Skip to content

Latest commit

 

History

History
54 lines (39 loc) · 1.22 KB

File metadata and controls

54 lines (39 loc) · 1.22 KB

NSQ Admin

nsqadmin is the NSQ web UI. It reads cluster state from nsqlookupd and can perform administrative actions against nsqd.

Build Variables

DPANEL_DOCKER_NETWORK=production-dpanel-network
DPANEL_DOCKER_IMAGE_TAG=v1.3.0

Runtime Variables

DPANEL_DOCKER_NETWORK=production-dpanel-network
DPANEL_DOCKER_IMAGE_TAG=v1.3.0
DPANEL_DOCKER_NETWORK_ALIAS=nsqadmin

PORT=4171
DPANEL_NSQADMIN_HOST_BIND=127.0.0.1

NSQLOOKUPD_HTTP_ADDRESS=nsqlookupd:4161
NSQADMIN_ADMIN_USERS=admin
NSQADMIN_ACL_HTTP_HEADER=X-Forwarded-User

PORT exposes the nsqadmin HTTP UI to the Docker host through localhost.

NSQADMIN_ADMIN_USERS is a comma-separated list. When it is set, nsqadmin only allows privileged actions for users passed through NSQADMIN_ACL_HTTP_HEADER.

Basic Auth

nsqadmin does not validate Basic Auth passwords itself. Put Basic Auth in the host reverse proxy, then forward the authenticated username to nsqadmin:

nsqadmin.devetek.app {
    basic_auth {
        admin <caddy-hashed-password>
    }

    reverse_proxy 127.0.0.1:4171 {
        header_up X-Forwarded-User {http.auth.user.id}
    }
}

Generate the Caddy password hash on the Docker host:

caddy hash-password