116 lines
3.5 KiB
YAML
Raw Normal View History

2023-12-29 23:58:57 +01:00
- name: Create Docker network for PostgreSQL
docker_network:
2024-01-05 20:22:34 +01:00
name: central_postgres
2023-12-29 23:58:57 +01:00
state: present
when: run_once_docker_postgres is not defined
- name: Install PostgreSQL
docker_container:
name: central-postgres
2025-01-20 18:29:40 +01:00
image: "postgres:{{postgres_database_version}}"
2023-12-29 23:58:57 +01:00
detach: yes
env:
POSTGRES_PASSWORD: "{{ central_postgres_password }}"
POSTGRES_INITDB_ARGS: "--encoding=UTF8 --locale=C" # Necessary for docker-matrix
2023-12-29 23:58:57 +01:00
networks:
2024-01-05 20:22:34 +01:00
- name: central_postgres
2023-12-29 23:58:57 +01:00
published_ports:
- "127.0.0.1:5432:5432"
volumes:
- central_postgres_database:/var/lib/postgresql/data
restart_policy: "{{docker_restart_policy}}"
2024-01-05 22:00:59 +01:00
healthcheck:
test: ["CMD-SHELL", "pg_isready -U postgres"]
interval: 10s
timeout: 5s
retries: 5
start_period: 30s
2024-01-15 01:00:59 +01:00
register: setup_postgres_container_result
2023-12-29 23:58:57 +01:00
when: run_once_docker_postgres is not defined
2024-01-15 01:00:59 +01:00
- name: wait for database
pause:
seconds: "{{pause_duration}}"
when: setup_postgres_container_result.changed and run_once_docker_postgres is not defined
- name: install python-psycopg2
pacman:
name: python-psycopg2
state: present
when: run_once_docker_postgres is not defined
2024-01-06 14:32:49 +01:00
- name: "Create database: {{ database_name }}"
postgresql_db:
2024-01-06 14:32:49 +01:00
name: "{{ database_name }}"
state: present
login_user: postgres
login_password: "{{ central_postgres_password }}"
login_host: 127.0.0.1
login_port: 5432
- name: "Create database user: {{ database_username }}"
postgresql_user:
name: "{{ database_username }}"
password: "{{ database_password }}"
2024-01-06 14:32:49 +01:00
db: "{{ database_name }}"
state: present
login_user: postgres
login_password: "{{ central_postgres_password }}"
login_host: 127.0.0.1
login_port: 5432
- name: "Set privileges for database user: {{ database_username }}"
postgresql_privs:
2024-01-06 14:32:49 +01:00
db: "{{ database_name }}"
role: "{{ database_username }}"
objs: ALL_IN_SCHEMA
privs: ALL
type: table
state: present
login_user: postgres
login_password: "{{ central_postgres_password }}"
login_host: 127.0.0.1
login_port: 5432
- name: Grant all privileges at the database level
postgresql_privs:
2024-01-06 14:32:49 +01:00
db: "{{ database_name }}"
role: "{{ database_username }}"
privs: ALL
type: database
state: present
login_user: postgres
login_password: "{{ central_postgres_password }}"
login_host: 127.0.0.1
login_port: 5432
- name: Grant all privileges on all tables in the public schema
postgresql_privs:
2024-01-06 14:32:49 +01:00
db: "{{ database_name }}"
role: "{{ database_username }}"
objs: ALL_IN_SCHEMA
privs: ALL
type: table
schema: public
state: present
login_user: postgres
login_password: "{{ central_postgres_password }}"
login_host: 127.0.0.1
login_port: 5432
- name: Set comprehensive privileges for user on public schema
postgresql_query:
2024-01-06 14:32:49 +01:00
db: "{{ database_name }}"
login_user: postgres
login_password: "{{ central_postgres_password }}"
login_host: 127.0.0.1
login_port: 5432
query: |
GRANT USAGE ON SCHEMA public TO {{ database_username }};
GRANT CREATE ON SCHEMA public TO {{ database_username }};
ALTER DEFAULT PRIVILEGES IN SCHEMA public GRANT ALL PRIVILEGES ON TABLES TO {{ database_username }};
2023-12-29 23:58:57 +01:00
- name: Run the docker_postgres tasks once
set_fact:
run_once_docker_postgres: true
when: run_once_docker_postgres is not defined