enabling defined postgres user password without resetting on every puppet run (based on https://github.com/puppetlabs/puppetlabs-postgresql/issues/92)

2013-10-17 17:57:33 -04:00 · 2013-10-17 17:57:33 -04:00 · a93fcf850c
commit a93fcf850c
parent f346201a54
1 changed files with 8 additions and 1 deletions
--- a/manifests/server/config.pp
+++ b/manifests/server/config.pp
@ -56,12 +56,19 @@ class postgresql::server::config {
          auth_option => $local_auth_option,
          order       => '002',
        }
+        postgresql::server::pg_hba_rule { 'allow localhost TCP access to postgresql user':
+          type        => 'host',
+          user        => $user,
+          address     => '127.0.0.1/32',
+          auth_method => 'md5',
+          order       => '003',
+        }
        postgresql::server::pg_hba_rule { 'deny access to postgresql user':
          type        => 'host',
          user        => $user,
          address     => $ip_mask_deny_postgres_user,
          auth_method => 'reject',
-          order       => '003',
+          order       => '004',
        }

        # ipv4acls are passed as an array of rule strings, here we transform