Merge pull request #11 from neil-greenwood/master

Update to sensu-plugins-rabbitmq v7.0.0

Author: Neil Greenwood

plugins/rabbitmq/rabbitmq-alive.rb plugins/rabbitmq/check-rabbitmq-alive.rbplugins/rabbitmq/rabbitmq-alive.rb renamed to plugins/rabbitmq/check-rabbitmq-alive.rb

@@ -1,21 +1,34 @@
 #!/usr/bin/env ruby
+# frozen_string_literal: true
+
 #
 # RabbitMQ check alive plugin
 # ===
 #
+# DESCRIPTION:
 # This plugin checks if RabbitMQ server is alive using the REST API
 #
+# PLATFORMS:
+#   Linux, Windows, BSD, Solaris
+#
+# DEPENDENCIES:
+#   RabbitMQ rabbitmq_management plugin
+#   gem: sensu-plugin
+#   gem: rest-client
+#
+# LICENSE:
 # Copyright 2012 Abhijith G <abhi@runa.com> and Runa Inc.
 #
 # Released under the same terms as Sensu (the MIT license); see LICENSE
 # for details.
 
-require 'rubygems' if RUBY_VERSION < '1.9.0'
 require 'sensu-plugin/check/cli'
 require 'json'
 require 'rest_client'
+require 'inifile'
 
-class CheckRabbitMQ < Sensu::Plugin::Check::CLI
+# main plugin class
+class CheckRabbitMQAlive < Sensu::Plugin::Check::CLI
   option :host,
          description: 'RabbitMQ host',
          short: '-w',
@@ -52,6 +65,17 @@ class CheckRabbitMQ < Sensu::Plugin::Check::CLI
          boolean: true,
          default: false
 
+  option :verify_ssl_off,
+         description: 'Do not check validity of SSL cert. Use for self-signed certs, etc (insecure)',
+         long: '--verify_ssl_off',
+         boolean: true,
+         default: false
+
+  option :ini,
+         description: 'Configuration ini file',
+         short: '-i',
+         long: '--ini VALUE'
+
   def run
     res = vhost_alive?
 
@@ -65,21 +89,34 @@ def run
   end
 
   def vhost_alive?
-    host     = config[:host]
-    port     = config[:port]
-    username = config[:username]
-    password = config[:password]
-    vhost    = config[:vhost]
-    ssl      = config[:ssl]
+    host       = config[:host]
+    port       = config[:port]
+    vhost      = config[:vhost]
+    ssl        = config[:ssl]
+    verify_ssl = config[:verify_ssl_off]
+    if config[:ini]
+      ini = IniFile.load(config[:ini])
+      section = ini['auth']
+      username = section['username']
+      password = section['password']
+    else
+      username = config[:username]
+      password = config[:password]
+    end
 
     begin
-      resource = RestClient::Resource.new "http#{ssl ? 's' : ''}://#{host}:#{port}/api/aliveness-test/#{vhost}", username, password
+      resource = RestClient::Resource.new(
+        "http#{ssl ? 's' : ''}://#{host}:#{port}/api/aliveness-test/#{vhost}",
+        user: username,
+        password: password,
+        verify_ssl: !verify_ssl
+      )
       # Attempt to parse response (just to trigger parse exception)
       _response = JSON.parse(resource.get) == { 'status' => 'ok' }
       { 'status' => 'ok', 'message' => 'RabbitMQ server is alive' }
     rescue Errno::ECONNREFUSED => e
       { 'status' => 'critical', 'message' => e.message }
-    rescue => e
+    rescue StandardError => e
       { 'status' => 'unknown', 'message' => e.message }
     end
   end

plugins/rabbitmq/check-rabbitmq-amqp-alive.rb

@@ -0,0 +1,150 @@
+#!/usr/bin/env ruby
+# frozen_string_literal: true
+
+#
+# RabbitMQ check amqp alive plugin
+# ===
+#
+# DESCRIPTION:
+# This plugin checks if RabbitMQ server is alive using AMQP
+#
+# PLATFORMS:
+#   Linux, BSD, Solaris
+#
+# DEPENDENCIES:
+#   gem: sensu-plugin
+#   gem: bunny
+#
+# LICENSE:
+# Copyright 2013 Milos Gajdos
+#
+# Released under the same terms as Sensu (the MIT license); see LICENSE
+# for details.
+
+require 'sensu-plugin/check/cli'
+require 'bunny'
+require 'inifile'
+
+# main plugin class
+class CheckRabbitAMQPAlive < Sensu::Plugin::Check::CLI
+  option :host,
+         description: 'RabbitMQ host',
+         short: '-w',
+         long: '--host HOST',
+         default: 'localhost'
+
+  option :vhost,
+         description: 'RabbitMQ vhost',
+         short: '-v',
+         long: '--vhost VHOST',
+         default: '%2F'
+
+  option :username,
+         description: 'RabbitMQ username',
+         short: '-u',
+         long: '--username USERNAME',
+         default: 'guest'
+
+  option :password,
+         description: 'RabbitMQ password',
+         short: '-p',
+         long: '--password PASSWORD',
+         default: 'guest'
+
+  option :port,
+         description: 'RabbitMQ AMQP port',
+         short: '-P',
+         long: '--port PORT',
+         default: '5672'
+
+  option :ssl,
+         description: 'Enable SSL for connection to RabbitMQ',
+         long: '--ssl',
+         boolean: true,
+         default: false
+
+  option :tls_cert,
+         description: 'TLS Certificate to use when connecting',
+         long: '--tls-cert CERT',
+         default: nil
+
+  option :tls_key,
+         description: 'TLS Private Key to use when connecting',
+         long: '--tls-key KEY',
+         default: nil
+
+  option :no_verify_peer,
+         description: 'Disable peer verification',
+         long: '--no-verify-peer',
+         boolean: true,
+         default: true
+
+  option :heartbeat,
+         description: 'Client heartbeat interval',
+         long: '--heartbeat HB',
+         proc: proc(&:to_i),
+         default: 0
+
+  option :threaded,
+         description: 'Enables threaded connections',
+         long: '--threaded THREAD',
+         boolean: true,
+         default: true
+
+  option :ini,
+         description: 'Configuration ini file',
+         short: '-i',
+         long: '--ini VALUE'
+
+  def run
+    res = vhost_alive?
+
+    if res['status'] == 'ok'
+      ok res['message']
+    elsif res['status'] == 'critical'
+      critical res['message']
+    else
+      unknown res['message']
+    end
+  end
+
+  def vhost_alive?
+    host           = config[:host]
+    port           = config[:port]
+    vhost          = config[:vhost]
+    ssl            = config[:ssl]
+    tls_cert       = config[:tls_cert]
+    tls_key        = config[:tls_key]
+    no_verify_peer = config[:no_verify_peer]
+    heartbeat      = config[:heartbeat]
+    threaded       = config[:threaded]
+
+    if config[:ini]
+      ini = IniFile.load(config[:ini])
+      section = ini['auth']
+      username = section['username']
+      password = section['password']
+    else
+      username = config[:username]
+      password = config[:password]
+    end
+
+    begin
+      conn = Bunny.new("amqp#{ssl ? 's' : ''}://#{username}:#{password}@#{host}:#{port}/#{vhost}",
+                       tls_cert:    tls_cert,
+                       tls_key:     tls_key,
+                       verify_peer: no_verify_peer,
+                       heartbeat:   heartbeat,
+                       threaded:    threaded)
+      conn.start
+      conn.close if conn.connected?
+      { 'status' => 'ok', 'message' => 'RabbitMQ server is alive' }
+    rescue Bunny::PossibleAuthenticationFailureError
+      { 'status' => 'critical', 'message' => 'Possible authentication failure' }
+    rescue Bunny::TCPConnectionFailed
+      { 'status' => 'critical', 'message' => 'TCP connection refused' }
+    rescue StandardError => e
+      { 'status' => 'unknown', 'message' => e.message }
+    end
+  end
+end

…gins/rabbitmq/rabbitmq-cluster-health.rb …abbitmq/check-rabbitmq-cluster-health.rbplugins/rabbitmq/rabbitmq-cluster-health.rb renamed to plugins/rabbitmq/check-rabbitmq-cluster-health.rb plugins/rabbitmq/rabbitmq-cluster-health.rb renamed to plugins/rabbitmq/check-rabbitmq-cluster-health.rb

@@ -1,27 +1,37 @@
 #!/usr/bin/env ruby
+# frozen_string_literal: true
+
 #
 # RabbitMQ check cluster nodes health plugin
 # ===
 #
+# DESCRIPTION:
 # This plugin checks if RabbitMQ server's cluster nodes are in a running state.
 # It also accepts and optional list of nodes and verifies that those nodes are
 # present in the cluster.
 # The plugin is based on the RabbitMQ alive plugin by Abhijith G.
 #
-#  Todo:
-#    - Add ability to specify http vs. https
+# PLATFORMS:
+#   Linux, Windows, BSD, Solaris
+#
+# DEPENDENCIES:
+#   RabbitMQ rabbitmq_management plugin
+#   gem: sensu-plugin
+#   gem: rest-client
 #
+# LICENSE:
 # Copyright 2012 Abhijith G <abhi@runa.com> and Runa Inc.
 # Copyright 2014 Tim Smith <tim@cozy.co> and Cozy Services Ltd.
 #
 # Released under the same terms as Sensu (the MIT license); see LICENSE
 # for details.
 
-require 'rubygems' if RUBY_VERSION < '1.9.0'
 require 'sensu-plugin/check/cli'
 require 'json'
 require 'rest_client'
+require 'inifile'
 
+# main plugin class
 class CheckRabbitMQCluster < Sensu::Plugin::Check::CLI
   option :host,
          description: 'RabbitMQ host',
@@ -53,6 +63,28 @@ class CheckRabbitMQCluster < Sensu::Plugin::Check::CLI
          long: '--nodes NODE1,NODE2',
          default: ''
 
+  option :ssl,
+         description: 'Enable SSL for connection to the API',
+         long: '--ssl',
+         boolean: true,
+         default: false
+
+  option :verify_ssl_off,
+         description: 'Do not check validity of SSL cert. Use for self-signed certs, etc (insecure)',
+         long: '--verify_ssl_off',
+         boolean: true,
+         default: false
+
+  option :ssl_ca_file,
+         description: 'Path to SSL CA .crt',
+         long: '--ssl_ca_file CA_PATH',
+         default: ''
+
+  option :ini,
+         description: 'Configuration ini file',
+         short: '-i',
+         long: '--ini VALUE'
+
   def run
     res = cluster_healthy?
 
@@ -81,14 +113,35 @@ def failed_nodes?(servers_status)
   end
 
   def cluster_healthy?
-    host     = config[:host]
-    port     = config[:port]
-    username = config[:username]
-    password = config[:password]
-    nodes   =  config[:nodes].split(',')
+    host        = config[:host]
+    port        = config[:port]
+    ssl         = config[:ssl]
+    verify_ssl  = config[:verify_ssl_off]
+    nodes       = config[:nodes].split(',')
+    ssl_ca_file = config[:ssl_ca_file]
+    if config[:ini]
+      ini = IniFile.load(config[:ini])
+      section = ini['auth']
+      username = section['username']
+      password = section['password']
+    else
+      username = config[:username]
+      password = config[:password]
+    end
 
     begin
-      resource = RestClient::Resource.new "http://#{host}:#{port}/api/nodes", username, password
+      url_prefix = ssl ? 'https' : 'http'
+      options = {
+        user: username,
+        password: password,
+        verify_ssl: !verify_ssl
+      }
+      options[:ssl_ca_file] = ssl_ca_file unless ssl_ca_file.empty?
+
+      resource = RestClient::Resource.new(
+        "#{url_prefix}://#{host}:#{port}/api/nodes",
+        options
+      )
       # create a hash of the server names and their running state
       servers_status = Hash[JSON.parse(resource.get).map { |server| [server['name'], server['running']] }]
 
@@ -100,16 +153,16 @@ def cluster_healthy?
 
       # build status and message
       status = failed_nodes.empty? && missing_nodes.empty? ? 'ok' : 'critical'
-      if failed_nodes.empty?
-        message = "#{servers_status.keys.count} healthy cluster nodes"
-      else
-        message = "#{failed_nodes.count} failed cluster node: #{failed_nodes.sort.join(',')}"
-      end
-      message.prepend("#{missing_nodes.count } node(s) not found: #{missing_nodes.join(',')}. ") unless missing_nodes.empty?
+      message = if failed_nodes.empty?
+                  "#{servers_status.keys.count} healthy cluster nodes"
+                else
+                  "#{failed_nodes.count} failed cluster node: #{failed_nodes.sort.join(',')}"
+                end
+      message.prepend("#{missing_nodes.count} node(s) not found: #{missing_nodes.join(',')}. ") unless missing_nodes.empty?
       { 'status' => status, 'message' => message }
     rescue Errno::ECONNREFUSED => e
       { 'status' => 'critical', 'message' => e.message }
-    rescue => e
+    rescue StandardError => e
       { 'status' => 'unknown', 'message' => e.message }
     end
   end