我的书签
添加书签
移除书签MQTT
Detailed documentation on the MQTT pubsub component
Component format
To setup MQTT pubsub create a component of type pubsub.mqtt. See this guide on how to create and apply a pubsub configuration
apiVersion: dapr.io/v1alpha1kind: Componentmetadata:name: mqtt-pubsubspec:type: pubsub.mqttversion: v1metadata:- name: urlvalue: "tcp://[username][:password]@host.domain[:port]"- name: qosvalue: 1- name: retainvalue: "false"- name: cleanSessionvalue: "false"- name: backOffMaxRetriesvalue: "0"
Warning
The above example uses secrets as plain strings. It is recommended to use a secret store for the secrets as described here.
Spec metadata fields
| Field | Required | Details | Example |
|---|---|---|---|
| url | Y | Address of the MQTT broker. Can be secretKeyRef to use a secret reference.Use the tcp:// URI scheme for non-TLS communication.Use the ssl:// URI scheme for TLS communication. | “tcp://[username][:password]@host.domain[:port]” |
| consumerID | N | The client ID used to connect to the MQTT broker. Defaults to the Dapr app ID. | “myMqttClientApp” |
| qos | N | Indicates the Quality of Service Level (QoS) of the message (more info). Defaults to 1. | 0, 1, 2 |
| retain | N | Defines whether the message is saved by the broker as the last known good value for a specified topic. Defaults to “false”. | “true”, “false” |
| cleanSession | N | Sets the clean_session flag in the connection message to the MQTT broker if “true” (more info). Defaults to “false”. | “true”, “false” |
| caCert | Required for using TLS | Certificate Authority (CA) certificate in PEM format for verifying server TLS certificates. | “——-BEGIN CERTIFICATE——-\n<base64-encoded DER>\n——-END CERTIFICATE——-“ |
| clientCert | Required for using TLS | TLS client certificate in PEM format. Must be used with clientKey. | “——-BEGIN CERTIFICATE——-\n<base64-encoded DER>\n——-END CERTIFICATE——-“ |
| clientKey | Required for using TLS | TLS client key in PEM format. Must be used with clientCert. Can be secretKeyRef to use a secret reference. | “——-BEGIN RSA PRIVATE KEY——-\n<base64-encoded PKCS8>\n——-END RSA PRIVATE KEY——-“ |
| backOffMaxRetries | N | The maximum number of retries to process the message before returning an error. Defaults to “0”, which means that no retries will be attempted. “-1” can be specified to indicate that messages should be retried indefinitely until they are successfully processed or the application is shutdown. The component will wait 5 seconds between retries. | “3” |
Communication using TLS
To configure communication using TLS, ensure that the MQTT broker (e.g. mosquitto) is configured to support certificates and provide the caCert, clientCert, clientKey metadata in the component configuration. For example:
apiVersion: dapr.io/v1alpha1kind: Componentmetadata:name: mqtt-pubsubspec:type: pubsub.mqttversion: v1metadata:- name: urlvalue: "ssl://host.domain[:port]"- name: qosvalue: 1- name: retainvalue: "false"- name: cleanSessionvalue: "false"- name: backoffMaxRetriesvalue: "0"- name: caCertvalue: ${{ myLoadedCACert }}- name: clientCertvalue: ${{ myLoadedClientCert }}- name: clientKeysecretKeyRef:name: myMqttClientKeykey: myMqttClientKeyauth:secretStore: <SECRET_STORE_NAME>
Note that while the caCert and clientCert values may not be secrets, they can be referenced from a Dapr secret store as well for convenience.
Consuming a shared topic
When consuming a shared topic, each consumer must have a unique identifier. By default, the application ID is used to uniquely identify each consumer and publisher. In self-hosted mode, invoking each dapr run with a different application ID is sufficient to have them consume from the same shared topic. However, on Kubernetes, multiple instances of an application pod will share the same application ID, prohibiting all instances from consuming the same topic. To overcome this, configure the component’s consumerID metadata with a {uuid} tag, which will give each instance a randomly generated consumerID value on start up. For example:
apiVersion: dapr.io/v1alpha1kind: Componentmetadata:name: mqtt-pubsubspec:type: pubsub.mqttversion: v1metadata:- name: consumerIDvalue: "{uuid}"- name: urlvalue: "tcp://admin:public@localhost:1883"- name: qosvalue: 1- name: retainvalue: "false"- name: cleanSessionvalue: "true"- name: backoffMaxRetriesvalue: "0"
Warning
The above example uses secrets as plain strings. It is recommended to use a secret store for the secrets as described here.
Note that in the case, the value of the consumer ID is random every time Dapr restarts, so we are setting cleanSession to true as well.
Create a MQTT broker
You can run a MQTT broker locally using Docker:
docker run -d -p 1883:1883 -p 9001:9001 --name mqtt eclipse-mosquitto:1.6
You can then interact with the server using the client port: mqtt://localhost:1883
You can run a MQTT broker in kubernetes using following yaml:
apiVersion: apps/v1kind: Deploymentmetadata:name: mqtt-brokerlabels:app-name: mqtt-brokerspec:replicas: 1selector:matchLabels:app-name: mqtt-brokertemplate:metadata:labels:app-name: mqtt-brokerspec:containers:- name: mqttimage: eclipse-mosquitto:1.6imagePullPolicy: IfNotPresentports:- name: defaultcontainerPort: 1883protocol: TCP- name: websocketcontainerPort: 9001protocol: TCP---apiVersion: v1kind: Servicemetadata:name: mqtt-brokerlabels:app-name: mqtt-brokerspec:type: ClusterIPselector:app-name: mqtt-brokerports:- port: 1883targetPort: defaultname: defaultprotocol: TCP- port: 9001targetPort: websocketname: websocketprotocol: TCP
You can then interact with the server using the client port: tcp://mqtt-broker.default.svc.cluster.local:1883
Related links
- Basic schema for a Dapr component
- Read this guide for instructions on configuring pub/sub components
- Pub/Sub building block
Last modified July 27, 2022: Remove namespace element from component examples (#2647) (ff9de5c8)
