Type: MIGRATION
      SourceRegion:
        Ref: ALIYUN::Region
      DestinationRegion:
        Ref: ALIYUN::Region
      SourceEndpointEngineName: MySQL
      DestinationEndpointEngineName: MySQL
  MigrationJob:
    Type: ALIYUN::DTS::MigrationJob2
    Properties:
      DtsJobName: e-commerce_migration
      SourceEndpoint:
        InstanceType: ECS
        InstanceID:
          Ref: WordpressDemoEcs
        EngineName: MYSQL
        Port: '3306'
        Region:
          Ref: ALIYUN::Region
        UserName: dts_user
        Password:
          Ref: DBPassword
      DestinationEndpoint:
        InstanceType: RDS
        InstanceID:
          Ref: RdsDBInstance
        EngineName: MYSQL
        Region:
          Ref: ALIYUN::Region
        UserName: myuser
        Password:
          Ref: DBPassword
      StructureInitialization: true
      DataInitialization: true
      DataSynchronization: true
      DbList:
        wordpress:
          name: wordpress_new
          all: true
    DependsOn:
      - RdsDBInstance
      - InstallMysqlRunCommand
Outputs:
  EcsLoginAddress:
    Description:
      zh-cn: ECS登陆地址。
      en: Ecs login address.
    Value:
      Fn::Sub:
        - https://ecs-workbench.aliyun.com/?from=EcsConsole&instanceType=ecs&regionId=${Region}&instanceId=${InstanceId}
        - InstanceId:
            Ref: WordpressDemoEcs
          Region:
            Ref: ALIYUN::Region
  DBInstanceId:
    Description:
      zh-cn: RDS实例ID。
      en: RDS instance id.
    Value:
      Fn::GetAtt:
        - RdsDBInstance
        - DBInstanceId
  DtsJobId:
    Description:
      zh-cn: DTS任务id。
      en: DTS job id.
    Value:
      Fn::GetAtt:
        - DtsInstance
        - JobId