From 8d3f027eb615e888717f69d5d99b5547382a22b7 Mon Sep 17 00:00:00 2001 From: Bitnami Bot Date: Thu, 11 Jan 2024 17:15:29 +0100 Subject: [PATCH] [bitnami/redis-sentinel] Release 6.2.14-debian-11-r4 (#54683) Signed-off-by: Bitnami Containers --- .../redis-sentinel/6.2/debian-11/Dockerfile | 4 +- bitnami/redis-sentinel/README.md | 65 +++++++++++++------ 2 files changed, 46 insertions(+), 23 deletions(-) diff --git a/bitnami/redis-sentinel/6.2/debian-11/Dockerfile b/bitnami/redis-sentinel/6.2/debian-11/Dockerfile index ca6c4b959f2a..8e9258da3b2c 100644 --- a/bitnami/redis-sentinel/6.2/debian-11/Dockerfile +++ b/bitnami/redis-sentinel/6.2/debian-11/Dockerfile @@ -7,10 +7,10 @@ ARG TARGETARCH LABEL com.vmware.cp.artifact.flavor="sha256:1e1b4657a77f0d47e9220f0c37b9bf7802581b93214fff7d1bd2364c8bf22e8e" \ org.opencontainers.image.base.name="docker.io/bitnami/minideb:bullseye" \ - org.opencontainers.image.created="2024-01-08T21:05:47Z" \ + org.opencontainers.image.created="2024-01-11T15:48:54Z" \ org.opencontainers.image.description="Application packaged by VMware, Inc" \ org.opencontainers.image.licenses="Apache-2.0" \ - org.opencontainers.image.ref.name="6.2.14-debian-11-r3" \ + org.opencontainers.image.ref.name="6.2.14-debian-11-r4" \ org.opencontainers.image.title="redis-sentinel" \ org.opencontainers.image.vendor="VMware, Inc." \ org.opencontainers.image.version="6.2.14" diff --git a/bitnami/redis-sentinel/README.md b/bitnami/redis-sentinel/README.md index 29d862c0c307..eb8a78db2428 100644 --- a/bitnami/redis-sentinel/README.md +++ b/bitnami/redis-sentinel/README.md @@ -196,28 +196,51 @@ docker-compose up --scale redis-sentinel=3 -d ### Environment variables -The Redis(R) Sentinel instance can be customized by specifying environment variables on the first run. The following environment values are provided to customize Redis(R) Sentinel: +| Name | Description | Default Value | Can be set | +|---------------------------------------------------|------------------------------------------------------------------------|------------------------------------------------|------------| +| `$REDIS_SENTINEL_VOLUME_DIR` | Persistence base directory | `/bitnami/redis-sentinel` | | +| `$REDIS_SENTINEL_BASE_DIR` | Redis installation directory | `${BITNAMI_ROOT_DIR}/redis-sentinel` | | +| `$REDIS_SENTINEL_CONF_DIR` | Redis configuration directory | `${REDIS_SENTINEL_BASE_DIR}/etc` | | +| `$REDIS_SENTINEL_DATA_DIR` | Redis data directory | `${REDIS_SENTINEL_VOLUME_DIR}/data` | ✓ | +| `$REDIS_SENTINEL_MOUNTED_CONF_DIR` | Redis mounted configuration directory | `${REDIS_SENTINEL_BASE_DIR}/mounted-etc` | | +| `$REDIS_SENTINEL_CONF_FILE` | Redis configuration file | `${REDIS_SENTINEL_CONF_DIR}/sentinel.conf` | | +| `$REDIS_SENTINEL_LOG_DIR` | Redis logs directory | `${REDIS_SENTINEL_BASE_DIR}/logs` | | +| `$REDIS_SENTINEL_LOG_FILE` | Redis log file | `${REDIS_SENTINEL_LOG_DIR}/redis-sentinel.log` | | +| `$REDIS_SENTINEL_TMP_DIR` | Redis temporary directory | `${REDIS_SENTINEL_BASE_DIR}/tmp` | | +| `$REDIS_SENTINEL_PID_FILE` | Redis PID file | `${REDIS_SENTINEL_TMP_DIR}/redis-sentinel.pid` | | +| `$REDIS_SENTINEL_BIN_DIR` | Redis executables directory | `${REDIS_SENTINEL_BASE_DIR}/bin` | | +| `$REDIS_SENTINEL_DAEMON_USER` | Redis system user | `redis` | | +| `$REDIS_SENTINEL_DAEMON_GROUP` | Redis system group | `redis` | | +| `$REDIS_SENTINEL_DISABLE_COMMANDS` | Commands to disable in Redis | | ✓ | +| `$REDIS_SENTINEL_DATABASE` | Default Redis database | `redis` | ✓ | +| `$REDIS_SENTINEL_AOF_ENABLED` | Enable AOF | `yes` | ✓ | +| `$REDIS_SENTINEL_HOST` | Redis Sentinel host | | ✓ | +| `$REDIS_SENTINEL_MASTER_NAME` | Redis Sentinel master name | | ✓ | +| `$REDIS_SENTINEL_DEFAULT_PORT_NUMBER` | Redis Sentinel host port | `26379` | | +| `$REDIS_SENTINEL_PORT_NUMBER` | Redis Sentinel host port | `$REDIS_SENTINEL_DEFAULT_PORT_NUMBER` | ✓ | +| `$REDIS_SENTINEL_QUORUM` | Minimum number of sentinel nodes in order to reach a failover decision | `2` | ✓ | +| `$REDIS_SENTINEL_DOWN_AFTER_MILLISECONDS` | Time (in milliseconds) to consider a node to be down | `60000` | ✓ | +| `$REDIS_SENTINEL_FAILOVER_TIMEOUT` | Specifies the failover timeout (in milliseconds) | `180000` | ✓ | +| `$REDIS_SENTINEL_MASTER_REBOOT_DOWN_AFTER_PERIOD` | Specifies the timeout (in milliseconds) for rebooting a master | `0` | ✓ | +| `$REDIS_SENTINEL_RESOLVE_HOSTNAMES` | Enables hostnames support | `yes` | ✓ | +| `$REDIS_SENTINEL_ANNOUNCE_HOSTNAMES` | Announce hostnames | `no` | ✓ | +| `$ALLOW_EMPTY_PASSWORD` | Allow password-less access | `no` | ✓ | +| `$REDIS_SENTINEL_PASSWORD` | Password for Redis | | ✓ | +| `$REDIS_MASTER_USER` | Redis master node username | | ✓ | +| `$REDIS_MASTER_PASSWORD` | Redis master node password | | ✓ | +| `$REDIS_SENTINEL_ANNOUNCE_IP` | IP address used to gossip its presence | | ✓ | +| `$REDIS_SENTINEL_ANNOUNCE_PORT` | Port used to gossip its presence | | ✓ | +| `$REDIS_SENTINEL_TLS_ENABLED` | Enable TLS for Redis authentication | `no` | ✓ | +| `$REDIS_SENTINEL_TLS_PORT_NUMBER` | Redis TLS port (requires REDIS_SENTINEL_ENABLE_TLS=yes) | `26379` | ✓ | +| `$REDIS_SENTINEL_TLS_CERT_FILE` | Redis TLS certificate file | | ✓ | +| `$REDIS_SENTINEL_TLS_KEY_FILE` | Redis TLS key file | | ✓ | +| `$REDIS_SENTINEL_TLS_CA_FILE` | Redis TLS CA file | | ✓ | +| `$REDIS_SENTINEL_TLS_DH_PARAMS_FILE` | Redis TLS DH parameter file | | ✓ | +| `$REDIS_SENTINEL_TLS_AUTH_CLIENTS` | Enable Redis TLS client authentication | `yes` | ✓ | +| `$REDIS_MASTER_HOST` | Redis master host (used by slaves) | `redis` | ✓ | +| `$REDIS_MASTER_PORT_NUMBER` | Redis master host port (used by slaves) | `6379` | ✓ | +| `$REDIS_MASTER_SET` | Redis sentinel master set | `mymaster` | ✓ | -* `REDIS_MASTER_HOST`: Host of the Redis(R) master to monitor. Default: **redis**. -* `REDIS_MASTER_PORT_NUMBER`: Port of the Redis(R) master to monitor. Default: **6379**. -* `REDIS_MASTER_SET`: Name of the set of Redis(R) instances to monitor. Default: **mymaster**. -* `REDIS_MASTER_PASSWORD`: Password to authenticate with the master. No defaults. As an alternative, you can mount a file with the password and set the `REDIS_MASTER_PASSWORD_FILE` variable. -* `REDIS_MASTER_USER`: Username to authenticate with when ACL is enabled for the master. No defaults. This is available only for Redis(R) 6 or higher. If not specified, Redis(R) Sentinel will try to authenticate with just the password (using `sentinel auth-pass `). -* `REDIS_SENTINEL_PORT_NUMBER`: Redis(R) Sentinel port. Default: **26379**. -* `REDIS_SENTINEL_QUORUM`: Number of Sentinels that need to agree about the fact the master is not reachable. Default: **2**. -* `REDIS_SENTINEL_PASSWORD`: Password to authenticate with this sentinel and to authenticate to other sentinels. No defaults. Needs to be identical on all sentinels. As an alternative, you can mount a file with the password and set the `REDIS_SENTINEL_PASSWORD_FILE` variable. -* `REDIS_SENTINEL_DOWN_AFTER_MILLISECONDS`: Number of milliseconds before master is declared down. Default: **60000**. -* `REDIS_SENTINEL_FAILOVER_TIMEOUT`: Specifies the failover timeout in milliseconds. Default: **180000**. -* `REDIS_SENTINEL_RESOLVE_HOSTNAMES`: Enables sentinel hostnames support. This is available only for Redis(R) 6.2 or higher. Default: **no**. -* `REDIS_SENTINEL_TLS_ENABLED`: Whether to enable TLS for traffic or not. Default: **no**. -* `REDIS_SENTINEL_TLS_PORT_NUMBER`: Port used for TLS secure traffic. Default: **26379**. -* `REDIS_SENTINEL_TLS_CERT_FILE`: File containing the certificate file for the TLS traffic. No defaults. -* `REDIS_SENTINEL_TLS_KEY_FILE`: File containing the key for certificate. No defaults. -* `REDIS_SENTINEL_TLS_CA_FILE`: File containing the CA of the certificate. No defaults. -* `REDIS_SENTINEL_TLS_DH_PARAMS_FILE`: File containing DH params (in order to support DH based ciphers). No defaults. -* `REDIS_SENTINEL_TLS_AUTH_CLIENTS`: Whether to require clients to authenticate or not. Default: **yes**. -* `REDIS_SENTINEL_ANNOUNCE_IP`: Use the specified IP address in the HELLO messages used to gossip its presence. Default: **auto-detected local address**. -* `REDIS_SENTINEL_ANNOUNCE_PORT`: Use the specified port in the HELLO messages used to gossip its presence. Default: **port specified in `REDIS_SENTINEL_PORT_NUMBER`**. ### Securing Redis(R) Sentinel traffic