feat(postgresql): added new role to install pgsql server

2024-07-21 00:00:00 +00:00 · 2024-07-21 00:00:00 +00:00 · 7d6155f97e
commit 7d6155f97e
parent 068a2e2790
13 changed files with 281 additions and 0 deletions
--- a/inventory/host_vars/actinium/vars.yml
+++ b/inventory/host_vars/actinium/vars.yml
@ -11,9 +11,29 @@ k3s_cluster_role: server
 k3s_cluster_ip: "{{ vault_cluster_ip }}"

 mariadb_server_root_password: "{{ vault_mariadb_server_root_password }}"
+mariadb_server_run_custom_sql: true
 mariadb_server_custom_sql: "{{ vault_mariadb_server_custom_sql }}"
 mariadb_server_bind_addresses: "{{ vault_mariadb_server_bind_addresses }}"

+postgresql_server_run_custom_sql: false
+postgresql_nft_allowed_ingress_list: ['127.0.0.1/32', '10.42.0.0/16']
+postgresql_server_custom_sql: "{{ vault_postgresql_server_custom_sql }}"
+postgresql_server_bind_addresses: "{{ vault_postgresql_server_bind_addresses }}"
+postgresql_server_databases_list:
+  - name: '{{ vault_invidious_pg_dbname }}'
+postgresql_server_accounts_list:
+  - name: '{{ vault_invidious_pg_user }}'
+    db: '{{ vault_invidious_pg_dbname }}'
+    password: '{{ vault_invidious_pg_password }}'
+postgresql_server_hba_conf_list:
+  - address: '10.42.0.0/16'
+    databases:
+      - invidious
+    contype: hostssl
+    method: scram-sha-256
+    users:
+      - invidious
+
 k3s_cluster_additional_helm_charts:
  - release_name: redis
    release_namespace: default
@ -22,6 +42,7 @@ k3s_cluster_additional_helm_charts:
    values:
      replica:
        replicaCount: 1
+
 k3s_cluster_additional_tf_resources:
  - name: Invoice Ninja
    git_repository: 'https://gitlab.0x2a.ninja/flowtech/oss/invoice-ninja.git'