infra/ansible
4
5
Fork 5
Code Issues 6 Pull Requests 1 Activity

homeassistant: Added install procedure for postgres database

Browse Source
This commit is contained in:
Thomas Basler 2024-10-02 22:26:46 +02:00
parent 3b8cc7d1ea
commit 552c9d71b3
5 changed files with 69 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
host_vars/lasagne.binary.kitchen
View File

@ -36,4 +36,6 @@ mosquitto_bridges:
address: 172.23.4.6:1883
topics:
- topic: "# out 0"
- topic: "# in 0"
- topic: "# in 0"
ha_pg_db_pass: "{{ vault_ha_pg_db_pass }}"

5
roles/homeassistant/defaults/main.yml
View File

@ -11,3 +11,8 @@ ha_venv_dir: "/opt/homeassistant"
# The default user
ha_user: homeassistant
ha_pg_db_version: 15
ha_pg_db_name: homeassistant
ha_pg_db_user: homeassistant
ha_pg_db_pass: xxxxx

6
roles/homeassistant/handlers/main.yml Normal file
View File

@ -0,0 +1,6 @@
---
- name: Restart postgresql
ansible.builtin.service:
name: postgresql
state: restarted

1
roles/homeassistant/tasks/main.yml
View File

@ -8,3 +8,4 @@
ansible.builtin.include_tasks: '{{ item }}'
loop:
- preparation.yml
- postgres.yml

54
roles/homeassistant/tasks/postgres.yml Normal file
View File

@ -0,0 +1,54 @@
---
- name: Postgres | establish dependencies
ansible.builtin.package:
name: "{{ item }}"
state: present
loop:
- postgresql-{{ ha_pg_db_version }}
- libpq-dev
- python3-psycopg2
- name: Postgres | Configure PostgreSQL database
community.general.postgresql_db:
name: "{{ ha_pg_db_name }}"
template: template0
encoding: utf8
become: true
become_user: postgres
- name: Postgres | Configure PostgreSQL user
community.general.postgresql_user:
db: "{{ ha_pg_db_name }}"
name: "{{ ha_pg_db_user }}"
password: "{{ ha_pg_db_pass }}"
become: true
become_user: postgres
- name: Postgres | GRANT ALL PRIVILEGES ON SCHEMA public TO {{ ha_pg_db_user }}
community.postgresql.postgresql_privs:
db: "{{ ha_pg_db_user }}"
privs: ALL
type: schema
objs: public
role: "{{ ha_pg_db_user }}"
become: true
become_user: postgres
- name: Postgres | Grant all users access to all dbs
community.general.postgresql_pg_hba:
dest: /etc/postgresql/{{ ha_pg_db_version }}/main/pg_hba.conf
contype: host
users: all
databases: all
method: scram-sha-256
source: 0.0.0.0/0
notify: Restart postgresql
- name: Postgres | Listen to external interfaces
community.general.postgresql_set:
name: listen_addresses
value: "*"
become: true
become_user: postgres
notify: Restart postgresql