Add client support for Redis over SSL
This merge request brings redis[s]:// support to Workhorse and Rails. This makes it possible for users to set up stunnel to provide encryption or use AWS ElasticCache.
This also deprecates the tcp:// scheme since it is no longer needed by Workhorse.
Trusted Redis SSL certificates should be managed by the standard Omnibus procedure: https://docs.gitlab.com/omnibus/settings/ssl.html#install-custom-public-certificates.
Note that Redis Sentinel does not yet support SSL. https://github.com/antirez/redis/pull/4855 may bring native support to Redis 6.0, but time will tell.
Closes https://gitlab.com/gitlab-org/gitlab-ce/issues/47702
Requires Workhorse MR: gitlab-workhorse!321 (merged)
To do:
-
Test Workhorse -
Test mail_room -
Test GitLab Rails -
Test gitlab-monitor
Edited by 🤖 GitLab Bot 🤖