[Cache] Redis Sentinel - Allow having 2 different auth in config for master & sentinel #61783

WedgeSama · Sep 18, 2025

Q	A
Branch?	6.4
Bug fix?	yes
New feature?	no
Deprecations?	no
Issues	Fix #58727
License	MIT

Many time, same auth (like password) is set on both Redis master and Sentinel, but you may want to not use the same auth for both of them.

Currently, using DNS, you can only set one and only one auth for both.

This PR allow to set a different auth for sentinel while keeping backward compatibility for previous DSN config.

Problematical usage

REDIS_DSN=redis:masterPassword@?host[redis_sentinel:26379]&auth=sentinelPassword&redis_sentinel=mymaster

Add auth option will override the password masterPassword.

Fixed usage

REDIS_DSN=redis:masterPassword@?host[redis_sentinel:26379]&redis_sentinel_auth=sentinelPassword&redis_sentinel=mymaster

# With both `auth` and `redis_sentinel_auth`
REDIS_DSN=redis:masterPassword@?host[redis_sentinel:26379]&auth=anyThingHere&redis_sentinel_auth=sentinelPassword&redis_sentinel=mymaster

# Can still be just `auth` -> will work same as before (fix do nothing in this case)
REDIS_DSN=redis:masterPassword@?host[redis_sentinel:26379]&auth=masterPassword&redis_sentinel=mymaster

redis_sentinel_auth option will be prioritized over auth option. That way, after update, an existing DSN will still work as it was before.

…master & sentinel Many time, same auth (like password) is set on both Redis master and Sentinel, but you may want to not use the same auth for both of them. Currently, using DNS, you can only set one and only one auth for both. This PR allow to set a different auth for sentinel while keeping backward compatibility for previous DSN config.

nicolas-grekas · Sep 22, 2025

As it is currently, the PR is a new feature of course.
I had a look at the current code, related to $auth and $params['auth'] and it looks like we have two ways to deal with auth, and that's a bit inconsistent.

Looking closer at sentinels, it looks like we should support having a different auth setting per-sentinel.
The DSN would then look like ?host[foo:123][auth]=abc123

This concern should also apply to clusters I guess.
We should also ensure the same DSN work with Predis.

About the $auth / $params['auth'] mismatch, we might fix it by adding $params['auth'] ??= $auth quite early in the method.

Up to digg these ideas?

WedgeSama · Sep 26, 2025

Yes @nicolas-grekas , I can digg them 😉

carsonbot added Status: Needs Review Bug Cache labels Sep 18, 2025

carsonbot added this to the 6.4 milestone Sep 18, 2025

WedgeSama force-pushed the fix/redis-adapter-with-sentinel-auth branch from 4b0c391 to dbdeb0b Compare September 18, 2025 09:31

nicolas-grekas added Status: Needs Work and removed Status: Needs Review labels Sep 22, 2025

xabbuh mentioned this pull request Oct 9, 2025

[Cache] Redis server redis:6379 went away #58727

Open

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Uh oh!

[Cache] Redis Sentinel - Allow having 2 different auth in config for master & sentinel #61783

[Cache] Redis Sentinel - Allow having 2 different auth in config for master & sentinel #61783

WedgeSama commented Sep 18, 2025

Uh oh!

nicolas-grekas commented Sep 22, 2025

Uh oh!

WedgeSama commented Sep 26, 2025

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

3 participants

Search code, repositories, users, issues, pull requests...

Uh oh!

[Cache] Redis Sentinel - Allow having 2 different auth in config for master & sentinel #61783

Are you sure you want to change the base?

[Cache] Redis Sentinel - Allow having 2 different auth in config for master & sentinel #61783

Conversation

WedgeSama commented Sep 18, 2025

Uh oh!

nicolas-grekas commented Sep 22, 2025

Uh oh!

WedgeSama commented Sep 26, 2025

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

3 participants