jleony/ansible-en-role
1
0
Fork 1
mirror of https://github.com/matter-labs/ansible-en-role.git synced 2025-12-06 10:59:56 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

Compare commits

base: jleony:v3.11.0
Branches Tags
jleony:main jleony:fix-lint-jobs
jleony:v4.1.0 jleony:v4.0.0 jleony:v3.15.0 jleony:v3.14.0 jleony:v3.13.0 jleony:v3.12.0 jleony:v3.11.0 jleony:v3.10.2 jleony:v3.10.1 jleony:v3.10.0 jleony:v3.9.0 jleony:v3.8.1 jleony:v3.8.0 jleony:v3.7.2 jleony:v3.7.1 jleony:v3.7.0 jleony:v3.6.1 jleony:v3.6.0 jleony:v3.5.0 jleony:v3.4.1 jleony:v3.4.0 jleony:v3.3.1 jleony:v3.3.0 jleony:v3.2.0 jleony:v3.1.0 jleony:v3.0.0 jleony:v2.1.0 jleony:v2.0.0 jleony:v1.1.0 jleony:v1.0.0
..
compare: jleony:v3.12.0
Branches Tags
jleony:main jleony:fix-lint-jobs
jleony:v4.1.0 jleony:v4.0.0 jleony:v3.15.0 jleony:v3.14.0 jleony:v3.13.0 jleony:v3.12.0 jleony:v3.11.0 jleony:v3.10.2 jleony:v3.10.1 jleony:v3.10.0 jleony:v3.9.0 jleony:v3.8.1 jleony:v3.8.0 jleony:v3.7.2 jleony:v3.7.1 jleony:v3.7.0 jleony:v3.6.1 jleony:v3.6.0 jleony:v3.5.0 jleony:v3.4.1 jleony:v3.4.0 jleony:v3.3.1 jleony:v3.3.0 jleony:v3.2.0 jleony:v3.1.0 jleony:v3.0.0 jleony:v2.1.0 jleony:v2.0.0 jleony:v1.1.0 jleony:v1.0.0

5 Commits
v3.11.0 ... v3.12.0

Author SHA1 Message Date
Aleksandr Stepanov
d276d7b290 Merge pull request #35 from matter-labs/backup-user
Some checks failed
Release / Release (push) Has been cancelled
Details
CI / Lint (push) Has been cancelled
Details
CI / Ansible lint (push) Has been cancelled
Details 
feat: Added user with backup permissions only
 2024-11-27 15:45:36 +01:00
Oleksandr Stepanov
60333c40da feat: Added user with backup permissions only 2024-11-27 15:24:20 +01:00
Oleksandr Stepanov
2eb2b1f6d4 feat: Added user with backup permissions only 2024-11-27 15:12:12 +01:00
Oleksandr Stepanov
69777ac4e8 feat: Added user with backup permissions only 2024-11-27 15:08:46 +01:00
Oleksandr Stepanov
46e2a6e0e4 feat: Added user with backup permissions only 2024-11-27 14:51:33 +01:00
2 changed files with 21 additions and 0 deletions
Expand all files Collapse all files

3
defaults/main.yml
View File

@ -64,6 +64,9 @@ postgres_replica_user_password: ""
postgres_replica_auth_method: "scram-sha-256" postgres_replica_auth_method: "scram-sha-256"
postgres_replication_bind_address: "" postgres_replication_bind_address: ""
postgres_replica_address: "" postgres_replica_address: ""
backup_db_user: ""
backup_db_password: ""
backup_db_name: ""
# Enable TLS for traefik # Enable TLS for traefik
enable_tls: false enable_tls: false

18
tasks/replication.yml
View File

@ -40,3 +40,21 @@
login_user: "{{ database_username }}" login_user: "{{ database_username }}"
login_password: "{{ database_password }}" login_password: "{{ database_password }}"
query: "SELECT pg_reload_conf()" query: "SELECT pg_reload_conf()"
- name: Create postgres backup user
community.postgresql.postgresql_user:
login_host: "{{ postgres_replication_bind_address }}"
login_user: "{{ database_username }}"
login_password: "{{ database_password }}"
name: "{{ backup_db_user }}"
password: "{{ backup_db_password }}"
- name: Grant role pg_read_all_data to backup user
community.postgresql.postgresql_membership:
login_host: "{{ postgres_replication_bind_address }}"
login_user: "{{ database_username }}"
login_password: "{{ database_password }}"
group: pg_read_all_data
target_roles:
- "{{ backup_db_user }}"
state: present