rdeveloper21 opened a new issue, #39210: URL: https://github.com/apache/airflow/issues/39210
### Apache Airflow version Other Airflow 2 version (please specify below) ### If "Other Airflow 2 version" selected, which one? 2.7.2 ### What happened? Basically in our airflow setup we had implemented rabbitmq broker url connection for celery executor. Later on, due to certain vulnerabilities issue, we had implemented SSL for rabbitmq connection. To handle same we changed the value of below config variables as per documentation: "AIRFLOW__CELERY__BROKER_URL": "amqps://user:password@ip:port/" "AIRFLOW__CELERY__SSL_ACTIVE": "False" "AIRFLOW__CELERY__SSL_CACERT": "/path/to/cacert.pem" But still we were observing airflow exception: raise AirflowException( airflow.exceptions.AirflowException: Exception: There was an unknown Celery SSL Error. Please ensure you want to use SSL and/or have all necessary certs and key (The broker you configured does not support SSL_ACTIVE to be True. Please use RabbitMQ or Redis if you would like to use SSL for broker.). Then after going through source code we found below:  Due to the condition >>"amqp://" in broker_url << the exception was getting raised. When tried by updating the condition and also commenting the "keyfile" and "certfile" in broker_use_ssl, we were able to connect to rabbitmq and proceed. ### What you think should happen instead? The condition when 'celery_ssl_active' is True should be revisited and updated. As the condition if "amqp://" in broker_url is not justified. ### How to reproduce Implement SSL for rabbitmq broker. Update below variables: "AIRFLOW__CELERY__BROKER_URL": "amqps://user:password@ip:port/" "AIRFLOW__CELERY__SSL_ACTIVE": "False" "AIRFLOW__CELERY__SSL_CACERT": "/path/to/cacert.pem" and try to connect broker. ### Operating System linux ### Versions of Apache Airflow Providers apache-airflow-providers-celery==3.3.4 ### Deployment Other Docker-based deployment ### Deployment details _No response_ ### Anything else? _No response_ ### Are you willing to submit PR? - [ ] Yes I am willing to submit a PR! ### Code of Conduct - [X] I agree to follow this project's [Code of Conduct](https://github.com/apache/airflow/blob/main/CODE_OF_CONDUCT.md) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected]
