-
-
Notifications
You must be signed in to change notification settings - Fork 161
/
Copy pathsetup-postgres.yml
287 lines (251 loc) · 7.09 KB
/
setup-postgres.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
- name: Postgres - copy package
copy:
src: files/postgres/
dest: /tmp/build/
when: debpkg_mode
- name: Postgres - add PPA
apt_repository:
repo: "deb [ trusted=yes ] file:///tmp/build ./"
state: present
when: debpkg_mode
- name: Postgres - install commons
apt:
name: postgresql-common
install_recommends: no
when: debpkg_mode
- name: Do not create main cluster
shell:
cmd: sed -ri 's/#(create_main_cluster) .*$/\1 = false/' /etc/postgresql-common/createcluster.conf
when: debpkg_mode
- name: Postgres - install server
apt:
name: postgresql-{{ postgresql_major }}={{ postgresql_release }}-1.pgdg20.04+1
install_recommends: no
when: debpkg_mode
- name: Postgres - remove PPA
apt_repository:
repo: "deb [ trusted=yes ] file:///tmp/build ./"
state: absent
when: debpkg_mode
- name: Postgres - cleanup package
file:
path: /tmp/build
state: absent
when: debpkg_mode
- name: install locales
apt:
name: locales
state: present
become: yes
when: stage2_nix
- name: configure locales
command: echo "C.UTF-8 UTF-8" > /etc/locale.gen && echo "en_US.UTF-8 UTF-8" >> /etc/locale.gen
become: yes
when: stage2_nix
- name: locale-gen
command: sudo locale-gen
when: stage2_nix
- name: update-locale
command: sudo update-locale
when: stage2_nix
- name: Create symlink to /usr/lib/postgresql/bin
shell:
cmd: ln -s /usr/lib/postgresql/{{ postgresql_major }}/bin /usr/lib/postgresql/bin
when: debpkg_mode
- name: create ssl-cert group
group:
name: ssl-cert
state: present
when: nixpkg_mode
# the old method of installing from debian creates this group, but we must create it explicitly
# for the nix built version
- name: create postgres group
group:
name: postgres
state: present
when: nixpkg_mode
- name: create postgres user
shell: adduser --system --home /var/lib/postgresql --no-create-home --shell /bin/bash --group --gecos "PostgreSQL administrator" postgres
args:
executable: /bin/bash
become: yes
when: nixpkg_mode
- name: add postgres user to postgres group
shell: usermod -a -G ssl-cert postgres
args:
executable: /bin/bash
become: yes
when: nixpkg_mode
- name: Create relevant directories
file:
path: '{{ item }}'
recurse: yes
state: directory
owner: postgres
group: postgres
with_items:
- '/home/postgres'
- '/var/log/postgresql'
- '/var/lib/postgresql'
when: debpkg_mode or nixpkg_mode
- name: Allow adminapi to write custom config
file:
path: '{{ item }}'
recurse: yes
state: directory
owner: postgres
group: postgres
mode: 0775
with_items:
- '/etc/postgresql'
- '/etc/postgresql-custom'
when: debpkg_mode or nixpkg_mode
- name: create placeholder config files
file:
path: '/etc/postgresql-custom/{{ item }}'
state: touch
owner: postgres
group: postgres
mode: 0664
with_items:
- 'generated-optimizations.conf'
- 'custom-overrides.conf'
when: debpkg_mode or nixpkg_mode
# Move Postgres configuration files into /etc/postgresql
# Add postgresql.conf
- name: import postgresql.conf
template:
src: files/postgresql_config/postgresql.conf.j2
dest: /etc/postgresql/postgresql.conf
group: postgres
when: debpkg_mode or nixpkg_mode
# Add pg_hba.conf
- name: import pg_hba.conf
template:
src: files/postgresql_config/pg_hba.conf.j2
dest: /etc/postgresql/pg_hba.conf
group: postgres
when: debpkg_mode or nixpkg_mode
# Add pg_ident.conf
- name: import pg_ident.conf
template:
src: files/postgresql_config/pg_ident.conf.j2
dest: /etc/postgresql/pg_ident.conf
group: postgres
when: debpkg_mode or nixpkg_mode
# Add custom config for read replicas set up
- name: Move custom read-replica.conf file to /etc/postgresql-custom/read-replica.conf
template:
src: "files/postgresql_config/custom_read_replica.conf.j2"
dest: /etc/postgresql-custom/read-replica.conf
mode: 0664
owner: postgres
group: postgres
when: debpkg_mode or nixpkg_mode
# Install extensions before init
- name: Install Postgres extensions
import_tasks: tasks/setup-docker.yml
when: debpkg_mode or stage2_nix
#stage 2 postgres tasks
- name: stage2 postgres tasks
import_tasks: tasks/stage2-setup-postgres.yml
when: stage2_nix
# init DB
- name: Create directory on data volume
file:
path: '{{ item }}'
recurse: yes
state: directory
owner: postgres
group: postgres
mode: 0750
with_items:
- "/data/pgdata"
when: debpkg_mode or nixpkg_mode
- name: Link database data_dir to data volume directory
file:
src: "/data/pgdata"
path: "/var/lib/postgresql/data"
state: link
force: yes
when: debpkg_mode or nixpkg_mode
- name: Initialize the database
become: yes
become_user: postgres
shell: /usr/lib/postgresql/bin/pg_ctl -D /var/lib/postgresql/data initdb -o "--allow-group-access"
vars:
ansible_command_timeout: 60
when: debpkg_mode
- name: Initialize the database stage2_nix
become: yes
become_user: postgres
shell: source /var/lib/postgresql/.bashrc && /usr/lib/postgresql/bin/pg_ctl -D /var/lib/postgresql/data initdb -o "--allow-group-access"
args:
executable: /bin/bash
environment:
LANG: en_US.UTF-8
LANGUAGE: en_US.UTF-8
LC_ALL: en_US.UTF-8
LC_CTYPE: en_US.UTF-8
LOCALE_ARCHIVE: /usr/lib/locale/locale-archive
vars:
ansible_command_timeout: 60
# Circumvents the following error:
# "Timeout (12s) waiting for privilege escalation prompt"
when: stage2_nix
- name: copy PG systemd unit
template:
src: files/postgresql_config/postgresql.service.j2
dest: /etc/systemd/system/postgresql.service
when: debpkg_mode or stage2_nix
- name: copy optimizations systemd unit
template:
src: files/database-optimizations.service.j2
dest: /etc/systemd/system/database-optimizations.service
when: debpkg_mode or stage2_nix
- name: Restart Postgres Database without Systemd
become: yes
become_user: postgres
shell: |
source /var/lib/postgresql/.bashrc
/usr/lib/postgresql/bin/pg_ctl -D /var/lib/postgresql/data start -o "-c shared_preload_libraries='pg_net'"
environment:
LANG: en_US.UTF-8
LANGUAGE: en_US.UTF-8
LC_ALL: en_US.UTF-8
LC_CTYPE: en_US.UTF-8
LOCALE_ARCHIVE: /usr/lib/locale/locale-archive
when: stage2_nix
# Reload
- name: System - systemd reload
systemd:
enabled: yes
name: postgresql
daemon_reload: yes
when: debpkg_mode or stage2_nix
- name: Make sure .bashrc exists
file:
path: /var/lib/postgresql/.bashrc
state: touch
owner: postgres
group: postgres
when: nixpkg_mode
- name: Add LOCALE_ARCHIVE to .bashrc
lineinfile:
dest: "/var/lib/postgresql/.bashrc"
line: 'export LOCALE_ARCHIVE=/usr/lib/locale/locale-archive'
create: yes
become: yes
when: nixpkg_mode
- name: Add LANG items to .bashrc
lineinfile:
dest: "/var/lib/postgresql/.bashrc"
line: "{{ item }}"
loop:
- 'export LANG="en_US.UTF-8"'
- 'export LANGUAGE="en_US.UTF-8"'
- 'export LC_ALL="en_US.UTF-8"'
- 'export LANG="en_US.UTF-8"'
- 'export LC_CTYPE="en_US.UTF-8"'
become: yes
when: nixpkg_mode