projects / github / fretlink / ansible-postgresql-role.git / blame
| Commit | Line | Data |
|---|---|---|
| d0bc90e0 P |
1 | - user: name=postgres append=yes groups=ssl-cert |
| 2 | ||
| 3 | - name: Creates .ssh directory | |
| 4 | file: path=/var/lib/postgresql/.ssh state=directory owner=postgres group=postgres mode=0700 | |
| 5 | ||
| 6 | - name: Create postgres SSH key | |
| 7 | command: ssh-keygen -b 4096 -f /var/lib/postgresql/.ssh/id_rsa -N "" -q | |
| 8 | become: yes | |
| 9 | become_user: postgres | |
| 29f3186f | 10 | become_method: "{{ postgres_become_method }}" |
| d0bc90e0 P |
11 | args: |
| 12 | creates: /var/lib/postgresql/.ssh/id_rsa | |
| 13 | ||
| 14 | - slurp: | |
| 15 | src: /var/lib/postgresql/.ssh/id_rsa.pub | |
| 16 | register: db_server_pub_key | |
| 17 | ||
| 4d626d5a P |
18 | - name: Check if barman is installed on barman server |
| 19 | getent: | |
| 20 | database: passwd | |
| 21 | key: "barman" | |
| 22 | delegate_to: "{{ postgres_barman_server_public|default(postgres_barman_server) }}" | |
| 23 | when: postgres_barman_server is defined | |
| 24 | register: barman_user_exists | |
| 25 | ignore_errors: true | |
| 26 | changed_when: false | |
| 27 | ||
| d0bc90e0 P |
28 | - name: Allow SSH access on barman server |
| 29 | authorized_key: | |
| 30 | user: "barman" | |
| 31 | key: "{{ db_server_pub_key['content']|b64decode }}" | |
| 32 | state: present | |
| 33 | delegate_to: "{{ postgres_barman_server_public|default(postgres_barman_server) }}" | |
| 4d626d5a P |
34 | when: |
| 35 | - postgres_barman_server is defined | |
| 36 | - barman_user_exists is succeeded | |
| d0bc90e0 P |
37 | |
| 38 | - name: Copy logrotate configuration for postgresql | |
| 39 | template: src=logrotate-postgresql-common.j2 dest=/etc/logrotate.d/postgresql-common owner=root group=root mode=0644 | |
| 40 | ||
| 41 | - name: Create /root/scripts needed directory | |
| 42 | file: path=/root/scripts/ state=directory | |
| 43 | ||
| 44 | - name: Create pgbadger user | |
| 45 | user: name=pgbadger home=/home/pgbadger | |
| 46 | when: postgres_pgbadger_server is defined and postgres_pgbadger_server | |
| 47 | ||
| 48 | - name: Copy pbBadger script | |
| 49 | template: src=pgBadger.sh.j2 dest=/root/scripts/pgBadger.sh owner=root group=root mode=0755 | |
| 50 | when: postgres_pgbadger_server is defined and postgres_pgbadger_server | |
| 51 | ||
| 52 | - name: Ensure dedicated log directory is owned by postgres | |
| 53 | file: path={{ postgres_log_dir }} state=directory owner=postgres group=postgres | |
| 54 | when: postgres_log_dir is defined and postgres_log_dir | |
| 55 | ||
| 56 | - name: Ensure dedicated data directory is owned by postgres | |
| 57 | file: path={{ postgres_data_dir }} state=directory owner=postgres group=postgres | |
| 58 | when: postgres_data_dir is defined and postgres_data_dir |