I have a RedisInsight instance running in my Kubernetes cluster. I exposed it using Kong Ingress. My issue is that when I display it it doesn´t have any mechanismn of authentication.
I already set the environemnt variables: RITRUSTEDORIGINS, RIAUTHPROMPT, RIAUTHTIMER. But this doesn´t give the level of security that I want. With this in place anyone can access my site and delete any databases without the need of authentication.
Redis insight maybe not provide any type of Auth option. Redis provides the auth and TLS options generally.
So if you are using the Kong gateway you can set use the plugin with Kong to setup the Auth on the URL of insight. There is tons of option available with Kong for Auth like API key, JWT, User/Pass etc.