Skip to content

Implement ability to connect to Sentinel with TLS #2139

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
wants to merge 1 commit into from
Closed

Implement ability to connect to Sentinel with TLS #2139

wants to merge 1 commit into from

Conversation

Talon876
Copy link
Contributor

This change allows connecting to sentinel via TLS. Additionally, you can specify if you want to connect to the redis master with TLS or not.

When connecting to sentinel with TLS, it will still broadcast the non-TLS ports for redis. For this scenario to work, toHostAndPort was modified to be protected so consumers can sub-class JedisSentinelPool and implement your own port mapping behavior.

@gkorland gkorland requested a review from sazzad16 March 22, 2020 12:38
sazzad16
sazzad16 suggested changes Mar 22, 2020
View reviewed changes
src/main/java/redis/clients/jedis/JedisSentinelPool.java
@@ -28,6 +32,12 @@
protected String sentinelPassword;
protected String sentinelClientName;

protected boolean isRedisSslEnabled;
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Master would be better that Redis. E.g. isMasterSslEnabled. Also, apply this change entire PR.

src/main/java/redis/clients/jedis/JedisSentinelPool.java
Comment on lines 105 to +111
public JedisSentinelPool(String masterName, Set<String> sentinels,
final GenericObjectPoolConfig poolConfig, final int connectionTimeout, final int soTimeout,
final String password, final int database, final String clientName,
final int sentinelConnectionTimeout, final int sentinelSoTimeout, final String sentinelPassword,
final String sentinelClientName) {
final String sentinelClientName, final boolean isRedisSslEnabled, final boolean isSentinelSslEnabled,
final SSLSocketFactory sslSocketFactory, final SSLParameters sslParameters,
final HostnameVerifier hostnameVerifier) {
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

DON'T change an existing constructor or public method. Create a new one.

src/main/java/redis/clients/jedis/JedisSentinelPool.java
}

public MasterListener(String masterName, String host, int port,
long subscribeRetryWaitTimeMillis) {
this(masterName, host, port);
long subscribeRetryWaitTimeMillis) {
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Suggested change
long subscribeRetryWaitTimeMillis) {
long subscribeRetryWaitTimeMillis) {

@MattiasLass MattiasLass mentioned this pull request Aug 24, 2020
Closed
@sazzad16 sazzad16 mentioned this pull request Jan 14, 2021
Closed
@sazzad16 sazzad16 mentioned this pull request Mar 7, 2021
Merged
@sazzad16 sazzad16 mentioned this pull request Mar 17, 2021
Merged
@sazzad16 sazzad16 added this to the 3.6.0 milestone Mar 18, 2021
sazzad16 added a commit that referenced this pull request Mar 18, 2021
@sazzad16
Support Sentinel with TLS (#2445)
6e9ba1b 
Thanks @Talon876 for the test instances in the Makefile (#2139)
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@sazzad16 sazzad16 sazzad16 requested changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
3.6.0
Development

Successfully merging this pull request may close these issues.
2 participants
@Talon876 @sazzad16