diff --git a/postgresql/tasks/configure-access.yml b/postgresql/tasks/configure-access.yml index 89e481b9..1d073ba9 100644 --- a/postgresql/tasks/configure-access.yml +++ b/postgresql/tasks/configure-access.yml @@ -10,7 +10,7 @@ - item.1 is defined - not psql_force_ssl_client_connection notify: Reload postgresql - tags: [ 'postgresql', 'postgres', 'pg_hba' ] + tags: [ 'postgresql', 'postgres', 'pg_hba', 'pg_db' ] - name: Give access to the remote postgresql client, force ssl lineinfile: name={{ psql_conf_dir }}/pg_hba.conf regexp="^host.* {{ item.0.name }} {{ item.0.user }} {{ item.1 }}.*$" line="hostssl {{ item.0.name }} {{ item.0.user }} {{ item.1 }} md5" @@ -23,13 +23,13 @@ - item.1 is defined - psql_force_ssl_client_connection notify: Reload postgresql - tags: [ 'postgresql', 'postgres', 'pg_hba' ] + tags: [ 'postgresql', 'postgres', 'pg_hba', 'pg_db' ] # No conditionals, it is needed to perform base backups when the WAL archive is active - name: Give local access with replication privileges to the postgres user lineinfile: name={{ psql_conf_dir }}/pg_hba.conf regexp="^local replication postgres peer" line="local replication postgres peer" notify: Reload postgresql - tags: [ 'postgresql', 'postgres', 'pg_hba' ] + tags: [ 'postgresql', 'postgres', 'pg_hba', 'pg_db' ] - name: Set the postgresql listen port action: configfile path={{ psql_conf_dir }}/postgresql.conf key=port value="{{ psql_db_port }}"