Chiebot-Mirror
/
data-plane-api
mirror of https://github.com/envoyproxy/data-plane-api.git
8
0
Fork 0
Code Issues Projects Releases Wiki Activity

redis: auth support (#6674)

Browse Source 
Signed-off-by: Mitch Sukalski <mitch.sukalski@workday.com>

Mirrored from https://github.com/envoyproxy/envoy @ 316c33b1649972391481cd1d6bbe12f8fa658f98
pull/620/head
data-plane-api(CircleCI) 6 years ago
parent 2229174ba0
commit 3de2e9e755
2 changed files with 24 additions and 0 deletions
Whitespace
Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL
Split View
Diff Options
Show Stats Download Patch File Download Diff File
  1. 3
      envoy/config/filter/network/redis_proxy/v2/BUILD
  2. 21
      envoy/config/filter/network/redis_proxy/v2/redis_proxy.proto

3
envoy/config/filter/network/redis_proxy/v2/BUILD
Unescape View File

@ -5,4 +5,7 @@ licenses(["notice"]) # Apache 2
api_proto_library_internal(
name = "redis_proxy",
srcs = ["redis_proxy.proto"],
deps = [
"//envoy/api/v2/core:base",
],
)

21
envoy/config/filter/network/redis_proxy/v2/redis_proxy.proto
Unescape View File

@ -7,6 +7,8 @@ option java_multiple_files = true;
option java_package = "io.envoyproxy.envoy.config.filter.network.redis_proxy.v2";
option go_package = "v2";
import "envoy/api/v2/core/base.proto";
import "google/protobuf/duration.proto";
import "validate/validate.proto";
@ -141,4 +143,23 @@ message RedisProxy {
// <arch_overview_redis_configuration>` of the architecture overview for recommendations on
// configuring the backing clusters.
PrefixRoutes prefix_routes = 5 [(gogoproto.nullable) = false];
// Authenticate Redis client connections locally by forcing downstream clients to issue a 'Redis
// AUTH command <https://redis.io/commands/auth>`_ with this password before enabling any other
// command. If an AUTH command's password matches this password, an "OK" response will be returned
// to the client. If the AUTH command password does not match this password, then an "ERR invalid
// password" error will be returned. If any other command is received before AUTH when this
// password is set, then a "NOAUTH Authentication required." error response will be sent to the
// client. If an AUTH command is received when the password is not set, then an "ERR Client sent
// AUTH, but no password is set" error will be returned.
envoy.api.v2.core.DataSource downstream_auth_password = 6;
}
// RedisProtocolOptions specifies Redis upstream protocol options. This object is used in
// :ref:`extension_protocol_options<envoy_api_field_Cluster.extension_protocol_options>`, keyed
// by the name `envoy.redis_proxy`.
message RedisProtocolOptions {
// Upstream server password as defined by the `requirepass directive
// <https://redis.io/topics/config>`_ in the server's configuration file.
envoy.api.v2.core.DataSource auth_password = 1;
}
Write Preview
Loading…
Cancel
Save