New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
[QUESTION] how to set sentinel-user acl in file for Redis v6.0 #9536
Comments
Hello @ptulpen You can generate an aclfile that loads correctly by:
It could be, in your case, that the I hope this solves the issue for you, but please let us know if there's something amiss. |
Hello, |
Alrighty, I believe I know the problem: you're using Redis v6.0, whereas the documentation is about v6.2 (yes, I know, there's a lot to be desired with the documentation). In v6.2 we've introduced a breaking change to ACL, namely the support for Pub/Sub patterns. The break is the addition of the new "verb" I recommend that you upgrade to the latest stable version (and not only because of this), but if you want to keep using the older version, just don't use that verb, i.e.:
|
Hello, |
Then I'm sorry to say that I can't reproduce it - the aclfile you've posted literally "works on my laptop" with unstable and v6.2.5. The error you're getting is very specific and the source code seems straightforward in that area. It means one (or more) of the |
So, via trial and error I found out that this works: and this commands dont But would that work as a proper sentinel cluster? |
Ok, I see what's happening here. You're attempting to use the Redis server's ACL rules on a Sentinel instance. The docs are about configuring the server to allow Sentinel's user to perform its operations. Sentinel also supports ACL, but only for its commands (15 or so). There are no formal recommendations on how to set up your Sentinel ACL rules as it depends on your deployment. |
Hello, yes you are right. |
Hello
I want to set the acls of the sentinel-user and replication-user via the acl files
The documentation on https://redis.io/topics/acl writes about how to do it on command line, but when I transfer this to a users.acl file I get
"Unknown command or category name in ACL."
users.acl looks like
Am I missing something or is something different when using the categories in files ?
The text was updated successfully, but these errors were encountered: