From 87d603d64cce60bbafc1d04a105d7211ecb248a8 Mon Sep 17 00:00:00 2001
From: shtlrs <amrbellalouna@gmail.com>
Date: Wed, 15 May 2024 20:21:56 +0200
Subject: grant pg users their predefined roles

---
 ansible/roles/postgres/tasks/main.yml | 14 ++++++++++++++
 1 file changed, 14 insertions(+)

(limited to 'ansible/roles/postgres/tasks')

diff --git a/ansible/roles/postgres/tasks/main.yml b/ansible/roles/postgres/tasks/main.yml
index 2824a12..ea6565b 100644
--- a/ansible/roles/postgres/tasks/main.yml
+++ b/ansible/roles/postgres/tasks/main.yml
@@ -57,3 +57,17 @@
     - Reload the postgres service
   tags:
     - role::postgres
+
+- name: Grant specified roles to users
+  community.postgresql.postgresql_membership:
+    groups: "{{ user.roles }}"
+    target_role: "{{ user.name }}"
+  loop: "{{ postgres_users }}"
+  when: user.roles != None
+  loop_control:
+    loop_var: user
+    label: "{{ user.name }}"
+  become: true
+  become_user: "{{ postgres_user }}"
+  tags:
+    - role::postgres
-- 
cgit v1.2.3