|
48 | 48 | '8.1' => 'sameuser', |
49 | 49 | default => undef, |
50 | 50 | } |
51 | | - postgresql::server::pg_hba_rule { 'local access as postgres user': |
52 | | - type => 'local', |
53 | | - user => $user, |
54 | | - auth_method => 'ident', |
55 | | - auth_option => $local_auth_option, |
56 | | - order => 1, |
57 | | - } |
58 | | - postgresql::server::pg_hba_rule { 'local access to database with same name': |
59 | | - type => 'local', |
60 | | - auth_method => 'ident', |
61 | | - auth_option => $local_auth_option, |
62 | | - order => 2, |
63 | | - } |
64 | | - postgresql::server::pg_hba_rule { 'allow localhost TCP access to postgresql user': |
65 | | - type => 'host', |
66 | | - user => $user, |
67 | | - address => '127.0.0.1/32', |
68 | | - auth_method => 'md5', |
69 | | - order => 3, |
70 | | - } |
71 | | - postgresql::server::pg_hba_rule { 'deny access to postgresql user': |
72 | | - type => 'host', |
73 | | - user => $user, |
74 | | - address => $ip_mask_deny_postgres_user, |
75 | | - auth_method => 'reject', |
76 | | - order => 4, |
77 | | - } |
78 | 51 |
|
79 | | - postgresql::server::pg_hba_rule { 'allow access to all users': |
80 | | - type => 'host', |
81 | | - address => $ip_mask_allow_all_users, |
82 | | - auth_method => 'md5', |
83 | | - order => 100, |
84 | | - } |
85 | | - postgresql::server::pg_hba_rule { 'allow access to ipv6 localhost': |
86 | | - type => 'host', |
87 | | - address => '::1/128', |
88 | | - auth_method => 'md5', |
89 | | - order => 101, |
| 52 | + postgresql::server::pg_hba_rule { |
| 53 | + 'local access as postgres user': |
| 54 | + type => 'local', |
| 55 | + user => $user, |
| 56 | + auth_method => 'ident', |
| 57 | + auth_option => $local_auth_option, |
| 58 | + order => 1, |
| 59 | + ; |
| 60 | + |
| 61 | + 'local access to database with same name': |
| 62 | + type => 'local', |
| 63 | + auth_method => 'ident', |
| 64 | + auth_option => $local_auth_option, |
| 65 | + order => 2, |
| 66 | + ; |
| 67 | + |
| 68 | + 'allow localhost TCP access to postgresql user': |
| 69 | + type => 'host', |
| 70 | + user => $user, |
| 71 | + address => '127.0.0.1/32', |
| 72 | + auth_method => 'md5', |
| 73 | + order => 3, |
| 74 | + ; |
| 75 | + |
| 76 | + 'deny access to postgresql user': |
| 77 | + type => 'host', |
| 78 | + user => $user, |
| 79 | + address => $ip_mask_deny_postgres_user, |
| 80 | + auth_method => 'reject', |
| 81 | + order => 4, |
| 82 | + ; |
| 83 | + |
| 84 | + 'allow access to all users': |
| 85 | + type => 'host', |
| 86 | + address => $ip_mask_allow_all_users, |
| 87 | + auth_method => 'md5', |
| 88 | + order => 100, |
| 89 | + ; |
| 90 | + |
| 91 | + 'allow access to ipv6 localhost': |
| 92 | + type => 'host', |
| 93 | + address => '::1/128', |
| 94 | + auth_method => 'md5', |
| 95 | + order => 101, |
| 96 | + ; |
90 | 97 | } |
91 | 98 | } |
92 | 99 |
|
|
0 commit comments