Defined Type: postgresql::server::reassign_owned_by

Defined in:
manifests/server/reassign_owned_by.pp

Summary

Define for reassigning the ownership of objects within a database.

Overview

Note:

This enables us to force the a particular ownership for objects within a database

Parameters:

  • old_role (String)

    Specifies the role or user who is the current owner of the objects in the specified db

  • new_role (String)

    Specifies the role or user who will be the new owner of these objects

  • db (String)

    Specifies the database to which the ‘REASSIGN OWNED’ will be applied

  • psql_user (String) (defaults to: $postgresql::server::user)

    Specifies the OS user for running psql.

  • port (Stdlib::Port) (defaults to: $postgresql::server::port)

    Port to use when connecting.

  • connect_settings (Hash) (defaults to: $postgresql::server::default_connect_settings)

    Specifies a hash of environment variables used when connecting to a remote server.

  • group (String[1]) (defaults to: $postgresql::server::group)

    Sets the OS group to run psql

  • psql_path (Stdlib::Absolutepath) (defaults to: $postgresql::server::psql_path)

    Sets the path to psql command

  • instance (String[1]) (defaults to: 'main')

    The name of the Postgresql database instance.



14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
 
# File 'manifests/server/reassign_owned_by.pp', line 14

define postgresql::server::reassign_owned_by (
  String $old_role,
  String $new_role,
  String $db,
  String $psql_user               = $postgresql::server::user,
  Stdlib::Port $port              = $postgresql::server::port,
  Hash $connect_settings          = $postgresql::server::default_connect_settings,
  String[1] $group                = $postgresql::server::group,
  Stdlib::Absolutepath $psql_path = $postgresql::server::psql_path,
  String[1] $instance             = 'main',
) {
  $sql_command = "REASSIGN OWNED BY \"${old_role}\" TO \"${new_role}\""

  $port_override = pick($connect_settings['PGPORT'], $port)

  $onlyif = "SELECT tablename FROM pg_catalog.pg_tables WHERE
               schemaname NOT IN ('pg_catalog', 'information_schema') AND
               tableowner = '${old_role}'
             UNION ALL SELECT proname FROM pg_catalog.pg_proc WHERE
               pg_get_userbyid(proowner) = '${old_role}'
             UNION ALL SELECT viewname FROM pg_catalog.pg_views WHERE
               pg_views.schemaname NOT IN ('pg_catalog', 'information_schema') AND
               viewowner = '${old_role}'
             UNION ALL SELECT relname FROM pg_catalog.pg_class WHERE
               relkind='S' AND pg_get_userbyid(relowner) = '${old_role}'"

  postgresql_psql { "reassign_owned_by:${db}:${sql_command}":
    command          => $sql_command,
    db               => $db,
    port             => $port_override,
    connect_settings => $connect_settings,
    psql_user        => $psql_user,
    psql_group       => $group,
    psql_path        => $psql_path,
    instance         => $instance,
    onlyif           => $onlyif,
  }

  if defined(Postgresql::Server::Role[$old_role]) {
    Postgresql::Server::Role[$old_role] -> Postgresql_psql["reassign_owned_by:${db}:${sql_command}"]
  }
  if($new_role != undef and defined(Postgresql::Server::Role[$new_role])) {
    Postgresql::Server::Role[$new_role] -> Postgresql_psql["reassign_owned_by:${db}:${sql_command}"]
  }

  if defined(Postgresql::Server::Database[$db]) {
    Postgresql::Server::Database[$db] -> Postgresql_psql["reassign_owned_by:${db}:${sql_command}"]
  }
}