Add support for secure Redis (TLS support)

docs/3-deployment/deployment-on-heroku.rst

@@ -14,6 +14,14 @@ Run these commands to deploy the project to Heroku:
 
     # Note: this is not a free plan
     heroku addons:create heroku-postgresql:essential-0
+
+    heroku addons:create heroku-redis:mini
+
+    # Enable Redis TLS support (required for new Heroku Redis instances)
+    heroku config:set REDIS_SSL=True
+    heroku config:set CELERY_BROKER_USE_SSL=True
+    heroku config:set CELERY_REDIS_BACKEND_USE_SSL=True
+
     # On Windows use double quotes for the time zone, e.g.
     # heroku pg:backups schedule --at "02:00 America/Los_Angeles" DATABASE_URL
     heroku pg:backups schedule --at '02:00 America/Los_Angeles' DATABASE_URL
@@ -58,6 +66,11 @@ Run these commands to deploy the project to Heroku:
 Notes
 -----
 
+Redis Configuration
++++++++++++++++++++
+
+Heroku Redis now requires TLS connections by default. The script above includes the necessary TLS configuration. These settings are optional and default to False, so they won't affect existing deployments unless explicitly enabled.
+
 Email Service
 +++++++++++++
 

{{cookiecutter.project_slug}}/config/settings/base.py

@@ -283,6 +283,9 @@
 }
 
 REDIS_URL = env("REDIS_URL", default="redis://{% if cookiecutter.use_docker == 'y' %}redis{%else%}localhost{% endif %}:6379/0")
+CELERY_BROKER_USE_SSL = env.bool("CELERY_BROKER_USE_SSL", default=False)
+CELERY_REDIS_BACKEND_USE_SSL = env.bool("CELERY_REDIS_BACKEND_USE_SSL", default=False)
+
 
 {% if cookiecutter.use_celery == 'y' -%}
 # Celery

{{cookiecutter.project_slug}}/config/settings/production.py

@@ -48,6 +48,11 @@
     },
 }
 
+REDIS_SSL = env.bool("REDIS_SSL", default=False)
+if REDIS_SSL:
+    CACHES["default"]["OPTIONS"]["CONNECTION_POOL_CLASS"] = "redis.connection.SSLConnection"
+    CACHES["default"]["OPTIONS"]["SSL_CERT_REQS"] = None
+
 # SECURITY
 # ------------------------------------------------------------------------------
 # https://docs.djangoproject.com/en/dev/ref/settings/#secure-proxy-ssl-header