open-vault/website/source/api/secret/rabbitmq/index.html.md

---
layout: "api"
page_title: "RabbitMQ - Secrets Engines - HTTP API"
sidebar_current: "docs-http-secret-rabbitmq"
description: |-
  This is the API documentation for the Vault RabbitMQ secrets engine.
---

# RabbitMQ Secrets Engine (API)

This is the API documentation for the Vault RabbitMQ secrets engine. For general
information about the usage and operation of the RabbitMQ secrets engine, please
see the [RabbitMQ documentation](/docs/secrets/rabbitmq/index.html).

This documentation assumes the RabbitMQ secrets engine is enabled at the
`/rabbitmq` path in Vault. Since it is possible to enable secrets engines at any
location, please update your API calls accordingly.

## Configure Connection

This endpoint configures the connection string used to communicate with
RabbitMQ.

| Method   | Path                         | Produces               |
| :------- | :--------------------------- | :--------------------- |
| `POST`   | `/rabbitmq/config/connection` | `204 (empty body)` |

### Parameters

- `connection_uri` `(string: <required>)` – Specifies the RabbitMQ connection
  URI.

- `username` `(string: <required>)` – Specifies the RabbitMQ management
  administrator username.

- `password` `(string: <required>)` – Specifies the RabbitMQ management
  administrator password.

- `verify_connection` `(bool: true)` – Specifies whether to verify connection
  URI, username, and password.

### Sample Payload

```json
{
  "connection_uri": "https://...",
  "username": "user",
  "password": "password"
}
```

### Sample Request

```
$ curl \
    --header "X-Vault-Token: ..." \
    --request POST \
    --data @payload.json \
    https://vault.rocks/v1/rabbitmq/config/connection
```

## Configure Lease

This endpoint configures the lease settings for generated credentials.

| Method   | Path                         | Produces               |
| :------- | :--------------------------- | :--------------------- |
| `POST`   | `/rabbitmq/config/lease`     | `204 (empty body)` |

### Parameters

- `ttl` `(int: 0)` – Specifies the lease ttl provided in seconds.

- `max_ttl` `(int: 0)` – Specifies the maximum ttl provided in seconds.

### Sample Payload

```json
{
  "ttl": 1800,
  "max_ttl": 3600
}
```

### Sample Request

```
$ curl \
    --header "X-Vault-Token: ..." \
    --request POST \
    --data @payload.json \
    https://vault.rocks/v1/rabbitmq/config/lease
```

## Create Role

This endpoint creates or updates the role definition.

| Method   | Path                         | Produces               |
| :------- | :--------------------------- | :--------------------- |
| `POST`   | `/rabbitmq/roles/:name`      | `204 (empty body)`     |

### Parameters

- `name` `(string: <required>)` – Specifies the name of the role to create. This
  is specified as part of the URL.

- `tags` `(string: "")` – Specifies a comma-separated RabbitMQ management tags.

- `vhost` `(string: "")` – Specifies a map of virtual hosts to
  permissions.

### Sample Payload

```json
{
  "tags": "tag1,tag2",
  "vhost": "{\"/\": {\"configure\":\".*\", \"write\":\".*\", \"read\": \".*\"}}"
}
```

### Sample Request

```
$ curl \
    --header "X-Vault-Token: ..." \
    --request POST \
    --data @payload.json \
    https://vault.rocks/v1/rabbitmq/roles/my-role
```

## Read Role

This endpoint queries the role definition.

| Method   | Path                         | Produces               |
| :------- | :--------------------------- | :--------------------- |
| `GET`    | `/rabbitmq/roles/:name`      | `200 application/json` |

### Parameters

- `name` `(string: <required>)` – Specifies the name of the role to read. This
  is specified as part of the URL.

### Sample Request

```
$ curl \
    --header "X-Vault-Token: ..." \
    https://vault.rocks/v1/rabbitmq/roles/my-role
```

### Sample Response

```json
{
  "data": {
    "tags": "",
    "vhost": "{\"/\": {\"configure\":\".*\", \"write\":\".*\", \"read\": \".*\"}}"
  }
}
```

## Delete Role

This endpoint deletes the role definition.

| Method   | Path                         | Produces               |
| :------- | :--------------------------- | :--------------------- |
| `DELETE` | `/rabbitmq/roles/:name`     | `204 (empty body)`     |

### Parameters

- `name` `(string: <required>)` – Specifies the name of the role to delete. This
  is specified as part of the URL.

### Sample Request

```
$ curl \
    --header "X-Vault-Token: ..." \
    --request DELETE \
    https://vault.rocks/v1/rabbitmq/roles/my-role
```

## Generate Credentials

This endpoint generates a new set of dynamic credentials based on the named
role.

| Method   | Path                         | Produces               |
| :------- | :--------------------------- | :--------------------- |
| `GET`    | `/rabbitmq/creds/:name`      | `200 application/json` |

### Parameters

- `name` `(string: <required>)` – Specifies the name of the role to create
  credentials against. This is specified as part of the URL.

### Sample Request

```
$ curl \
    --header "X-Vault-Token: ..." \
    https://vault.rocks/v1/rabbitmq/creds/my-role
```

### Sample Response

```json
{
  "data": {
    "username": "root-4b95bf47-281d-dcb5-8a60-9594f8056092",
    "password": "e1b6c159-ca63-4c6a-3886-6639eae06c30"
  }
}
```
-												Break out API documentation for secret backends

											
										
										
											2017-03-09 02:47:35 +00:00
+								---
-												/docs/http -> /api

											
										
										
											2017-03-17 18:06:03 +00:00
+								layout: "api"
-												Resolve the most painful merge conflict known on earth

											
										
										
											2017-09-20 20:05:00 +00:00
+								page_title: "RabbitMQ - Secrets Engines - HTTP API"
-												Break out API documentation for secret backends

											
										
										
											2017-03-09 02:47:35 +00:00
+								sidebar_current: "docs-http-secret-rabbitmq"
 								description: |-
-												Resolve the most painful merge conflict known on earth

											
										
										
											2017-09-20 20:05:00 +00:00
+								  This is the API documentation for the Vault RabbitMQ secrets engine.
-												Break out API documentation for secret backends

											
										
										
											2017-03-09 02:47:35 +00:00
+								---
-												Resolve the most painful merge conflict known on earth

											
										
										
											2017-09-20 20:05:00 +00:00
+								# RabbitMQ Secrets Engine (API)
-												Break out API documentation for secret backends

											
										
										
											2017-03-09 02:47:35 +00:00
-												Resolve the most painful merge conflict known on earth

											
										
										
											2017-09-20 20:05:00 +00:00
+								This is the API documentation for the Vault RabbitMQ secrets engine. For general
 								information about the usage and operation of the RabbitMQ secrets engine, please
 								see the [RabbitMQ documentation](/docs/secrets/rabbitmq/index.html).
-												Break out API documentation for secret backends

											
										
										
											2017-03-09 02:47:35 +00:00
-												Resolve the most painful merge conflict known on earth

											
										
										
											2017-09-20 20:05:00 +00:00
+								This documentation assumes the RabbitMQ secrets engine is enabled at the
 								`/rabbitmq` path in Vault. Since it is possible to enable secrets engines at any
 								location, please update your API calls accordingly.
-												Break out API documentation for secret backends

											
										
										
											2017-03-09 02:47:35 +00:00
 								## Configure Connection
 								This endpoint configures the connection string used to communicate with
 								RabbitMQ.
 								| Method   | Path                         | Produces               |
 								| :------- | :--------------------------- | :--------------------- |
 								| `POST`   | `/rabbitmq/config/connection` | `204 (empty body)` |
 								### Parameters
 								- `connection_uri` `(string: <required>)` – Specifies the RabbitMQ connection
 								  URI.
 								- `username` `(string: <required>)` – Specifies the RabbitMQ management
 								  administrator username.
 								- `password` `(string: <required>)` – Specifies the RabbitMQ management
 								  administrator password.
 								- `verify_connection` `(bool: true)` – Specifies whether to verify connection
 								  URI, username, and password.
 								### Sample Payload
 								```json
 								{
 								  "connection_uri": "https://...",
 								  "username": "user",
 								  "password": "password"
 								}
 								```
 								### Sample Request
 								```
 								$ curl \
 								    --header "X-Vault-Token: ..." \
 								    --request POST \
 								    --data @payload.json \
 								    https://vault.rocks/v1/rabbitmq/config/connection
 								```
 								## Configure Lease
-												Make PKI root generation idempotent-ish and add delete endpoint. (#3165)


											
										
										
											2017-08-15 18:00:40 +00:00
+								This endpoint configures the lease settings for generated credentials.
-												Break out API documentation for secret backends

											
										
										
											2017-03-09 02:47:35 +00:00
 								| Method   | Path                         | Produces               |
 								| :------- | :--------------------------- | :--------------------- |
 								| `POST`   | `/rabbitmq/config/lease`     | `204 (empty body)` |
 								### Parameters
 								- `ttl` `(int: 0)` – Specifies the lease ttl provided in seconds.
 								- `max_ttl` `(int: 0)` – Specifies the maximum ttl provided in seconds.
 								### Sample Payload
 								```json
 								{
 								  "ttl": 1800,
 								  "max_ttl": 3600
 								}
 								```
 								### Sample Request
 								```
 								$ curl \
 								    --header "X-Vault-Token: ..." \
 								    --request POST \
 								    --data @payload.json \
 								    https://vault.rocks/v1/rabbitmq/config/lease
 								```
 								## Create Role
 								This endpoint creates or updates the role definition.
 								| Method   | Path                         | Produces               |
 								| :------- | :--------------------------- | :--------------------- |
 								| `POST`   | `/rabbitmq/roles/:name`      | `204 (empty body)`     |
 								### Parameters
 								- `name` `(string: <required>)` – Specifies the name of the role to create. This
 								  is specified as part of the URL.
 								- `tags` `(string: "")` – Specifies a comma-separated RabbitMQ management tags.
 								- `vhost` `(string: "")` – Specifies a map of virtual hosts to
 								  permissions.
 								### Sample Payload
 								```json
 								{
 								  "tags": "tag1,tag2",
 								  "vhost": "{\"/\": {\"configure\":\".*\", \"write\":\".*\", \"read\": \".*\"}}"
 								}
 								```
 								### Sample Request
 								```
 								$ curl \
 								    --header "X-Vault-Token: ..." \
 								    --request POST \
 								    --data @payload.json \
 								    https://vault.rocks/v1/rabbitmq/roles/my-role
 								```
 								## Read Role
 								This endpoint queries the role definition.
 								| Method   | Path                         | Produces               |
 								| :------- | :--------------------------- | :--------------------- |
 								| `GET`    | `/rabbitmq/roles/:name`      | `200 application/json` |
 								### Parameters
 								- `name` `(string: <required>)` – Specifies the name of the role to read. This
 								  is specified as part of the URL.
 								### Sample Request
 								```
 								$ curl \
 								    --header "X-Vault-Token: ..." \
 								    https://vault.rocks/v1/rabbitmq/roles/my-role
 								```
 								### Sample Response
 								```json
 								{
 								  "data": {
 								    "tags": "",
 								    "vhost": "{\"/\": {\"configure\":\".*\", \"write\":\".*\", \"read\": \".*\"}}"
 								  }
 								}
 								```
 								## Delete Role
 								This endpoint deletes the role definition.
 								| Method   | Path                         | Produces               |
 								| :------- | :--------------------------- | :--------------------- |
-												Fixed small typo in RabbitMQ secret backend. (#3300)

Fixed `name` param for the Delete Role API in the RabbitMQ secret backend.

											
										
										
											2017-09-07 14:00:32 +00:00
+								| `DELETE` | `/rabbitmq/roles/:name`     | `204 (empty body)`     |
-												Break out API documentation for secret backends

											
										
										
											2017-03-09 02:47:35 +00:00
 								### Parameters
 								- `name` `(string: <required>)` – Specifies the name of the role to delete. This
 								  is specified as part of the URL.
 								### Sample Request
 								```
 								$ curl \
 								    --header "X-Vault-Token: ..." \
 								    --request DELETE \
 								    https://vault.rocks/v1/rabbitmq/roles/my-role
 								```
 								## Generate Credentials
 								This endpoint generates a new set of dynamic credentials based on the named
 								role.
 								| Method   | Path                         | Produces               |
 								| :------- | :--------------------------- | :--------------------- |
 								| `GET`    | `/rabbitmq/creds/:name`      | `200 application/json` |
 								### Parameters
 								- `name` `(string: <required>)` – Specifies the name of the role to create
 								  credentials against. This is specified as part of the URL.
 								### Sample Request
 								```
 								$ curl \
 								    --header "X-Vault-Token: ..." \
 								    https://vault.rocks/v1/rabbitmq/creds/my-role
 								```
 								### Sample Response
 								```json
 								{
 								  "data": {
 								    "username": "root-4b95bf47-281d-dcb5-8a60-9594f8056092",
 								    "password": "e1b6c159-ca63-4c6a-3886-6639eae06c30"
 								  }
 								}
 								```