jleony/ansible-en-role
1
0
Fork 1
mirror of https://github.com/matter-labs/ansible-en-role.git synced 2025-12-06 02:49:55 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

feat: Added user with backup permissions only

Browse Source
This commit is contained in:
Oleksandr Stepanov
2024-11-27 15:08:46 +01:00
parent 46e2a6e0e4
commit 69777ac4e8
1 changed files with 8 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

11
tasks/replication.yml
View File

@ -41,12 +41,17 @@
login_password: "{{ database_password }}" login_password: "{{ database_password }}"
query: "SELECT pg_reload_conf()" query: "SELECT pg_reload_conf()"
- name: Create postgres replication user - name: Create postgres backup user
community.postgresql.postgresql_user: community.postgresql.postgresql_user:
login_host: "{{ postgres_replication_bind_address }}" login_host: "{{ postgres_replication_bind_address }}"
login_user: "{{ database_username }}" login_user: "{{ database_username }}"
login_password: "{{ database_password }}" login_password: "{{ database_password }}"
name: "{{ backup_db_user }}" name: "{{ backup_db_user }}"
password: "{{ backup_db_password }}" password: "{{ backup_db_password }}"
db: "{{ backup_db_name }}"
priv: "pg_read_all_data" - name: Grant role read_only to alice and bob
community.postgresql.postgresql_membership:
group: pg_read_all_data
target_roles:
- "{{ backup_db_user }}"
state: present