📝 CodeRabbit Chat: Implement requested code changes

event-gateway/README.md

@@ -240,7 +240,9 @@ The event gateway is configured via [`gateway-runtime/configs/config.toml`](gate
 
 | Section | Key | Default | Description |
 |---------|-----|---------|-------------|
-| `server` | `websub_port` | `8080` | WebSub listener port |
+| `server` | `websub_enabled` | `true` | Enable the WebSub HTTP/HTTPS listener |
+| `server` | `websub_http_port` | `8080` | WebSub HTTP listener port |
+| `server` | `websub_https_port` | `8443` | WebSub HTTPS listener port (used when TLS is enabled) |
 | `server` | `websub_tls_enabled` | `false` | Serve the WebSub listener with HTTPS |
 | `server` | `websub_tls_cert_file` | `""` | PEM certificate path for the WebSub HTTPS listener |
 | `server` | `websub_tls_key_file` | `""` | PEM private key path for the WebSub HTTPS listener |
@@ -258,15 +260,16 @@ The event gateway is configured via [`gateway-runtime/configs/config.toml`](gate
 All settings can be overridden via environment variables with the prefix `APIP_EGW_`:
 
 ```bash
-APIP_EGW_SERVER_WEBSUB_PORT=8080
+APIP_EGW_SERVER_WEBSUB_HTTP_PORT=8080
+APIP_EGW_SERVER_WEBSUB_HTTPS_PORT=8443
 APIP_EGW_SERVER_WEBSUB_TLS_ENABLED=true
 APIP_EGW_SERVER_WEBSUB_TLS_CERT_FILE=/etc/event-gateway/tls/tls.crt
 APIP_EGW_SERVER_WEBSUB_TLS_KEY_FILE=/etc/event-gateway/tls/tls.key
 APIP_EGW_KAFKA_BROKERS=broker1:9092,broker2:9092
 APIP_EGW_CONTROLPLANE_ENABLED=true
 ```
 
-When `websub_tls_enabled=true`, the event gateway serves `https://` on `websub_port`. If the gateway controller or router points at the event gateway directly, update `router.event_gateway.websub_hub_url` to use an `https://` URL.
+When `websub_tls_enabled=true`, the event gateway serves `https://` on `websub_https_port`. If the gateway controller or router points at the event gateway directly, update `router.event_gateway.websub_hub_url` to use an `https://` URL.
 
 ### Channel Bindings (`channels.yaml`)
 
@@ -341,8 +344,8 @@ docker compose build event-gateway
 |----------|------|-------------|
 | `GET /health` | 9002 | Liveness probe — always returns `{"status":"UP"}` |
 | `GET /ready` | 9002 | Readiness probe — `{"status":"READY"}` or 503 |
-| `POST /{context}/{version}/hub` | 8080 | WebSub subscribe/unsubscribe over HTTP or HTTPS |
-| `POST /{context}/{version}/webhook-receiver?topic=X` | 8080 | WebSub event ingress over HTTP or HTTPS |
+| `POST /{context}/{version}/hub` | 8080 / 8443 | WebSub subscribe/unsubscribe over HTTP or HTTPS |
+| `POST /{context}/{version}/webhook-receiver?topic=X` | 8080 / 8443 | WebSub event ingress over HTTP or HTTPS |
 | `ws://localhost:8081/{path}` | 8081 | WebSocket connection (protocol mediation) |
 | Kafka UI | 7080 | Kafka topic browser at `http://localhost:7080` |
 

event-gateway/gateway-runtime/configs/config.toml

@@ -15,9 +15,9 @@ websub_http_port = 8080
 # HTTPS port for WebSub server (used when TLS is enabled)
 websub_https_port = 8443
 # Set to true to serve the WebSub hub and webhook receiver over HTTPS.
-websub_tls_enabled = true
-websub_tls_cert_file = "/etc/event-gateway/tls/default-listener.crt"
-websub_tls_key_file = "/etc/event-gateway/tls/default-listener.key"
+websub_tls_enabled = false
+# websub_tls_cert_file = "/etc/event-gateway/tls/default-listener.crt"
+# websub_tls_key_file = "/etc/event-gateway/tls/default-listener.key"
 websocket_port = 8081
 admin_port = 9002
 metrics_port = 9003