Skip to content

Commit

Permalink
Merge pull request #6 from redkubes/matthew/feat/rabbitmq
Browse files Browse the repository at this point in the history 
feat: rabbitmq
  • Loading branch information
@ElderMatt
ElderMatt authored Mar 1, 2024
2 parents 2954c65 + 84f200a commit d80be35
Show file tree
Hide file tree
Showing 16 changed files with 545 additions and 1 deletion.
6 changes: 5 additions & 1 deletion README.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -26,4 +26,8 @@ The `otomi-quickstart-postgresql` Helm chart can be used to create a cloudnative

## Otomi quick start for creating a Redis master-replica cluster

The `otomi-quickstart-redis` Helm chart can be used to create a Redis master-replica cluster.
The `otomi-quickstart-redis` Helm chart can be used to create a Redis master-replica cluster.

## Otomi quick start for creating a RabbitMQ cluster

The `otomi-quickstart-rabbitmq` Helm chart can be used to create a RabbitMQ `cluster` with `queues` and `policies`.
Binary file added icons/rabbitmq.png
View file
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
24 changes: 24 additions & 0 deletions otomi-quickstart-postgresql/templates/otomi-networkpolicy.yaml
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,24 @@
{{- if .Values.otomi.networkpolicies.create }}
apiVersion: networking.k8s.io/v1
kind: NetworkPolicy
metadata:
name: {{ include "postgresql.fullname" . }}-allow-db-communication
labels: {{- include "postgresql.labels" . | nindent 4 }}
{{- with .Values.commonLabels }}
{{- toYaml . | nindent 4 }}
{{- end }}
spec:
podSelector:
matchLabels:
otomi.io/app: {{ include "postgresql.fullname" . }}
policyTypes:
- Ingress
ingress:
- from:
- namespaceSelector:
matchLabels:
name: {{ .Release.Namespace }}
podSelector:
matchLabels:
otomi.io/app: {{ include "postgresql.fullname" . }}
{{- end }}
23 changes: 23 additions & 0 deletions otomi-quickstart-rabbitmq/.helmignore
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,23 @@
# Patterns to ignore when building packages.
# This supports shell glob matching, relative path matching, and
# negation (prefixed with !). Only one pattern per line.
.DS_Store
# Common VCS dirs
.git/
.gitignore
.bzr/
.bzrignore
.hg/
.hgignore
.svn/
# Common backup files
*.swp
*.bak
*.tmp
*.orig
*~
# Various IDEs
.project
.idea/
*.tmproj
.vscode/
26 changes: 26 additions & 0 deletions otomi-quickstart-rabbitmq/Chart.yaml
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,26 @@
apiVersion: v2
name: rabbitmq
description: A Helm chart for Kubernetes

# A chart can be either an 'application' or a 'library' chart.
#
# Application charts are a collection of templates that can be packaged into versioned archives
# to be deployed.
#
# Library charts provide useful utilities or functions for the chart developer. They're included as
# a dependency of application charts to inject those utilities and functions into the rendering
# pipeline. Library charts do not define any templates and therefore cannot be deployed.
type: application

# This is the chart version. This version number should be incremented each time you make changes
# to the chart and its templates, including the app version.
# Versions are expected to follow Semantic Versioning (https://semver.org/)
version: 0.1.0

# This is the version number of the application being deployed. This version number should be
# incremented each time you make changes to the application. Versions are not expected to
# follow Semantic Versioning. They should reflect the version the application is using.
# It is recommended to use it with quotes.
appVersion: "1.16.0"

icon: https://otomi.io/otomi-charts/icons/rabbitmq.png
132 changes: 132 additions & 0 deletions otomi-quickstart-rabbitmq/README.md
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,132 @@
# Otomi quick start for creating a RabbitMQ cluster and/or Queues

The `rabbitmq` Helm chart can be used to create:
- A RabbitMQ cluster
- Queues
- Policies

## Prerequisites

To use this Helm chart:

- Make sure the administrator has enabled `rabbitmq`


## Queue Parameters
If a `queue` is added to the values.yaml their mandatory parameters also need to be filled in.

### Queue mandatory parameters
| Name | Description | Value |
|------------------|----------------------------------------------------------------------------------------------------------------|-----------------|
| `name` | Name of queue. | `string` |

### Optional parameters
Queue specification for additional configuration, to set the specification in the `values.yaml`, please look at the following example.

```
queues:
- name: "my-quorum-queue1"
spec:
durable: true
arguments:
x-queue-type: quorum
- name: "my-queue2"
spec:
autoDelete: true
```

#### Queues optional parameters
| Name | Description | Value |
|------------------|----------------------------------------------------------------------------------------------------------------|-----------------|
| `autoDelete` | When set to true, queues that have had at least one consumer before are deleted after the last consumer unsubscribes. | `boolean` |
| `durable` | When set to false queues does not survive server restart. | `boolean` |
| `vhost` | Default to vhost '/' | `string` |

## Policy Parameters
If a `policy` is added to the values.yaml their mandatory parameters also need to be filled in.

### Policy mandatory parameters
| Name | Description | Value |
|------------------|----------------------------------------------------------------------------------------------------------------|-----------------|
| `name` | Name of policy, cannot be updated. | `string` |
| `pattern` | Regular expression pattern used to match queues and exchanges, e.g. "^amq.". | `string` |
| `definition` | Policy definition, for more explanation please look at `Policy definitions`. | `string` |


#### Policy optional parameters
| Name | Description | Value |
|------------------|----------------------------------------------------------------------------------------------------------------|-----------------|
| `applyTo` | What this policy applies to: 'queues', 'classic_queues', 'quorum_queues', 'streams', 'exchanges', or 'all'. Default to 'all'. | `string` |
| `priority` | In the event that more than one policy can match a given exchange or queue, the policy with the greatest priority applies. Default to '0'. | `number` |
| `vhost` | Default to vhost '/' | `string` |

#### Queue Policy definitions:
Depending on the Queue type you can set different policy definitions. To set a definition in the `values.yaml`, please look at the following example.

```
policies:
- name: "my-policy1"
pattern: ".*"
definition:
dead-letter-exchange: "cc"
ha-mode: "all"
spec:
applyTo: "classic_queues"
priority: 1
vhost: "/"
- name: my-policy2
pattern: .*
definition:
dead-letter-exchange: cc
max-age: 1h
spec:
applyTo: "quorum_queues"
```

##### Queues [All types]
| Name | Description | Value |
|------------------|----------------------------------------------------------------------------------------------------------------|-----------------|
| `max-length` | The maximum length limit of the queue in number of messages | `number` |
| `max-length-bytes` | The maximum length limit set to a number of bytes (the total of all message body lengths, ignoring message properties and any overheads), | `number` |
| `overflow` | Sets the queue overflow behaviour. This determines what happens to messages when the maximum length of a queue is reached. Quorum queue type only supports [drop-head, reject-publish] | `[drop-head, reject-publish, reject-publish-dlx]` |
| `expires` | Controls for how long a queue can be unused before it is automatically deleted. | `number` |
| `dead-letter-exchange` | The exchange the message was published to. | `string` |
| `dead-letter-routing-key` | The routing keys (including CC keys but excluding BCC ones) the message was published with. | `string` |
| `message-ttl` | How long a message published to a queue can live before it is discarded (milliseconds). | `number` |
| `consumer-timeout` | If a consumer does not ack its delivery for more than the timeout value (30 minutes by default), its channel will be closed with a PRECONDITION_FAILED channel exception. | `number` |

##### Queues [Classic]
| Name | Description | Value |
|------------------|----------------------------------------------------------------------------------------------------------------|-----------------|
| `ha-mode` | One of all (mirror to all nodes in the cluster), exactly (mirror to a set number of nodes) or nodes (mirror to an explicit list of nodes). If you choose one of the latter two, you must also set ha-params. | `[all, exactly, nodes]` |
| `ha-params` | Absent if ha-mode is all, a number if ha-mode is exactly, or a list of strings if ha-mode is nodes. | `number | string[]` |
| `ha-sync-mode` | [manual, automatic] | `[manual, automatic]` |
| `ha-promote-on-shutdown` | Provides an option to promote a node containing the queue as the master queue node. Is triggered when the node is shutdown gracefully. | `[when-synced, always]` |
| `ha-promote-on-failure` | Provides an option to promote a node containing the queue as the master queue node. Is triggered when the node fails | `[when-synced, always]` |
| `queue-version` | Set the queue version. Defaults to version 1. Version 1 has a journal-based index that embeds small messages. Version 2 has a different index which improves memory usage and performance in many scenarios, as well as a per-queue store for messages that were previously embedded. | `number` |
| `queue-master-locator` | The master queue node is automatically assigned using the rabbitmq node with less masters. `Min-masters`: Selects the master node as the one with the least running master queues. `Client-local`: Selects the queue master node as the local node on which the queue is being declared. `Random`: Selects the queue master node based on random selection. | `[min-masters, client-local, random]` |

##### Queues [Quorum]
| Name | Description | Value |
|------------------|----------------------------------------------------------------------------------------------------------------|-----------------|
| `delivery-limit` | The number of allowed unsuccessful delivery attempts. Once a message has been delivered unsuccessfully more than this many times it will be dropped or dead-lettered, depending on the queue configuration. | `number` |
| `dead-letter-strategy` | Valid values are at-most-once or at-least-once. It defaults to at-most-once. This setting is understood only by quorum queues. If at-least-once is set, Overflow behaviour must be set to reject-publish. Otherwise, dead letter strategy will fall back to at-most-once. | `[at-most-once, at-least-once]` |
| `queue-leader-locator` | Set the rule by which the queue leader is located when declared on a cluster of nodes. Valid values are client-local (default) and balanced. | `[client-local, balanced]` |

##### Streams
| Name | Description | Value |
|------------------|----------------------------------------------------------------------------------------------------------------|-----------------|
| `max-age` | Use a number + letter to set the data retention, (Y=Years, M=Months, D=Days, h=hours, m=minutes, s=seconds), Ex: 1h = configures the stream to only keep the last 1 hour of received messages | `string` |
| `stream-max-segment-size-bytes` | Total segment size for stream segments on disk. | `number` |
| `queue-leader-locator` | Set the rule by which the queue leader is located when declared on a cluster of nodes. Valid values are client-local (default) and balanced. | `[client-local, balanced]` |

##### Exchanges
| Name | Description | Value |
|------------------|----------------------------------------------------------------------------------------------------------------|-----------------|
| `alternate-exchange` | If messages to this exchange cannot otherwise be routed, send them to the alternate exchange named here. | `string` |

##### Federation
| Name | Description | Value |
|------------------|----------------------------------------------------------------------------------------------------------------|-----------------|
| `federation-upstream-set` | Only works if federation plugin is enabled. Chooses the name of a set of upstreams to use with federation, or "all" to use all upstreams.Incompatible with 'federation-upstream' | `string` |
| `federation-upstream` | Only works if federation plugin is enabled. Chooses a specific upstream set to use for federation. Incompatible with 'federation-upstream-set' | `string` |
Empty file added otomi-quickstart-rabbitmq/templates/NOTES.txt
View file
Empty file.
62 changes: 62 additions & 0 deletions otomi-quickstart-rabbitmq/templates/_helpers.tpl
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,62 @@
{{/*
Expand the name of the chart.
*/}}
{{- define "rabbitmq.name" -}}
{{- default .Chart.Name .Values.nameOverride | trunc 63 | trimSuffix "-" }}
{{- end }}

{{/*
Create a default fully qualified app name.
We truncate at 63 chars because some Kubernetes name fields are limited to this (by the DNS naming spec).
If release name contains chart name it will be used as a full name.
*/}}
{{- define "rabbitmq.fullname" -}}
{{- if .Values.fullnameOverride }}
{{- .Values.fullnameOverride | trunc 63 | trimSuffix "-" }}
{{- else }}
{{- $name := default .Chart.Name .Values.nameOverride }}
{{- if contains $name .Release.Name }}
{{- .Release.Name | trunc 63 | trimSuffix "-" }}
{{- else }}
{{- printf "%s-%s" .Release.Name $name | trunc 63 | trimSuffix "-" }}
{{- end }}
{{- end }}
{{- end }}

{{/*
Create chart name and version as used by the chart label.
*/}}
{{- define "rabbitmq.chart" -}}
{{- printf "%s-%s" .Chart.Name .Chart.Version | replace "+" "_" | trunc 63 | trimSuffix "-" }}
{{- end }}

{{/*
Common labels
*/}}
{{- define "rabbitmq.labels" -}}
helm.sh/chart: {{ include "rabbitmq.chart" . }}
{{ include "rabbitmq.selectorLabels" . }}
{{- if .Chart.AppVersion }}
app.kubernetes.io/version: {{ .Chart.AppVersion | quote }}
{{- end }}
otomi.io/app: {{ include "rabbitmq.fullname" . }}
app.kubernetes.io/managed-by: {{ .Release.Service }}
{{- end }}

{{/*
Selector labels
*/}}
{{- define "rabbitmq.selectorLabels" -}}
app.kubernetes.io/name: {{ include "rabbitmq.fullname" . }}
{{- end }}

{{/*
Create the name of the service account to use
*/}}
{{- define "rabbitmq.serviceAccountName" -}}
{{- if .Values.serviceAccount.create }}
{{- default (include "rabbitmq.fullname" .) .Values.serviceAccount.name }}
{{- else }}
{{- default "default" .Values.serviceAccount.name }}
{{- end }}
{{- end }}
46 changes: 46 additions & 0 deletions otomi-quickstart-rabbitmq/templates/istio.yaml
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,46 @@
{{- $ := . }}
---
apiVersion: networking.istio.io/v1beta1
kind: ServiceEntry
metadata:
name: {{ include "rabbitmq.fullname" $ }}
labels: {{- include "rabbitmq.labels" $ | nindent 4 }}
spec:
hosts:
- {{ include "rabbitmq.fullname" $ }}-nodes.{{$.Release.Namespace}}.svc.cluster.local
location: MESH_INTERNAL
ports:
- name: epmd
number: 4369
protocol: TCP
- name: inter-node
number: 25672
protocol: TCP
resolution: NONE
---
apiVersion: networking.istio.io/v1alpha3
kind: DestinationRule
metadata:
name: rabbitmq-mtls
namespace: team-demo
spec:
host: {{ include "rabbitmq.fullname" $ }}-nodes.{{$.Release.Namespace}}.svc.cluster.local
trafficPolicy:
portLevelSettings:
- port:
# 4369: epmd, a peer discovery service used by RabbitMQ nodes and CLI tools
number: 4369
tls:
mode: DISABLE
# - port:
# # 25672: used for inter-node and CLI tools communication (Erlang distribution server port) and is allocated
# number: 25672
# tls:
# mode: DISABLE
- port:
# :5671 # Since AMQPS is using TLS by design istio does not have to encrypt this channel
number: 5671
tls:
mode: DISABLE
tls:
mode: ISTIO_MUTUAL
34 changes: 34 additions & 0 deletions otomi-quickstart-rabbitmq/templates/networkpolicy.yaml
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,34 @@

{{- $ := . }}
---
kind: NetworkPolicy
apiVersion: networking.k8s.io/v1
metadata:
name: {{ include "rabbitmq.fullname" $ }}
labels: {{- include "rabbitmq.labels" $ | nindent 4 }}
spec:
podSelector:
matchLabels: {{- include "rabbitmq.selectorLabels" $ | nindent 6 }}
policyTypes:
- Ingress
ingress:
- from:
- namespaceSelector:
matchLabels:
name: {{ $.Release.Namespace }}
---
kind: NetworkPolicy
apiVersion: networking.k8s.io/v1
metadata:
name: {{ include "rabbitmq.fullname" $ }}-allow-operator
labels: {{- include "rabbitmq.labels" $ | nindent 4 }}
spec:
podSelector:
matchLabels: {{- include "rabbitmq.selectorLabels" $ | nindent 6 }}
policyTypes:
- Ingress
ingress:
- from:
- namespaceSelector:
matchLabels:
name: rabbitmq
18 changes: 18 additions & 0 deletions otomi-quickstart-rabbitmq/templates/policy.yaml
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,18 @@
{{- $ := . }}
{{- $clusterName := include "rabbitmq.fullname" $ }}
{{- range $i, $policy := $.Values.policies }}
---
apiVersion: rabbitmq.com/v1beta1
kind: Policy
metadata:
name: {{ $clusterName }}-{{ $policy.name }} # name of this custom resource; does not have to the same as the actual policy name
spec:
name: {{ $policy.name }} # name of the policy
rabbitmqClusterReference:
name: {{ include "rabbitmq.fullname" $ }}
definition: {{ toYaml $policy.definition | nindent 4 }}
pattern: {{ $policy.pattern }}
{{- with $policy.spec }}
{{- $policy.spec | toYaml | nindent 2 }}
{{- end }}
{{- end }}
Loading

0 comments on commit d80be35

Please sign in to comment.