Skip to content

Ensure Redis token authentication is enabled on the cluster

Description

Redis authentication tokens enable Redis to require a token (password) before allowing clients to execute commands, thereby improving data security.

Rationale

To help keep your data secure, enabling AUTH token provides a guard against unauthorized access of your data on the server.

Applies To

  • Databases

Tags

This rule is applied when the following tags are present:

Tag With Value
secureclouddb/provider aws
secureclouddb/service elasticache

Default Rule

/**
 * @param {Object} awsElasticsearchDomainStatus - Elasticsearch Domain Status
 * @returns {boolean} true if authTokenEnabled is true
 */
function validate(databaseSettings) {

    const success =
        databaseSettings.awsDatabaseInstance &&
        databaseSettings.awsDatabaseInstance.elasticacheCluster &&
        databaseSettings.awsDatabaseInstance.elasticacheCluster.authTokenEnabled

    return {
        success,
    }
}

// invoke
validate(databaseSettings);