User management & authentication
The RabbitMQ Ansible Operator provided in the sot chart will manage the
username and password for each module.
Modifying user permission on queues
RabbitMQ has 3 permissions: configure, write and read. By default, the Ansible Operator will grant all 3 permissions on every entity to the module user.
You are able to modify the permissions manually.
To modify the permission, you need to log in to one of the RabbitMQ pods in a shell. You can achieve this by executing the following command:
|
If your namespace or pod name is different, please adjust the command with the
correct text. By default, |
kubectl exec -it -c rabbitmq-pod -n shared pod/rabbitmq-statefulset-0 -- /bin/bash
Now, apply the permission modification by executing the following command (for configure, no-write, read):
# First ".*" for configure permission on every entity
# Second "" for no-write permission on every entity
# Third ".*" for read permission on every entity
rabbitmqctl set_permissions -p "<vhost>" "<username>" ".*" "" ".*"