Skip to content

feat: cache: redis: tls: allow enabling without client certs#556

Merged
hileef merged 1 commit into
masterfrom
feat/cache/redis/support-conn-tls-public-server-only
Sep 10, 2025
Merged

feat: cache: redis: tls: allow enabling without client certs#556
hileef merged 1 commit into
masterfrom
feat/cache/redis/support-conn-tls-public-server-only

Conversation

@hileef
Copy link
Copy Markdown
Contributor

@hileef hileef commented Sep 9, 2025
edited
Loading

Description

Allow enabling TLS on the connection to redis cache without specifying a client-side certificate & key pair.
This should fix #550 , but requires specifying enable_tls: true in the configuration.

Pull request type

Please check the type of change your PR introduces:

  • Bugfix
  • Feature
  • Code style update (formatting, renaming)
  • Refactoring (no functional changes, no api changes)
  • Build related changes
  • Documentation content changes
  • Other (please describe):

Checklist

  • Linter passes correctly
  • Add tests which fail without the change (if possible)
  • All tests passing
  • Extended the README / documentation, if necessary

Does this introduce a breaking change?

  • Yes
  • No

@render render Bot temporarily deployed to feat/cache/redis/support-conn-tls-public-server-only - chproxy PR #556 September 9, 2025 16:50 Destroyed
@hileef hileef force-pushed the feat/cache/redis/support-conn-tls-public-server-only branch from 417179e to 7a8a4d9 Compare September 9, 2025 16:50
@snyk-io
Copy link
Copy Markdown

snyk-io Bot commented Sep 9, 2025
edited
Loading

🎉 Snyk checks have passed. No issues have been found so far.

security/snyk check is complete. No issues have been found. (View Details)

license/snyk check is complete. No issues have been found. (View Details)

code/snyk check is complete. No issues have been found. (View Details)

@snyk-io
Copy link
Copy Markdown

snyk-io Bot commented Sep 9, 2025
edited
Loading

🎉 Snyk checks have passed. No issues have been found so far.

code/snyk check is complete. No issues have been found. (View Details)

@hileef hileef force-pushed the feat/cache/redis/support-conn-tls-public-server-only branch from 7a8a4d9 to 85c7f94 Compare September 9, 2025 16:54
@render render Bot temporarily deployed to feat/cache/redis/support-conn-tls-public-server-only - chproxy PR #556 September 9, 2025 16:54 Destroyed
@hileef hileef marked this pull request as ready for review September 9, 2025 16:55
Scartiloffista
Scartiloffista approved these changes Sep 10, 2025
View reviewed changes
Copy link
Copy Markdown
Member

@Scartiloffista Scartiloffista left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

great!

alifirat
alifirat approved these changes Sep 10, 2025
View reviewed changes
Comment thread clients/redis.go

if len(cfg.CertFile) != 0 || len(cfg.KeyFile) != 0 {
// maintain backwards compatibility in case of non-presence of enable_tls
if len(cfg.CertFile) != 0 || len(cfg.KeyFile) != 0 || cfg.EnableTLS {
Copy link
Copy Markdown
Collaborator

@alifirat alifirat Sep 10, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

👍

@hileef hileef merged commit 3aea406 into master Sep 10, 2025
8 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@alifirat alifirat alifirat approved these changes

@Scartiloffista Scartiloffista Scartiloffista approved these changes

Assignees

No one assigned

Labels

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

[BUG] Elastic cache TLS configuration

3 participants

@hileef @alifirat @Scartiloffista