Skip to content
This repository has been archived by the owner on Jan 15, 2024. It is now read-only.

UCL-MIRSG/ansible-role-postgresql

BranchesTags

Repository files navigation

Ansible Role: mirsg.postgresql

This role will install and configure a PostgreSQL database on a server.

This role is tested on the following operating systems:

  • CentOS 7
  • Rocky Linux 8

Requirements

If you would like to run Ansible Molecule to test this role, the requirements are in requirements.txt.

Role Variables

There are several optional variables for the PostgreSQL server. See the defaults here.

There are also several required variables you will need to set before using this role.

Required variables for the PostgreSQL server

See this example host_vars file.

### Required variables for the PostgreSQL client

See this example host_vars file.

Required varaibles for both the server and client

postgresql_rpm_gpg_key_pgdg: URL from which to download the RPM GPP key; not needed for CentOS 7

postgresql_use_ssl: boolean; whether to use SSL

Dependencies

If postgresql_use_ssl is set to true, mirsg.ssl_certificates must be installed and the ssl_certificate variable defined for both the client and server.

Example Playbook

To use this role you must first stop any running PostgreSQL service and, if necessary, create a SSL certificate for the client:

- name: Disable default postgresl module and install rpm key
  hosts: all
  become: true
  gather_facts: true
  tasks:
    - name: Disable default postgresl module and install rpm key on RedHat 8+
      when: ansible_facts['os_family'] == "RedHat" and ansible_facts['distribution_major_version'] is version('7', '>')
      block:
        - name: Disable default Postgres module # noqa command-instead-of-module
          ansible.builtin.command: yum module disable -y postgresql
          register: disable_postgresql_module
          changed_when:
            - "'Disabling modules:' in disable_postgresql_module.stdout"

        - name: Import postgresql rpm key
          ansible.builtin.rpm_key:
            state: present
            key: "{{ postgresql_rpm_gpg_key_pgdg }}"

- name: Create client SSL certificate
  hosts: web
  become: true
  gather_facts: true
  tasks:
    - name: Install openssl
      ansible.builtin.yum:
        name: openssl
        state: present

    - name: Create self-signed SSL certificate for the client
      ansible.builtin.include_role:
        name: "mirsg.ssl_certificates"
      vars:
        ssl_certificate: "{{ postgresql_client_ssl_certificate }}"

You can then use this role to install and configure PostgreSQL on a server:

- name: Create and setup a postgresql database
  hosts: db
  become: true
  gather_facts: true
  tasks:
    - name: Create and setup a postgresql database
      ansible.builtin.include_role:
        name: "mirsg.postgresql"

License

BSD 3-Clause License.

Author Information

This role was created by the Medical Imaging Research Software Group at UCL.

About

Install and configure a PostgreSQL database

Resources

Readme

License

BSD-3-Clause license
Activity
Custom properties

Stars

0 stars

Watchers

2 watching

Forks

0 forks
Report repository

Releases 10

2023.11.17.0 Latest
Nov 17, 2023
+ 9 releases

Packages

No packages published

Contributors 4

  •  
  •  
  •  
  •  

Languages