Page Menu
Home
Software Heritage
Search
Configure Global Search
Log In
Files
F8393921
passwd.pp
No One
Temporary
Actions
Download File
Edit File
Delete File
View Transforms
Subscribe
Mute Notifications
Award Token
Flag For Later
Size
1 KB
Subscribers
None
passwd.pp
View Options
# PRIVATE CLASS: do not call directly
class
postgresql
::
server
::
passwd
{
$ensure
=
$postgresql::server::ensure
$postgres_password
=
$postgresql::server::postgres_password
$user
=
$postgresql::server::user
$group
=
$postgresql::server::group
if
(
$ensure
==
'present'
or
$ensure
==
true
)
{
if
(
$postgres_password
!=
undef
)
{
# NOTE: this password-setting logic relies on the pg_hba.conf being
# configured to allow the postgres system user to connect via psql
# without specifying a password ('ident' or 'trust' security). This is
# the default for pg_hba.conf.
$escaped
=
postgresql_escape
(
$postgres_password)
$env
=
"env PGPASSWORD='${postgres_password}'"
exec
{
'set_postgres_postgrespw'
:
# This command works w/no password because we run it as postgres system
# user
command
=>
"psql -c 'ALTER ROLE \"
${user}\"
PASSWORD
${escaped}'",
user
=>
$user,
group
=>
$group,
logoutput
=>
true
,
cwd
=>
'/tmp'
,
# With this command we're passing -h to force TCP authentication, which
# does require a password. We specify the password via the PGPASSWORD
# environment variable. If the password is correct (current), this
# command will exit with an exit code of 0, which will prevent the main
# command from running.
unless
=>
"${env} psql -h localhost -c 'select 1' > /dev/null"
,
path
=>
'/usr/bin:/usr/local/bin:/bin'
,
}
}
}
}
File Metadata
Details
Attached
Mime Type
text/x-c++
Expires
Wed, Jun 4, 7:19 PM (4 d, 3 h ago)
Storage Engine
blob
Storage Format
Raw Data
Storage Handle
3399064
Attached To
rSPPG PostgreSQL puppet module
Event Timeline
Log In to Comment