sudo apt-get update

sudo apt-get upgrade

sudo timedatectl set-timezone Asia/Seoul

sudo apt install ufw

sudo ufw default deny incoming 
sudo ufw default allow outgoing
sudo ufw allow ssh
sudo ufw allow http 
sudo ufw allow https

sudo apt-get install nginx

netstat -an | grep 80

systemctl start nginx
systemctl status nginx

sudo service nginx stop 
sudo service nginx start 
sudo service nginx restart
sudo service nginx reload

sudo apt-get -y remove --purge nginx nginx-full nginx-common

cd /etc/nginx/conf.d 

sudo vim default.conf

sudo apt-get -y install apt-transport-https ca-certificates curl gnupg-agent software-properties-common

curl -fsSL https://download.docker.com/linux/ubuntu/gpg | sudo apt-key add

sudo add-apt-repository "deb [arch=amd64] https://download.docker.com/linux/ubuntu $(lsb_release -cs) stable"

sudo apt-get update && sudo apt-get install docker-ce docker-ce-cli containerd.io

sudo usermod -aG docker ubuntu
sudo service docker restart
newgrp docker

sudo apt install jq

DCVERSION=$(curl --silent https://api.github.com/repos/docker/compose/releases/latest | jq .name -r)

DCDESTINATION=/usr/bin/docker-compose

sudo curl -L https://github.com/docker/compose/releases/download/${DCVERSION}/docker-compose-$(uname -s)-$(uname -m) -o $DCDESTINATION

sudo chmod 755 $DCDESTINATION

docker-compose -v

docker network create deploy

df -h 
sudo fallocate -l 8G /swapfile 
sudo chmod 600 /swapfile 
sudo mkswap /swapfile 
sudo swapon /swapfile 
free -h

sudo docker pull jenkins/jenkins:lts

sudo docker run -d \
  --env JENKINS_OPTS=--httpPort=9090 \
  --env JAVA_OPTS=-Xmx2g \
  -v /etc/localtime:/etc/localtime:ro \
  -e TZ=Asia/Seoul \
  -p 9090:9090 \
  -v /jenkins:/var/jenkins_home \
  -v /var/run/docker.sock:/var/run/docker.sock \
  -v /usr/bin/docker-compose:/usr/bin/docker-compose \
  --name jenkins \
  -u root \
  jenkins/jenkins:lts

upstream jenkins {
    keepalive 32; 
    server 127.0.0.1:9090; 
}

map $http_upgrade $connection_upgrade {
    default upgrade;
    '' close; 
}

server {
    listen          80;
    server_name     13.125.224.152;
    root            /var/run/jenkins/war/;
    access_log      /var/log/nginx/jenkins.access.log;
    error_log       /var/log/nginx/jenkins.error.log;
    ignore_invalid_headers off;
        
    location ~ "^/static/[0-9a-fA-F]{8}\/(.*)$" {
        rewrite "^/static/[0-9a-fA-F]{8}\/(.*)" /$1 last;
    }
        
    location /userContent {
        root /var/lib/jenkins/;
        if (!-f $request_filename){
            rewrite (.*) /$1 last;
            break;
        }
        sendfile on;
    }  
 
    location / {
        sendfile off;
        proxy_pass          http://jenkins;
        proxy_redirect      default;
        proxy_http_version  1.1;
        proxy_set_header    Connection	        $connection_upgrade;
        proxy_set_header    Upgrade             $http_upgrade;
        proxy_set_header    Host                $http_host;
        proxy_set_header    X-Real-IP           $remote_adr;
        proxy_set_header    X-Forwarded-For     $proxy_add_x_forwarded_for;
        proxy_set_header    X-Forwarded-Proto   $scheme;
        proxy_max_temp_file_size 0;

        client_max_body_size       10m;
        client_body_buffer_size    128k;
        proxy_connect_timeout	    90;
        proxy_send_timeout	        90;
        proxy_read_timeout	        90;
        proxy_buffering	            off;
        proxy_request_buffering 	off;
        proxy_set_header Connection “”;
    }
}

sudo docker exec jenkins cat /var/jenkins_home/secrets/initialAdminPassword