v0.1

2025-07-20 14:53:12 +03:00
commit cd2f49ea82
234 changed files with 52038 additions and 0 deletions
--- a/playbooks/roles/postgres-config/README.md
+++ b/playbooks/roles/postgres-config/README.md
@@ -0,0 +1,48 @@
+Configure Postgresql
+=========
+
+- Configure Postgresql
+- Create user and database
+- Create cron job for backup
+  Requirements
+
+------------
+
+Any pre-requisites that may not be covered by Ansible itself or the role should be mentioned here. For instance, if the
+role uses the EC2 module, it may be a good idea to mention in this section that the boto package is required.
+
+Role Variables
+--------------
+
+- db_name
+- db_user
+- db_password
+- db_version
+- host_ip
+- allowed_db_ip
+- db_port
+
+Dependencies
+------------
+
+Use this role only after postgres-install
+
+Example Playbook
+----------------
+
+Including an example of how to use your role (for instance, with variables passed in as parameters) is always nice for
+users too:
+
+    - hosts: servers
+      roles:
+         - { role: username.rolename, x: 42 }
+
+License
+-------
+
+BSD
+
+Author Information
+------------------
+
+An optional section for the role authors to include contact information, or a website (HTML is not allowed).
--- a/playbooks/roles/postgres-config/defaults/main.yml
+++ b/playbooks/roles/postgres-config/defaults/main.yml
@@ -0,0 +1,2 @@
+---
+# defaults file for postgres-install-config
--- a/playbooks/roles/postgres-config/handlers/main.yml
+++ b/playbooks/roles/postgres-config/handlers/main.yml
@@ -0,0 +1,2 @@
+---
+# handlers file for postgres-install-config
--- a/playbooks/roles/postgres-config/meta/main.yml
+++ b/playbooks/roles/postgres-config/meta/main.yml
@@ -0,0 +1,52 @@
+galaxy_info:
+  author: your name
+  description: your role description
+  company: your company (optional)
+
+  # If the issue tracker for your role is not on github, uncomment the
+  # next line and provide a value
+  # issue_tracker_url: http://example.com/issue/tracker
+
+  # Choose a valid license ID from https://spdx.org - some suggested licenses:
+  # - BSD-3-Clause (default)
+  # - MIT
+  # - GPL-2.0-or-later
+  # - GPL-3.0-only
+  # - Apache-2.0
+  # - CC-BY-4.0
+  license: license (GPL-2.0-or-later, MIT, etc)
+
+  min_ansible_version: 2.1
+
+  # If this a Container Enabled role, provide the minimum Ansible Container version.
+  # min_ansible_container_version:
+
+  #
+  # Provide a list of supported platforms, and for each platform a list of versions.
+  # If you don't wish to enumerate all versions for a particular platform, use 'all'.
+  # To view available platforms and versions (or releases), visit:
+  # https://galaxy.ansible.com/api/v1/platforms/
+  #
+  # platforms:
+  # - name: Fedora
+  #   versions:
+  #   - all
+  #   - 25
+  # - name: SomePlatform
+  #   versions:
+  #   - all
+  #   - 1.0
+  #   - 7
+  #   - 99.99
+
+  galaxy_tags: []
+    # List tags for your role here, one per line. A tag is a keyword that describes
+    # and categorizes the role. Users find roles by searching for tags. Be sure to
+    # remove the '[]' above, if you add tags to this list.
+    #
+    # NOTE: A tag is limited to a single word comprised of alphanumeric characters.
+    #       Maximum 20 tags per role.
+
+dependencies: []
+  # List your role dependencies here, one per line. Be sure to remove the '[]' above,
+  # if you add dependencies to this list.
--- a/playbooks/roles/postgres-config/tasks/main.yml
+++ b/playbooks/roles/postgres-config/tasks/main.yml
@@ -0,0 +1,36 @@
+---
+# tasks file for postgres-install-config
+- name: Set PostgreSQL listen address (only local + host_ip)
+  lineinfile:
+    path: "/etc/postgresql/{{ db_version }}/main/postgresql.conf"
+    regexp: '^#?listen_addresses\s*='
+    line: "listen_addresses = 'localhost,{{ host_ip }},{{  docker_networks.monitoring_net.gateway }}'"
+    create: yes
+
+
+- name: Ensure external IPs
+  lineinfile:
+    path: "/etc/postgresql/{{ db_version }}/main/pg_hba.conf"
+    regexp: "{{ item.regexp }}"
+    line: "{{ item.line }}"
+    insertafter: EOF
+  loop:
+    - regexp: '^host\s+all\s+all\s+{{ allowed_ip | regex_escape() }}\s+.*$'
+      line: "host    all     all    {{ allowed_ip }}/32    scram-sha-256"
+    - regexp: '^host\s+all\s+all\s+{{ postgres_exporter_ip | regex_escape() }}\s+.*$'
+      line: "host    all     all    {{ postgres_exporter_ip }}/32    scram-sha-256"
+
+
+- name: Set custom PostgreSQL port
+  lineinfile:
+    path: "/etc/postgresql/{{ db_version }}/main/postgresql.conf"
+    regexp: '^#?port\s*='
+    line: "port = {{ ports.db_port.port }}"
+    create: yes
+
+
+- name: Reload postgres-install to apply changes
+  service:
+    name: postgresql
+    state: reloaded
+    enabled: true
--- a/playbooks/roles/postgres-config/tests/test.yml
+++ b/playbooks/roles/postgres-config/tests/test.yml
@@ -0,0 +1,5 @@
+---
+- hosts: localhost
+  remote_user: root
+  roles:
+    - postgres-config
--- a/playbooks/roles/postgres-config/vars/main.yml
+++ b/playbooks/roles/postgres-config/vars/main.yml
@@ -0,0 +1,2 @@
+---
+# vars file for postgres-install-config