search

appsmithorg / appsmith

Platform to build admin panels, internal tools, and dashboards. Integrates with 25+ databases and any API.
https://www.appsmith.com
Apache License 2.0
34.64k stars 3.74k forks source link

[Bug]: [Helm] Setting Redis authentication doesn't set the depending redis chart values #26556

Open rhuanbarreto opened 1 year ago

rhuanbarreto commented 1 year ago

Is there an existing issue for this?

Description

Having no password as a default redis authentication is a critical security flaw in the Appsmith Business Helm Chart. So we need to change it to something safer.

When I deploy the Appsmith Business Helm Chart setting the value redis.auth.enabled: true and redis.auth.password, this is not propagated to the Appsmith instance in the ConfigMap, and the deployed Redis doesn't receive this configuration, which causes the deployment to fail.

Steps To Reproduce

  1. Deploy the Appsmith Business Helm Chart setting the value redis.auth.enabled: true and redis.auth.password
  2. Deployment will fail

Public Sample App

No response

Environment

Production

Issue video log

No response

Version

Self Hosted Business Helm Chart Version 3.0.4

rhuanbarreto commented 1 year ago

Hi @pratapaprasanna, any updates? Do you have any timeframe for this fix to come? This is a critical security issue.

pratapaprasanna commented 9 months ago

We are working on this and we shall be coming on fix for the same soon.