https://github.com/nunnsy/redis-otfa
Redis on-the-fly authentication of new and current users
https://github.com/nunnsy/redis-otfa
authentication python redis
Last synced: 2 months ago
JSON representation
Redis on-the-fly authentication of new and current users
- Host: GitHub
- URL: https://github.com/nunnsy/redis-otfa
- Owner: nunnsy
- Created: 2024-10-14T15:28:23.000Z (over 1 year ago)
- Default Branch: master
- Last Pushed: 2024-10-23T13:42:06.000Z (over 1 year ago)
- Last Synced: 2026-04-30T09:38:33.443Z (2 months ago)
- Topics: authentication, python, redis
- Language: Python
- Homepage:
- Size: 8.79 KB
- Stars: 0
- Watchers: 1
- Forks: 0
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
Awesome Lists containing this project
README
# Redis OTFA (on-the-fly auth)
Proof of concept that a restricted default user could send a request to add a user over a stream.
Planned use is an ephemeral server whereby Redis is used as the transaction layer, anyone is allowed to join, but we want to mitigate spoofing another user's commands.
At minimum, the `redis.conf` associated with the instance must contain a definition for an administrator, as well as restrictive commands for the default user:
```
user admin allcommands allkeys allchannels on >admin
user default reset +SISMEMBER %R~otfa_users +XADD %W~otfa_request on nopass
```