Page Menu
Home
DevCentral
Search
Configure Global Search
Log In
Files
F3769508
No One
Temporary
Actions
View File
Edit File
Delete File
View Transforms
Subscribe
Mute Notifications
Award Token
Flag For Later
Size
4 KB
Referenced Files
None
Subscribers
None
View Options
diff --git a/pillar/saas/rabbitmq.sls b/pillar/saas/rabbitmq.sls
index b377f1a..0d43393 100644
--- a/pillar/saas/rabbitmq.sls
+++ b/pillar/saas/rabbitmq.sls
@@ -1,107 +1,154 @@
# -------------------------------------------------------------
# Salt — RabbitMQ
# - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
# Project: Nasqueron
# License: Trivial work, not eligible to copyright
# -------------------------------------------------------------
# -------------------------------------------------------------
# RabbitMQ clusters
#
# Each cluster is defined by a deployment method (e.g. docker),
# and the node we can use to configure it.
#
# The cluster configuration is a collection of vhosts and users:
#
# vhosts:
# <vhost name>: <configuration>
#
# users:
# <user>: <password FULL secret path in Vault>
#
# In addition, a root account is managed by deployment states.
#
# - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
#
# The vhost configuration allows to define the exchanges and queues,
# and the permissions users have on them.
#
# exchanges:
# type is 'direct', 'topic' or 'fanout'
#
# queues:
# Application can create their own ephemeral queue.
# For that, it needs configure permission on the vhost.
#
# If an application needs a stable one, it should be configured here,
# so we can drop the configure permission.
#
# permissions:
# See https://www.rabbitmq.com/access-control.html#authorisation
# for the needed permissions for an AMQP operation
#
# To give access to server-generated queue names, use amq\.gen.*
# To not give any access, use blank string
#
# - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
rabbitmq_clusters:
+
+ # Integration, used by Notifications center on Dwellers
+ orange-rabbit:
+ deployment: docker
+ node: dwellers
+ container: orange-rabbit
+ url: https://orange-rabbit.integration.nasqueron.org/
+
+ vhosts:
+
+ ###
+ ### Nasqueron dev services:
+ ### - Notifications center
+ ###
+
+ dev:
+ description: Nasqueron dev services
+
+ exchanges:
+ # Producer: Notifications center
+ # Consumers: any notifications client
+ notifications:
+ type: topic
+ durable: True
+
+ queues:
+ # Useful for developers to poke notifications streamed
+ all-notifications:
+ durable: True
+
+ bindings:
+ - exchange: notifications
+ queue: all-notifications
+ routing_key: '#'
+
+ permissions:
+ # Notifications center (paas-docker role / notifications container)
+ notifications:
+ configure: '.*'
+ read: '.*'
+ write: '.*'
+
+ users:
+ notifications: ops/secrets/nasqueron/rabbitmq/orange-rabbit/notifications
+
+
+ # Production, used by Notifications center ecosystem
white-rabbit:
deployment: docker
node: docker-002
container: white-rabbit
url: https://white-rabbit.nasqueron.org/
vhosts:
###
### Nasqueron dev services:
### - Notifications center
###
dev: &nasqueron-dev-services-vhost
description: Nasqueron dev services
exchanges:
# Producer: Notifications center
# Consumers: any notifications client
notifications:
type: topic
durable: True
queues:
# Used by Wearg to stream notifications to IRC
wearg-notifications:
durable: True
bindings:
- exchange: notifications
queue: wearg-notifications
routing_key: '#'
permissions:
# Notifications center (paas-docker role / notifications container)
notifications:
configure: '.*'
read: '.*'
write: '.*'
# Wearg (viperserv role)
wearg:
configure: '^$'
read: '^wearg\-notifications$'
write: '^$'
# Notifications CLI clients
notifications-ysul: ¬ifications-client-permissions
configure: '^(amq\.gen.*|notifications)$'
read: '^(amq\.gen.*|notifications)$'
write: '^(amq\.gen.*|notifications)$'
notifications-windriver: *notifications-client-permissions
users:
# Notifications center server and clients
notifications: ops/secrets/nasqueron.notifications.broker
wearg: apps/viperserv/broker
notifications-ysul: ops/secrets/nasqueron/notifications/notifications-cli/ysul
notifications-windriver: ops/secrets/nasqueron/notifications/notifications-cli/windriver
File Metadata
Details
Attached
Mime Type
text/x-diff
Expires
Mon, Nov 25, 15:07 (1 d, 1 h)
Storage Engine
blob
Storage Format
Raw Data
Storage Handle
2260440
Default Alt Text
(4 KB)
Attached To
Mode
rOPS Nasqueron Operations
Attached
Detach File
Event Timeline
Log In to Comment