Skip to content

luks/redisproxy

BranchesTags
 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

7 Commits
lib
lib
 
 
.gitignore
.gitignore
 
 
.travis.yml
.travis.yml
 
 
README.md
README.md
 
 
data_test.go
data_test.go
 
 
main.go
main.go
 
 
main_test.go
main_test.go
 
 

Repository files navigation

Build Status

Redis Proxy

This program is a proxy for redis that adds access controls and TLS client authentication.

You configure this program with a YAML file, which defines groups and rules.

groups:
  + name: frontend
    ou: ["frontend"]
  + name: web
    ou: ["web"]
rules:
  + groups: ["frontend"]
    commands: [["^PING$"], ["^SADD$", "^sessions/(.*)$"]]

Invoking it:

redisproxy \
    -config config.yaml \
    -cert cert.pem -key key.pem -client-ca ca.pem \
    -listen 6380 \
    -server localhost:6379

You can use a TLS client such as ghostunnel or openssl s_client to connect.

Note #1: This program implements the Redis protocol as described http://redis.io/topics/protocol. It does not implement Inline Commands (PRs welcome).

Note #2: when a client issues a command that is not allowed, the connection is immediately closed. If the client is pipelining, sending multiple commands without waiting for responses, it may interrupt pending responses. (Again, PRs welcome)

About

Access control for Redis

Resources

Readme
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

1 tags

Packages

No packages published

Languages

  • Go 100.0%