Skip to content

enable RabbitMQ web management console #429

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Mar 17, 2025
Merged

enable RabbitMQ web management console #429

merged 1 commit into from
Mar 17, 2025

Conversation

@DaMandal0rian
Copy link
Contributor

@DaMandal0rian DaMandal0rian commented Mar 17, 2025
edited by github-actions bot
Loading

User description

Only accessible from inside the VPC for security.

PR Type

Enhancement

Description

  • Added ingress rule for RabbitMQ console web management port

  • Restricted access using internal VPC security group

Changes walkthrough 📝

Relevant files
Enhancement
broker.tf
Add ingress for RabbitMQ console web management                   

resources/terraform/auto-drive/broker.tf

  • Added ingress rule for port 15671 for web console
  • Ensured access only from internal EC2 security group
    		• +8/-0     
    Need help?
  • Type /help how to ... in the comments thread for any questions about PR-Agent usage.
  • Check out the documentation for more information.
    •

    @DaMandal0rian DaMandal0rian requested a review from clostao March 17, 2025 18:21
    @github-actions
    Copy link

    github-actions bot commented Mar 17, 2025

    PR Reviewer Guide 🔍

    Here are some key observations to aid the review process:

    ⏱️ Estimated effort to review: 1 🔵⚪⚪⚪⚪
    🧪 No relevant tests
    🔒 No security concerns identified
    ⚡ Recommended focus areas for review

    Security Check

    Verify that the new ingress rule for the RabbitMQ web management console is fully restricted to internal VPC traffic and that the security group configuration prevents any unintended external access.

     
    # enable RabbitMQ web management console (only accessible from the VPC)
ingress {
  from_port       = 15671
  to_port         = 15671
  protocol        = "tcp"
  security_groups = [aws_security_group.auto_drive_sg.id] # Allow traffic from EC2 server's security group
}

    @github-actions
    Copy link

    github-actions bot commented Mar 17, 2025

    PR Code Suggestions ✨

    Explore these optional code suggestions:

    CategorySuggestion                                                                                                                                    Impact
    Possible issue
    Correct management console port

    Verify that the port used for the RabbitMQ management console is correct, as the
    default port is commonly 15672.

    resources/terraform/auto-drive/broker.tf [118-124]

     # enable RabbitMQ web management console (only accessible from the VPC)
 ingress {
-  from_port       = 15671
-  to_port         = 15671
+  from_port       = 15672
+  to_port         = 15672
   protocol        = "tcp"
   security_groups = [aws_security_group.auto_drive_sg.id] # Allow traffic from EC2 server's security group
 }
    Suggestion importance[1-10]: 8

    __

    Why: The suggestion identifies a potential misconfiguration by using port 15671 instead of the common default 15672 for RabbitMQ management console, and the improved code correctly reflects this change in the relevant new hunk lines.

    		Medium

    @DaMandal0rian DaMandal0rian merged commit c8f85cf into main Mar 17, 2025
    1 check passed
    @DaMandal0rian DaMandal0rian deleted the feat/rabbitmq-console branch March 17, 2025 18:31
    @DaMandal0rian DaMandal0rian mentioned this pull request Mar 23, 2025
    Closed
    4 tasks
    Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

    Reviewers

    1 more reviewer

    @clostao clostao clostao approved these changes

    Reviewers whose approvals may not affect merge requirements

    Assignees

    No one assigned

    Labels

    Review effort 1/5

    Projects

    None yet

    Milestone

    No milestone

    Development

    Successfully merging this pull request may close these issues.

    3 participants

    @DaMandal0rian @clostao