- postgresql::server::pg_hba_rule { 'local access as postgres user':
- description => 'Allow local access to postgres user',
- type => 'local',
- database => 'all',
- user => $pg_user,
- auth_method => 'ident',
- order => "a1",
- }
- postgresql::server::pg_hba_rule { 'localhost access as postgres user':
- description => 'Allow localhost access to postgres user',
- type => 'host',
- database => 'all',
- user => $pg_user,
- address => "127.0.0.1/32",
- auth_method => 'md5',
- order => "a2",
- }
- postgresql::server::pg_hba_rule { 'localhost ip6 access as postgres user':
- description => 'Allow localhost access to postgres user',
- type => 'host',
- database => 'all',
- user => $pg_user,
- address => "::1/128",
- auth_method => 'md5',
- order => "a3",
- }
- postgresql::server::pg_hba_rule { 'deny access to postgresql user':
- description => 'Deny remote access to postgres user',
- type => 'host',
- database => 'all',
- user => $pg_user,
- address => "0.0.0.0/0",
- auth_method => 'reject',
- order => "a4",
- }
-
- postgresql::server::pg_hba_rule { 'local access':
- description => 'Allow local access with password',
- type => 'local',
- database => 'all',
- user => 'all',
- auth_method => 'md5',
- order => "b1",
- }
-
- postgresql::server::pg_hba_rule { 'local access with same name':
- description => 'Allow local access with same name',
- type => 'local',
- database => 'all',
- user => 'all',
- auth_method => 'ident',
- order => "b2",
- }