Agamy MahmoudAgamy
MahmoudAgamy
/ redis.rb
Created
September 22, 2019 15:56
— forked from mstruve/redis.rb
Redis Readonly Console
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| if ENV['REDIS_ACCESS_MODE'] == 'readonly' | |
| class Redis | |
| class Client | |
| WRITE_COMMANDS = ::Rails.cache.data.command.map { |a| a[0] if a[2].include?('write') }.compact.to_set.freeze | |
| def process(commands) | |
| if commands.flatten.any? { |c| WRITE_COMMANDS.include?(c.to_s) } | |
| raise NotImplementedError, "REDIS_ACCESS_MODE is set to 'readonly', disallowing writes" | |
| end |
MahmoudAgamy
/ redis.rb
Created
September 22, 2019 15:56
— forked from joshuap/redis.rb
Disable dangerous Redis commands in Ruby
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # config/initializers/redis.rb | |
| require 'redis' | |
| # Disables the `flushdb` and `flushall` commands. | |
| class Redis | |
| module DangerousCommands | |
| def flushdb | |
| raise 'This is EXTREMELY DANGEROUS! If you really want to EMPTY THE ENTIRE DATABASE, do it from `redis-cli`.' | |
| # You could call `super` here if you want to allow access in some circumstances. | |
| end |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # config/initializers/redis.rb | |
| require 'redis' | |
| # Disables the `flushdb` and `flushall` commands. | |
| class Redis | |
| module DangerousCommands | |
| def flushdb | |
| raise 'This is EXTREMELY DANGEROUS! If you really want to EMPTY THE ENTIRE DATABASE, do it from `redis-cli`.' | |
| # You could call `super` here if you want to allow access in some circumstances. | |
| end |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| if ENV['REDIS_ACCESS_MODE'] == 'readonly' | |
| class Redis | |
| class Client | |
| WRITE_COMMANDS = ::Rails.cache.data.command.map { |a| a[0] if a[2].include?('write') }.compact.to_set.freeze | |
| def process(commands) | |
| if commands.flatten.any? { |c| WRITE_COMMANDS.include?(c.to_s) } | |
| raise NotImplementedError, "REDIS_ACCESS_MODE is set to 'readonly', disallowing writes" | |
| end |