mirror of
https://github.com/open-webui/open-webui.git
synced 2026-07-17 08:21:12 -05:00
[GH-ISSUE #17032] feat: Add REDIS_KEY_PREFIX to ALL redis calls #18144
Reference in New Issue
Block a user
Delete Branch "%!s()"
Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?
Originally created by @AlbertDoesProgramming on GitHub (Aug 29, 2025).
Original GitHub issue: https://github.com/open-webui/open-webui/issues/17032
Check Existing Issues
Problem Description
Following the change here issue-16979, I've tried to use the REDIS_KEY_PREFIX and ACLs to gate permissions for a given open-webui instance behind the key prefix. For example, the pseudo code below
The issue, is there are other places where redis is used in openwebui not covered by the previous change. For example, in tools.py:
and
These keys are not prefixed and so, openwebui will throw a permissions error like the following:
Desired Solution you'd like
Please ensure that these keys are also prefixed. I am not sure if there are any others which also may need prefixing - I have searched for all instances of Redis use in the codebase, and these seem to be the only ones left - but might be worth a sanity check.
Alternatives Considered
I can add this tool_servers key to my ACL but I don't think that's in the spirit of the previous changes. If there are any others I'd also have to keep adding these which again feels out of the spirit of the previous changes.
Additional Context
No response
@tjbck commented on GitHub (Aug 29, 2025):
PR welcome!