Page Menu
Home
Software Heritage
Search
Configure Global Search
Log In
Files
F9347184
passwd.pp
No One
Temporary
Actions
Download File
Edit File
Delete File
View Transforms
Subscribe
Mute Notifications
Award Token
Flag For Later
Size
1 KB
Subscribers
None
passwd.pp
View Options
# PRIVATE CLASS: do not call directly
class
postgresql
::
server
::
passwd
{
$ensure
=
$postgresql::server::ensure
$postgres_password
=
$postgresql::server::postgres_password
$user
=
$postgresql::server::user
$group
=
$postgresql::server::group
$psql_path
=
$postgresql::server::psql_path
if
(
$ensure
==
'present'
or
$ensure
==
true
)
{
if
(
$postgres_password
!=
undef
)
{
# NOTE: this password-setting logic relies on the pg_hba.conf being
# configured to allow the postgres system user to connect via psql
# without specifying a password ('ident' or 'trust' security). This is
# the default for pg_hba.conf.
$escaped
=
postgresql_escape
(
$postgres_password)
$env
=
"env PGPASSWORD='${postgres_password}'"
exec
{
'set_postgres_postgrespw'
:
# This command works w/no password because we run it as postgres system
# user
command
=>
"${psql_path} -c 'ALTER ROLE \"
${user}\"
PASSWORD
${escaped}'",
user
=>
$user,
group
=>
$group,
logoutput
=>
true
,
cwd
=>
'/tmp'
,
# With this command we're passing -h to force TCP authentication, which
# does require a password. We specify the password via the PGPASSWORD
# environment variable. If the password is correct (current), this
# command will exit with an exit code of 0, which will prevent the main
# command from running.
unless
=>
"${env} ${psql_path} -h localhost -c 'select 1' > /dev/null"
,
path
=>
'/usr/bin:/usr/local/bin:/bin'
,
}
}
}
}
File Metadata
Details
Attached
Mime Type
text/x-c++
Expires
Fri, Jul 4, 5:05 PM (3 w, 3 d ago)
Storage Engine
blob
Storage Format
Raw Data
Storage Handle
3394209
Attached To
rSPPG PostgreSQL puppet module
Event Timeline
Log In to Comment