# acl.conf

# 1. Disable the default user (recommended for production)
# This user is created by default with full access if no password is set.
user default off

# 2. Define a "root" or "admin" user with full access
user admin on >test +@all ~*

# 4. Define a "cache" user
# This user can read and write to keys starting with "cache:".
# This is great for application-specific keys.
user cache on >your_strong_webapp_password +@all ~cache:*

# 5. Define a "session" user
# This user can only get/set/del/expire keys related to caching.
user session on >your_strong_cache_password +GET +SET +SETEX +DEL +EXPIRE ~session:*

# 6. Define a "cache" user
# This user can read and write to keys starting with "cache:".
# This is great for application-specific keys.
user limiter on >your_strong_limiter_password +@all ~LIMITS:*

user pubsubuser on >strongpassword &printer:* +PUBLISH +SUBSCRIBE +PSUBSCRIBE +UNSUBSCRIBE +PUNSUBSCRIBE