Add role "pgpass"

Author: vitabaks

add_pgnode.yml

@@ -150,6 +150,8 @@
     - role: pgbouncer
       when: pgbouncer_install|bool
 
+    - role: pgpass
+
     - role: patroni
 
     - role: vip-manager

config_pgcluster.yml

@@ -144,6 +144,8 @@
       tags: always
 
   roles:
+    - role: pgpass
+
     - role: patroni/config
 
     - role: vip-manager

deploy_pgcluster.yml

@@ -223,6 +223,8 @@
     - role: pgbouncer
       when: pgbouncer_install|bool
 
+    - role: pgpass
+
     - role: patroni
 
     - role: vip-manager

roles/pgpass/tasks/main.yml

@@ -0,0 +1,20 @@
+---
+
+- name: "Configure a password file ({{ postgresql_home_dir }}/.pgpass)"
+  become: true
+  become_user: postgres
+  copy:
+    content: |
+      {% for pgpass in postgresql_pgpass %}
+      {{ pgpass }}
+      {% endfor %}
+    dest: "{{ postgresql_home_dir }}/.pgpass"
+    owner: postgres
+    group: postgres
+    mode: 0600
+  when:
+    - postgresql_pgpass is defined
+    - postgresql_pgpass | length > 0
+  tags: pgpass
+
+...

tags.md

@@ -34,6 +34,7 @@
 - - etcd_start
 - - etcd_status
 - consul
+- pgpass
 - patroni
 - - pip
 - - patroni_install

vars/main.yml

@@ -265,6 +265,12 @@ postgresql_pg_ident: []
 #  - { mapname: "main", system_username: "postgres", pg_username: "backup" }
 #  - { mapname: "", system_username: "", pg_username: "" }
 
+# the password file (~/.pgpass)
+postgresql_pgpass:
+  - "localhost:{{ postgresql_port }}:*:{{ patroni_superuser_username }}:{{ patroni_superuser_password }}"
+  - "{{ inventory_hostname }}:{{ postgresql_port }}:*:{{ patroni_superuser_username }}:{{ patroni_superuser_password }}"
+#  - hostname:port:database:username:password
+
 
 # PgBouncer parameters
 pgbouncer_install: true  # or 'false' if you do not want to install and configure the pgbouncer service