---
# ansible default variables - most variables live here

# You are expected to deploy the certificates yourself
rabbitmq_tls_ca_cert: "/etc/pki/tls/certs/ca-bundle.crt"
rabbitmq_tls_cert: "/etc/pki/tls/certs/{{ ansible_fqdn }}.crt"
rabbitmq_tls_key: "/etc/pki/tls/private/{{ ansible_fqdn }}.key"
rabbitmq_tls_link_dir: "/etc/rabbitmq/certs"
rabbitmq_file_limit: 500000

# You are expected to set these yourself in your playbook
rabbitmq_cookie: "NotASafeCookie"
rabbitmq_admin_password: "NotASafePassword"
rabbitmq_cluster_name: "rabbit"
rabbitmq_cluster_list:
  - rabbitmq01.rockylinux.org
  - rabbitmq02.rockylinux.org
  - rabbitmq03.rockylinux.org
rabbitmq_env: "production"
rabbitmq_ldap_servers:
  - ipa001.rockylinux.org
  - ipa002.rockylinux.org
rabbitmq_ldap_bind_dn: "uid=binder,cn=sysaccounts,cn=etc,dc=rockylinux,dc=org"
rabbitmq_ldap_bind_pw: "ThisIsNotThePassword1!"
rabbitmq_ldap_basedn: "cn=accounts,dc=rockylinux,dc=org"

# You can override this in your playbooks as well
rabbitmq_plugins:
  - rabbitmq_amqp1_0
  - rabbitmq_auth_backend_ldap
  - rabbitmq_auth_mechanism_ssl
  - rabbitmq_management
  - rabbitmq_mqtt
  - rabbitmq_federation
  - rabbitmq_federation_management
  - rabbitmq_peer_discovery_common

# If you want monitoring, set these in your playbooks
# rabbitmq_monitoring_username: mq-monitoring
# rabbitmq_monitoring_password: NotASafePassword

# Enable the public pubsub or not
rabbitmq_enable_public: false
# pubsub_federation_pass: ...

rabbitmq_mbs_password: "ThisIsNotThePassword!"