Separate DB user privileges from creation
(race condition)
This commit is contained in:
Aurélien Bompard
parent
c790d0b90d
commit
561ae8423d
1 changed files with 7 additions and 3 deletions
|
|
@ -70,17 +70,14 @@
|
|||
postgresql_user: name=hyperkittyadmin password=$mailman_hk_admin_db_pass
|
||||
- name: hyperkitty DB user
|
||||
postgresql_user: name=hyperkittyapp password=$mailman_hk_db_pass
|
||||
db=hyperkitty priv=SELECT,INSERT,UPDATE,DELETE
|
||||
- name: kittystore DB admin user
|
||||
postgresql_user: name=kittystoreadmin password=$mailman_ks_admin_db_pass
|
||||
- name: kittystore DB user
|
||||
postgresql_user: name=kittystoreapp password=$mailman_ks_db_pass
|
||||
db=kittystore priv=SELECT,INSERT,UPDATE,DELETE
|
||||
- name: postorius DB admin user
|
||||
postgresql_user: name=postoriusadmin password=$mailman_ps_admin_db_pass
|
||||
- name: postorius DB user
|
||||
postgresql_user: name=postoriusapp password=$mailman_ps_db_pass
|
||||
db=postorius priv=SELECT,INSERT,UPDATE,DELETE
|
||||
- name: databases creation
|
||||
postgresql_db: name=$item owner=${item}admin encoding=UTF-8
|
||||
with_items:
|
||||
|
|
@ -88,6 +85,13 @@
|
|||
- hyperkitty
|
||||
- kittystore
|
||||
- postorius
|
||||
- name: database users permissions
|
||||
postgresql_privs: database=$item role=${item}app
|
||||
priv=SELECT,INSERT,UPDATE,DELETE
|
||||
with_items:
|
||||
- hyperkitty
|
||||
- kittystore
|
||||
- postorius
|
||||
|
||||
|
||||
# Real MM/HK-specific work
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue