zishuo/netmaker
1
0
Fork 0
mirror of https://github.com/gravitl/netmaker.git synced 2025-10-31 20:22:44 +08:00
Code Issues Packages Projects Releases Wiki Activity

change mosquitto protocol from mqtts to wss

Browse Source
This commit is contained in:
Anish Mukherjee
2022-11-09 20:04:13 +05:30
committed by Matthew R. Kasun
parent 3f5675688c
commit 78b0476aa4
6 changed files with 17 additions and 16 deletions
Download Patch File Download Diff File Expand all files Collapse all files

8
compose/docker-compose.ee.yml
View File

@@ -125,10 +125,10 @@ services:
- "8883"
labels:
- traefik.enable=true
- traefik.tcp.routers.mqtt.rule=HostSNI(`broker.NETMAKER_BASE_DOMAIN`)
- traefik.tcp.routers.mqtt.tls.certresolver=http
- traefik.tcp.services.mqtt.loadbalancer.server.port=8883
- traefik.tcp.routers.mqtt.entrypoints=websecure
- traefik.http.routers.mqtt_websocket.rule=HostSNI(`broker.NETMAKER_BASE_DOMAIN`)
- traefik.http.routers.mqtt_websocket.entrypoints=websocket
- traefik.http.routers.mqtt_websocket.tls.certresolver=http
- traefik.http.services.mqtt_websocket.loadbalancer.server.port=8883
prometheus:
container_name: prometheus
image: gravitl/netmaker-prometheus:latest

10
compose/docker-compose.reference.yml
View File

@@ -129,11 +129,11 @@ services:
- "8883"
labels:
- traefik.enable=true
- traefik.tcp.routers.mqtts.rule=HostSNI(`broker.NETMAKER_BASE_DOMAIN`)
- traefik.tcp.routers.mqtts.tls.passthrough=true
- traefik.tcp.services.mqtts-svc.loadbalancer.server.port=8883
- traefik.tcp.routers.mqtts.service=mqtts-svc
- traefik.tcp.routers.mqtts.entrypoints=websecure
- traefik.http.routers.mqtt_websocket.rule=HostSNI(`broker.NETMAKER_BASE_DOMAIN`)
- traefik.http.routers.mqtt_websocket.entrypoints=websocket
- traefik.http.routers.mqtt_websocket.tls.passthrough=true
- traefik.http.services.mqtts-svc.loadbalancer.server.port=8883
- traefik.http.routers.mqtt_websocket.service=mqtts-svc
volumes:
traefik_certs: {} # ssl certificates - auto generated
shared_certs: {} # netmaker certs generated for MQ comms - used by nodes/servers

8
compose/docker-compose.yml
View File

@@ -123,10 +123,10 @@ services:
- "8883"
labels:
- traefik.enable=true
- traefik.tcp.routers.mqtt.rule=HostSNI(`broker.NETMAKER_BASE_DOMAIN`)
- traefik.tcp.routers.mqtt.tls.certresolver=http
- traefik.tcp.services.mqtt.loadbalancer.server.port=8883
- traefik.tcp.routers.mqtt.entrypoints=websecure
- traefik.http.routers.mqtt_websocket.rule=HostSNI(`broker.NETMAKER_BASE_DOMAIN`)
- traefik.http.routers.mqtt_websocket.entrypoints=websocket
- traefik.http.routers.mqtt_websocket.tls.certresolver=http
- traefik.http.services.mqtt_websocket.loadbalancer.server.port=8883
volumes:
traefik_certs: {}
sqldata: {}

1
docker/mosquitto.conf
View File

@@ -1,5 +1,6 @@
per_listener_settings false
listener 8883
protocol websockets
allow_anonymous false
listener 1883

4
netclient/functions/daemon.go
View File

@@ -212,7 +212,7 @@ func setupMQTTSingleton(cfg *config.ClientConfig) error {
if err != nil {
return fmt.Errorf("could not read secrets file %w", err)
}
opts.AddBroker("mqtts://" + server + ":" + port)
opts.AddBroker("wss://" + server + ":" + port)
opts.SetUsername(cfg.Node.ID)
opts.SetPassword(string(pass))
mqclient = mqtt.NewClient(opts)
@@ -239,7 +239,7 @@ func setupMQTT(cfg *config.ClientConfig) error {
if err != nil {
return fmt.Errorf("could not read secrets file %w", err)
}
opts.AddBroker(fmt.Sprintf("mqtts://%s:%s", server, port))
opts.AddBroker(fmt.Sprintf("wss://%s:%s", server, port))
opts.SetUsername(cfg.Node.ID)
opts.SetPassword(string(pass))
opts.SetClientID(ncutils.MakeRandomString(23))

2
servercfg/serverconf.go
View File

@@ -236,7 +236,7 @@ func GetMessageQueueEndpoint() (string, bool) {
} else if config.Config.Server.MQHOST != "" {
host = config.Config.Server.MQHOST
}
secure := strings.Contains(host, "mqtts") || strings.Contains(host, "ssl")
secure := strings.Contains(host, "wss") || strings.Contains(host, "ssl")
return host + ":" + GetMQServerPort(), secure
}