From 8a50768e1654b3d0c0b1b4c04f189161dd8960c6 Mon Sep 17 00:00:00 2001
From: Mike Reeves <mike.reeves@securityonionsolutions.com>
Date: Sat, 8 Aug 2020 00:19:55 -0400
Subject: [PATCH] redis binds

---
 salt/redis/etc/redis.conf | 2 +-
 salt/redis/init.sls       | 3 +++
 2 files changed, 4 insertions(+), 1 deletion(-)

diff --git a/salt/redis/etc/redis.conf b/salt/redis/etc/redis.conf
index aa8d69eb6..857656b87 100644
--- a/salt/redis/etc/redis.conf
+++ b/salt/redis/etc/redis.conf
@@ -87,7 +87,7 @@ bind 0.0.0.0
 # are explicitly listed using the "bind" directive.
 protected-mode no
 tls-cert-file /certs/redis.crt
-tls-key-file /certs/to/redis.key
+tls-key-file /certs/redis.key
 tls-ca-cert-file /certs/ca.crt
 tls-port 6380
 
diff --git a/salt/redis/init.sls b/salt/redis/init.sls
index 4864fc8a2..02a7db4e3 100644
--- a/salt/redis/init.sls
+++ b/salt/redis/init.sls
@@ -57,6 +57,9 @@ so-redis:
       - /opt/so/log/redis:/var/log/redis:rw
       - /opt/so/conf/redis/etc/redis.conf:/usr/local/etc/redis/redis.conf:ro
       - /opt/so/conf/redis/working:/redis:rw
+      - /etc/pki/redis.crt:/certs/redis.crt:ro
+      - /etc/pki/redis.key:/certs/redis.key:ro
+      - /etc/pki/ca.crt:/certs/ca.crt:ro
     - entrypoint: "redis-server /usr/local/etc/redis/redis.conf"
     - watch:
       - file: /opt/so/conf/redis/etc