ansible-galaxy/patroni
1
0
Fork 0
mirror of https://gitea.0xace.cc/ansible-galaxy/patroni.git synced 2025-06-29 02:53:07 +00:00
Code Issues Packages Projects Releases Wiki Activity

rewrite ssl cert generation

Browse Source
This commit is contained in:
ace
2024-03-19 14:04:46 +03:00
parent 6f18db44d2
commit 6149198f61
12 changed files with 384 additions and 40 deletions
Download Patch File Download Diff File Expand all files Collapse all files

24
templates/patroni.yaml.j2
View File

@ -20,17 +20,17 @@ log:
{% endif %}
ctl:
certfile: {{ patroni_ssl_path }}/{{ patroni_self_signed_cert_name }}.crt
keyfile: {{ patroni_ssl_path }}/{{ patroni_self_signed_cert_name }}.key
cafile: {{ patroni_ssl_path }}/CA-cert.crt
certfile: {{ patroni_ssl_path }}/{{ inventory_hostname }}.crt
keyfile: {{ patroni_ssl_path }}/{{ inventory_hostname }}.key
cafile: {{ patroni_ssl_path }}/CA-{{ patroni_self_signed_cert_name }}.crt
restapi:
listen: {{ patroni_restapi_listen_address }}:{{ patroni_restapi_listen_port }}
connect_address: {{ hostvars[inventory_hostname]['ansible_host'] }}:{{ patroni_restapi_listen_port }}
{% if patroni_ssl|bool %}
certfile: {{ patroni_ssl_path }}/{{ patroni_self_signed_cert_name }}.crt
keyfile: {{ patroni_ssl_path }}/{{ patroni_self_signed_cert_name }}.key
cafile: {{ patroni_ssl_path }}/CA-cert.crt
certfile: {{ patroni_ssl_path }}/{{ inventory_hostname }}.crt
keyfile: {{ patroni_ssl_path }}/{{ inventory_hostname }}.key
cafile: {{ patroni_ssl_path }}/CA-{{ patroni_self_signed_cert_name }}.crt
authentication:
username: {{ patroni_restapi_username }}
password: {{ patroni_restapi_password }}
@ -135,22 +135,22 @@ postgresql:
username: {{ patroni_replication_username }}
password: {{ patroni_replication_password }}
{% if patroni_ssl|bool %}
sslcert: {{ patroni_ssl_path }}/{{ patroni_self_signed_cert_name }}.crt
sslkey: {{ patroni_ssl_path }}/{{ patroni_self_signed_cert_name}}.key
sslcert: {{ patroni_ssl_path }}/{{ inventory_hostname }}.crt
sslkey: {{ patroni_ssl_path }}/{{ inventory_hostname }}.key
{% endif %}
superuser:
username: {{ patroni_superuser_username }}
password: {{ patroni_superuser_password }}
{% if patroni_ssl|bool %}
sslcert: {{ patroni_ssl_path }}/{{ patroni_self_signed_cert_name }}.crt
sslkey: {{ patroni_ssl_path }}/{{ patroni_self_signed_cert_name}}.key
sslcert: {{ patroni_ssl_path }}/{{ inventory_hostname }}.crt
sslkey: {{ patroni_ssl_path }}/{{ inventory_hostname }}.key
{% endif %}
parameters:
unix_socket_directories: {{ patroni_postgresql_unix_socket_dir }}
{% if patroni_ssl|bool %}
ssl: on
ssl_cert_file: {{ patroni_ssl_path }}/{{ patroni_self_signed_cert_name }}.crt
ssl_key_file: {{ patroni_ssl_path }}/{{ patroni_self_signed_cert_name}}.key
ssl_cert_file: {{ patroni_ssl_path }}/{{ inventory_hostname }}.crt
ssl_key_file: {{ patroni_ssl_path }}/{{ inventory_hostname }}.key
{% endif %}