add pg_hba rules

2025-09-28 15:47:55 +02:00
parent 95347b22bf
commit 73214a1128
7 changed files with 123 additions and 13 deletions
--- a/manifests/main/files.pp
+++ b/manifests/main/files.pp
@@ -10,18 +10,19 @@ class postgresql_cd::main::files (
    require postgresql_cd::server::initdb
    require postgresql_cd::main::dirs

-    file { '/var/lib/pgsql/data/pg_hba.conf':
-      ensure   => file,
-      owner    => 'postgres',
-      group    => 'postgres',
-      mode     => '0600',
-      selrange => s0,
-      selrole  => object_r,
-      seltype  => postgresql_db_t,
-      seluser  => unconfined_u,
-      content  => template('postgresql_cd/pg_hba.conf.erb'),
-      notify   => Service[$pl_service],
-    }
+    # outsourced to pghba::pghba for concatenation
+#    file { '/var/lib/pgsql/data/pg_hba.conf':
+#      ensure   => file,
+#      owner    => 'postgres',
+#      group    => 'postgres',
+#      mode     => '0600',
+#      selrange => s0,
+#      selrole  => object_r,
+#      seltype  => postgresql_db_t,
+#      seluser  => unconfined_u,
+#      content  => template('postgresql_cd/pg_hba.conf.erb'),
+#      notify   => Service[$pl_service],
+#    }

    file { '/var/lib/pgsql/data/postgresql.conf':
      ensure   => file,