peykens
commented
4 years ago When I check runtime config via rabbitmqctl environment I see :
{rabbit, [{auth_backends, [rabbitmq_auth_backend_oauth2,rabbitmq_auth_backend_internal]}, .......
and also : {rabbitmq_auth_backend_oauth2, [{key_config, [{default_key,<<"legacy-token-key">>}, {signing_keys,
{<<"legacy-token-key">> =>
{pem,
<<"-----BEGIN PUBLIC KEY-----my_key-----">>}}}]},
{resource_server_id,<<"rabbitmq">>}]},
MarcialRosales
Hi,
I'm very interested in getting this plugin working on RabbitMQ 3.8.2, but I'm facing some config issues. The rabbitmq.config doesn't seem to accept the 'old' erlang syntax. So in order to the plugin enabled, I assume I have to put this in the rabbitmq.conf : auth_backends.1 = rabbitmq_auth_backend_oauth2 auth_backends.2 = rabbitmq_auth_backend_internal
In the advanced.config file I have put the plugin config :
[ {rabbitmq_auth_backend_oauth2, [ {resource_server_id, <<"rabbitmq">>}, {key_config, [ {default_key, <<"legacy-token-key">>}, {signing_keys,
{<<"legacy-token-key">> => {pem, <<"-----BEGIN PUBLIC KEY-----
MY_KEY -----END PUBLIC KEY-----">>} } }] } ]} ].
At boot time, rabbit reports both config files : Starting broker...2019-12-23 19:13:53.071 [info] <0.284.0> node : rabbit@a572d2651761 home dir : /var/lib/rabbitmq config file(s) : /etc/rabbitmq/advanced.config : /etc/rabbitmq/rabbitmq.conf cookie hash : /0MsWyCszAs0rQsIG/NEpQ== log(s) :
database dir : /var/lib/rabbitmq/mnesia/rabbit@a572d2651761
I also reports the plugin to be loaded : 2019-12-23 19:13:54.613 [info] <0.8.0> Server startup complete; 6 plugins started.
But no further logging of the oauth2 plugin, and login doesn't work : 2019-12-23 19:13:55.031 [info] <0.835.0> accepting Web MQTT connection <0.835.0> (172.21.0.2:34280 -> 172.21.0.4:15675) 2019-12-23 19:13:55.070 [error] <0.835.0> MQTT login failed: no username is provided 2019-12-23 19:13:55.071 [info] <0.835.0> MQTT protocol error unauthenticated for connection "172.21.0.2:34280 -> 172.21.0.4:15675"
What part am I doing wrong ?