RabbitMQ
RabbitMQ is an open source message broker software that implements the Advanced Message Queuing Protocol (AMQP).
TL;DR;
$ helm install stable/rabbitmq
Introduction
This chart bootstraps a RabbitMQ deployment on a Kubernetes cluster using the Helm package manager.
Bitnami charts can be used with Kubeapps for deployment and management of Helm Charts in clusters. This chart has been tested to work with NGINX Ingress, cert-manager, fluentd and Prometheus on top of the BKPR.
Prerequisites
- Kubernetes 1.8+
- PV provisioner support in the underlying infrastructure
Installing the Chart
To install the chart with the release name my-release:
$ helm install --name my-release stable/rabbitmq
The command deploys RabbitMQ on the Kubernetes cluster in the default configuration. The configuration section lists the parameters that can be configured during installation.
Tip
: List all releases using
helm list
Uninstalling the Chart
To uninstall/delete the my-release deployment:
$ helm delete my-release
The command removes all the Kubernetes components associated with the chart and deletes the release.
Configuration
The following table lists the configurable parameters of the RabbitMQ chart and their default values.
| Parameter | Description | Default |
|---|---|---|
global.imageRegistry |
Global Docker image registry | nil |
global.imagePullSecrets |
Global Docker registry secret names as an array | [] (does not add image pull secrets to deployed pods) |
image.registry |
Rabbitmq Image registry | docker.io |
image.repository |
Rabbitmq Image name | bitnami/rabbitmq |
image.tag |
Rabbitmq Image tag | {VERSION} |
image.pullPolicy |
Image pull policy | Always if imageTag is latest, else IfNotPresent |
image.pullSecrets |
Specify docker-registry secret names as an array | nil |
image.debug |
Specify if debug values should be set | false |
rbacEnabled |
Specify if rbac is enabled in your cluster | true |
podManagementPolicy |
Pod management policy | OrderedReady |
rabbitmq.username |
RabbitMQ application username | user |
rabbitmq.password |
RabbitMQ application password | random 10 character long alphanumeric string |
rabbitmq.existingPasswordSecret |
Existing secret with RabbitMQ credentials | nil |
rabbitmq.erlangCookie |
Erlang cookie | random 32 character long alphanumeric string |
rabbitmq.existingErlangSecret |
Existing secret with RabbitMQ Erlang cookie | nil |
rabbitmq.plugins |
List of plugins to enable | rabbitmq_management rabbitmq_peer_discovery_k8s |
rabbitmq.extraPlugins |
Extra plugings to enable | nil |
rabbitmq.clustering.address_type |
Switch clustering mode | ip or hostname |
rabbitmq.clustering.k8s_domain |
Customize internal k8s cluster domain | cluster.local |
rabbitmq.logs |
Value for the RABBITMQ_LOGS environment variable | - |
rabbitmq.ulimitNofiles |
Max File Descriptor limit | 65536 |
| `rabbitmq.maxAvailableSchedulers | RabbitMQ maximum available scheduler threads | 2 |
| `rabbitmq.onlineSchedulers | RabbitMQ online scheduler threads | 1 |
rabbitmq.configuration |
Required cluster configuration | See values.yaml |
rabbitmq.extraConfiguration |
Extra configuration to add to rabbitmq.conf | See values.yaml |
service.type |
Kubernetes Service type | ClusterIP |
service.port |
Amqp port | 5672 |
service.distPort |
Erlang distribution server port | 25672 |
service.nodePort |
Node port override, if serviceType NodePort | random available between 30000-32767 |
service.managerPort |
RabbitMQ Manager port | 15672 |
persistence.enabled |
Use a PVC to persist data | true |
service.annotations |
service annotations as an array | [] |
persistence.storageClass |
Storage class of backing PVC | nil (uses alpha storage class annotation) |
persistence.existingClaim |
RabbitMQ data Persistent Volume existing claim name | "" |
persistence.accessMode |
Use volume as ReadOnly or ReadWrite | ReadWriteOnce |
persistence.size |
Size of data volume | 8Gi |
persistence.path |
Mount path of the data volume | /opt/bitnami/rabbitmq/var/lib/rabbitmq |
securityContext.enabled |
Enable security context | true |
securityContext.fsGroup |
Group ID for the container | 1001 |
securityContext.runAsUser |
User ID for the container | 1001 |
resources |
resource needs and limits to apply to the pod | {} |
priorityClassName |
Pod priority class name | `` |
nodeSelector |
Node labels for pod assignment | {} |
affinity |
Affinity settings for pod assignment | {} |
tolerations |
Toleration labels for pod assignment | [] |
updateStrategy |
Statefulset update strategy policy | RollingUpdate |
ingress.enabled |
Enable ingress resource for Management console | false |
ingress.hostName |
Hostname to your RabbitMQ installation | nil |
ingress.path |
Path within the url structure | / |
ingress.tls |
enable ingress with tls | false |
ingress.tlsSecret |
tls type secret to be used | myTlsSecret |
ingress.annotations |
ingress annotations as an array | [] |
livenessProbe.enabled |
would you like a livenessProbed to be enabled | true |
livenessProbe.initialDelaySeconds |
number of seconds | 120 |
livenessProbe.timeoutSeconds |
number of seconds | 20 |
livenessProbe.periodSeconds |
number of seconds | 30 |
livenessProbe.failureThreshold |
number of failures | 6 |
livenessProbe.successThreshold |
number of successes | 1 |
readinessProbe.enabled |
would you like a readinessProbe to be enabled | true |
readinessProbe.initialDelaySeconds |
number of seconds | 10 |
readinessProbe.timeoutSeconds |
number of seconds | 20 |
readinessProbe.periodSeconds |
number of seconds | 30 |
readinessProbe.failureThreshold |
number of failures | 3 |
readinessProbe.successThreshold |
number of successes | 1 |
metrics.enabled |
Start a side-car prometheus exporter | false |
metrics.image.registry |
Exporter image registry | docker.io |
metrics.image.repository |
Exporter image name | kbudde/rabbitmq-exporter |
metrics.image.tag |
Exporter image tag | v0.29.0 |
metrics.image.pullPolicy |
Exporter image pull policy | IfNotPresent |
metrics.env |
Exporter configuration environment variables | {} |
metrics.resources |
Exporter resource requests/limit | nil |
metrics.capabilities |
Exporter: Comma-separated list of extended scraping capabilities supported by the target RabbitMQ server | bert,no_sort |
podLabels |
Additional labels for the statefulset pod(s). | {} |
volumePermissions.enabled |
Enable init container that changes volume permissions in the data directory (for cases where the default k8s runAsUser and fsUser values do not work) |
false |
volumePermissions.image.registry |
Init container volume-permissions image registry | docker.io |
volumePermissions.image.repository |
Init container volume-permissions image name | bitnami/minideb |
volumePermissions.image.tag |
Init container volume-permissions image tag | latest |
volumePermissions.image.pullPolicy |
Init container volume-permissions image pull policy | IfNotPresent |
volumePermissions.resources |
Init container resource requests/limit | nil |
The above parameters map to the env variables defined in bitnami/rabbitmq. For more information please refer to the bitnami/rabbitmq image documentation.
Specify each parameter using the --set key=value[,key=value] argument to helm install. For example,
$ helm install --name my-release \
--set rabbitmq.username=admin,rabbitmq.password=secretpassword,rabbitmq.erlangCookie=secretcookie \
stable/rabbitmq
The above command sets the RabbitMQ admin username and password to admin and secretpassword respectively. Additionally the secure erlang cookie is set to secretcookie.
Alternatively, a YAML file that specifies the values for the parameters can be provided while installing the chart. For example,
$ helm install --name my-release -f values.yaml stable/rabbitmq
Tip
: You can use the default values.yaml
Load Definitions
It is possible to load a RabbitMQ definitions file to configure RabbitMQ. Because definitions may contain RabbitMQ credentials, store the JSON as a Kubernetes secret. Within the secret's data, choose a key name that corresponds with the desired load definitions filename (i.e. load_definition.json) and use the JSON object as the value. For example:
apiVersion: v1
kind: Secret
metadata:
name: rabbitmq-load-definition
type: Opaque
stringData:
load_definition.json: |-
{
"vhosts": [
{
"name": "/"
}
]
}
Then, specify the management.load_definitions property as an extraConfiguration pointing to the load definition file path within the container (i.e. /app/load_definition.json) and set loadDefinition.enable to true.
Any load definitions specified will be available within in the container at /app.
Loading a definition will take precedence over any configuration done through Helm values.
Production configuration
A standard configuration is provided by default that will run on most development environments. To operate this chart in a production environment, we recommend you use the alternative file values-production.yaml provided in this repository.
$ helm install --name my-release -f values-production.yaml stable/rabbitmq
Persistence
The Bitnami RabbitMQ image stores the RabbitMQ data and configurations at the /opt/bitnami/rabbitmq/var/lib/rabbitmq/ path of the container.
The chart mounts a Persistent Volume at this location. By default, the volume is created using dynamic volume provisioning. An existing PersistentVolumeClaim can also be defined.
Existing PersistentVolumeClaims
- Create the PersistentVolume
- Create the PersistentVolumeClaim
- Install the chart
$ helm install --set persistence.existingClaim=PVC_NAME rabbitmq
Upgrading
To 5.0.0
This major release changes the clustering method from ip to hostname.
This change is needed to fix the persistence. The data dir will now depend on the hostname which is stable instead of the pod IP that might change.
IMPORTANT: Note that if you upgrade from a previous version you will lose your data.
To 3.0.0
Backwards compatibility is not guaranteed unless you modify the labels used on the chart's deployments. Use the workaround below to upgrade from versions previous to 3.0.0. The following example assumes that the release name is rabbitmq:
$ kubectl delete statefulset rabbitmq --cascade=false