From dfbe3d66be1a1b195ba92b0bf650454e05ec8496 Mon Sep 17 00:00:00 2001 From: Greg Clough Date: Tue, 17 Apr 2018 16:53:35 +0100 Subject: [PATCH] Allow repo to be optional, in case of Satellite, Artifactory, etc. --- .gitignore | 1 + README.md | 53 +- Vagrantfile | 9 +- defaults/main.yml | 194 ++--- handlers/main.yml | 17 +- meta/main.yml | 21 +- tasks/configure.yml | 12 +- tasks/databases.yml | 11 +- tasks/extensions/dev_headers.yml | 8 +- tasks/extensions/postgis.yml | 13 +- tasks/install.yml | 6 +- tasks/install_yum.yml | 54 +- templates/HOWTO.postgresql.conf | 35 +- ...system_postgresql.service.d_custom.conf.j2 | 5 +- templates/postgresql.conf-10.j2 | 668 ++++++++++++++++++ templates/postgresql.conf-10.orig | 658 +++++++++++++++++ tests/docker/group_vars/all.yml | 1 + tests/docker/group_vars/postgresql.yml | 18 +- tests/vars.yml | 8 +- 19 files changed, 1620 insertions(+), 172 deletions(-) create mode 100644 templates/postgresql.conf-10.j2 create mode 100644 templates/postgresql.conf-10.orig diff --git a/.gitignore b/.gitignore index 5112ae24..47ad28db 100644 --- a/.gitignore +++ b/.gitignore @@ -7,3 +7,4 @@ Icon .Trashes .vagrant test +*.retry diff --git a/README.md b/README.md index c94b2acb..5e79ccc0 100644 --- a/README.md +++ b/README.md @@ -18,33 +18,37 @@ To install: ansible-galaxy install ANXS.postgresql ``` + #### Dependencies - ANXS.monit ([Galaxy](https://galaxy.ansible.com/list#/roles/502)/[GH](https://github.com/ANXS/monit)) if you want monit protection (in that case, you should set `monit_protection: true`) #### Compatibility matrix -| Distribution / PostgreSQL | <= 9.2 | 9.3 | 9.4 | 9.5 | 9.6 | -| ------------------------- |:------:|:---:|:---:|:---:|:---:| -| Ubuntu 14.04 | :no_entry: | :white_check_mark:| :white_check_mark:| :white_check_mark:| :white_check_mark:| -| Ubuntu 16.04 | :no_entry: | :white_check_mark:| :white_check_mark:| :white_check_mark:| :white_check_mark:| -| Debian 8.x | :no_entry: | :white_check_mark:| :white_check_mark:| :white_check_mark:| :white_check_mark:| -| Debian 9.x | :no_entry: | :white_check_mark:| :white_check_mark:| :white_check_mark:| :white_check_mark:| -| Centos 6.x | :no_entry: | :white_check_mark:| :white_check_mark:| :white_check_mark:| :white_check_mark:| -| Centos 7.x | :no_entry: | :white_check_mark:| :white_check_mark:| :white_check_mark:| :white_check_mark:| + +| Distribution / PostgreSQL | <= 9.2 | 9.3 | 9.4 | 9.5 | 9.6 | 10 | 11 | +| ------------------------- |:------:|:---:|:---:|:---:|:---:|:--:|:--:| +| Ubuntu 14.04 | :no_entry: | :white_check_mark:| :white_check_mark:| :white_check_mark:| :white_check_mark:| :white_check_mark:| :grey_question:| +| Ubuntu 16.04 | :no_entry: | :white_check_mark:| :white_check_mark:| :white_check_mark:| :white_check_mark:| :white_check_mark:| :grey_question:| +| Debian 8.x | :no_entry: | :white_check_mark:| :white_check_mark:| :white_check_mark:| :white_check_mark:| :white_check_mark:| :grey_question:| +| Debian 9.x | :no_entry: | :white_check_mark:| :white_check_mark:| :white_check_mark:| :white_check_mark:| :white_check_mark:| :grey_question:| +| CentOS 6.x | :no_entry: | :white_check_mark:| :white_check_mark:| :white_check_mark:| :white_check_mark:| :white_check_mark:| :grey_question:| +| CentOS 7.x | :no_entry: | :white_check_mark:| :white_check_mark:| :white_check_mark:| :white_check_mark:| :white_check_mark:| :grey_question:| - :white_check_mark: - tested, works fine +- :grey_question: - will work in the future (help out if you can) - :interrobang: - maybe works, not tested - :no_entry: - PostgreSQL has reached EOL + #### Variables ```yaml # Basic settings postgresql_version: 9.6 -postgresql_encoding: 'UTF-8' -postgresql_locale: 'en_US.UTF-8' -postgresql_ctype: 'en_US.UTF-8' +postgresql_encoding: "UTF-8" +postgresql_locale: "en_US.UTF-8" +postgresql_ctype: "en_US.UTF-8" postgresql_admin_user: "postgres" postgresql_default_auth_method: "trust" @@ -62,9 +66,9 @@ postgresql_databases: hstore: yes # flag to install the hstore extension on this database (yes/no) uuid_ossp: yes # flag to install the uuid-ossp extension on this database (yes/no) citext: yes # flag to install the citext extension on this database (yes/no) - encoding: 'UTF-8' # override global {{ postgresql_encoding }} variable per database - lc_collate: 'en_GB.UTF-8' # override global {{ postgresql_locale }} variable per database - lc_ctype: 'en_GB.UTF-8' # override global {{ postgresql_ctype }} variable per database + encoding: "UTF-8" # override global {{ postgresql_encoding }} variable per database + lc_collate: "en_GB.UTF-8" # override global {{ postgresql_locale }} variable per database + lc_ctype: "en_GB.UTF-8" # override global {{ postgresql_ctype }} variable per database # List of database extensions to be created (optional) postgresql_database_extensions: @@ -87,10 +91,11 @@ postgresql_user_privileges: role_attr_flags: "CREATEDB" # role attribute flags ``` -There's a lot more knobs and bolts to set, which you can find in the defaults/main.yml +There's a lot more knobs and bolts to set, which you can find in the [defaults/main.yml](./defaults/main.yml) #### Testing + This project comes with a Vagrantfile, this is a fast and easy way to test changes to the role, fire it up with `vagrant up` See [vagrant docs](https://docs.vagrantup.com/v2/) for getting setup with vagrant @@ -101,6 +106,7 @@ If you want to toy with the test play, see [tests/playbook.yml](./tests/playbook If you are contributing, please first test your changes within the vagrant environment, (using the targeted distribution), and if possible, ensure your change is covered in the tests found in [.travis.yml](./.travis.yml) + #### License Licensed under the MIT License. See the [LICENSE](./LICENSE) file for details. @@ -108,7 +114,22 @@ Licensed under the MIT License. See the [LICENSE](./LICENSE) file for details. #### Thanks -To the contributors: +Creator: +- [Pjan Vandaele](https://github.com/pjan) + +Maintainers: +- [Jonathan Lozada D.](https://github.com/jlozadad) +- [Jonathan Freedman](https://github.com/otakup0pe) +- [Sergei Antipov](https://github.com/UnderGreen) + +Top Contributors: +- [David Farrington](https://github.com/farridav) +- [Jesse Lang](https://github.com/jesselang) +- [Greg Clough](https://github.com/gclough) +- [Michael Conrad](https://github.com/MichaelConrad) +- [Sébastien Alix](https://github.com/sebalix) +- [Copperfield](https://github.com/Copperfield) + - [Ralph von der Heyden](https://github.com/ralph) diff --git a/Vagrantfile b/Vagrantfile index f3fdf87d..9f78763f 100644 --- a/Vagrantfile +++ b/Vagrantfile @@ -8,20 +8,21 @@ Vagrant.configure('2') do |config| config.ssh.private_key_path = '~/.vagrant.d/insecure_private_key' config.vm.define 'anxs' do |machine| - machine.vm.box = "bento/ubuntu-16.04" + #machine.vm.box = "bento/ubuntu-16.04" # machine.vm.box = "ubuntu/trusty64" #machine.vm.box = "ubuntu/precise64" #machine.vm.box = "debian/jessie64" #machine.vm.box = "debian/wheezy64" - #machine.vm.box = "chef/centos-7.1" - #machine.vm.box = "chef/centos-6.6" + machine.vm.box = "centos/7" + #machine.vm.box = "centos/6" machine.vm.network :private_network, ip: '192.168.88.22' machine.vm.hostname = 'anxs.local' machine.vm.provision 'ansible' do |ansible| ansible.playbook = 'tests/playbook.yml' - ansible.sudo = true + ansible.verbose = "v" + ansible.become = true ansible.inventory_path = 'vagrant-inventory' ansible.host_key_checking = false end diff --git a/defaults/main.yml b/defaults/main.yml index 2267dfe8..510e83a5 100644 --- a/defaults/main.yml +++ b/defaults/main.yml @@ -2,14 +2,14 @@ # Basic settings postgresql_version: 9.6 -postgresql_encoding: 'UTF-8' +postgresql_encoding: "UTF-8" postgresql_locale_parts: - - 'en_US' # Locale - - 'UTF-8' # Encoding + - "en_US" # Locale + - "UTF-8" # Encoding postgresql_locale: "{{ postgresql_locale_parts | join('.') }}" postgresql_ctype_parts: - - 'en_US' # Locale - - 'UTF-8' # Encoding + - "en_US" # Locale + - "UTF-8" # Encoding postgresql_ctype: "{{ postgresql_ctype_parts | join('.') }}" postgresql_admin_user: "postgres" @@ -33,8 +33,8 @@ postgresql_ext_postgis_version: "2.1" # be careful: check whether the postgresql postgresql_ext_postgis_deps: - libgeos-c1 - - "postgresql-{{postgresql_version}}-postgis-{{postgresql_ext_postgis_version}}" - - "postgresql-{{postgresql_version}}-postgis-scripts" + - "postgresql-{{ postgresql_version }}-postgis-{{ postgresql_ext_postgis_version }}" + - "postgresql-{{ postgresql_version }}-postgis-scripts" # List of databases to be created (optional) postgresql_databases: [] @@ -50,10 +50,10 @@ postgresql_user_privileges: [] # pg_hba.conf postgresql_pg_hba_default: - - { type: local, database: all, user: '{{ postgresql_admin_user }}', address: '', method: '{{ postgresql_default_auth_method }}', comment: '' } - - { type: local, database: all, user: all, address: '', method: '{{ postgresql_default_auth_method }}', comment: '"local" is for Unix domain socket connections only' } - - { type: host, database: all, user: all, address: '127.0.0.1/32', method: '{{ postgresql_default_auth_method }}', comment: 'IPv4 local connections:' } - - { type: host, database: all, user: all, address: '::1/128', method: '{{ postgresql_default_auth_method }}', comment: 'IPv6 local connections:' } + - { type: local, database: all, user: "{{ postgresql_admin_user }}", address: "", method: "{{ postgresql_default_auth_method }}", comment: "" } + - { type: local, database: all, user: all, address: "", method: "{{ postgresql_default_auth_method }}", comment: '"local" is for Unix domain socket connections only' } + - { type: host, database: all, user: all, address: "127.0.0.1/32", method: "{{ postgresql_default_auth_method }}", comment: "IPv4 local connections:" } + - { type: host, database: all, user: all, address: "::1/128", method: "{{ postgresql_default_auth_method }}", comment: "IPv6 local connections:" } postgresql_pg_hba_passwd_hosts: [] postgresql_pg_hba_trust_hosts: [] @@ -67,41 +67,41 @@ postgresql_pg_hba_custom: [] #------------------------------------------------------------------------------ # Location of postgres configuration files here -postgresql_conf_directory: "/etc/postgresql/{{postgresql_version}}/{{postgresql_cluster_name}}" +postgresql_conf_directory: "/etc/postgresql/{{ postgresql_version }}/{{ postgresql_cluster_name }}" # HBA (Host Based Authentication) file -postgresql_hba_file: "{{postgresql_conf_directory}}/pg_hba.conf" +postgresql_hba_file: "{{ postgresql_conf_directory }}/pg_hba.conf" # Ident configuration file -postgresql_ident_file: "{{postgresql_conf_directory}}/pg_ident.conf" +postgresql_ident_file: "{{ postgresql_conf_directory }}/pg_ident.conf" # Use data in another directory postgresql_varlib_directory_name: "postgresql" -postgresql_data_directory: "/var/lib/{{ postgresql_varlib_directory_name }}/{{postgresql_version}}/{{postgresql_cluster_name}}" +postgresql_data_directory: "/var/lib/{{ postgresql_varlib_directory_name }}/{{ postgresql_version }}/{{ postgresql_cluster_name }}" postgresql_pid_directory: "/var/run/postgresql" # If external_pid_file is not explicitly set, on extra PID file is written -postgresql_external_pid_file: "{{ postgresql_pid_directory }}/{{postgresql_version}}-{{postgresql_cluster_name}}.pid" +postgresql_external_pid_file: "{{ postgresql_pid_directory }}/{{ postgresql_version }}-{{ postgresql_cluster_name }}.pid" #------------------------------------------------------------------------------ # CONNECTIONS AND AUTHENTICATION #------------------------------------------------------------------------------ postgresql_listen_addresses: - - localhost + - "localhost" postgresql_port: 5432 postgresql_max_connections: 100 postgresql_superuser_reserved_connections: 3 -postgresql_unix_socket_directory: '' # (<= 9.2) +postgresql_unix_socket_directory: "" # (<= 9.2) postgresql_unix_socket_directories: # (>= 9.3) - "{{ postgresql_pid_directory }}" -postgresql_unix_socket_group: '' -postgresql_unix_socket_permissions: '0777' # begin with 0 to use octal notation +postgresql_unix_socket_group: "" +postgresql_unix_socket_permissions: "0777" # begin with 0 to use octal notation # Automatic pg_ctl configuration. Specify a list of options containing # cluster specific options to be passed to pg_ctl(1). postgresql_pg_ctl_options: [] -postgresql_bonjour: off # advertise server via Bonjour -postgresql_bonjour_name: '' # defaults to the computer name +postgresql_bonjour: off # advertise server via Bonjour +postgresql_bonjour_name: "" # defaults to the computer name # - Security and Authentication - @@ -109,25 +109,26 @@ postgresql_bonjour_name: '' # defaults to the computer name postgresql_authentication_timeout: 60s postgresql_ssl: off postgresql_ssl_ciphers: - - 'DEFAULT' - - '!LOW' - - '!EXP' - - '!MD5' - - '@STRENGTH' + - "DEFAULT" + - "!LOW" + - "!EXP" + - "!MD5" + - "@STRENGTH" postgresql_ssl_prefer_server_ciphers: on -postgresql_ssl_ecdh_curve: 'prime256v1' +postgresql_ssl_ecdh_curve: "prime256v1" +postgresal_ssl_dh_params_file: "" # (>= 10) postgresql_ssl_renegotiation_limit: 512MB # amount of data between renegotiations -postgresql_ssl_cert_file: /etc/ssl/certs/ssl-cert-snakeoil.pem # (>= 9.2) -postgresql_ssl_key_file: /etc/ssl/private/ssl-cert-snakeoil.key # (>= 9.2) -postgresql_ssl_ca_file: '' # (>= 9.2) -postgresql_ssl_crl_file: '' # (>= 9.2) +postgresql_ssl_cert_file: "/etc/ssl/certs/ssl-cert-snakeoil.pem" # (>= 9.2) +postgresql_ssl_key_file: "/etc/ssl/private/ssl-cert-snakeoil.key" # (>= 9.2) +postgresql_ssl_ca_file: "" # (>= 9.2) +postgresql_ssl_crl_file: "" # (>= 9.2) postgresql_password_encryption: on postgresql_db_user_namespace: off postgresql_row_security: off # (>= 9.5) # Kerberos and GSSAPI -postgresql_krb_server_keyfile: '' -postgresql_krb_srvname: postgres +postgresql_krb_server_keyfile: "" +postgresql_krb_srvname: "postgres" # (<= 9.3) postgresql_krb_caseins_users: off # TCP Keepalives, 0 selects the system default (in seconds) @@ -143,7 +144,7 @@ postgresql_tcp_keepalives_count: 0 # - Memory - postgresql_shared_buffers: 128MB # min 128kB -postgresql_huge_pages: try # on, off, or try +postgresql_huge_pages: "try" # on, off, or try postgresql_temp_buffers: 8MB # min 800kB # Caution: it is not advisable to set max_prepared_transactions nonzero unless @@ -155,7 +156,7 @@ postgresql_maintenance_work_mem: 16MB # min 1MB postgresql_replacement_sort_tuples: 150000 # (>= 9.6) limits use of replacement selection sort postgresql_autovacuum_work_mem: -1 # min 1MB, or -1 to use maintenance_work_mem postgresql_max_stack_depth: 2MB # min 100kB -postgresql_dynamic_shared_memory_type: posix # the default is the first option +postgresql_dynamic_shared_memory_type: "posix" # the default is the first option # supported by the operating system: # posix # sysv @@ -199,6 +200,7 @@ postgresql_bgwriter_flush_after: 0 # (>= 9.6) 0 disables, postgresql_effective_io_concurrency: 1 # 1-1000; 0 disables prefetching postgresql_max_worker_processes: 8 # (change requires restart) postgresql_max_parallel_workers_per_gather: 0 # (>= 9.6) taken from max_worker_processes +postgresql_max_parallel_workers: 8 # (>= 10) postgresql_old_snapshot_threshold: -1 # (>= 9.6) 1min-60d; -1 disables; 0 is immediate # (change requires restart) postgresql_backend_flush_after: 0 # (>= 9.6) 0 disables, default is 0 @@ -210,7 +212,7 @@ postgresql_backend_flush_after: 0 # (>= 9.6) 0 disables, default i # - Settings - -postgresql_wal_level: minimal # minimal, archive (<= 9.5), hot_standby (<= 9.5), replica (>= 9.6), or logical +postgresql_wal_level: "minimal" # minimal, archive (<= 9.5), hot_standby (<= 9.5), replica (>= 9.6), or logical postgresql_fsync: on # flush data to disk for crash safety # (turning this off can cause # unrecoverable data corruption) @@ -229,7 +231,7 @@ postgresql_synchronous_commit: "on" # - fsync # - fsync_writethrough # - open_sync -postgresql_wal_sync_method: fsync +postgresql_wal_sync_method: "fsync" # recover from partial page writes postgresql_full_page_writes: on @@ -258,13 +260,13 @@ postgresql_checkpoint_warning: 30s # 0 disables # - Archiving - # allows archiving to be done -postgresql_archive_mode: off +postgresql_archive_mode: off # Should be a string with quotes, but all templates need fixing first # Command to use to archive a logfile segment. # Placeholders: %p = path of file to archive # %f = file name only # e.g. 'test ! -f /mnt/server/archivedir/%f && cp %p /mnt/server/archivedir/%f' -postgresql_archive_command: '' +postgresql_archive_command: "" # force a logfile segment switch after this postgresql_archive_timeout: 0 @@ -295,7 +297,7 @@ postgresql_track_commit_timestamp: off # (>= 9.5) # standby servers that provide sync rep. # number of sync standbys (>= 9.6) and comma-separated list of application_name from standby(s) -postgresql_synchronous_standby_num_sync: '' +postgresql_synchronous_standby_num_sync: "" postgresql_synchronous_standby_names: [] # '*' means 'all' # number of xacts by which cleanup is delayed @@ -319,6 +321,15 @@ postgresql_wal_receiver_timeout: 60s # time to wait before retrying to retrieve WAL after a failed attempt postgresql_wal_retrieve_retry_interval: 5s # (>= 9.5) +# - Subscribers - (>= 10) + +# These settings are ignored on a publisher. + +postgresql_max_logical_replication_workers: 4 # (>= 10) taken from max_worker_processes + # (change requires restart) +postgresql_max_sync_workers_per_subscription: 2 # (>= 10) taken from max_logical_replication_workers + + #------------------------------------------------------------------------------ # QUERY TUNING #------------------------------------------------------------------------------ @@ -347,7 +358,9 @@ postgresql_cpu_index_tuple_cost: 0.005 # same scale as above postgresql_cpu_operator_cost: 0.0025 # same scale as above postgresql_parallel_tuple_cost: 0.1 # same scale as above (>= 9.6) postgresql_parallel_setup_cost: 1000.0 # same scale as above (>= 9.6) -postgresql_min_parallel_relation_size: 8MB # (>= 9.6) +postgresql_min_parallel_relation_size: 8MB # (= 9.6) replaced by below two parameters in 10 +postgresql_min_parallel_table_scan_size: 8MB # (>= 10) +postgresql_min_parallel_index_scan_size: 512kB # (>= 10) postgresql_effective_cache_size: 128MB @@ -364,12 +377,12 @@ postgresql_geqo_seed: 0.0 # range 0.0-1.0 # - Other Planner Options - -postgresql_default_statistics_target: 100 # range 1-10000 -postgresql_constraint_exclusion: partition # on, off, or partition -postgresql_cursor_tuple_fraction: 0.1 # range 0.0-1.0 +postgresql_default_statistics_target: 100 # range 1-10000 +postgresql_constraint_exclusion: "partition" # on, off, or partition +postgresql_cursor_tuple_fraction: 0.1 # range 0.0-1.0 postgresql_from_collapse_limit: 8 -postgresql_join_collapse_limit: 8 # 1 disables collapsing of explicit -postgresql_force_parallel_mode: off # (>= 9.6) +postgresql_join_collapse_limit: 8 # 1 disables collapsing of explicit +postgresql_force_parallel_mode: "off" # (>= 9.6) #------------------------------------------------------------------------------ @@ -380,7 +393,7 @@ postgresql_force_parallel_mode: off # (>= 9.6) # Valid values are combinations of stderr, csvlog, syslog, and eventlog. # depending on platform. Csvlog requires logging_collector to be on. -postgresql_log_destination: stderr +postgresql_log_destination: "stderr" # Enable capturing of stderr and csvlog into log files. # Required to be on for csvlogs. @@ -389,10 +402,10 @@ postgresql_logging_collector: off # These are only used if logging_collector is on: # Directory where log files are written, can be absolute or relative to PGDATA -postgresql_log_directory: pg_log +postgresql_log_directory: "pg_log" # Log file name pattern, can include strftime() escapes -postgresql_log_filename: postgresql-%Y-%m-%d_%H%M%S.log -postgresql_log_file_mode: '0600' # begin with 0 to use octal notation +postgresql_log_filename: "postgresql-%Y-%m-%d_%H%M%S.log" +postgresql_log_file_mode: "0600" # begin with 0 to use octal notation # If on, an existing log file with the same name as the new log file will be # truncated rather than appended to. But such truncation only occurs on # time-driven rotation, not on restarts or size-driven rotation. Default is @@ -404,12 +417,12 @@ postgresql_log_rotation_age: 1d postgresql_log_rotation_size: 10MB # These are relevant when logging to syslog: -postgresql_syslog_facility: LOCAL0 -postgresql_syslog_ident: postgres +postgresql_syslog_facility: "LOCAL0" +postgresql_syslog_ident: "postgres" postgresql_syslog_sequence_numbers: on # (>= 9.6) postgresql_syslog_split_messages: on # (>= 9.6) # This is only relevant when logging to eventlog (win32) (>= 9.2): -postgresql_event_source: PostgreSQL +postgresql_event_source: "PostgreSQL" # - When to Log - @@ -424,7 +437,7 @@ postgresql_event_source: PostgreSQL # - notice # - warning # - error -postgresql_client_min_messages: notice +postgresql_client_min_messages: "notice" # Values in order of decreasing detail: # - debug5 @@ -439,7 +452,7 @@ postgresql_client_min_messages: notice # - log # - fatal # - panic -postgresql_log_min_messages: warning +postgresql_log_min_messages: "warning" # Values in order of decreasing detail: # - debug5 @@ -454,7 +467,7 @@ postgresql_log_min_messages: warning # - log # - fatal # - panic (effectively off) -postgresql_log_min_error_statement: error +postgresql_log_min_error_statement: "error" # -1 is disabled, 0 logs all statements and their durations, > 0 logs only # statements running at least this number of milliseconds @@ -471,7 +484,7 @@ postgresql_log_checkpoints: off postgresql_log_connections: off postgresql_log_disconnections: off postgresql_log_duration: off -postgresql_log_error_verbosity: default # terse, default, or verbose messages +postgresql_log_error_verbosity: "default" # terse, default, or verbose messages postgresql_log_hostname: off # Special values: @@ -494,14 +507,16 @@ postgresql_log_hostname: off # %q = stop here in non-session # processes # %% = '%' -postgresql_log_line_prefix: '%t ' +postgresql_log_line_prefix: "%t " # log lock waits >= deadlock_timeout postgresql_log_lock_waits: off -postgresql_log_statement: none # none, ddl, mod, all +postgresql_log_statement: "none" # none, ddl, mod, all +postgresql_log_replication_commands: off # log temporary files equal or larger postgresql_log_temp_files: -1 -postgresql_log_timezone: UTC +postgresql_log_timezone: "UTC" + #------------------------------------------------------------------------------ @@ -513,10 +528,10 @@ postgresql_log_timezone: UTC postgresql_track_activities: on postgresql_track_counts: on postgresql_track_io_timing: off # (>= 9.2) -postgresql_track_functions: none # none, pl, all +postgresql_track_functions: "none" # none, pl, all postgresql_track_activity_query_size: 1024 postgresql_update_process_title: on -postgresql_stats_temp_directory: pg_stat_tmp +postgresql_stats_temp_directory: "pg_stat_tmp" # - Statistics Monitoring - @@ -566,15 +581,15 @@ postgresql_autovacuum_vacuum_cost_limit: -1 postgresql_search_path: # schema names - '"$user"' - - public -postgresql_default_tablespace: '' # a tablespace name, '' uses the default + - "public" +postgresql_default_tablespace: "" # a tablespace name, "" uses the default postgresql_temp_tablespaces: [] # a list of tablespace names postgresql_check_function_bodies: on -postgresql_default_transaction_isolation: read committed +postgresql_default_transaction_isolation: "read committed" postgresql_default_transaction_read_only: off postgresql_default_transaction_deferrable: off -postgresql_session_replication_role: origin +postgresql_session_replication_role: "origin" postgresql_statement_timeout: 0 # in milliseconds, 0 is disabled postgresql_lock_timeout: 0 # in milliseconds, 0 is disabled (>= 9.3) @@ -584,26 +599,27 @@ postgresql_vacuum_freeze_table_age: 150000000 postgresql_vacuum_multixact_freeze_min_age: 5000000 # (>= 9.3) postgresql_vacuum_multixact_freeze_table_age: 150000000 # (>= 9.3) -postgresql_bytea_output: hex # hex, escape -postgresql_xmlbinary: base64 -postgresql_xmloption: content +postgresql_bytea_output: "hex" # hex, escape +postgresql_xmlbinary: "base64" +postgresql_xmloption: "content" postgresql_gin_fuzzy_search_limit: 0 # (<= 9.2) +postgresql_gin_pending_list_limit: 4MB # (>= 9.5) # - Locale and Formatting - postgresql_datestyle: - - iso - - mdy -postgresql_intervalstyle: postgres -postgresql_timezone: UTC + - "iso" + - "mdy" +postgresql_intervalstyle: "postgres" +postgresql_timezone: "UTC" # Select the set of available time zone abbreviations. Currently, there are: # Default # Australia # India # You can create your own file in `share/timezonesets/`. -postgresql_timezone_abbreviations: Default +postgresql_timezone_abbreviations: "Default" postgresql_extra_float_digits: 0 # min -15, max 3 postgresql_client_encoding: False # actually defaults to database encoding @@ -620,9 +636,9 @@ postgresql_lc_numeric: "{{ postgresql_locale }}" # locale for time formatting postgresql_lc_time: "{{ postgresql_locale }}" -postgresql_default_text_search_config: pg_catalog.english +postgresql_default_text_search_config: "pg_catalog.english" -postgresql_dynamic_library_path: '$libdir' +postgresql_dynamic_library_path: "$libdir" postgresql_local_preload_libraries: [] postgresql_session_preload_libraries: [] @@ -639,6 +655,11 @@ postgresql_max_locks_per_transaction: 64 # min 10 # lock table slots. postgresql_max_pred_locks_per_transaction: 64 # min 10 +postgresql_max_pred_locks_per_relation: -2 # (>= 10) negative values mean + # (max_pred_locks_per_transaction + # / -max_pred_locks_per_relation) - 1 +postgresql_max_pred_locks_per_page: 2 # (>= 10) min 0 + #------------------------------------------------------------------------------ # VERSION/PLATFORM COMPATIBILITY @@ -647,7 +668,7 @@ postgresql_max_pred_locks_per_transaction: 64 # min 10 # - Previous PostgreSQL Versions - postgresql_array_nulls: on -postgresql_backslash_quote: safe_encoding # on, off, or safe_encoding +postgresql_backslash_quote: "safe_encoding" # on, off, or safe_encoding postgresql_default_with_oids: off postgresql_escape_string_warning: on postgresql_lo_compat_privileges: off @@ -680,21 +701,22 @@ postgresql_pgtune: no # Total system memory in bytes, will attempt to detect if set to "no" postgresql_pgtune_memory: no # Database type, valid options are DW, OLTP, Web, Mixed, Desktop -postgresql_pgtune_type: Mixed +postgresql_pgtune_type: "Mixed" # Maximum number of expected connections, if "no", default based on db type postgresql_pgtune_connections: no - - postgresql_env: LC_ALL: "{{ postgresql_locale }}" LC_LCTYPE: "{{ postgresql_locale }}" +# Install repo, or rely on existing configuration (Satellite, Artifactory, etc.) +postgresql_install_repository: true + # APT settings -postgresql_apt_key_id: ACCC4CF8 +postgresql_apt_key_id: "ACCC4CF8" postgresql_apt_key_url: "https://www.postgresql.org/media/keys/ACCC4CF8.asc" -postgresql_apt_repository: 'deb http://apt.postgresql.org/pub/repos/apt/ {{ansible_distribution_release}}-pgdg main {{postgresql_version}}' +postgresql_apt_repository: "deb http://apt.postgresql.org/pub/repos/apt/ {{ ansible_distribution_release }}-pgdg main {{ postgresql_version }}" # Pin-Priority of PGDG repository postgresql_apt_pin_priority: 500 @@ -713,6 +735,7 @@ postgresql_pgdg_releases: 9.4: 3, 9.5: 3, 9.6: 3, + 10: 2, } centos: { 9.1: 7, @@ -721,6 +744,7 @@ postgresql_pgdg_releases: 9.4: 3, 9.5: 3, 9.6: 3, + 10: 2, } sl: { 9.1: 8, @@ -729,6 +753,7 @@ postgresql_pgdg_releases: 9.4: 3, 9.5: 3, 9.6: 3, + 10: 2, } oraclelinux: { 9.1: 8, @@ -737,6 +762,7 @@ postgresql_pgdg_releases: 9.4: 3, 9.5: 3, 9.6: 3, + 10: 2, } postgresql_version_terse: "{{ postgresql_version | replace('.', '') }}" postgresql_yum_repository_base_url: "http://yum.postgresql.org" @@ -744,4 +770,4 @@ postgresql_yum_repository_url: "{{ postgresql_yum_repository_base_url }}/{{ post postgresql_apt_py3_dependencies: ["python3-psycopg2", "locales"] postgresql_apt_py2_dependencies: ["python-psycopg2", "python-pycurl", "locales"] -postgresql_apt_dependencies: "{{postgresql_apt_py3_dependencies if 'python3' in ansible_python_interpreter|default('') else postgresql_apt_py2_dependencies}}" +postgresql_apt_dependencies: "{{ postgresql_apt_py3_dependencies if 'python3' in ansible_python_interpreter|default('') else postgresql_apt_py2_dependencies }}" diff --git a/handlers/main.yml b/handlers/main.yml index b8b683e1..93e0bfbc 100644 --- a/handlers/main.yml +++ b/handlers/main.yml @@ -1,6 +1,15 @@ # file: postgresql/handlers/main.yml -- name: restart postgresql - service: - name: "{{ postgresql_service_name }}" - state: restarted + - name: restart postgresql with service + service: + name: "{{ postgresql_service_name }}" + state: restarted + enabled: yes + + - name: restart postgresql with systemd + systemd: + name: "{{ postgresql_service_name }}" + state: restarted + enabled: yes + when: ansible_service_mgr == 'systemd' + diff --git a/meta/main.yml b/meta/main.yml index 071ea902..768e4fdd 100644 --- a/meta/main.yml +++ b/meta/main.yml @@ -7,11 +7,30 @@ galaxy_info: min_ansible_version: 2.4.0 license: MIT platforms: + - name: Debian + versions: + - jessie + - stretch - name: Ubuntu versions: - - all + - xenial + - trusty + - name: EL + versions: + - 6 + - 7 categories: - database - database:sql + galaxy_tags: + - postgresql + - postgres + - sql + - database + - postgis + - debian + - ubuntu + - centos + - redhat dependencies: [] diff --git a/tasks/configure.yml b/tasks/configure.yml index f1d408a3..b30af9cd 100644 --- a/tasks/configure.yml +++ b/tasks/configure.yml @@ -136,6 +136,7 @@ state: directory mode: 0755 when: ansible_os_family == "RedHat" + notify: restart postgresql with systemd - name: PostgreSQL | Use the conf directory when starting the Postgres service | RedHat template: @@ -151,15 +152,10 @@ owner: "{{ postgresql_service_user }}" group: "{{ postgresql_service_group }}" mode: u=rwX,g=rwXs,o=rx + notify: restart postgresql with service -- name: PostgreSQL | Enable service +- name: PostgreSQL | Reload all conf files service: name: "{{ postgresql_service_name }}" - enabled: yes - when: postgresql_service_enabled - -- name: PostgreSQL | Restart PostgreSQL - service: - name: "{{ postgresql_service_name }}" - state: restarted + state: reloaded when: postgresql_configuration_pt1.changed or postgresql_configuration_pt2.changed or postgresql_configuration_pt3.changed or postgresql_systemd_custom_conf.changed diff --git a/tasks/databases.yml b/tasks/databases.yml index e73de3d3..edb58452 100644 --- a/tasks/databases.yml +++ b/tasks/databases.yml @@ -22,14 +22,15 @@ when: postgresql_databases|length > 0 - name: PostgreSQL | Add extensions to the databases - shell: "psql {{item.0.db}} --username {{postgresql_admin_user}} -c 'CREATE EXTENSION IF NOT EXISTS {{ item.1 }};'" - become: yes - become_user: "{{postgresql_service_user}}" + postgresql_ext: + db: "{{ item.0.db }}" + login_user: "{{ postgresql_service_user }}" + port: "{{ postgresql_port }}" + name: "{{ item.1 }}" with_subelements: - - "{{postgresql_database_extensions}}" + - "{{ postgresql_database_extensions }}" - extensions register: result - changed_when: "'NOTICE' not in result.stderr" - name: PostgreSQL | Add hstore to the databases with the requirement become: yes diff --git a/tasks/extensions/dev_headers.yml b/tasks/extensions/dev_headers.yml index 81360654..a3bf4918 100644 --- a/tasks/extensions/dev_headers.yml +++ b/tasks/extensions/dev_headers.yml @@ -11,10 +11,14 @@ - restart postgresql - name: PostgreSQL | Extensions | Make sure the development headers are installed | RedHat - yum: "name={{ item }} state=present update_cache=yes" + yum: + name: "{{ item }}" + state: present + update_cache: yes with_items: - "postgresql{{ postgresql_version_terse }}-libs" - "postgresql{{ postgresql_version_terse }}-devel" when: ansible_os_family == "RedHat" notify: - - restart postgresql + - restart postgresql with service + - restart postgresql with systemd diff --git a/tasks/extensions/postgis.yml b/tasks/extensions/postgis.yml index c8704d6f..ed87308a 100644 --- a/tasks/extensions/postgis.yml +++ b/tasks/extensions/postgis.yml @@ -5,12 +5,23 @@ - "../vars/{{ ansible_distribution_release }}.yml" - "../vars/empty.yml" -- name: PostgreSQL | Extensions | Make sure the postgis extensions are installed +- name: PostgreSQL | Extensions | Make sure the postgis extensions are installed | Debian apt: name: "{{item}}" state: present update_cache: yes cache_valid_time: "{{apt_cache_valid_time | default (3600)}}" with_items: "{{ postgresql_ext_postgis_deps }}" + when: ansible_os_family == "Debian" + notify: + - restart postgresql + +- name: PostgreSQL | Extensions | Make sure the postgis extensions are installed | RedHat + yum: + name: "{{item}}" + state: present + update_cache: yes + with_items: "{{ postgresql_ext_postgis_deps }}" + when: ansible_os_family == "RedHat" notify: - restart postgresql diff --git a/tasks/install.yml b/tasks/install.yml index ae750cf7..c5df1f47 100644 --- a/tasks/install.yml +++ b/tasks/install.yml @@ -12,19 +12,19 @@ id: "{{ postgresql_apt_key_id }}" url: "{{ postgresql_apt_key_url }}" state: present - when: postgresql_apt_key_url and postgresql_apt_key_id + when: postgresql_apt_key_url and postgresql_apt_key_id and postgresql_install_repository - name: PostgreSQL | Add PostgreSQL repository apt_repository: repo: "{{ postgresql_apt_repository }}" state: present - when: postgresql_apt_repository | default('') != '' + when: postgresql_apt_repository | default('') != '' and postgresql_install_repository - name: PostgreSQL | Add PostgreSQL repository preferences template: src: etc_apt_preferences.d_apt_postgresql_org_pub_repos_apt.pref.j2 dest: /etc/apt/preferences.d/apt_postgresql_org_pub_repos_apt.pref - when: postgresql_apt_pin_priority + when: postgresql_apt_pin_priority and postgresql_install_repository - name: PostgreSQL | Make sure the dependencies are installed apt: diff --git a/tasks/install_yum.yml b/tasks/install_yum.yml index 6637030d..5a6831d4 100644 --- a/tasks/install_yum.yml +++ b/tasks/install_yum.yml @@ -2,36 +2,32 @@ # The standard ca-certs are needed because without them apt_key will fail to # validate www.postgresql.org (or probably any other source). -- name: PostgreSQL | Make sure the CA certificates are available - yum: - name: ca-certificates - state: present -- name: PostgreSQL | Add PostgreSQL repository - yum: - name: "{{ postgresql_yum_repository_url }}" - state: present + - block: + - name: PostgreSQL | Install all the required dependencies + yum: + name: ["ca-certificates","python-psycopg2", "python-pycurl", "glibc-common","epel-release","libselinux-python"] + state: present -- name: PostgreSQL | Make sure the dependencies are installed - yum: - name: "{{ item }}" - state: present - update_cache: yes - with_items: ["python-psycopg2", "python-pycurl", "glibc-common"] + - name: PostgreSQL | Add PostgreSQL repository + yum: + name: "{{ postgresql_yum_repository_url }}" + state: present + when: postgresql_install_repository -- name: PostgreSQL | Install PostgreSQL - yum: - name: "{{ item }}" - state: present - environment: "{{ postgresql_env }}" - with_items: - - "postgresql{{ postgresql_version_terse }}-server" - - "postgresql{{ postgresql_version_terse }}" - - "postgresql{{ postgresql_version_terse }}-contrib" + - name: PostgreSQL | Install PostgreSQL + yum: + name: "{{ item }}" + state: present + environment: "{{ postgresql_env }}" + with_items: + - "postgresql{{ postgresql_version_terse }}-server" + - "postgresql{{ postgresql_version_terse }}" + - "postgresql{{ postgresql_version_terse }}-contrib" -- name: PostgreSQL | PGTune - yum: - name: pgtune - state: present - environment: "{{ postgresql_env }}" - when: postgresql_pgtune + - name: PostgreSQL | PGTune + yum: + name: pgtune + state: present + environment: "{{ postgresql_env }}" + when: postgresql_pgtune diff --git a/templates/HOWTO.postgresql.conf b/templates/HOWTO.postgresql.conf index ecfba788..d23008c7 100644 --- a/templates/HOWTO.postgresql.conf +++ b/templates/HOWTO.postgresql.conf @@ -2,21 +2,34 @@ How to add a new PostgreSQL version =================================== -1) Download the Debian package 'postgresql-9.X_[...].deb' from -http://apt.postgresql.org/pub/repos/apt/pool/main/p/postgresql-9.X/ +Note: (https://www.postgresql.org/support/versioning) -2) Extract the 'usr/share/postgresql/9.1/postgresql.conf.sample' file -and save it under the 'templates' role directory - => templates/postgresql.conf.9.{X}.orig +Beginning with version 10, a major release is indicated by increasing the first part of the version, +e.g. 10 to 11. Before version 10, a major release was indicated by increasing either the first or second +part of the version number, e.g. 9.5 to 9.6. -3) Check the difference between another version: - => vimdiff postgresql.conf.9.{X-1}.orig postgresql.conf.9.{X}.orig +Do the following steps: ( versions mentioned for transitioninng from version 9.6 to 10 ) -4) Copy an existing template: - => cp postgresql.conf.9.{X-1}.j2 postgresql.conf.9.{X}.j2 +1) Download the Debian package 'postgresql-_[...].deb' from +http://apt.postgresql.org/pub/repos/apt/pool/main/p/postgresql-, e.g. for new version 10 from +http://apt.postgresql.org/pub/repos/apt/pool/main/p/postgresql-10 + +2) Extract the 'usr/share/postgresql//postgresql.conf.sample' file with + dpkg-deb -x postgresql-_[...].deb dir/to/extract/to/ + + and save it under the 'templates' role directory + => templates/postgresql.conf..orig + +3) Check the difference between another version, e.g. for 9.6 -> 10: + => vimdiff postgresql.conf.10.orig postgresql.conf.9.6.orig + +4) Copy an existing template, e.g.: + => cp postgresql.conf.9.6.j2 postgresql.conf.10.j2 5) Update the new template following the major differences. -5) If there are new options or some of them removed, update the 'default/main.yml' file and add a "(>= 9.X)" or "(<= 9.X)" comment to them. +6) If there are new options or some of them removed, update the 'default/main.yml' file and add a "(>= 10)" or "(<= 10)" comment to them. + +7) For yum based installation add version and minor version of postgresql in 'default/main.yml' under '# YUM settings' at end of file -6) Update the '.travis.yml' file to test its new version. +8) Update the '.travis.yml' file to test its new version. diff --git a/templates/etc_systemd_system_postgresql.service.d_custom.conf.j2 b/templates/etc_systemd_system_postgresql.service.d_custom.conf.j2 index b6b75723..c0beee59 100644 --- a/templates/etc_systemd_system_postgresql.service.d_custom.conf.j2 +++ b/templates/etc_systemd_system_postgresql.service.d_custom.conf.j2 @@ -6,6 +6,9 @@ User={{ postgresql_service_user }} Group={{ postgresql_service_group }} Environment=PGDATA={{ postgresql_conf_directory }} - ExecStartPre= +{% if postgresql_version | version_compare('10', '>=') %} +ExecStartPre={{ postgresql_bin_directory }}/postgresql-{{ postgresql_version_terse }}-check-db-dir {{ postgresql_data_directory }} +{% else %} ExecStartPre={{ postgresql_bin_directory }}/postgresql{{ postgresql_version_terse }}-check-db-dir {{ postgresql_data_directory }} +{% endif %} diff --git a/templates/postgresql.conf-10.j2 b/templates/postgresql.conf-10.j2 new file mode 100644 index 00000000..8c66e521 --- /dev/null +++ b/templates/postgresql.conf-10.j2 @@ -0,0 +1,668 @@ +# {{ ansible_managed }} +# ----------------------------- +# PostgreSQL configuration file +# ----------------------------- +# +# This file consists of lines of the form: +# +# name = value +# +# (The "=" is optional.) Whitespace may be used. Comments are introduced with +# "#" anywhere on a line. The complete list of parameter names and allowed +# values can be found in the PostgreSQL documentation. +# +# The commented-out settings shown in this file represent the default values. +# Re-commenting a setting is NOT sufficient to revert it to the default value; +# you need to reload the server. +# +# This file is read on server startup and when the server receives a SIGHUP +# signal. If you edit the file on a running system, you have to SIGHUP the +# server for the changes to take effect, run "pg_ctl reload", or execute +# "SELECT pg_reload_conf()". Some parameters, which are marked below, +# require a server shutdown and restart to take effect. +# +# Any parameter can also be given as a command-line option to the server, e.g., +# "postgres -c log_connections=on". Some parameters can be changed at run time +# with the "SET" SQL command. +# +# Memory units: kB = kilobytes Time units: ms = milliseconds +# MB = megabytes s = seconds +# GB = gigabytes min = minutes +# TB = terabytes h = hours +# d = days + + +#------------------------------------------------------------------------------ +# FILE LOCATIONS +#------------------------------------------------------------------------------ + +# The default values of these variables are driven from the -D command-line +# option or PGDATA environment variable, represented here as ConfigDir. + +data_directory = '{{postgresql_data_directory}}' # use data in another directory + # (change requires restart) +hba_file = '{{postgresql_hba_file}}' # host-based authentication file + # (change requires restart) +ident_file = '{{postgresql_ident_file}}' # ident configuration file + # (change requires restart) + +# If external_pid_file is not explicitly set, no extra PID file is written. +external_pid_file = '{{postgresql_external_pid_file}}' # write an extra PID file + # (change requires restart) + + +#------------------------------------------------------------------------------ +# CONNECTIONS AND AUTHENTICATION +#------------------------------------------------------------------------------ + +# - Connection Settings - + +listen_addresses = '{{postgresql_listen_addresses|join(',')}}' # what IP address(es) to listen on; + # comma-separated list of addresses; + # defaults to 'localhost'; use '*' for all + # (change requires restart) +port = {{postgresql_port}} # (change requires restart) +max_connections = {{postgresql_max_connections}} # (change requires restart) +superuser_reserved_connections = {{postgresql_superuser_reserved_connections}} # (change requires restart) +unix_socket_directories = '{{postgresql_unix_socket_directories|join(',')}}' # comma-separated list of directories + # (change requires restart) +unix_socket_group = '{{postgresql_unix_socket_group}}' # (change requires restart) +unix_socket_permissions = {{postgresql_unix_socket_permissions}} # begin with 0 to use octal notation + # (change requires restart) +bonjour = {{'on' if postgresql_bonjour else 'off'}} # advertise server via Bonjour + # (change requires restart) +bonjour_name = '{{postgresql_bonjour_name}}' # defaults to the computer name + # (change requires restart) + +# - Security and Authentication - + +authentication_timeout = {{postgresql_authentication_timeout}} # 1s-600s +ssl = {{'on' if postgresql_ssl else 'off'}} # (change requires restart) +ssl_ciphers = '{{postgresql_ssl_ciphers|join(':')}}' # allowed SSL ciphers + # (change requires restart) +ssl_prefer_server_ciphers = {{ 'on' if postgresql_ssl_prefer_server_ciphers else 'off' }} # (change requires restart) +ssl_ecdh_curve = '{{postgresql_ssl_ecdh_curve}}' # (change requires restart) +ssl_dh_params_file = '{{postgresal_ssl_dh_params_file}}' +ssl_cert_file = '{{postgresql_ssl_cert_file}}' # (change requires restart) +ssl_key_file = '{{postgresql_ssl_key_file}}' # (change requires restart) +ssl_ca_file = '{{postgresql_ssl_ca_file}}' # (change requires restart) +ssl_crl_file = '{{postgresql_ssl_crl_file}}' # (change requires restart) +password_encryption = {{'on' if postgresql_password_encryption else 'off'}} # md5 or scram-sha-256 +db_user_namespace = {{'on' if postgresql_db_user_namespace else 'off'}} +row_security = {{'on' if postgresql_row_security else 'off'}} + +# GSSAPI using Kerberos +krb_server_keyfile = '{{postgresql_krb_server_keyfile}}' +krb_caseins_users = {{'on' if postgresql_db_user_namespace else 'off'}} + +# - TCP Keepalives - +# see "man 7 tcp" for details + +tcp_keepalives_idle = {{postgresql_tcp_keepalives_idle}} # TCP_KEEPIDLE, in seconds; + # 0 selects the system default +tcp_keepalives_interval = {{postgresql_tcp_keepalives_interval}} # TCP_KEEPINTVL, in seconds; + # 0 selects the system default +tcp_keepalives_count = {{postgresql_tcp_keepalives_count}} # TCP_KEEPCNT; + # 0 selects the system default + + +#------------------------------------------------------------------------------ +# RESOURCE USAGE (except WAL) +#------------------------------------------------------------------------------ + +# - Memory - + +shared_buffers = {{postgresql_shared_buffers}} # min 128kB + # (change requires restart) +huge_pages = {{postgresql_huge_pages}} # on, off, or try + # (change requires restart) +temp_buffers = {{postgresql_temp_buffers}} # min 800kB +max_prepared_transactions = {{postgresql_max_prepared_transactions}} # zero disables the feature + # (change requires restart) +# Caution: it is not advisable to set max_prepared_transactions nonzero unless +# you actively intend to use prepared transactions. +work_mem = {{postgresql_work_mem}} # min 64kB +maintenance_work_mem = {{postgresql_maintenance_work_mem}} # min 1MB +replacement_sort_tuples = {{postgresql_replacement_sort_tuples}} # limits use of replacement selection sort +autovacuum_work_mem = {{postgresql_autovacuum_work_mem}} # min 1MB, or -1 to use maintenance_work_mem +max_stack_depth = {{postgresql_max_stack_depth}} # min 100kB +dynamic_shared_memory_type = {{postgresql_dynamic_shared_memory_type}} # the default is the first option + # supported by the operating system: + # posix + # sysv + # windows + # mmap + # use none to disable dynamic shared memory + # (change requires restart) + +# - Disk - + +temp_file_limit = {{postgresql_temp_file_limit}} # limits per-process temp file space + # in kB, or -1 for no limit + +# - Kernel Resource Usage - + +max_files_per_process = {{postgresql_max_files_per_process}} # min 25 + # (change requires restart) +shared_preload_libraries = '{{postgresql_shared_preload_libraries|join(',')}}' # (change requires restart) + +# - Cost-Based Vacuum Delay - + +vacuum_cost_delay = {{postgresql_vacuum_cost_delay}} # 0-100 milliseconds +vacuum_cost_page_hit = {{postgresql_vacuum_cost_page_hit}} # 0-10000 credits +vacuum_cost_page_miss = {{postgresql_vacuum_cost_page_miss}} # 0-10000 credits +vacuum_cost_page_dirty = {{postgresql_vacuum_cost_page_dirty}} # 0-10000 credits +vacuum_cost_limit = {{postgresql_vacuum_cost_limit}} # 1-10000 credits + +# - Background Writer - + +bgwriter_delay = {{postgresql_bgwriter_delay}} # 10-10000ms between rounds +bgwriter_lru_maxpages = {{postgresql_bgwriter_lru_maxpages}} # 0-1000 max buffers written/round +bgwriter_lru_multiplier = {{postgresql_bgwriter_lru_multiplier}} # 0-10.0 multiplier on buffers scanned/round +bgwriter_flush_after = {{postgresql_bgwriter_flush_after}} # 0 disables, + # default is 512kB on linux, 0 otherwise + +# - Asynchronous Behavior - + +effective_io_concurrency = {{postgresql_effective_io_concurrency}} # 1-1000; 0 disables prefetching +max_worker_processes = {{postgresql_max_worker_processes}} # (change requires restart) +max_parallel_workers_per_gather = {{postgresql_max_parallel_workers_per_gather}} # taken from max_parallel_workers +max_parallel_workers = {{postgresql_max_parallel_workers}} # maximum number of max_worker_processes that + # can be used in parallel queries +old_snapshot_threshold = {{postgresql_old_snapshot_threshold}} # 1min-60d; -1 disables; 0 is immediate + # (change requires restart) +backend_flush_after = {{postgresql_backend_flush_after}} # 0 disables, default is 0 + + +#------------------------------------------------------------------------------ +# WRITE AHEAD LOG +#------------------------------------------------------------------------------ + +# - Settings - + +wal_level = {{postgresql_wal_level}} # minimal, replica, or logical + # (change requires restart) +fsync = {{'on' if postgresql_fsync else 'off'}} # flush data to disk for crash safety + # (turning this off can cause + # unrecoverable data corruption) +synchronous_commit = {{postgresql_synchronous_commit}} # synchronization level; + # off, local, remote_write, remote_apply, or on +wal_sync_method = {{postgresql_wal_sync_method}} # the default is the first option + # supported by the operating system: + # open_datasync + # fdatasync (default on Linux) + # fsync + # fsync_writethrough + # open_sync +full_page_writes = {{'on' if postgresql_full_page_writes else 'off'}} # recover from partial page writes +wal_compression = {{ 'on' if postgresql_wal_compression else 'off' }} +wal_log_hints = {{ 'on' if postgresql_wal_log_hints else 'off' }} # also do full page writes of non-critical updates + # (change requires restart) +wal_buffers = {{postgresql_wal_buffers}} # min 32kB, -1 sets based on shared_buffers + # (change requires restart) +wal_writer_delay = {{postgresql_wal_writer_delay}} # 1-10000 milliseconds +wal_writer_flush_after = {{postgresql_wal_writer_flush_after}} # 0 disables + +commit_delay = {{postgresql_commit_delay}} # range 0-100000, in microseconds +commit_siblings = {{postgresql_commit_siblings}} # range 1-1000 + +# - Checkpoints - + +checkpoint_timeout = {{postgresql_checkpoint_timeout}} # range 30s-1d +max_wal_size = {{ postgresql_max_wal_size if postgresql_max_wal_size or '1G' }} +min_wal_size = {{ postgresql_min_wal_size if postgresql_min_wal_size or '80MB' }} +checkpoint_completion_target = {{postgresql_checkpoint_completion_target}} # checkpoint target duration, 0.0 - 1.0 +checkpoint_flush_after = {{postgresql_checkpoint_flush_after}} # measured in pages, 0 disables + # default is 256kB on linux, 0 otherwise +checkpoint_warning = {{postgresql_checkpoint_warning}} # 0 disables + +# - Archiving - + +archive_mode = {{'on' if postgresql_archive_mode else 'off'}} # enables archiving; off, on, or always + # (change requires restart) +archive_command = '{{postgresql_archive_command}}' # command to use to archive a logfile segment + # placeholders: %p = path of file to archive + # %f = file name only + # e.g. 'test ! -f /mnt/server/archivedir/%f && cp %p /mnt/server/archivedir/%f' +archive_timeout = {{postgresql_archive_timeout}} # force a logfile segment switch after this + # number of seconds; 0 disables + + +#------------------------------------------------------------------------------ +# REPLICATION +#------------------------------------------------------------------------------ + +# - Sending Server(s) - + +# Set these on the master and on any standby that will send replication data. + +max_wal_senders = {{postgresql_max_wal_senders}} # max number of walsender processes + # (change requires restart) +wal_keep_segments = {{postgresql_wal_keep_segments}} # in logfile segments, 16MB each; 0 disables +wal_sender_timeout = {{postgresql_wal_sender_timeout}} # in milliseconds; 0 disables + +max_replication_slots = {{postgresql_max_replication_slots}} # max number of replication slots + # (change requires restart) + +track_commit_timestamp = {{'on' if postgresql_track_commit_timestamp else 'off' }} # collect timestamp of transaction commit + # (change requires restart) + +# - Master Server - + +# These settings are ignored on a standby server. + +synchronous_standby_names = '{{postgresql_synchronous_standby_num_sync}}{% if postgresql_synchronous_standby_names != [] %} ({{postgresql_synchronous_standby_names|join(',')}}){% endif %}' # standby servers that provide sync rep + # method to choose sync standbys, number of sync standbys, + # and comma-separated list of application_name + # from standby(s); '*' = all +vacuum_defer_cleanup_age = {{postgresql_vacuum_defer_cleanup_age}} # number of xacts by which cleanup is delayed + +# - Standby Servers - + +# These settings are ignored on a master server. + +hot_standby = {{'on' if postgresql_hot_standby else 'off'}} # "on" allows queries during recovery + # (change requires restart) +max_standby_archive_delay = {{postgresql_max_standby_archive_delay}} # max delay before canceling queries + # when reading WAL from archive; + # -1 allows indefinite delay +max_standby_streaming_delay = {{postgresql_max_standby_streaming_delay}} # max delay before canceling queries + # when reading streaming WAL; + # -1 allows indefinite delay +wal_receiver_status_interval = {{postgresql_wal_receiver_status_interval}} # send replies at least this often + # 0 disables +hot_standby_feedback = {{'on' if postgresql_hot_standby_feedback or 'off'}} # send info from standby to prevent + # query conflicts +wal_receiver_timeout = {{postgresql_wal_receiver_timeout}} # time that receiver waits for + # communication from master + # in milliseconds; 0 disables + +# - Subscribers - + +# These settings are ignored on a publisher. + +max_logical_replication_workers = {{postgresql_max_logical_replication_workers}} # taken from max_worker_processes + # (change requires restart) +max_sync_workers_per_subscription = {{postgresql_max_sync_workers_per_subscription}} # taken from max_logical_replication_workers + + +wal_retrieve_retry_interval = {{postgresql_wal_retrieve_retry_interval}} # time to wait before retrying to + # retrieve WAL after a failed attempt + +#------------------------------------------------------------------------------ +# QUERY TUNING +#------------------------------------------------------------------------------ + +# - Planner Method Configuration - + +enable_bitmapscan = {{'on' if postgresql_enable_bitmapscan else 'off'}} +enable_hashagg = {{'on' if postgresql_enable_hashagg else 'off'}} +enable_hashjoin = {{'on' if postgresql_enable_hashjoin else 'off'}} +enable_indexscan = {{'on' if postgresql_enable_indexscan else 'off'}} +enable_indexonlyscan = {{'on' if postgresql_enable_indexonlyscan else 'off'}} +enable_material = {{'on' if postgresql_enable_material else 'off'}} +enable_mergejoin = {{'on' if postgresql_enable_mergejoin else 'off'}} +enable_nestloop = {{'on' if postgresql_enable_nestloop else 'off'}} +enable_seqscan = {{'on' if postgresql_enable_seqscan else 'off'}} +enable_sort = {{'on' if postgresql_enable_sort else 'off'}} +enable_tidscan = {{'on' if postgresql_enable_tidscan else 'off'}} + +# - Planner Cost Constants - + +seq_page_cost = {{postgresql_seq_page_cost}} # measured on an arbitrary scale +random_page_cost = {{postgresql_random_page_cost}} # same scale as above +cpu_tuple_cost = {{postgresql_cpu_tuple_cost}} # same scale as above +cpu_index_tuple_cost = {{postgresql_cpu_index_tuple_cost}} # same scale as above +cpu_operator_cost = {{postgresql_cpu_operator_cost}} # same scale as above +parallel_tuple_cost = {{postgresql_parallel_tuple_cost}} # same scale as above +parallel_setup_cost = {{postgresql_parallel_setup_cost}} # same scale as above +min_parallel_table_scan_size = {{postgresql_min_parallel_table_scan_size}} +min_parallel_index_scan_size = {{postgresql_min_parallel_index_scan_size}} +effective_cache_size = {{postgresql_effective_cache_size}} + +# - Genetic Query Optimizer - + +geqo = {{'on' if postgresql_enable_tidscan else 'off'}} +geqo_threshold = {{postgresql_geqo_threshold}} +geqo_effort = {{postgresql_geqo_effort}} # range 1-10 +geqo_pool_size = {{postgresql_geqo_pool_size}} # selects default based on effort +geqo_generations = {{postgresql_geqo_generations}} # selects default based on effort +geqo_selection_bias = {{postgresql_geqo_selection_bias}} # range 1.5-2.0 +geqo_seed = {{postgresql_geqo_seed}} # range 0.0-1.0 + +# - Other Planner Options - + +default_statistics_target = {{postgresql_default_statistics_target}} # range 1-10000 +constraint_exclusion = {{postgresql_constraint_exclusion}} # on, off, or partition +cursor_tuple_fraction = {{postgresql_cursor_tuple_fraction}} # range 0.0-1.0 +from_collapse_limit = {{postgresql_from_collapse_limit}} +join_collapse_limit = {{postgresql_join_collapse_limit}} # 1 disables collapsing of explicit + # JOIN clauses +force_parallel_mode = {{'on' if postgresql_force_parallel_mode else 'off'}} + + +#------------------------------------------------------------------------------ +# ERROR REPORTING AND LOGGING +#------------------------------------------------------------------------------ + +# - Where to Log - + +log_destination = '{{postgresql_log_destination}}' # Valid values are combinations of + # stderr, csvlog, syslog, and eventlog, + # depending on platform. csvlog + # requires logging_collector to be on. + +# This is used when logging to stderr: +logging_collector = {{'on' if postgresql_logging_collector else 'off'}} # Enable capturing of stderr and csvlog + # into log files. Required to be on for + # csvlogs. + # (change requires restart) + +# These are only used if logging_collector is on: +log_directory = '{{postgresql_log_directory}}' # directory where log files are written, + # can be absolute or relative to PGDATA +log_filename = '{{postgresql_log_filename}}' # log file name pattern, + # can include strftime() escapes +log_file_mode = {{postgresql_log_file_mode}} # creation mode for log files, + # begin with 0 to use octal notation +log_truncate_on_rotation = {{'on' if postgresql_log_truncate_on_rotation else 'off'}} # If on, an existing log file with the + # same name as the new log file will be + # truncated rather than appended to. + # But such truncation only occurs on + # time-driven rotation, not on restarts + # or size-driven rotation. Default is + # off, meaning append to existing files + # in all cases. +log_rotation_age = {{postgresql_log_rotation_age}} # Automatic rotation of logfiles will + # happen after that time. 0 disables. +log_rotation_size = {{postgresql_log_rotation_size}} # Automatic rotation of logfiles will + # happen after that much log output. + # 0 disables. + +# These are relevant when logging to syslog: +syslog_facility = '{{postgresql_syslog_facility}}' +syslog_ident = '{{postgresql_syslog_ident}}' +syslog_sequence_numbers = {{'on' if postgresql_syslog_sequence_numbers else 'off'}} +syslog_split_messages = {{'on' if postgresql_syslog_split_messages else 'off'}} + +# This is only relevant when logging to eventlog (win32): +# (change requires restart) +event_source = '{{postgresql_event_source}}' + +# - When to Log - + +client_min_messages = {{postgresql_client_min_messages}} # values in order of decreasing detail: + # debug5 + # debug4 + # debug3 + # debug2 + # debug1 + # log + # notice + # warning + # error + +log_min_messages = {{postgresql_log_min_messages}} # values in order of decreasing detail: + # debug5 + # debug4 + # debug3 + # debug2 + # debug1 + # info + # notice + # warning + # error + # log + # fatal + # panic + +log_min_error_statement = {{postgresql_log_min_error_statement}} # values in order of decreasing detail: + # debug5 + # debug4 + # debug3 + # debug2 + # debug1 + # info + # notice + # warning + # error + # log + # fatal + # panic (effectively off) + +log_min_duration_statement = {{postgresql_log_min_duration_statement}} # -1 is disabled, 0 logs all statements + # and their durations, > 0 logs only + # statements running at least this number + # of milliseconds + + +# - What to Log - + +debug_print_parse = {{'on' if postgresql_debug_print_parse else 'off'}} +debug_print_rewritten = {{'on' if postgresql_debug_print_rewritten else 'off'}} +debug_print_plan = {{'on' if postgresql_debug_print_plan else 'off'}} +debug_pretty_print = {{'on' if postgresql_debug_pretty_print else 'off'}} +log_checkpoints = {{'on' if postgresql_log_checkpoints else 'off'}} +log_connections = {{'on' if postgresql_log_connections else 'off'}} +log_disconnections = {{'on' if postgresql_log_disconnections else 'off'}} +log_duration = {{'on' if postgresql_log_duration else 'off'}} +log_error_verbosity = {{postgresql_log_error_verbosity}} # terse, default, or verbose messages +log_hostname = {{'on' if postgresql_log_duration else 'off'}} +log_line_prefix = '{{postgresql_log_line_prefix}}' # special values: + # %a = application name + # %u = user name + # %d = database name + # %r = remote host and port + # %h = remote host + # %p = process ID + # %t = timestamp without milliseconds + # %m = timestamp with milliseconds + # %n = timestamp with milliseconds (as a Unix epoch) + # %i = command tag + # %e = SQL state + # %c = session ID + # %l = session line number + # %s = session start timestamp + # %v = virtual transaction ID + # %x = transaction ID (0 if none) + # %q = stop here in non-session + # processes + # %% = '%' + # e.g. '<%u%%%d> ' +log_lock_waits = {{'on' if postgresql_log_lock_waits else 'off'}} # log lock waits >= deadlock_timeout +log_statement = '{{postgresql_log_statement}}' # none, ddl, mod, all +log_replication_commands = {{'on' if postgresql_log_replication_commands else 'off'}} +log_temp_files = {{postgresql_log_temp_files}} # log temporary files equal or larger + # than the specified size in kilobytes; + # -1 disables, 0 logs all temp files +log_timezone = '{{postgresql_log_timezone}}' + + +# - Process Title - + +cluster_name = '{{postgresql_cluster_name}}' # added to process titles if nonempty + # (change requires restart) +update_process_title = {{'on' if postgresql_update_process_title else 'off'}} + + +#------------------------------------------------------------------------------ +# RUNTIME STATISTICS +#------------------------------------------------------------------------------ + +# - Query/Index Statistics Collector - + +track_activities = {{'on' if postgresql_track_activities else 'off'}} +track_counts = {{'on' if postgresql_track_counts else 'off'}} +track_io_timing = {{'on' if postgresql_track_io_timing else 'off'}} +track_functions = {{postgresql_track_functions}} # none, pl, all +track_activity_query_size = {{postgresql_track_activity_query_size}} # (change requires restart) +update_process_title = {{'on' if postgresql_update_process_title else 'off'}} +stats_temp_directory = '{{postgresql_stats_temp_directory}}' + + +# - Statistics Monitoring - + +log_parser_stats = {{'on' if postgresql_log_parser_stats else 'off'}} +log_planner_stats = {{'on' if postgresql_log_planner_stats else 'off'}} +log_executor_stats = {{'on' if postgresql_log_executor_stats else 'off'}} +log_statement_stats = {{'on' if postgresql_log_statement_stats else 'off'}} + + +#------------------------------------------------------------------------------ +# AUTOVACUUM PARAMETERS +#------------------------------------------------------------------------------ + +autovacuum = {{'on' if postgresql_autovacuum else 'off'}} # Enable autovacuum subprocess? 'on' + # requires track_counts to also be on. +log_autovacuum_min_duration = {{postgresql_log_autovacuum_min_duration}} # -1 disables, 0 logs all actions and + # their durations, > 0 logs only + # actions running at least this number + # of milliseconds. +autovacuum_max_workers = {{postgresql_autovacuum_max_workers}} # max number of autovacuum subprocesses + # (change requires restart) +autovacuum_naptime = {{postgresql_autovacuum_naptime}} # time between autovacuum runs +autovacuum_vacuum_threshold = {{postgresql_autovacuum_vacuum_threshold}} # min number of row updates before + # vacuum +autovacuum_analyze_threshold = {{postgresql_autovacuum_analyze_threshold}} # min number of row updates before + # analyze +autovacuum_vacuum_scale_factor = {{postgresql_autovacuum_vacuum_scale_factor}} # fraction of table size before vacuum +autovacuum_analyze_scale_factor = {{postgresql_autovacuum_analyze_scale_factor}} # fraction of table size before analyze +autovacuum_freeze_max_age = {{postgresql_autovacuum_freeze_max_age}} # maximum XID age before forced vacuum + # (change requires restart) +autovacuum_multixact_freeze_max_age = {{postgresql_autovacuum_multixact_freeze_max_age}} # maximum multixact age + # before forced vacuum + # (change requires restart) +autovacuum_vacuum_cost_delay = {{postgresql_autovacuum_vacuum_cost_delay}} # default vacuum cost delay for + # autovacuum, in milliseconds; + # -1 means use vacuum_cost_delay +autovacuum_vacuum_cost_limit = {{postgresql_autovacuum_vacuum_cost_limit}} # default vacuum cost limit for + # autovacuum, -1 means use + # vacuum_cost_limit + + +#------------------------------------------------------------------------------ +# CLIENT CONNECTION DEFAULTS +#------------------------------------------------------------------------------ + +# - Statement Behavior - + +search_path = '{{postgresql_search_path|join(',')}}' # schema names +default_tablespace = '{{postgresql_default_tablespace}}' # a tablespace name, '' uses the default +temp_tablespaces = '{{postgresql_temp_tablespaces|join(',')}}' # a list of tablespace names, '' uses + # only default tablespace +check_function_bodies = {{'on' if postgresql_check_function_bodies else 'off'}} +default_transaction_isolation = '{{postgresql_default_transaction_isolation}}' +default_transaction_read_only = {{'on' if postgresql_default_transaction_read_only else 'off'}} +default_transaction_deferrable = {{'on' if postgresql_default_transaction_deferrable else 'off'}} +session_replication_role = '{{postgresql_session_replication_role}}' +statement_timeout = {{postgresql_statement_timeout}} # in milliseconds, 0 is disabled +lock_timeout = {{postgresql_lock_timeout}} # in milliseconds, 0 is disabled +idle_in_transaction_session_timeout = {{postgresql_idle_in_transaction_session_timeout}} # in milliseconds, 0 is disabled +vacuum_freeze_min_age = {{postgresql_vacuum_freeze_min_age}} +vacuum_freeze_table_age = {{postgresql_vacuum_freeze_table_age}} +vacuum_multixact_freeze_min_age = {{postgresql_vacuum_multixact_freeze_min_age}} +vacuum_multixact_freeze_table_age = {{postgresql_vacuum_multixact_freeze_table_age}} +bytea_output = '{{postgresql_bytea_output}}' # hex, escape +xmlbinary = '{{postgresql_xmlbinary}}' +xmloption = '{{postgresql_xmloption}}' +gin_fuzzy_search_limit = {{postgresql_gin_fuzzy_search_limit}} +gin_pending_list_limit = {{postgresql_gin_pending_list_limit}} + +# - Locale and Formatting - + +datestyle = '{{postgresql_datestyle|join(',')}}' +intervalstyle = '{{postgresql_intervalstyle}}' +timezone = '{{postgresql_timezone}}' +timezone_abbreviations = '{{postgresql_timezone_abbreviations}}' # Select the set of available time zone + # abbreviations. Currently, there are + # Default + # Australia (historical usage) + # India + # You can create your own file in + # share/timezonesets/. +extra_float_digits = {{postgresql_extra_float_digits}} # min -15, max 3 +{% if not postgresql_client_encoding %} +#client_encoding = sql_ascii # actually, defaults to database +{% else %} +client_encoding = {{postgresql_client_encoding}} # actually, defaults to database +{% endif %} + # encoding + +# These settings are initialized by initdb, but they can be changed. +lc_messages = '{{postgresql_lc_messages}}' # locale for system error message + # strings +lc_monetary = '{{postgresql_lc_monetary}}' # locale for monetary formatting +lc_numeric = '{{postgresql_lc_numeric}}' # locale for number formatting +lc_time = '{{postgresql_lc_time}}' # locale for time formatting + +# default configuration for text search +default_text_search_config = '{{postgresql_default_text_search_config}}' + +# - Other Defaults - + +dynamic_library_path = '{{postgresql_dynamic_library_path}}' +local_preload_libraries = '{{postgresql_local_preload_libraries|join(',')}}' +session_preload_libraries = '{{postgresql_session_preload_libraries|join(',')}}' + + +#------------------------------------------------------------------------------ +# LOCK MANAGEMENT +#------------------------------------------------------------------------------ + +deadlock_timeout = {{postgresql_deadlock_timeout}} +max_locks_per_transaction = {{postgresql_max_locks_per_transaction}} # min 10 + # (change requires restart) +max_pred_locks_per_transaction = {{postgresql_max_pred_locks_per_transaction}} # min 10 + # (change requires restart) +max_pred_locks_per_relation = {{postgresql_max_pred_locks_per_relation}} # negative values mean + # (max_pred_locks_per_transaction + # / -max_pred_locks_per_relation) - 1 +max_pred_locks_per_page = {{postgresql_max_pred_locks_per_page}} # min 0 + + +#------------------------------------------------------------------------------ +# VERSION/PLATFORM COMPATIBILITY +#------------------------------------------------------------------------------ + +# - Previous PostgreSQL Versions - + +array_nulls = {{'on' if postgresql_array_nulls else 'off'}} +backslash_quote = {{postgresql_backslash_quote}} # on, off, or safe_encoding +default_with_oids = {{'on' if postgresql_default_with_oids else 'off'}} +escape_string_warning = {{'on' if postgresql_escape_string_warning else 'off'}} +lo_compat_privileges = {{'on' if postgresql_lo_compat_privileges else 'off'}} +quote_all_identifiers = {{'on' if postgresql_quote_all_identifiers else 'off'}} +standard_conforming_strings = {{'on' if postgresql_standard_conforming_strings else 'off'}} +synchronize_seqscans = {{'on' if postgresql_synchronize_seqscans else 'off'}} + +# - Other Platforms and Clients - + +transform_null_equals = {{'on' if postgresql_transform_null_equals else 'off'}} + + +#------------------------------------------------------------------------------ +# ERROR HANDLING +#------------------------------------------------------------------------------ + +exit_on_error = {{'on' if postgresql_exit_on_error else 'off'}} # terminate session on any error? +restart_after_crash = {{'on' if postgresql_restart_after_crash else 'off'}} # reinitialize after backend crash? + + +#------------------------------------------------------------------------------ +# CONFIG FILE INCLUDES +#------------------------------------------------------------------------------ + +# These options allow settings to be loaded from files other than the +# default postgresql.conf. + +include_dir = 'conf.d' # include files ending in '.conf' from + # directory 'conf.d' +#include_if_exists = 'exists.conf' # include file only if it exists +#include = 'special.conf' # include file + + +#------------------------------------------------------------------------------ +# CUSTOMIZED OPTIONS +#------------------------------------------------------------------------------ + +# Add settings for extensions here diff --git a/templates/postgresql.conf-10.orig b/templates/postgresql.conf-10.orig new file mode 100644 index 00000000..53aa006d --- /dev/null +++ b/templates/postgresql.conf-10.orig @@ -0,0 +1,658 @@ +# ----------------------------- +# PostgreSQL configuration file +# ----------------------------- +# +# This file consists of lines of the form: +# +# name = value +# +# (The "=" is optional.) Whitespace may be used. Comments are introduced with +# "#" anywhere on a line. The complete list of parameter names and allowed +# values can be found in the PostgreSQL documentation. +# +# The commented-out settings shown in this file represent the default values. +# Re-commenting a setting is NOT sufficient to revert it to the default value; +# you need to reload the server. +# +# This file is read on server startup and when the server receives a SIGHUP +# signal. If you edit the file on a running system, you have to SIGHUP the +# server for the changes to take effect, run "pg_ctl reload", or execute +# "SELECT pg_reload_conf()". Some parameters, which are marked below, +# require a server shutdown and restart to take effect. +# +# Any parameter can also be given as a command-line option to the server, e.g., +# "postgres -c log_connections=on". Some parameters can be changed at run time +# with the "SET" SQL command. +# +# Memory units: kB = kilobytes Time units: ms = milliseconds +# MB = megabytes s = seconds +# GB = gigabytes min = minutes +# TB = terabytes h = hours +# d = days + + +#------------------------------------------------------------------------------ +# FILE LOCATIONS +#------------------------------------------------------------------------------ + +# The default values of these variables are driven from the -D command-line +# option or PGDATA environment variable, represented here as ConfigDir. + +#data_directory = 'ConfigDir' # use data in another directory + # (change requires restart) +#hba_file = 'ConfigDir/pg_hba.conf' # host-based authentication file + # (change requires restart) +#ident_file = 'ConfigDir/pg_ident.conf' # ident configuration file + # (change requires restart) + +# If external_pid_file is not explicitly set, no extra PID file is written. +#external_pid_file = '' # write an extra PID file + # (change requires restart) + + +#------------------------------------------------------------------------------ +# CONNECTIONS AND AUTHENTICATION +#------------------------------------------------------------------------------ + +# - Connection Settings - + +#listen_addresses = 'localhost' # what IP address(es) to listen on; + # comma-separated list of addresses; + # defaults to 'localhost'; use '*' for all + # (change requires restart) +#port = 5432 # (change requires restart) +#max_connections = 100 # (change requires restart) +#superuser_reserved_connections = 3 # (change requires restart) +#unix_socket_directories = '/tmp' # comma-separated list of directories + # (change requires restart) +#unix_socket_group = '' # (change requires restart) +#unix_socket_permissions = 0777 # begin with 0 to use octal notation + # (change requires restart) +#bonjour = off # advertise server via Bonjour + # (change requires restart) +#bonjour_name = '' # defaults to the computer name + # (change requires restart) + +# - Security and Authentication - + +#authentication_timeout = 1min # 1s-600s +#ssl = off +#ssl_ciphers = 'HIGH:MEDIUM:+3DES:!aNULL' # allowed SSL ciphers +#ssl_prefer_server_ciphers = on +#ssl_ecdh_curve = 'prime256v1' +#ssl_dh_params_file = '' +#ssl_cert_file = 'server.crt' +#ssl_key_file = 'server.key' +#ssl_ca_file = '' +#ssl_crl_file = '' +#password_encryption = md5 # md5 or scram-sha-256 +#db_user_namespace = off +#row_security = on + +# GSSAPI using Kerberos +#krb_server_keyfile = '' +#krb_caseins_users = off + +# - TCP Keepalives - +# see "man 7 tcp" for details + +#tcp_keepalives_idle = 0 # TCP_KEEPIDLE, in seconds; + # 0 selects the system default +#tcp_keepalives_interval = 0 # TCP_KEEPINTVL, in seconds; + # 0 selects the system default +#tcp_keepalives_count = 0 # TCP_KEEPCNT; + # 0 selects the system default + + +#------------------------------------------------------------------------------ +# RESOURCE USAGE (except WAL) +#------------------------------------------------------------------------------ + +# - Memory - + +#shared_buffers = 32MB # min 128kB + # (change requires restart) +#huge_pages = try # on, off, or try + # (change requires restart) +#temp_buffers = 8MB # min 800kB +#max_prepared_transactions = 0 # zero disables the feature + # (change requires restart) +# Caution: it is not advisable to set max_prepared_transactions nonzero unless +# you actively intend to use prepared transactions. +#work_mem = 4MB # min 64kB +#maintenance_work_mem = 64MB # min 1MB +#replacement_sort_tuples = 150000 # limits use of replacement selection sort +#autovacuum_work_mem = -1 # min 1MB, or -1 to use maintenance_work_mem +#max_stack_depth = 2MB # min 100kB +#dynamic_shared_memory_type = posix # the default is the first option + # supported by the operating system: + # posix + # sysv + # windows + # mmap + # use none to disable dynamic shared memory + # (change requires restart) + +# - Disk - + +#temp_file_limit = -1 # limits per-process temp file space + # in kB, or -1 for no limit + +# - Kernel Resource Usage - + +#max_files_per_process = 1000 # min 25 + # (change requires restart) +#shared_preload_libraries = '' # (change requires restart) + +# - Cost-Based Vacuum Delay - + +#vacuum_cost_delay = 0 # 0-100 milliseconds +#vacuum_cost_page_hit = 1 # 0-10000 credits +#vacuum_cost_page_miss = 10 # 0-10000 credits +#vacuum_cost_page_dirty = 20 # 0-10000 credits +#vacuum_cost_limit = 200 # 1-10000 credits + +# - Background Writer - + +#bgwriter_delay = 200ms # 10-10000ms between rounds +#bgwriter_lru_maxpages = 100 # 0-1000 max buffers written/round +#bgwriter_lru_multiplier = 2.0 # 0-10.0 multiplier on buffers scanned/round +#bgwriter_flush_after = 0 # measured in pages, 0 disables + +# - Asynchronous Behavior - + +#effective_io_concurrency = 1 # 1-1000; 0 disables prefetching +#max_worker_processes = 8 # (change requires restart) +#max_parallel_workers_per_gather = 2 # taken from max_parallel_workers +#max_parallel_workers = 8 # maximum number of max_worker_processes that + # can be used in parallel queries +#old_snapshot_threshold = -1 # 1min-60d; -1 disables; 0 is immediate + # (change requires restart) +#backend_flush_after = 0 # measured in pages, 0 disables + + +#------------------------------------------------------------------------------ +# WRITE AHEAD LOG +#------------------------------------------------------------------------------ + +# - Settings - + +#wal_level = replica # minimal, replica, or logical + # (change requires restart) +#fsync = on # flush data to disk for crash safety + # (turning this off can cause + # unrecoverable data corruption) +#synchronous_commit = on # synchronization level; + # off, local, remote_write, remote_apply, or on +#wal_sync_method = fsync # the default is the first option + # supported by the operating system: + # open_datasync + # fdatasync (default on Linux) + # fsync + # fsync_writethrough + # open_sync +#full_page_writes = on # recover from partial page writes +#wal_compression = off # enable compression of full-page writes +#wal_log_hints = off # also do full page writes of non-critical updates + # (change requires restart) +#wal_buffers = -1 # min 32kB, -1 sets based on shared_buffers + # (change requires restart) +#wal_writer_delay = 200ms # 1-10000 milliseconds +#wal_writer_flush_after = 1MB # measured in pages, 0 disables + +#commit_delay = 0 # range 0-100000, in microseconds +#commit_siblings = 5 # range 1-1000 + +# - Checkpoints - + +#checkpoint_timeout = 5min # range 30s-1d +#max_wal_size = 1GB +#min_wal_size = 80MB +#checkpoint_completion_target = 0.5 # checkpoint target duration, 0.0 - 1.0 +#checkpoint_flush_after = 0 # measured in pages, 0 disables +#checkpoint_warning = 30s # 0 disables + +# - Archiving - + +#archive_mode = off # enables archiving; off, on, or always + # (change requires restart) +#archive_command = '' # command to use to archive a logfile segment + # placeholders: %p = path of file to archive + # %f = file name only + # e.g. 'test ! -f /mnt/server/archivedir/%f && cp %p /mnt/server/archivedir/%f' +#archive_timeout = 0 # force a logfile segment switch after this + # number of seconds; 0 disables + + +#------------------------------------------------------------------------------ +# REPLICATION +#------------------------------------------------------------------------------ + +# - Sending Server(s) - + +# Set these on the master and on any standby that will send replication data. + +#max_wal_senders = 10 # max number of walsender processes + # (change requires restart) +#wal_keep_segments = 0 # in logfile segments, 16MB each; 0 disables +#wal_sender_timeout = 60s # in milliseconds; 0 disables + +#max_replication_slots = 10 # max number of replication slots + # (change requires restart) +#track_commit_timestamp = off # collect timestamp of transaction commit + # (change requires restart) + +# - Master Server - + +# These settings are ignored on a standby server. + +#synchronous_standby_names = '' # standby servers that provide sync rep + # method to choose sync standbys, number of sync standbys, + # and comma-separated list of application_name + # from standby(s); '*' = all +#vacuum_defer_cleanup_age = 0 # number of xacts by which cleanup is delayed + +# - Standby Servers - + +# These settings are ignored on a master server. + +#hot_standby = on # "off" disallows queries during recovery + # (change requires restart) +#max_standby_archive_delay = 30s # max delay before canceling queries + # when reading WAL from archive; + # -1 allows indefinite delay +#max_standby_streaming_delay = 30s # max delay before canceling queries + # when reading streaming WAL; + # -1 allows indefinite delay +#wal_receiver_status_interval = 10s # send replies at least this often + # 0 disables +#hot_standby_feedback = off # send info from standby to prevent + # query conflicts +#wal_receiver_timeout = 60s # time that receiver waits for + # communication from master + # in milliseconds; 0 disables +#wal_retrieve_retry_interval = 5s # time to wait before retrying to + # retrieve WAL after a failed attempt + +# - Subscribers - + +# These settings are ignored on a publisher. + +#max_logical_replication_workers = 4 # taken from max_worker_processes + # (change requires restart) +#max_sync_workers_per_subscription = 2 # taken from max_logical_replication_workers + + +#------------------------------------------------------------------------------ +# QUERY TUNING +#------------------------------------------------------------------------------ + +# - Planner Method Configuration - + +#enable_bitmapscan = on +#enable_hashagg = on +#enable_hashjoin = on +#enable_indexscan = on +#enable_indexonlyscan = on +#enable_material = on +#enable_mergejoin = on +#enable_nestloop = on +#enable_seqscan = on +#enable_sort = on +#enable_tidscan = on + +# - Planner Cost Constants - + +#seq_page_cost = 1.0 # measured on an arbitrary scale +#random_page_cost = 4.0 # same scale as above +#cpu_tuple_cost = 0.01 # same scale as above +#cpu_index_tuple_cost = 0.005 # same scale as above +#cpu_operator_cost = 0.0025 # same scale as above +#parallel_tuple_cost = 0.1 # same scale as above +#parallel_setup_cost = 1000.0 # same scale as above +#min_parallel_table_scan_size = 8MB +#min_parallel_index_scan_size = 512kB +#effective_cache_size = 4GB + +# - Genetic Query Optimizer - + +#geqo = on +#geqo_threshold = 12 +#geqo_effort = 5 # range 1-10 +#geqo_pool_size = 0 # selects default based on effort +#geqo_generations = 0 # selects default based on effort +#geqo_selection_bias = 2.0 # range 1.5-2.0 +#geqo_seed = 0.0 # range 0.0-1.0 + +# - Other Planner Options - + +#default_statistics_target = 100 # range 1-10000 +#constraint_exclusion = partition # on, off, or partition +#cursor_tuple_fraction = 0.1 # range 0.0-1.0 +#from_collapse_limit = 8 +#join_collapse_limit = 8 # 1 disables collapsing of explicit + # JOIN clauses +#force_parallel_mode = off + + +#------------------------------------------------------------------------------ +# ERROR REPORTING AND LOGGING +#------------------------------------------------------------------------------ + +# - Where to Log - + +#log_destination = 'stderr' # Valid values are combinations of + # stderr, csvlog, syslog, and eventlog, + # depending on platform. csvlog + # requires logging_collector to be on. + +# This is used when logging to stderr: +#logging_collector = off # Enable capturing of stderr and csvlog + # into log files. Required to be on for + # csvlogs. + # (change requires restart) + +# These are only used if logging_collector is on: +#log_directory = 'log' # directory where log files are written, + # can be absolute or relative to PGDATA +#log_filename = 'postgresql-%Y-%m-%d_%H%M%S.log' # log file name pattern, + # can include strftime() escapes +#log_file_mode = 0600 # creation mode for log files, + # begin with 0 to use octal notation +#log_truncate_on_rotation = off # If on, an existing log file with the + # same name as the new log file will be + # truncated rather than appended to. + # But such truncation only occurs on + # time-driven rotation, not on restarts + # or size-driven rotation. Default is + # off, meaning append to existing files + # in all cases. +#log_rotation_age = 1d # Automatic rotation of logfiles will + # happen after that time. 0 disables. +#log_rotation_size = 10MB # Automatic rotation of logfiles will + # happen after that much log output. + # 0 disables. + +# These are relevant when logging to syslog: +#syslog_facility = 'LOCAL0' +#syslog_ident = 'postgres' +#syslog_sequence_numbers = on +#syslog_split_messages = on + +# This is only relevant when logging to eventlog (win32): +# (change requires restart) +#event_source = 'PostgreSQL' + +# - When to Log - + +#client_min_messages = notice # values in order of decreasing detail: + # debug5 + # debug4 + # debug3 + # debug2 + # debug1 + # log + # notice + # warning + # error + +#log_min_messages = warning # values in order of decreasing detail: + # debug5 + # debug4 + # debug3 + # debug2 + # debug1 + # info + # notice + # warning + # error + # log + # fatal + # panic + +#log_min_error_statement = error # values in order of decreasing detail: + # debug5 + # debug4 + # debug3 + # debug2 + # debug1 + # info + # notice + # warning + # error + # log + # fatal + # panic (effectively off) + +#log_min_duration_statement = -1 # -1 is disabled, 0 logs all statements + # and their durations, > 0 logs only + # statements running at least this number + # of milliseconds + + +# - What to Log - + +#debug_print_parse = off +#debug_print_rewritten = off +#debug_print_plan = off +#debug_pretty_print = on +#log_checkpoints = off +#log_connections = off +#log_disconnections = off +#log_duration = off +#log_error_verbosity = default # terse, default, or verbose messages +#log_hostname = off +#log_line_prefix = '%m [%p] ' # special values: + # %a = application name + # %u = user name + # %d = database name + # %r = remote host and port + # %h = remote host + # %p = process ID + # %t = timestamp without milliseconds + # %m = timestamp with milliseconds + # %n = timestamp with milliseconds (as a Unix epoch) + # %i = command tag + # %e = SQL state + # %c = session ID + # %l = session line number + # %s = session start timestamp + # %v = virtual transaction ID + # %x = transaction ID (0 if none) + # %q = stop here in non-session + # processes + # %% = '%' + # e.g. '<%u%%%d> ' +#log_lock_waits = off # log lock waits >= deadlock_timeout +#log_statement = 'none' # none, ddl, mod, all +#log_replication_commands = off +#log_temp_files = -1 # log temporary files equal or larger + # than the specified size in kilobytes; + # -1 disables, 0 logs all temp files +#log_timezone = 'GMT' + + +# - Process Title - + +#cluster_name = '' # added to process titles if nonempty + # (change requires restart) +#update_process_title = on + + +#------------------------------------------------------------------------------ +# RUNTIME STATISTICS +#------------------------------------------------------------------------------ + +# - Query/Index Statistics Collector - + +#track_activities = on +#track_counts = on +#track_io_timing = off +#track_functions = none # none, pl, all +#track_activity_query_size = 1024 # (change requires restart) +#stats_temp_directory = 'pg_stat_tmp' + + +# - Statistics Monitoring - + +#log_parser_stats = off +#log_planner_stats = off +#log_executor_stats = off +#log_statement_stats = off + + +#------------------------------------------------------------------------------ +# AUTOVACUUM PARAMETERS +#------------------------------------------------------------------------------ + +#autovacuum = on # Enable autovacuum subprocess? 'on' + # requires track_counts to also be on. +#log_autovacuum_min_duration = -1 # -1 disables, 0 logs all actions and + # their durations, > 0 logs only + # actions running at least this number + # of milliseconds. +#autovacuum_max_workers = 3 # max number of autovacuum subprocesses + # (change requires restart) +#autovacuum_naptime = 1min # time between autovacuum runs +#autovacuum_vacuum_threshold = 50 # min number of row updates before + # vacuum +#autovacuum_analyze_threshold = 50 # min number of row updates before + # analyze +#autovacuum_vacuum_scale_factor = 0.2 # fraction of table size before vacuum +#autovacuum_analyze_scale_factor = 0.1 # fraction of table size before analyze +#autovacuum_freeze_max_age = 200000000 # maximum XID age before forced vacuum + # (change requires restart) +#autovacuum_multixact_freeze_max_age = 400000000 # maximum multixact age + # before forced vacuum + # (change requires restart) +#autovacuum_vacuum_cost_delay = 20ms # default vacuum cost delay for + # autovacuum, in milliseconds; + # -1 means use vacuum_cost_delay +#autovacuum_vacuum_cost_limit = -1 # default vacuum cost limit for + # autovacuum, -1 means use + # vacuum_cost_limit + + +#------------------------------------------------------------------------------ +# CLIENT CONNECTION DEFAULTS +#------------------------------------------------------------------------------ + +# - Statement Behavior - + +#search_path = '"$user", public' # schema names +#default_tablespace = '' # a tablespace name, '' uses the default +#temp_tablespaces = '' # a list of tablespace names, '' uses + # only default tablespace +#check_function_bodies = on +#default_transaction_isolation = 'read committed' +#default_transaction_read_only = off +#default_transaction_deferrable = off +#session_replication_role = 'origin' +#statement_timeout = 0 # in milliseconds, 0 is disabled +#lock_timeout = 0 # in milliseconds, 0 is disabled +#idle_in_transaction_session_timeout = 0 # in milliseconds, 0 is disabled +#vacuum_freeze_min_age = 50000000 +#vacuum_freeze_table_age = 150000000 +#vacuum_multixact_freeze_min_age = 5000000 +#vacuum_multixact_freeze_table_age = 150000000 +#bytea_output = 'hex' # hex, escape +#xmlbinary = 'base64' +#xmloption = 'content' +#gin_fuzzy_search_limit = 0 +#gin_pending_list_limit = 4MB + +# - Locale and Formatting - + +#datestyle = 'iso, mdy' +#intervalstyle = 'postgres' +#timezone = 'GMT' +#timezone_abbreviations = 'Default' # Select the set of available time zone + # abbreviations. Currently, there are + # Default + # Australia (historical usage) + # India + # You can create your own file in + # share/timezonesets/. +#extra_float_digits = 0 # min -15, max 3 +#client_encoding = sql_ascii # actually, defaults to database + # encoding + +# These settings are initialized by initdb, but they can be changed. +#lc_messages = 'C' # locale for system error message + # strings +#lc_monetary = 'C' # locale for monetary formatting +#lc_numeric = 'C' # locale for number formatting +#lc_time = 'C' # locale for time formatting + +# default configuration for text search +#default_text_search_config = 'pg_catalog.simple' + +# - Other Defaults - + +#dynamic_library_path = '$libdir' +#local_preload_libraries = '' +#session_preload_libraries = '' + + +#------------------------------------------------------------------------------ +# LOCK MANAGEMENT +#------------------------------------------------------------------------------ + +#deadlock_timeout = 1s +#max_locks_per_transaction = 64 # min 10 + # (change requires restart) +#max_pred_locks_per_transaction = 64 # min 10 + # (change requires restart) +#max_pred_locks_per_relation = -2 # negative values mean + # (max_pred_locks_per_transaction + # / -max_pred_locks_per_relation) - 1 +#max_pred_locks_per_page = 2 # min 0 + + +#------------------------------------------------------------------------------ +# VERSION/PLATFORM COMPATIBILITY +#------------------------------------------------------------------------------ + +# - Previous PostgreSQL Versions - + +#array_nulls = on +#backslash_quote = safe_encoding # on, off, or safe_encoding +#default_with_oids = off +#escape_string_warning = on +#lo_compat_privileges = off +#operator_precedence_warning = off +#quote_all_identifiers = off +#standard_conforming_strings = on +#synchronize_seqscans = on + +# - Other Platforms and Clients - + +#transform_null_equals = off + + +#------------------------------------------------------------------------------ +# ERROR HANDLING +#------------------------------------------------------------------------------ + +#exit_on_error = off # terminate session on any error? +#restart_after_crash = on # reinitialize after backend crash? + + +#------------------------------------------------------------------------------ +# CONFIG FILE INCLUDES +#------------------------------------------------------------------------------ + +# These options allow settings to be loaded from files other than the +# default postgresql.conf. + +#include_dir = 'conf.d' # include files ending in '.conf' from + # directory 'conf.d' +#include_if_exists = 'exists.conf' # include file only if it exists +#include = 'special.conf' # include file + + +#------------------------------------------------------------------------------ +# CUSTOMIZED OPTIONS +#------------------------------------------------------------------------------ + +# Add settings for extensions here diff --git a/tests/docker/group_vars/all.yml b/tests/docker/group_vars/all.yml index 2b5e6b80..91051070 100644 --- a/tests/docker/group_vars/all.yml +++ b/tests/docker/group_vars/all.yml @@ -6,3 +6,4 @@ postgresql_versions: - 9.4 - 9.5 - 9.6 + - 10 diff --git a/tests/docker/group_vars/postgresql.yml b/tests/docker/group_vars/postgresql.yml index 24671ad4..78c1c1fa 100644 --- a/tests/docker/group_vars/postgresql.yml +++ b/tests/docker/group_vars/postgresql.yml @@ -6,9 +6,11 @@ postgresql_databases: - name: foobar owner: baz +# NOTE: postgresql >= 10 does not accept unencrypted passwords postgresql_users: - name: baz - pass: pass + pass: md51a1dc91c907325c69271ddf0c944bc72 + encrypted: yes - name: zab pass: md51a1dc91c907325c69271ddf0c944bc72 @@ -19,3 +21,17 @@ postgresql_users: postgresql_user_privileges: - name: baz db: foobar + +postgresql_ext_install_contrib: true + +# These do not work everywhere, but should be included ASAP +postgresql_ssl: false +postgresql_pgtune: false +postgresql_ext_install_postgis: false + +postgresql_database_extensions: + - db: foobar + extensions: + - adminpack + - pgcrypto + - unaccent diff --git a/tests/vars.yml b/tests/vars.yml index 19bbc911..1d1bd2e0 100644 --- a/tests/vars.yml +++ b/tests/vars.yml @@ -1,14 +1,18 @@ --- -postgresql_version: 9.6 +postgresql_version: 10 postgresql_databases: - name: foobar owner: baz postgresql_users: + + # postgresql >=10 does not accept unencrypted passwords - name: baz - pass: pass + pass: md51a1dc91c907325c69271ddf0c944bc72 + encrypted: yes + - name: zab pass: md51a1dc91c907325c69271ddf0c944bc72