You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Deploy Spotahome Redis into my cluster with the more than default users created during deployment.
Actual behaviour
Redis is deployed correctly, but have only default and pinger users.
Steps to reproduce the behaviour
I used Spotahome Redis operator in my Kubernetes deployment. I have my own operator written in C#. It is deployed correctly in general.
I have prepared a secret that contains ACL commands that should add 3 users.
I mount it as a file that is accessible through Redis pod.
I set aclfile property in customConfig property
Please find below my main .yaml template for RedisFailover:
I've been trying to do this as well, but doesn't seem to work using just customConfig. I suspect the aclfile is in conflict with /redis/redis.conf that is used for redis startup because the redis.conf has an acl defined for the pinger user (can't have acl's defined in both files).
Possible Workaround, effectively combining redis.conf and aclfile:
Make a copy of the /redis/redis.conf and add the full list of acl's you want as the secret.
Write a copy of the updated redis.conf in /etc/redis using the extraVolumes.
Use a startup command that references that new redis.conf: command: ['/bin/sh', '-c', "redis-server /etc/redis/redis.conf"]
So far this looks like it's working. If there is a new version of the operator released, this approach would possibly break. But hopefully changes can be made so a customConfig and aclfile can be used. I think a separate aclfile is preferred.
I don't think the same approach will work on the Sentinel though as that conf gets rewritten as the master/leader changes, etc.
I'd be interested to hear if anyone has a different experience or has another option that can work.
Expected behaviour
Deploy Spotahome Redis into my cluster with the more than default users created during deployment.
Actual behaviour
Redis is deployed correctly, but have only
default
andpinger
users.Steps to reproduce the behaviour
I used Spotahome Redis operator in my Kubernetes deployment. I have my own operator written in C#. It is deployed correctly in general.
I have prepared a secret that contains ACL commands that should add 3 users.
I mount it as a file that is accessible through Redis pod.
I set
aclfile
property incustomConfig
propertyPlease find below my main
.yaml
template for RedisFailover:Here is a RedisFailover Describe result:
And below there is screenshot from Redis pod shell console presenting:
aclfile
andslowlog-log-slower-than
aclfile
configInteresting point is that
slowlog-log-slower-than
sets correctly (9500 is not a default value), whileaclfile
is not.Environment
Redis version
redis_version:7.2.4
Kubectl version
Client Version: v1.29.1
Kustomize Version: v5.0.4-0.20230601165947-6ce0bf390ce3
Server Version: v1.24.11+vmware.1-fips.1
Question
How can I set up more users?
The text was updated successfully, but these errors were encountered: