4 лет назад · f0a3b7754e
--- a/apps/emqx_auth_http/include/emqx_auth_http.hrl
+++ b/apps/emqx_auth_http/include/emqx_auth_http.hrl
@@ -7,17 +7,8 @@
 
				         ignore = 'client.auth.ignore'
			
 
				     }).
			
 
				 
			
 
				--record(acl_metrics, {
			
 
				-        allow = 'client.acl.allow',
			
 
				-        deny = 'client.acl.deny',
			
 
				-        ignore = 'client.acl.ignore'
			
 
				-    }).
			
 
				-
			
 
				 -define(METRICS(Type), tl(tuple_to_list(#Type{}))).
			
 
				 -define(METRICS(Type, K), #Type{}#Type.K).
			
 
				 
			
 
				 -define(AUTH_METRICS, ?METRICS(auth_metrics)).
			
 
				 -define(AUTH_METRICS(K), ?METRICS(auth_metrics, K)).
			
 
				-
			
 
				--define(ACL_METRICS, ?METRICS(acl_metrics)).
			
 
				--define(ACL_METRICS(K), ?METRICS(acl_metrics, K)).
			
--- a/apps/emqx_auth_http/src/emqx_acl_http.erl
+++ b/apps/emqx_auth_http/src/emqx_acl_http.erl
@@ -29,26 +29,17 @@
 
				         ]).
			
 
				 
			
 
				 %% ACL callbacks
			
 
				--export([ register_metrics/0
			
 
				-        , check_acl/5
			
 
				+-export([ check_acl/5
			
 
				         , description/0
			
 
				         ]).
			
 
				 
			
 
				--spec(register_metrics() -> ok).
			
 
				-register_metrics() ->
			
 
				-    lists:foreach(fun emqx_metrics:ensure/1, ?ACL_METRICS).
			
 
				-
			
 
				 %%--------------------------------------------------------------------
			
 
				 %% ACL callbacks
			
 
				 %%--------------------------------------------------------------------
			
 
				 
			
 
				-check_acl(ClientInfo, PubSub, Topic, AclResult, Params) ->
			
 
				-    return_with(fun inc_metrics/1,
			
 
				-                do_check_acl(ClientInfo, PubSub, Topic, AclResult, Params)).
			
 
				-
			
 
				-do_check_acl(#{username := <<$$, _/binary>>}, _PubSub, _Topic, _AclResult, _Params) ->
			
 
				+check_acl(#{username := <<$$, _/binary>>}, _PubSub, _Topic, _AclResult, _Params) ->
			
 
				     ok;
			
 
				-do_check_acl(ClientInfo, PubSub, Topic, _AclResult, #{acl := ACLParams = #{path := Path}}) ->
			
 
				+check_acl(ClientInfo, PubSub, Topic, _AclResult, #{acl := ACLParams = #{path := Path}}) ->
			
 
				     ClientInfo1 = ClientInfo#{access => access(PubSub), topic => Topic},
			
 
				     case check_acl_request(ACLParams, ClientInfo1) of
			
 
				         {ok, 200, <<"ignore">>} -> ok;
			
@@ -65,16 +56,6 @@ description() -> "ACL with HTTP API".
 
				 %% Internal functions
			
 
				 %%--------------------------------------------------------------------
			
 
				 
			
 
				-inc_metrics(ok) ->
			
 
				-    emqx_metrics:inc(?ACL_METRICS(ignore));
			
 
				-inc_metrics({stop, allow}) ->
			
 
				-    emqx_metrics:inc(?ACL_METRICS(allow));
			
 
				-inc_metrics({stop, deny}) ->
			
 
				-    emqx_metrics:inc(?ACL_METRICS(deny)).
			
 
				-
			
 
				-return_with(Fun, Result) ->
			
 
				-    Fun(Result), Result.
			
 
				-
			
 
				 check_acl_request(#{pool_name := PoolName,
			
 
				                     path := Path,
			
 
				                     method := Method,
			
--- a/apps/emqx_auth_http/src/emqx_auth_http_app.erl
+++ b/apps/emqx_auth_http/src/emqx_auth_http_app.erl
@@ -130,7 +130,6 @@ load_hooks() ->
 
				     case application:get_env(?APP, acl_req) of
			
 
				         undefined -> ok;
			
 
				         {ok, ACLReq} ->
			
 
				-            ok = emqx_acl_http:register_metrics(),
			
 
				             PoolOpts2 = proplists:get_value(pool_opts, ACLReq),
			
 
				             PoolName2 = proplists:get_value(pool_name, ACLReq),
			
 
				             {ok, _} = ehttpc_sup:start_pool(PoolName2, PoolOpts2),
			
--- a/apps/emqx_auth_ldap/include/emqx_auth_ldap.hrl
+++ b/apps/emqx_auth_ldap/include/emqx_auth_ldap.hrl
@@ -7,17 +7,8 @@
 
				         ignore = 'client.auth.ignore'
			
 
				     }).
			
 
				 
			
 
				--record(acl_metrics, {
			
 
				-        allow = 'client.acl.allow',
			
 
				-        deny = 'client.acl.deny',
			
 
				-        ignore = 'client.acl.ignore'
			
 
				-    }).
			
 
				-
			
 
				 -define(METRICS(Type), tl(tuple_to_list(#Type{}))).
			
 
				 -define(METRICS(Type, K), #Type{}#Type.K).
			
 
				 
			
 
				 -define(AUTH_METRICS, ?METRICS(auth_metrics)).
			
 
				 -define(AUTH_METRICS(K), ?METRICS(auth_metrics, K)).
			
 
				-
			
 
				--define(ACL_METRICS, ?METRICS(acl_metrics)).
			
 
				--define(ACL_METRICS(K), ?METRICS(acl_metrics, K)).
			
--- a/apps/emqx_auth_ldap/src/emqx_acl_ldap.erl
+++ b/apps/emqx_auth_ldap/src/emqx_acl_ldap.erl
@@ -22,20 +22,15 @@
 
				 -include_lib("eldap/include/eldap.hrl").
			
 
				 -include_lib("emqx/include/logger.hrl").
			
 
				 
			
 
				--export([ register_metrics/0
			
 
				-        , check_acl/5
			
 
				+-export([ check_acl/5
			
 
				         , description/0
			
 
				         ]).
			
 
				 
			
 
				--spec(register_metrics() -> ok).
			
 
				-register_metrics() ->
			
 
				-    lists:foreach(fun emqx_metrics:ensure/1, ?ACL_METRICS).
			
 
				-
			
 
				 check_acl(ClientInfo, PubSub, Topic, NoMatchAction, State) ->
			
 
				     case do_check_acl(ClientInfo, PubSub, Topic, NoMatchAction, State) of
			
 
				-        ok -> emqx_metrics:inc(?ACL_METRICS(ignore)), ok;
			
 
				-        {stop, allow} -> emqx_metrics:inc(?ACL_METRICS(allow)), {stop, allow};
			
 
				-        {stop, deny} -> emqx_metrics:inc(?ACL_METRICS(deny)), {stop, deny}
			
 
				+        ok -> ok;
			
 
				+        {stop, allow} -> {stop, allow};
			
 
				+        {stop, deny} -> {stop, deny}
			
 
				     end.
			
 
				 
			
 
				 do_check_acl(#{username := <<$$, _/binary>>}, _PubSub, _Topic, _NoMatchAction, _State) ->
			
--- a/apps/emqx_auth_ldap/src/emqx_auth_ldap_app.erl
+++ b/apps/emqx_auth_ldap/src/emqx_auth_ldap_app.erl
@@ -54,7 +54,6 @@ load_auth_hook(DeviceDn) ->
 
				     emqx:hook('client.authenticate', fun emqx_auth_ldap:check/3, [Params#{pool => ?APP}]).
			
 
				 
			
 
				 load_acl_hook(DeviceDn) ->
			
 
				-    ok = emqx_acl_ldap:register_metrics(),
			
 
				     Params = maps:from_list(DeviceDn),
			
 
				     emqx:hook('client.check_acl', fun emqx_acl_ldap:check_acl/5 , [Params#{pool => ?APP}]).
			
 
				 
			
--- a/apps/emqx_auth_mnesia/include/emqx_auth_mnesia.hrl
+++ b/apps/emqx_auth_mnesia/include/emqx_auth_mnesia.hrl
@@ -48,17 +48,8 @@
 
				         ignore = 'client.auth.ignore'
			
 
				     }).
			
 
				 
			
 
				--record(acl_metrics, {
			
 
				-        allow = 'client.acl.allow',
			
 
				-        deny = 'client.acl.deny',
			
 
				-        ignore = 'client.acl.ignore'
			
 
				-    }).
			
 
				-
			
 
				 -define(METRICS(Type), tl(tuple_to_list(#Type{}))).
			
 
				 -define(METRICS(Type, K), #Type{}#Type.K).
			
 
				 
			
 
				 -define(AUTH_METRICS, ?METRICS(auth_metrics)).
			
 
				 -define(AUTH_METRICS(K), ?METRICS(auth_metrics, K)).
			
 
				-
			
 
				--define(ACL_METRICS, ?METRICS(acl_metrics)).
			
 
				--define(ACL_METRICS(K), ?METRICS(acl_metrics, K)).
			
--- a/apps/emqx_auth_mnesia/src/emqx_acl_mnesia.erl
+++ b/apps/emqx_auth_mnesia/src/emqx_acl_mnesia.erl
@@ -20,7 +20,6 @@
 
				 
			
 
				 %% ACL Callbacks
			
 
				 -export([ init/0
			
 
				-        , register_metrics/0
			
 
				         , check_acl/5
			
 
				         , description/0
			
 
				        ]).
			
@@ -29,10 +28,6 @@ init() ->
 
				     ok = emqx_acl_mnesia_db:create_table(),
			
 
				     ok = emqx_acl_mnesia_db:create_table2().
			
 
				 
			
 
				--spec(register_metrics() -> ok).
			
 
				-register_metrics() ->
			
 
				-    lists:foreach(fun emqx_metrics:ensure/1, ?ACL_METRICS).
			
 
				-
			
 
				 check_acl(ClientInfo = #{ clientid := Clientid }, PubSub, Topic, _NoMatchAction, _Params) ->
			
 
				     Username = maps:get(username, ClientInfo, undefined),
			
 
				 
			
@@ -48,13 +43,10 @@ check_acl(ClientInfo = #{ clientid := Clientid }, PubSub, Topic, _NoMatchAction,
 
				 
			
 
				     case match(ClientInfo, PubSub, Topic, Acls) of
			
 
				         allow ->
			
 
				-            emqx_metrics:inc(?ACL_METRICS(allow)),
			
 
				             {stop, allow};
			
 
				         deny ->
			
 
				-            emqx_metrics:inc(?ACL_METRICS(deny)),
			
 
				             {stop, deny};
			
 
				         _ ->
			
 
				-            emqx_metrics:inc(?ACL_METRICS(ignore)),
			
 
				             ok
			
 
				     end.
			
 
				 
			
--- a/apps/emqx_auth_mnesia/src/emqx_auth_mnesia_app.erl
+++ b/apps/emqx_auth_mnesia/src/emqx_auth_mnesia_app.erl
@@ -64,5 +64,4 @@ load_auth_hook() ->
 
				 
			
 
				 load_acl_hook() ->
			
 
				     ok = emqx_acl_mnesia:init(),
			
 
				-    ok = emqx_acl_mnesia:register_metrics(),
			
 
				     emqx:hook('client.check_acl', fun emqx_acl_mnesia:check_acl/5, [#{}]).
			
--- a/apps/emqx_auth_mongo/include/emqx_auth_mongo.hrl
+++ b/apps/emqx_auth_mongo/include/emqx_auth_mongo.hrl
@@ -21,17 +21,8 @@
 
				         ignore  = 'client.auth.ignore'
			
 
				     }).
			
 
				 
			
 
				--record(acl_metrics, {
			
 
				-        allow = 'client.acl.allow',
			
 
				-        deny = 'client.acl.deny',
			
 
				-        ignore = 'client.acl.ignore'
			
 
				-    }).
			
 
				-
			
 
				 -define(METRICS(Type), tl(tuple_to_list(#Type{}))).
			
 
				 -define(METRICS(Type, K), #Type{}#Type.K).
			
 
				 
			
 
				 -define(AUTH_METRICS, ?METRICS(auth_metrics)).
			
 
				 -define(AUTH_METRICS(K), ?METRICS(auth_metrics, K)).
			
 
				-
			
 
				--define(ACL_METRICS, ?METRICS(acl_metrics)).
			
 
				--define(ACL_METRICS(K), ?METRICS(acl_metrics, K)).
			
--- a/apps/emqx_auth_mongo/src/emqx_acl_mongo.erl
+++ b/apps/emqx_auth_mongo/src/emqx_acl_mongo.erl
@@ -21,17 +21,12 @@
 
				 -include_lib("emqx/include/logger.hrl").
			
 
				 
			
 
				 %% ACL callbacks
			
 
				--export([ register_metrics/0
			
 
				-        , check_acl/5
			
 
				+-export([ check_acl/5
			
 
				         , description/0
			
 
				         ]).
			
 
				--spec(register_metrics() -> ok).
			
 
				-register_metrics() ->
			
 
				-    lists:foreach(fun emqx_metrics:ensure/1, ?ACL_METRICS).
			
 
				 
			
 
				 check_acl(#{username := <<$$, _/binary>>}, _PubSub, _Topic, _AclResult, _State) ->
			
 
				     ok;
			
 
				-
			
 
				 check_acl(ClientInfo, PubSub, Topic, _AclResult, Env = #{aclquery := AclQuery}) ->
			
 
				     #aclquery{collection = Coll, selector = SelectorList} = AclQuery,
			
 
				     Pool = maps:get(pool, Env, ?APP),
			
@@ -43,20 +38,16 @@ check_acl(ClientInfo, PubSub, Topic, _AclResult, Env = #{aclquery := AclQuery})
 
				         [] -> ok;
			
 
				         Rows ->
			
 
				             try match(ClientInfo, Topic, topics(PubSub, Rows)) of
			
 
				-                matched -> emqx_metrics:inc(?ACL_METRICS(allow)),
			
 
				-                           {stop, allow};
			
 
				-                nomatch -> emqx_metrics:inc(?ACL_METRICS(deny)),
			
 
				-                           {stop, deny}
			
 
				+                matched -> {stop, allow};
			
 
				+                nomatch -> {stop, deny}
			
 
				             catch
			
 
				                 _Err:Reason->
			
 
				                     ?LOG(error, "[MongoDB] Check mongo ~p ACL failed, got ACL config: ~p, error: :~p",
			
 
				                                 [PubSub, Rows, Reason]),
			
 
				-                    emqx_metrics:inc(?ACL_METRICS(ignore)),
			
 
				                     ignore
			
 
				             end
			
 
				     end.
			
 
				 
			
 
				-
			
 
				 match(_ClientInfo, _Topic, []) ->
			
 
				     nomatch;
			
 
				 match(ClientInfo, Topic, [TopicFilter|More]) ->
			
--- a/apps/emqx_auth_mongo/src/emqx_auth_mongo_app.erl
+++ b/apps/emqx_auth_mongo/src/emqx_auth_mongo_app.erl
@@ -55,7 +55,6 @@ reg_authmod(AuthQuery) ->
 
				                    [#{authquery => AuthQuery, superquery => SuperQuery, pool => ?APP}]).
			
 
				 
			
 
				 reg_aclmod(AclQuery) ->
			
 
				-    emqx_acl_mongo:register_metrics(),
			
 
				     ok = emqx:hook('client.check_acl', fun emqx_acl_mongo:check_acl/5, [#{aclquery => AclQuery, pool => ?APP}]).
			
 
				 
			
 
				 %%--------------------------------------------------------------------
			
--- a/apps/emqx_auth_mysql/include/emqx_auth_mysql.hrl
+++ b/apps/emqx_auth_mysql/include/emqx_auth_mysql.hrl
@@ -7,17 +7,8 @@
 
				         ignore = 'client.auth.ignore'
			
 
				     }).
			
 
				 
			
 
				--record(acl_metrics, {
			
 
				-        allow = 'client.acl.allow',
			
 
				-        deny = 'client.acl.deny',
			
 
				-        ignore = 'client.acl.ignore'
			
 
				-    }).
			
 
				-
			
 
				 -define(METRICS(Type), tl(tuple_to_list(#Type{}))).
			
 
				 -define(METRICS(Type, K), #Type{}#Type.K).
			
 
				 
			
 
				 -define(AUTH_METRICS, ?METRICS(auth_metrics)).
			
 
				 -define(AUTH_METRICS(K), ?METRICS(auth_metrics, K)).
			
 
				-
			
 
				--define(ACL_METRICS, ?METRICS(acl_metrics)).
			
 
				--define(ACL_METRICS(K), ?METRICS(acl_metrics, K)).
			
--- a/apps/emqx_auth_mysql/src/emqx_acl_mysql.erl
+++ b/apps/emqx_auth_mysql/src/emqx_acl_mysql.erl
@@ -22,20 +22,15 @@
 
				 -include_lib("emqx/include/logger.hrl").
			
 
				 
			
 
				 %% ACL Callbacks
			
 
				--export([ register_metrics/0
			
 
				-        , check_acl/5
			
 
				+-export([ check_acl/5
			
 
				         , description/0
			
 
				         ]).
			
 
				 
			
 
				--spec(register_metrics() -> ok).
			
 
				-register_metrics() ->
			
 
				-    lists:foreach(fun emqx_metrics:ensure/1, ?ACL_METRICS).
			
 
				-
			
 
				 check_acl(ClientInfo, PubSub, Topic, NoMatchAction, #{pool := Pool} = State) ->
			
 
				     case do_check_acl(Pool, ClientInfo, PubSub, Topic, NoMatchAction, State) of
			
 
				-        ok -> emqx_metrics:inc(?ACL_METRICS(ignore)), ok;
			
 
				-        {stop, allow} -> emqx_metrics:inc(?ACL_METRICS(allow)), {stop, allow};
			
 
				-        {stop, deny} -> emqx_metrics:inc(?ACL_METRICS(deny)), {stop, deny}
			
 
				+        ok -> ok;
			
 
				+        {stop, allow} -> {stop, allow};
			
 
				+        {stop, deny} -> {stop, deny}
			
 
				     end.
			
 
				 
			
 
				 do_check_acl(_Pool, #{username := <<$$, _/binary>>}, _PubSub, _Topic, _NoMatchAction, _State) ->
			
--- a/apps/emqx_auth_mysql/src/emqx_auth_mysql_app.erl
+++ b/apps/emqx_auth_mysql/src/emqx_auth_mysql_app.erl
@@ -60,7 +60,6 @@ load_auth_hook(AuthQuery) ->
 
				     emqx:hook('client.authenticate', fun emqx_auth_mysql:check/3, [Params]).
			
 
				 
			
 
				 load_acl_hook(AclQuery) ->
			
 
				-    ok = emqx_acl_mysql:register_metrics(),
			
 
				     emqx:hook('client.check_acl', fun emqx_acl_mysql:check_acl/5, [#{acl_query => AclQuery, pool =>?APP}]).
			
 
				 
			
 
				 %%--------------------------------------------------------------------
			
--- a/apps/emqx_auth_pgsql/include/emqx_auth_pgsql.hrl
+++ b/apps/emqx_auth_pgsql/include/emqx_auth_pgsql.hrl
@@ -6,18 +6,8 @@
 
				         ignore  = 'client.auth.ignore'
			
 
				     }).
			
 
				 
			
 
				--record(acl_metrics, {
			
 
				-        allow = 'client.acl.allow',
			
 
				-        deny = 'client.acl.deny',
			
 
				-        ignore = 'client.acl.ignore'
			
 
				-    }).
			
 
				-
			
 
				 -define(METRICS(Type), tl(tuple_to_list(#Type{}))).
			
 
				 -define(METRICS(Type, K), #Type{}#Type.K).
			
 
				 
			
 
				 -define(AUTH_METRICS, ?METRICS(auth_metrics)).
			
 
				 -define(AUTH_METRICS(K), ?METRICS(auth_metrics, K)).
			
 
				-
			
 
				--define(ACL_METRICS, ?METRICS(acl_metrics)).
			
 
				--define(ACL_METRICS(K), ?METRICS(acl_metrics, K)).
			
 
				-
			
--- a/apps/emqx_auth_pgsql/src/emqx_acl_pgsql.erl
+++ b/apps/emqx_auth_pgsql/src/emqx_acl_pgsql.erl
@@ -21,21 +21,12 @@
 
				 -include_lib("emqx/include/logger.hrl").
			
 
				 
			
 
				 %% ACL callbacks
			
 
				--export([ register_metrics/0
			
 
				-        , check_acl/5
			
 
				+-export([ check_acl/5
			
 
				         , description/0
			
 
				         ]).
			
 
				 
			
 
				--spec(register_metrics() -> ok).
			
 
				-register_metrics() ->
			
 
				-    lists:foreach(fun emqx_metrics:ensure/1, ?ACL_METRICS).
			
 
				-
			
 
				 check_acl(ClientInfo, PubSub, Topic, NoMatchAction, #{pool := Pool} = State) ->
			
 
				-    case do_check_acl(Pool, ClientInfo, PubSub, Topic, NoMatchAction, State) of
			
 
				-        ok -> emqx_metrics:inc(?ACL_METRICS(ignore)), ok;
			
 
				-        {stop, allow} -> emqx_metrics:inc(?ACL_METRICS(allow)), {stop, allow};
			
 
				-        {stop, deny} -> emqx_metrics:inc(?ACL_METRICS(deny)), {stop, deny}
			
 
				-    end.
			
 
				+    do_check_acl(Pool, ClientInfo, PubSub, Topic, NoMatchAction, State).
			
 
				 
			
 
				 do_check_acl(_Pool, #{username := <<$$, _/binary>>}, _PubSub, _Topic, _NoMatchAction, _State) ->
			
 
				     ok;
			
--- a/apps/emqx_auth_pgsql/src/emqx_auth_pgsql_app.erl
+++ b/apps/emqx_auth_pgsql/src/emqx_auth_pgsql_app.erl
@@ -46,7 +46,6 @@ start(_StartType, _StartArgs) ->
 
				         ok = emqx:hook('client.authenticate', fun emqx_auth_pgsql:check/3, [AuthEnv])
			
 
				     end),
			
 
				     if_enabled(acl_query, fun(AclQuery) ->
			
 
				-        ok = emqx_acl_pgsql:register_metrics(),
			
 
				         ok = emqx:hook('client.check_acl', fun emqx_acl_pgsql:check_acl/5, [#{acl_query => AclQuery, pool => ?APP}])
			
 
				     end),
			
 
				     {ok, Sup}.
			
--- a/apps/emqx_auth_redis/include/emqx_auth_redis.hrl
+++ b/apps/emqx_auth_redis/include/emqx_auth_redis.hrl
@@ -7,17 +7,8 @@
 
				         ignore = 'client.auth.ignore'
			
 
				     }).
			
 
				 
			
 
				--record(acl_metrics, {
			
 
				-        allow = 'client.acl.allow',
			
 
				-        deny = 'client.acl.deny',
			
 
				-        ignore = 'client.acl.ignore'
			
 
				-    }).
			
 
				-
			
 
				 -define(METRICS(Type), tl(tuple_to_list(#Type{}))).
			
 
				 -define(METRICS(Type, K), #Type{}#Type.K).
			
 
				 
			
 
				 -define(AUTH_METRICS, ?METRICS(auth_metrics)).
			
 
				 -define(AUTH_METRICS(K), ?METRICS(auth_metrics, K)).
			
 
				-
			
 
				--define(ACL_METRICS, ?METRICS(acl_metrics)).
			
 
				--define(ACL_METRICS(K), ?METRICS(acl_metrics, K)).
			
--- a/apps/emqx_auth_redis/src/emqx_acl_redis.erl
+++ b/apps/emqx_auth_redis/src/emqx_acl_redis.erl
@@ -21,26 +21,14 @@
 
				 -include_lib("emqx/include/emqx.hrl").
			
 
				 -include_lib("emqx/include/logger.hrl").
			
 
				 
			
 
				--export([ register_metrics/0
			
 
				-        , check_acl/5
			
 
				+-export([ check_acl/5
			
 
				         , description/0
			
 
				         ]).
			
 
				 
			
 
				--spec(register_metrics() -> ok).
			
 
				-register_metrics() ->
			
 
				-    lists:foreach(fun emqx_metrics:ensure/1, ?ACL_METRICS).
			
 
				-
			
 
				-check_acl(ClientInfo, PubSub, Topic, AclResult, Config) ->
			
 
				-    case do_check_acl(ClientInfo, PubSub, Topic, AclResult, Config) of
			
 
				-        ok -> emqx_metrics:inc(?ACL_METRICS(ignore)), ok;
			
 
				-        {stop, allow} -> emqx_metrics:inc(?ACL_METRICS(allow)), {stop, allow};
			
 
				-        {stop, deny} -> emqx_metrics:inc(?ACL_METRICS(deny)), {stop, deny}
			
 
				-    end.
			
 
				-
			
 
				-do_check_acl(#{username := <<$$, _/binary>>}, _PubSub, _Topic, _AclResult, _Config) ->
			
 
				+check_acl(#{username := <<$$, _/binary>>}, _PubSub, _Topic, _AclResult, _Config) ->
			
 
				     ok;
			
 
				-do_check_acl(ClientInfo, PubSub, Topic, _AclResult,
			
 
				-             #{acl_cmd := AclCmd, timeout := Timeout, type := Type, pool := Pool}) ->
			
 
				+check_acl(ClientInfo, PubSub, Topic, _AclResult,
			
 
				+          #{acl_cmd := AclCmd, timeout := Timeout, type := Type, pool := Pool}) ->
			
 
				     case emqx_auth_redis_cli:q(Pool, Type, AclCmd, ClientInfo, Timeout) of
			
 
				         {ok, []} -> ok;
			
 
				         {ok, Rules} ->
			
--- a/apps/emqx_auth_redis/src/emqx_auth_redis_app.erl
+++ b/apps/emqx_auth_redis/src/emqx_auth_redis_app.erl
@@ -59,7 +59,6 @@ load_acl_hook(AclCmd) ->
 
				                timeout => Timeout,
			
 
				                type => Type,
			
 
				                pool => ?APP},
			
 
				-    ok = emqx_acl_redis:register_metrics(),
			
 
				     emqx:hook('client.check_acl', fun emqx_acl_redis:check_acl/5, [Config]).
			
 
				 
			
 
				 if_cmd_enabled(Par, Fun) ->