Add TLS support #260

loliee · 2021-03-07T17:56:52Z

Thanks for this nice role !

This allow to compile Redis with TLS support.

Strict TLS config example with explicit setup (setting redis_port to 0 to force TLS connections make configuration confusing):

redis_version: 6.2.1
redis_port: 0
redis_service_name: redis
redis_make_tls: yes
redis_config_file_name: 6379.conf
redis_install_dir: /opt/redis
redis_logfile: /var/log/redis_6379.log
redis_dir: /var/lib/redis/6379
redis_pidfile: /var/run/redis/6379.pid

redis_config_additional: |
  tls-port 6379
  tls-cert-file /etc/ssl/redis/cert.crt
  tls-key-file /etc/ssl/redis/key.pem
  tls-ca-cert-file /etc/ssl/redis/ca.crt

This allow to compile Redis with TLS support. C.f https://redis.io/topics/encryption Strict TLS config example (setting `redis_port` to `0` to force TLS connections are not explicit): ``` redis_version: 6.2.1 redis_port: 0 redis_service_name: redis redis_make_tls: yes redis_config_file_name: 6379.conf redis_install_dir: /opt/redis redis_logfile: /var/log/redis_6379.log redis_dir: /var/lib/redis/6379 redis_pidfile: /var/run/redis/6379.pid redis_config_additional: | tls-port 6379 tls-cert-file /etc/ssl/redis/cert.crt tls-key-file /etc/ssl/redis/key.pem tls-ca-cert-file /etc/ssl/redis/ca.crt ```

DavidWittman · 2021-03-12T03:15:27Z

This is great... thanks @loliee!

This allow to compile Redis with TLS support. C.f https://redis.io/topics/encryption Strict TLS config example (setting `redis_port` to `0` to force TLS connections are not explicit): ``` redis_version: 6.2.1 redis_port: 0 redis_service_name: redis redis_make_tls: yes redis_config_file_name: 6379.conf redis_install_dir: /opt/redis redis_logfile: /var/log/redis_6379.log redis_dir: /var/lib/redis/6379 redis_pidfile: /var/run/redis/6379.pid redis_config_additional: | tls-port 6379 tls-cert-file /etc/ssl/redis/cert.crt tls-key-file /etc/ssl/redis/key.pem tls-ca-cert-file /etc/ssl/redis/ca.crt ```

loliee force-pushed the add-tls-support branch from efd2e39 to 1035497 Compare March 7, 2021 17:58

DavidWittman merged commit b7f0612 into DavidWittman:master Mar 12, 2021

loliee deleted the add-tls-support branch March 25, 2021 21:20

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Add TLS support #260

Add TLS support #260

loliee commented Mar 7, 2021

DavidWittman commented Mar 12, 2021

Add TLS support #260

Add TLS support #260

Conversation

loliee commented Mar 7, 2021

DavidWittman commented Mar 12, 2021