Generalization to provide more flexibility in postgresql configuration

Author: kbrezina

lib/puppet/type/postgresql_psql.rb

@@ -49,6 +49,15 @@ def sync(refreshing = false)
     desc "The name of the database to execute the SQL command against."
   end
 
+  newparam(:psql_path) do
+    desc "The path to psql executable."
+    defaultto("psql")
+  end
+
+  newparam(:library_path) do
+    desc "The path to postgresql libraries."
+  end
+
   newparam(:psql_user) do
     desc "The system user account under which the psql command should be executed."
     defaultto("postgres")

manifests/config/afterservice.pp

@@ -28,7 +28,7 @@
     #  for pg_hba.conf.
     exec { 'set_postgres_postgrespw':
         # This command works w/no password because we run it as postgres system user
-        command     => "psql -c \"ALTER ROLE postgres PASSWORD '${postgres_password}'\"",
+        command     => "psql -c \"ALTER ROLE ${postgresql::params::user} PASSWORD '${postgres_password}'\"",
         user        => $postgresql::params::user,
         group       => $postgresql::params::group,
         logoutput   => true,

manifests/database.pp

@@ -29,6 +29,13 @@
 
   # Optionally set the locale switch. Older versions of createdb may not accept
   # --locale, so if the parameter is undefined its safer not to pass it.
+  Postgresql_psql {
+    psql_user    => $postgresql::params::user,
+    psql_group   => $postgresql::params::group,
+    psql_path    => $postgresql::params::psql_path,
+    library_path => $postgresql::params::library_path,
+  }
+
   if ($postgresql::params::version != '8.1') {
     $locale_option = $locale ? {
       undef   => '',
@@ -58,15 +65,15 @@
 
   exec { $createdb_command :
     refreshonly => true,
-    user        => 'postgres',
-    cwd         => $postgresql::params::datadir,
-    logoutput   => on_failure,
+    user      => $postgresql::params::user,
+    cwd       => $postgresql::params::datadir,
+    logoutput => on_failure,
   } ~>
 
   # This will prevent users from connecting to the database unless they've been
   #  granted privileges.
-  postgresql_psql {"REVOKE ${public_revoke_privilege} ON DATABASE ${dbname} FROM public":
-    db          => 'postgres',
+  postgresql_psql {"REVOKE ${public_revoke_privilege} ON DATABASE \"${dbname}\" FROM public":
+    db          => $postgresql::params::user,
     refreshonly => true,
     cwd         => $postgresql::params::datadir,
   }

manifests/database_grant.pp

@@ -30,11 +30,18 @@
     $privilege,
     $db,
     $role,
-    $psql_db   = 'postgres',
-    $psql_user ='postgres'
+    $psql_db   = $postgresql::params::user,
+    $psql_user = $postgresql::params::user
 ) {
   include postgresql::params
 
+  Postgresql_psql {
+    psql_user    => $postgresql::params::user,
+    psql_group   => $postgresql::params::group,
+    psql_path    => $postgresql::params::psql_path,
+    library_path => $postgresql::params::library_path,
+  }
+
   # TODO: FIXME: only works on databases, due to using has_database_privilege
 
   # TODO: this is a terrible hack; if they pass "ALL" as the desired privilege,
@@ -50,7 +57,7 @@
     default => $privilege,
   }
 
-  postgresql_psql {"GRANT ${privilege} ON database ${db} TO ${role}":
+  postgresql_psql {"GRANT ${privilege} ON database \"${db}\" TO \"${role}\"":
     db           => $psql_db,
     psql_user    => $psql_user,
     unless       => "SELECT 1 WHERE has_database_privilege('${role}', '${db}', '${unless_privilege}')",

manifests/database_user.pp

@@ -41,7 +41,7 @@
     $password_hash,
     $createdb   = false,
     $createrole = false,
-    $db         = 'postgres',
+    $db         = $postgresql::params::user,
     $superuser  = false,
     $user       = $title
 ) {

manifests/init.pp

@@ -10,6 +10,7 @@
 # For examples, see the files in the `tests` directory; in particular,
 # `/server-yum-postgresql-org.pp`.
 #
+# Parameters:
 #
 # [*version*]
 #    The postgresql version to install.  If not specified, the
@@ -26,13 +27,63 @@
 #    set to `true`.  It determines which package repository should
 #    be used to install the postgres packages.  Currently supported
 #    values include `yum.postgresql.org`.
-#
 # [*locale*]
 #    This setting defines the default locale for initdb and createdb
 #    commands. This default to 'undef' which is effectively 'C'.
 # [*charset*]
 #    Sets the default charset to be used for initdb and createdb.
 #    Defaults to 'UTF8'.
+# [*datadir*]
+#    This setting can be used to override the default postgresql
+#    data directory for the target platform. If not specified, the
+#    module will use whatever directory is the default for your
+#    OS distro.
+# [*confdir*]
+#    This setting can be used to override the default postgresql
+#    configuration directory for the target platform. If not
+#    specified, the module will use whatever directory is the
+#    default for your OS distro.
+# [*bindir*]
+#    This setting can be used to override the default postgresql
+#    binaries directory for the target platform. If not
+#    specified, the module will use whatever directory is the
+#    default for your OS distro.
+# [*libdir*]
+#    This setting can be used to override the default postgresql
+#    lib directory for the target platform. If not
+#    specified, the module will assume that the libraries are
+#    loaded without the explicit library location.
+# [*client_package_name*]
+#    This setting can be used to override the default
+#    postgresql client package name. If not specified, the module
+#    will use whatever package name is the default for your
+#    OS distro.
+# [*server_package_name*]
+#    This setting can be used to override the default
+#    postgresql server package name. If not specified, the module
+#    will use whatever package name is the default for your
+#    OS distro.
+# [*service_name*]
+#    This setting can be used to override the default
+#    postgresql service name. If not specified, the module
+#    will use whatever service name is the default for your
+#    OS distro.
+# [*user*]
+#    This setting can be used to override the default
+#    postgresql super user and owner of postgresql related files
+#    in the file system. If not specified, the module will use
+#    the user name 'postgres'.
+# [*group*]
+#    This setting can be used to override the default
+#    postgresql user group to be used for related files
+#    in the file system. If not specified, the module will use
+#    the group name 'postgres'.
+# [*run_initdb*]
+#    This setting can be used to explicitly call the inidb
+#    operation after server package is installed and before
+#    the postgresql service is started. If not specified, the
+#    module will decide whether to call initdb or not depending
+#    on your OS distro.
 #
 # === Examples:
 #
@@ -47,13 +98,37 @@
   $manage_package_repo = false,
   $package_source      = undef,
   $locale              = undef,
-  $charset             = 'UTF8'
-) {
+  $charset             = 'UTF8',
+  $datadir             = undef,
+  $confdir             = undef,
+  $bindir              = undef,
+  $libdir              = undef,
+  $client_package_name = undef,
+  $server_package_name = undef,
+  $devel_package_name  = undef,
+  $java_package_name   = undef,
+  $service_name        = undef,
+  $user                = undef,
+  $group               = undef,
+  $run_initdb          = undef,) {
+
   class { 'postgresql::params':
-    version             => $version,
-    manage_package_repo => $manage_package_repo,
-    package_source      => $package_source,
-    locale              => $locale,
-    charset             => $charset,
+    version                    => $version,
+    manage_package_repo        => $manage_package_repo,
+    package_source             => $package_source,
+    locale                     => $locale,
+    charset                    => $charset,
+    custom_datadir             => $datadir,
+    custom_confdir             => $confdir,
+    custom_bindir              => $bindir,
+    custom_libdir              => $libdir,
+    custom_client_package_name => $client_package_name,
+    custom_server_package_name => $server_package_name,
+    custom_devel_package_name  => $devel_package_name,
+    custom_java_package_name   => $java_package_name,
+    custom_service_name        => $service_name,
+    custom_user                => $user,
+    custom_group               => $group,
+    run_initdb                 => $run_initdb,
   }
 }

manifests/initdb.pp

@@ -19,9 +19,9 @@
 class postgresql::initdb(
   $datadir     = $postgresql::params::datadir,
   $encoding    = $postgresql::params::charset,
-  $group       = 'postgres',
+  $group       = $postgresql::params::group,
   $initdb_path = $postgresql::params::initdb_path,
-  $user        = 'postgres'
+  $user        = $postgresql::params::user
 ) inherits postgresql::params {
   # Build up the initdb command.
   #

manifests/params.pp

@@ -28,14 +28,26 @@
 # correct paths to the postgres dirs.
 
 class postgresql::params(
-  $version             = $::postgres_default_version,
-  $manage_package_repo = false,
-  $package_source      = undef,
-  $locale              = undef,
-  $charset             = 'UTF8'
+  $version                    = $::postgres_default_version,
+  $manage_package_repo        = false,
+  $package_source             = undef,
+  $locale                     = undef,
+  $charset                    = 'UTF8',
+  $custom_datadir             = undef,
+  $custom_confdir             = undef,
+  $custom_bindir              = undef,
+  $custom_libdir              = undef,
+  $custom_client_package_name = undef,
+  $custom_server_package_name = undef,
+  $custom_devel_package_name  = undef,
+  $custom_java_package_name   = undef,
+  $custom_service_name        = undef,
+  $custom_user                = undef,
+  $custom_group               = undef,
+  $run_initdb                 = undef,
 ) {
-  $user                         = 'postgres'
-  $group                        = 'postgres'
+  $user                         = pick($custom_user, 'postgres')
+  $group                        = pick($custom_group, 'postgres')
   $ip_mask_deny_postgres_user   = '0.0.0.0/0'
   $ip_mask_allow_all_users      = '127.0.0.1/32'
   $listen_addresses             = 'localhost'
@@ -93,64 +105,66 @@
   # Amazon Linux's OS Family is 'Linux', operating system 'Amazon'.
   case $::osfamily {
     'RedHat', 'Linux': {
-      $needs_initdb             = true
+      $needs_initdb             = pick($run_initdb, true)
       $firewall_supported       = true
       $persist_firewall_command = '/sbin/iptables-save > /etc/sysconfig/iptables'
 
       if $version == $::postgres_default_version {
-        $client_package_name = 'postgresql'
-        $server_package_name = 'postgresql-server'
-        $devel_package_name  = 'postgresql-devel'
-        $java_package_name   = 'postgresql-jdbc'
-        $service_name = 'postgresql'
-        $bindir       = '/usr/bin'
-        $datadir      = '/var/lib/pgsql/data'
-        $confdir      = $datadir
+        $client_package_name = pick($custom_client_package_name, 'postgresql')
+        $server_package_name = pick($custom_server_package_name, 'postgresql-server')
+        $devel_package_name  = pick($custom_devel_package_name, 'postgresql-devel')
+        $java_package_name   = pick($custom_java_package_name, 'postgresql-jdbc')
+        $service_name = pick($custom_service_name, 'postgresql')
+        $bindir       = pick($custom_bindir, '/usr/bin')
+        $libdir       = $custom_libdir
+        $datadir      = pick($custom_datadir, '/var/lib/pgsql/data')
+        $confdir      = pick($custom_confdir, $datadir)
       } else {
         $version_parts       = split($version, '[.]')
         $package_version     = "${version_parts[0]}${version_parts[1]}"
-        $client_package_name = "postgresql${package_version}"
-        $server_package_name = "postgresql${package_version}-server"
-        $devel_package_name  = "postgresql${package_version}-devel"
-        $java_package_name   = "postgresql${package_version}-jdbc"
-        $service_name = "postgresql-${version}"
-        $bindir       = "/usr/pgsql-${version}/bin"
-        $datadir      = "/var/lib/pgsql/${version}/data"
-        $confdir      = $datadir
+        $client_package_name = pick($custom_client_package_name, "postgresql${package_version}")
+        $server_package_name = pick($custom_server_package_name, "postgresql${package_version}-server")
+        $devel_package_name  = pick($custom_devel_package_name, "postgresql${package_version}-devel")
+        $java_package_name   = pick($custom_java_package_name, "postgresql${package_version}-jdbc")
+        $service_name = pick($custom_service_name, "postgresql-${version}")
+        $bindir       = pick($custom_bindir, "/usr/pgsql-${version}/bin")
+        $libdir       = $custom_libdir
+        $datadir      = pick($custom_datadir, "/var/lib/pgsql/${version}/data")
+        $confdir      = pick($custom_confdir, $datadir)
       }
 
       $service_status = undef
     }
 
     'Debian': {
-      $needs_initdb             = false
+      $needs_initdb             = pick($run_initdb, false)
       $firewall_supported       = false
       # TODO: not exactly sure yet what the right thing to do for Debian/Ubuntu is.
       #$persist_firewall_command = '/sbin/iptables-save > /etc/iptables/rules.v4'
 
 
       case $::operatingsystem {
         'Debian': {
-            $service_name = 'postgresql'
+            $service_name = pick($custom_service_name, 'postgresql')
         }
-
         'Ubuntu': {
           # thanks, ubuntu
           if($::lsbmajdistrelease == '10' and !$manage_package_repo) {
-            $service_name = "postgresql-${version}"
+            $service_name = pick($custom_service_name, "postgresql-${version}")
           } else {
-            $service_name = 'postgresql'
+            $service_name = pick($custom_service_name, 'postgresql')
           }
         }
       }
 
-      $client_package_name = "postgresql-client-${version}"
-      $server_package_name = "postgresql-${version}"
-      $devel_package_name  = 'libpq-dev'
-      $java_package_name   = 'libpostgresql-jdbc-java'
-      $bindir              = "/usr/lib/postgresql/${version}/bin"
-      $datadir             = "/var/lib/postgresql/${version}/main"
-      $confdir             = "/etc/postgresql/${version}/main"
+      $client_package_name = pick($custom_client_package_name, "postgresql-client-${version}")
+      $server_package_name = pick($custom_server_package_name, "postgresql-${version}")
+      $devel_package_name  = pick($custom_devel_package_name, 'libpq-dev')
+      $java_package_name   = pick($custom_java_package_name, 'libpostgresql-jdbc-java')
+      $bindir              = pick($custom_bindir, "/usr/lib/postgresql/${version}/bin")
+      $libdir              = $custom_libdir
+      $datadir             = pick($custom_datadir, "/var/lib/postgresql/${version}/main")
+      $confdir             = pick($custom_confdir, "/etc/postgresql/${version}/main")
       $service_status      = "/etc/init.d/${service_name} status | /bin/egrep -q 'Running clusters: .+|online'"
     }
 
@@ -162,6 +176,8 @@
   $initdb_path          = "${bindir}/initdb"
   $createdb_path        = "${bindir}/createdb"
   $psql_path            = "${bindir}/psql"
+  $library_path         = $libdir
   $pg_hba_conf_path     = "${confdir}/pg_hba.conf"
   $postgresql_conf_path = "${confdir}/postgresql.conf"
+
 }

manifests/psql.pp

@@ -21,7 +21,7 @@
     $unless,
     $command     = $title,
     $refreshonly = false,
-    $user        = 'postgres'
+    $user        = $postgresql::params::user
 ) {
 
   include postgresql::params
@@ -34,7 +34,13 @@
     $no_password_option = '--no-password'
   }
 
-  $psql = "${postgresql::params::psql_path} ${no_password_option} --tuples-only --quiet --dbname ${db}"
+  $psql_core = "${postgresql::params::psql_path} ${no_password_option} --tuples-only --quiet --dbname ${db}"
+
+  $psql = $postgresql::params::library_path ? {
+    undef   => $psql_core,
+    default => "LD_LIBRARY_PATH=\"${postgresql::params::library_path}\" ${psql_core}"
+  }
+
   $quoted_command = regsubst($command, '"', '\\"', 'G')
   $quoted_unless  = regsubst($unless,  '"', '\\"', 'G')