xoxys.postgres/defaults/main.yml

75 lines
2.4 KiB
YAML

---
postgres_image: "docker.io/library/postgres:latest"
postgres_uid: 999
postgres_gid: 999
# @var postgres_volumes:description: > Define required docker volumes.
# @end
# @var postgres_volumes:example: >
# postgres_volumes:
# - name: data
# # target location inside the container
# dest: /var/lib/postgresql/data
# type: volume
# @end
postgres_volumes:
- name: "postgres-initdb"
dest: "/docker-entrypoint-initdb.d"
- name: "postgres-data"
dest: /var/lib/postgresql/data
# @var postgres_network:description: >
# Name of the container network. If the name ends with `.network`, the network will be created with the specified configuration.
# Otherwise, the network must already exist and the container will be attached to the network.
# @end
postgres_network: "postgres.network"
postgres_network_ipv6_enabled: False
# @var postgres_network_ipv6_subnet:value: $ "_unset_"
# @var postgres_network_ipv6_subnet:example: $ "fd00:0:0:2::/64"
# @var postgres_network_ipv6_gateway:value: $ "_unset_"
# @var postgres_network_ipv6_gateway:example: $ "fd00:0:0:2::1"
# @var postgres_network_ipv4_subnet:value: $ "_unset_"
# @var postgres_network_ipv4_gateway:value: $ "_unset_"
# @var postgres_exposed_ports:description: >
# Ports you want to publish outside of Docker. Postgres is running on `5432` inside of the container.
# @end
postgres_exposed_ports: []
postgres_cap_add: []
postgres_cap_drop: []
postgres_podman_args:
- --pids-limit=-1
- --health-cmd='["pg_isready", "-d", "{{ postgres_db }}"]'
- --health-interval=5s
- --health-timeout=5s
- --health-retries=6
- --health-on-failure=kill
- --workdir=/var/lib/postgresql/data
postgres_log_level: warning
postgres_user: postgres
postgres_password: postgres
postgres_db: postgres
# @var postgres_app_user:description: >
# Application user name without superuser privileges. Full access to `postgres_db`
# will be granted to this user.
# @end
# @var postgres_app_user:value: $ "_unset_"
# @var postgres_app_password:description: Application user password.
# @var postgres_app_password:value: $ "_unset_"
postgres_host_auth_method: scram-sha-256
postgres_initdb_args:
- --auth-host=scram-sha-256
- --auth-local=scram-sha-256
postgres_tls_enabled: False
postgres_tls_ca_file: "/var/lib/postgresql/tls/CA.pem"
postgres_tls_cert_file: "/var/lib/postgresql/tls/cert.pem"
postgres_tls_key_file: "/var/lib/postgresql/tls/key.pem"